Pursuant to Article 13(1)(f) of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as: Regulation 2016/679 or GDPR), it is the Data Controller’s obligation – when applicable – to provide information on:
- the intention to transfer personal data to a third country or international organization,
- the determination or lack thereof by the Commission of an adequate level of protection or, in the case of transfers referred to in Articles 46, 47, or 49(1) second subparagraph of the GDPR, a reference to appropriate or suitable safeguards, as well as information on how to obtain a copy of such safeguards or where they are made available.
In connection with the above, the DeoLink Association, located in Wisła, Malinka 65D/2 (43-460), hereinafter also referred to as the „Data Controller” informs that during the provision of services and delivery of content, there is a likelihood of transferring the collected personal data (including metadata) of users, contractors, or donors to third countries within the meaning of the GDPR. A detailed list of entities to which data may be disclosed, along with the purpose of processing and information regarding their security measures:
- Salesforce.com, Inc. (USA)
Purpose of processing: Maintenance (technical) of databases of users of content and services provided by the Data Controller and its contractors.
Type of security measures, method of obtaining copies of safeguards, or location of their provision:
- Google LLC (USA)
Purpose of processing:
- Conducting traffic analysis (user behavior) on websites and effectiveness of marketing campaigns (Google Analytics).
- Utilizing the login mechanism for services using a user account created on the platform.
Type of security measures, method of obtaining copies of safeguards, or location of their provision:
- Meta Platforms Inc. (formerly: Facebook) (USA)
Purpose of processing: Utilizing the login mechanism for services using a user account created on the Facebook platform.
Type of security measures, method of obtaining copies of safeguards, or location of their provision:
- Stripe, Inc. (USA) Purpose of processing: Facilitating online payment transactions.
Type of security measures, method of obtaining copies of safeguards, or location of their provision: