Privacy Policy

1. This Privacy Policy sets out the rules for the processing of personal data obtained via the website www. and all subdomains (hereinafter referred to as the „Website”).

2. The owner of the Website and the data administrator is the Jagiellonian University with its registered office in Kraków (31-007), ul. Gołębia 24, with the NIP number: 6750002236, REGON: 000001270, hereinafter referred to as UNIVERSITY.

3. A data protection officer was appointed at the UNIVERSITY. Contact details: 31-110 Kraków, Czapskich 4 (office 27), e-mail:, tel. +48 12 663 12 25.

4. Personal data collected by UNIVERSITY via the Website are processed by the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons concerning the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), also known as GDPR.

5. UNIVERSITY takes particular care to respect the privacy of Users visiting the Website.

6. The Twinning Programme is a project support programme for users of Research Infrastructures (hereinafter referred to as the „RIs”), which involves connecting inexperienced users with research groups carrying out measurements on large RIs. (More:

7. Early-Stage Researchers Programme (hereinafter referred to as the „ESR Programme”) is a project support programme for users that allows for an internship at RIs. (More:

§ 1 Type of data processed, purposes and legal basis

1. UNIVERSITY collects information about natural persons performing legal transactions not directly related to their activities, natural persons conducting business or professional activity on their behalf and persons representing legal persons or organizational units that are not legal persons and which are granted legal capacity by law, hereinafter collectively referred to as Users.

2. Users’ personal data are collected in the event of:

a) Use the contact form service on the Website to perform a contract provided electronically. Legal basis: the necessity to perform the contract for the provision of the contact form service (Article 6(1)(b) of the GDPR);

b) Use the service of registration forms for the support offered under the TWINNING and ESR programs to perform a contract provided electronically. Legal basis: necessity to perform the service and support under these programs (Article 6(1)(b) of the GDPR);

3. In case of using the contact form, the User provides the following personal data:

– e-mail address.

– name and surname.

4. In case of using the registration forms for the support offered under the TWINNING and ESR programs, the User provides the following personal data:

– e-mail address.

– name and surname.

– gender

– nationality

5. When using the Website, additional information may be downloaded, in particular: the IP address assigned to the User’s computer or the external IP address of the Internet provider, domain name, browser type, access time, and operating system type.

6. Navigational data may also be collected from Users, including information about links and references they decide to click, or other activities undertaken on the Website. Legal basis – legitimate interest (Article 6(1)(f) of the GDPR), consisting in facilitating the use of services provided electronically and improving the functionality of these services.

7. Providing of personal data to UNIVERSITY is voluntary.

§ 2 Who is the data shared or entrusted with and how long is it stored?

1. The User’s personal data is transferred to service providers used by UNIVERSITY to run the Website. Service providers to whom personal data are transferred, depending on contractual arrangements and circumstances, are either subject to UNIVERSITY’s instructions regarding the purposes and methods of processing this data (processors) or independently determine the purposes and methods of their processing (controllers).

a) Processors. UNIVERSITY uses suppliers who process personal data only at the request of UNIVERSITY. These include, among others: suppliers providing hosting services, systems for analyzing traffic on the Website.

b) Administrators. UNIVERSITY uses suppliers who do not act solely on instructions and determine the purposes and methods of using Users’ personal data themselves.

2. Location. Service providers are based mainly in Poland and other countries of the European Economic Area (EEA). Some of the suppliers are based outside the EEA. In connection with the transfer of data outside the EEA, the Administrator has ensured that suppliers guarantee a high level of personal data protection and apply appropriate measures to secure data transfer by the provisions of the GDPR.

