Ultimo GDPR

GDPR

At Ultimo, we attach great importance to the standards of operation and quality of service for all Business Partners and those in debt.

  • GDPR

GDPR

  1. Do you know what GDPR is?
  2. Information on data processing by Ultimo S.A.
  3. Ultimo S.A. as a Data Controller
  4. Rights of data subjects

Do you know what GDPR is?

The GDPR is a regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016 on the protection of individuals with regard to the processing of their personal data and on the free movement of such data, effective from 25 May 2018; it also regulates matters related to the processing of the personal data of natural persons. It introduces many new rights for individuals and obligations upon Administrators.

Basics of processing

The processing of personal data by the administrator must take place on the basis of at least one of the prerequisites for the legality of processing, as specified in the GDPR.

  1. The consent of the subject of the data must be expressed intentionally and voluntarily (Art. 6 point 1 letter a).
  2. It is necessary to implement the contract or to undertake activities requested by the subject of the data, before concluding the contract. (Art. 6 point 1 letter b).
  3. There is a requirement that processing the data must discharge the Administrator's legal obligation (Art. 6 point 1 letter c).
  4. There is a requirement that the vital interests of the subject of the data and/or those of another natural person be protected. (Art. 6 point 1 let. d).
  5. There is a requirement that the task be carried out in the public interest. (Art. 6 point 1 letter e).
  6. There is a requirement that the task be undertaken for purposes resulting from legitimate interests (Art. 6 point 1 letter f).

Important!

In the debt recovery process, Ultimo S.A. acts on behalf of Data Controllers and processes data on the basis of a data processing, entrustment agreement and also in accordance with Art. 6 point 1 letter f, due to the necessity of processing for purposes resulting from the legitimate interest of the Controller. In accordance with Art. 6 point 1 letter c, this is to discharge the Administrator's legal obligation and is in accordance with Art. 6 point 1 letter b, for the performance of the agreement, which is the settlement concluded with the Administrator.

Ultimo S.A. processes data on its own behalf, based on the consent given, in accordance with Art. 6 point 1 letter a), to discharge the legal obligations, pursuant to Art. 6 point 1 letter c) and for purposes resulting from the legitimate interest of the Administrator, in accordance with Art. 6 point 1 letter f.

 

Information obligation, i.e. information on data processing.

The Data Controller is obliged to implement ‘information obligation’ so-called, that is, information is to be provided, in a transparent and easily accessible form, when processing the personal data and rights of persons whose data is being processed and when obtaining data directly from that person (Art. 13 GDPR); this must be effected, at the latest, within a month of obtaining the same, if the Controller has not previously obtained data from the aforesaid subject of the data (Art. 14 of GDPR).

Information on data processing by Ultimo S.A.

Information on data processing by Ultimo S.A.

In the event that Ultimo S.A. conducts debt collection activities at the request of other creditors, the Data Controllers are:

Ultimo Portfolio Investment (Luxembourg) S.A. with its registered office at 9, rue Joseph Junck, L-1839 Luxembourg, entered into the Commercial Register and Companies of Luxembourg, under number B95089.

TAKTO Niestandaryzowany Fundusz Inwestycyjny Zamknięty Wierzytelności/Non-standardised Closed Investment Fund of Receivables with its seat in Wrocław, represented by Ultimo Towarzystwo Funduszy Inwestycyjnych S.A. with its seat in Wrocław, ul. Szczytnicka 11, 50-382.

Data Protection Officer:

TAKTO NFIZW ul. Szczytnicka 11, 50-382 Wrocław.

Ultimo Niestandaryzowany Fundusz Inwestycyjny Zamknięty Wierzytelności/Non-standardised Closed Investment Fund of Receivables with its seat in Wrocław, represented by Ultimo Towarzystwo Funduszy Inwestycyjnych S.A. with its seat in Wrocław, ul. Szczytnicka 11, 50-382.

Data Protection Officer:

Ultimo NFIZW, ul. Szczytnicka 11, 50-382 Wrocław.