3. Users’ personal data are stored:

a) If the basis for the processing of personal data is consent, then the User’s personal data are processed by UNIVERSITY until the consent is revoked, and after the consent is withdrawn, for a period corresponding to the limitation period for claims that may be raised by UNIVERSITY, and which may be raised against him. Unless a specific provision provides otherwise, the limitation period is six years, and for claims for periodic benefits and claims related to running a business – three years.

b) If the basis for data processing is the performance of a contract, then the User’s personal data are processed by UNIVERSITY for as long as it is necessary to perform the contract, and after that time for a period corresponding to the limitation period for claims. Unless a specific provision provides otherwise, the limitation period is six years, and for claims for periodic benefits and claims related to running a business – three years.

4. Navigation data may be used to provide Users with better service, analyze statistical data and adapt the Website to Users’ preferences, as well as administer the Website.

5. If a request is made, UNIVERSITY provides personal data to authorized state authorities, in particular organizational units of the Prosecutor’s Office, the Police, the President of the Personal Data Protection Office, the President of the Office of Competition and Consumer Protection or the President of the Office of Electronic Communications.

6. When organizing financial support under the TNA, TWINNING and ESR programs, NEPHEWS project partners are obliged to report such support to the European Commission by entering the personal data of persons receiving support and users constituting the research groups of which they are part. These data are entered into the EU Funding & Tenders Portal managed by the European Commission in the reporting part of the NEPHEWS project.

§ 3 Cookie Policy

1. What Are Cookies

As is common practice with almost all professional websites this site uses cookies, which are tiny files that are downloaded to your computer, to improve your experience. This page describes what information they gather, how we use it and why we sometimes need to store these cookies. We will also share how you can prevent these cookies from being stored however this may downgrade or ‘break’ certain elements of the site’s functionality.

2. How We Use Cookies

We use cookies for a variety of reasons detailed below. Unfortunately, in most cases, there are no industry standard options for disabling cookies without completely disabling the functionality and features they add to this site. It is recommended that you leave on all cookies if you are unsure whether you need them or not in case they are used to provide a service you use.

3. Disabling Cookies

You can prevent the setting of cookies by adjusting the settings on your browser (see your browser Help for how to do this). Be aware that disabling cookies will affect the functionality of this and many other websites that you visit. Disabling cookies will usually result in also disabling certain functionality and features of this site. Therefore, it is recommended that you do not disable cookies.

4. The Cookies We Set

– Site preferences cookies

To provide you with a great experience on this site we provide the functionality to set your preferences for how this site runs when you use it. To remember your preferences, we need to set cookies so that this information can be called whenever you interact with a page affected by your preferences.

– Third-Party Cookies

In some special cases, we also use cookies provided by trusted third parties. The following section details which third-party cookies you might encounter through this site. This site uses Google Analytics, one of the most widespread and trusted analytics solutions on the web, to help us understand how you use the site and how we can improve your experience. These cookies may track things such as how long you spend on the site and the pages that you visit so we can continue to produce engaging content. For more information on Google Analytics cookies, see the official Google Analytics page.

5. More Information

Hopefully, that has clarified things for you and as was previously mentioned if there is something that you aren’t sure whether you need or not it’s usually safer to leave cookies enabled in case it does interact with one of the features you use on our site.

However, if you are still looking for more information, you can contact us through one of our preferred contact methods:

§ 4 Rights of data subjects

1. The right to withdraw consent – legal basis: art. 7 section 3 GDPR.

a) The User has the right to withdraw any consent given by the UNIVERSITY.

b) Withdrawal of consent takes effect from the moment of withdrawal.

c)Withdrawal of consent does not affect the processing carried out by UNIVERSITY following the law before its withdrawal.

d)Withdrawal of consent does not result in any negative consequences for the User but may prevent further use of services or functionalities that, following the law, UNIVERSITY can only provide with consent.

2. The right to object to data processing – legal basis: art. 21 GDPR.

a) The User has the right to object at any time – for reasons related to his particular situation – to the processing of his personal data, if UNIVERSITY processes his data based on a legitimate interest, e.g. conducting statistics on the use of individual functionalities of the Website and facilitating the use of the Website, as well as satisfaction surveys.

b) Resignation by e-mail from receiving messages regarding services will mean the User’s objection to the processing of his personal data, including profiling for these purposes.

c) If the User’s objection turns out to be justified and the UNIVERSITY has no other legal basis for the processing of personal data, the User’s personal data will be deleted, to the processing of which the User has objected.