TAKTO Finanse Sp. z o. o. with headquarters in Wrocław at ul. Szczytnicka 11, 50-382

Ultimo as a Data Controller

Ultimo S.A. as a Data Controller

In cases where Ultimo S.A. acts on its own cognisance, then Ultimo is the Controller of personal data, e.g. in connection with:

  • recruitment and employment,

  • conducting traditional correspondence or through forms on the websites www.eultimo.pl/login and ultimo.pl,

  • co-operation with business partners,

  • setting up an account on the website: www.eultimo.pl/login.

Ultimo S.A. has appointed as Data Protection Inspector: Małgorzata Śmiłowska, who can be contacted in matters related to the processing of personal data:

Ultimo Prawa osób

Rights of data subjects

  1. The right to access data (Art. 15 of the GDPR).

    You can exercise the right to access your processed personal data. When providing data, we will, in addition, inform you of the details of the Data Controller as also for what purpose and for what period the data will be stored.

  2. The right to rectify and supplement data (Art. 16 of the GDPR).

    You can use the right to rectify outdated data and supplement incomplete data at any time.

  3. The right to erase data (Art. 17 of the GDPR).

    You can exercise your right to request the deletion of personal data if one of the circumstances provided for by the GDPR occurs, e.g. the data is no longer needed for the purposes for which it was collected.

  4. The right to limit data (Art. 18 of the GDPR).

    You can exercise your right to restrict data if you question the accuracy of the personal data. This may be done for a period that allows you to check the correctness of the data and to check any unlawful processing and also to check whether the subject of the data objects to the deletion of personal data, demanding instead, that its use be restricted. The period will also allow you to verify that the data is no longer needed for the purposes of processing but is needed by the subject of the data in order to establish, assert or defend claims. The period may also be used to object to the processing of the data, pursuant to Art. 21 sec. 1, until it is determined whether legally justified grounds on the part of the Controller, take precedence over the grounds of the objection of the subject of the data.

  5. The right to transfer data (Art. 20 of the GDPR).

    If the Data Controller processes data on the basis of expressed consent or on the basis of a contract and the processing subsequently takes place in an automated manner, you can receive the data in a structured, commonly used, readable format and send this data to another Data Controller.

  6. The right to object to data processing (Art. 21 of the GDPR).

    In the case of data processing on the basis of the Controller's legitimate interest, you can object to the processing for particularly special reasons.

However, it should be remembered that this right cannot be exercised if the Controller demonstrates the existence of valid, legally justified grounds for processing, that is, grounds which are superior to the interests, rights and freedoms of the person, as also where the Controller presents and demonstrates that there are grounds for establishing, investigating or defending claims.

Right to lodge a complaint with a supervisory authority

You have the right to lodge a complaint with a supervisory authority if you believe that the processing of personal data violates the provisions of the GDPR.

Please submit requests for exercising your rights to:

  • e-mail: ultimo@ultimo.pl
  • or by traditional mail to the following address: Ultimo S.A., ul. Szczytnicka 11, 50-382 Wrocław;
  • or in person, at the Company's headquarters: Ultimo S.A., Szczytnicka 11 (Green2Day building), 50-382 Wrocław.
     

Disclosure obligations of Ultimo S.A.

  1. Obligation to provide information regarding correspondence:
    GDPR, disclosure obligation regarding correspondence
  2. Disclosure obligation for former employees:
    RODO disclosure obligation for former employee
  3. Disclosure obligation for contractors:
    GDPR disclosure obligations of contractors
  4. Disclosure obligation for job applicants:
    GDPR, disclosure obligation for a candidate

Contact for Business Partners

Our team is always at your disposal. Call us or write - we will gladly answer all your questions.

Call us

Our office is open
from Monday to Friday
from 8:00 to 17:00

Address for correspondence

Ultimo S.A.
ul. Szczytnicka 11
50-382 Wrocław

CHECK DIRECTIONS >>