3. The right to delete data (“right to be forgotten”) – legal basis: art. 17 GDPR.

a) The User has the right to request the deletion of all or some personal data.

b) The User has the right to request the deletion of personal data if:

c) Despite the request to delete personal data in connection with raising an objection or withdrawing consent, UNIVERSITY may retain certain personal data to the extent that processing is necessary to establish, pursue or defend claims, as well as to fulfill a legal obligation requiring processing for under Union law or the law of the Member State to which the UNIVERSITY is subject. This applies to personal data including name, surname, and e-mail address, which data is retained to consider complaints and claims related to the use of UNIVERSITY services, or additionally the residential address/correspondence address, order number, which data are retained to consider complaints and claims related to concluded sales contracts or the provision of services.

4. The right to limit data processing – legal basis: art. 18 GDPR.

a) The user has the right to request restrictions on the processing of his or her personal data. Submitting a request, until it is considered, prevents the use of certain functionalities or services, the use of which will involve the processing of the data covered by the request. The UNIVERSITY will not send any messages, including marketing ones.

b) The User has the right to request restriction of the use of personal data in the following cases:

5. Right to access data – legal basis: art. 15 GDPR.

a) The User has the right to obtain from the Administrator confirmation whether personal data is processed, and if this is the case, the User has the right to:

6. The right to rectify data – legal basis: art. 16 GDPR.

a) The User has the right to request the Administrator to immediately correct any incorrect personal data concerning him/her. Considering the purposes of processing, the Data Subject has the right to request that incomplete personal data be completed, including by submitting an additional statement or sending a request to the e-mail address following §6 of the Privacy Policy.

7. The right to transfer data – legal basis: art. 20 GDPR.

a) The User has the right to receive the personal data that he provided to the Administrator and then send them to another personal data administrator of his choice. The User also has the right to request that personal data be sent by the Administrator directly to such an administrator, if technically possible. In such a case, the Administrator will send the User’s personal data in the form of a file in the CSV format, which is a commonly used, machine-readable format that allows the received data to be sent to another personal data administrator.

8. If the User exercises the right resulting from the above rights, UNIVERSITY shall comply with the request or refuse to comply with it immediately, but no later than within one month after receiving it. However, if – due to the complexity of the request or the number of requests – UNIVERSITY is unable to meet the request within a month, it will meet it within the next two months by informing the User within one month of receiving the request – about the intended extension of the deadline and its reasons.

9. The User may submit complaints, inquiries and requests to the Administrator regarding the processing of his personal data and the exercise of his rights, e.g., to the e-mail address or the correspondence address: Jagielloński University, ul. Czapskich 4 (office 27), 31-110 Kraków with the note Data Protection Inspector.

10.  The User has the right to request that UNIVERSITY provides copies of standard contractual clauses by submitting an inquiry in the manner indicated in §6 of the Privacy Policy.

11. The User has the right to lodge a complaint with the President of the Office for Personal Data Protection regarding a violation of his or her rights to the protection of personal data or other rights granted under the GDPR.

§ 5 Security management – password

1. UNIVERSITY provides Users with a safe and encrypted connection when sending personal data and when logging in to the INTRANET on the Website. UNIVERSITY uses an SSL certificate issued by one of the world’s leading companies in the field of security and encryption of data transmitted via the Internet.

2. UNIVERSITY never sends any correspondence, including electronic correspondence, asking for login details, in particular the access password to the User’s account.

§ 6 Changes to the Privacy Policy

1. The Privacy Policy may change, about which the UNIVERSITY will inform Users 7 days in advance.

2. Please send questions related to the Privacy Policy to:

3. Last modified date: July 3, 2024