RODO

The following information is a concise, understandable, and transparent summary of the information provided in the Privacy Policy regarding the Data Controller, the purpose and method of personal data processing, and your rights in connection with such processing, in the form required to comply with the GDPR information obligation. Details regarding the processing method and the entities participating in this process are available in the indicated policy.

Who is the data controller?

The Personal Data Administrator (hereinafter referred to as the Administrator) is the company "Inwestycje Medyczne Łódzkiego Sp. z o. o.", operating at the following address: ul. Narutowicza 34 lok. 305 90-135 Łódź, with the Tax Identification Number (NIP): 726-265-40-60, with the KRS Number: 0000507870, providing services electronically via the Website

How can you contact the data controller?

You can contact the Administrator in one of the following ways:

  • Postal address – Medical Investments of Łódzkie Sp. z o. o., ul. Narutowicza 34 lok. 305 90-135 Łódź
  • Email address – iml@iml.biz.pl
  • Phone call – 42 206 88 60
  • Contact form – available at: /contact

Has the Administrator appointed a Personal Data Inspector?

The Administrator has appointed a Data Protection Officer, who is the Personal Data Protection Officer.

You can contact the Inspector via:

  • by e-mail to the following address: daneosobowe@iml.biz.pl,
  • by phone: 42 206 88 60,
  • or in writing to the following address: ul. Narutowicza 34 lok. 305 90-135 Łódź.

You can contact the Data Protection Supervisor on all matters relating to the processing of personal data.

Where do we obtain personal data and what are its sources?

Data is obtained from the following sources:

  • from data subjects
  • in the case of registration using social networking sites, with the informed consent of these persons, from these social networking sites

What is the scope of personal data we process?

The website processes ordinary personal data, provided voluntarily by the persons concerned
(E.g. name, login, e-mail address, telephone number, IP address, etc.)

The detailed scope of processed data is available in the Privacy Policy.

What are the purposes of our data processing?

Personal data voluntarily provided by Users are processed for one of the following purposes:

  • Implementation of electronic services:
    • Newsletter services (including sending advertising content with consent)
  • Communication between the Administrator and Users on matters related to the Website and data protection
  • Ensuring the legitimate interest of the Administrator

What are the legal bases for data processing?

The website collects and processes User data based on:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
    • Article 6, paragraph 1, letter a
      the data subject has consented to the processing of his or her personal data for one or more specific purposes
    • Article 6, paragraph 1, letter b
      processing is necessary for the performance of a contract to which the data subject is a party, or to take steps at the request of the data subject before entering into a contract
    • Article 6, paragraph 1, letter f
      processing is necessary for the purposes of legitimate interests pursued by the controller or by a third party
  • Act of 10 May 2018 on the Protection of Personal Data (Journal of Laws of 2018, item 1000)
  • Act of 16 July 2004 – Telecommunications Law (Journal of Laws of 2004, No. 171, item 1800)
  • Act of 4 February 1994 on copyright and related rights (Journal of Laws of 1994, No. 24, item 83)

What is the legitimate interest pursued by the Administrator?

  • In order to establish, pursue or defend against claims, the legal basis for processing is our legitimate interest (Article 6(1)(f) of the GDPR) in protecting our rights, including, among others;
  • To assess the risk of potential customers
  • To evaluate planned marketing campaigns
  • For the purpose of direct marketing

For how long do we process personal data?

As a rule, the indicated personal data is stored only for the duration of the service provided by the Controller. It is deleted or anonymized within 30 days from the termination of the service (e.g., deletion of a registered user account, unsubscription from the newsletter, etc.).

In exceptional circumstances, in order to protect the legitimate interests pursued by the Administrator, this period may be extended. In such a case, the Administrator will store the indicated data from the time of the User's request to delete it, but for no longer than three years in the event of a violation or suspected violation of the website's terms and conditions by the data subject.

Who is the recipient of data, including personal data?

As a rule, the only recipient of data is the Administrator.

Data processing may, however, be entrusted to other entities that provide services to the Administrator in order to maintain the operation of the Website. Such entities include, among others:

  • Hosting companies providing hosting or related services to the Administrator

Will your personal data be transferred outside the European Union?

personal data will not be transferred outside the European Union, unless they are published as a result of an individual action by the User (e.g. entering a comment or entry), which will make the data available to every person visiting the website.

Will personal data be the basis for automated decision-making?

personal data will not be used for automated decision-making (profiling).

What rights do you have regarding the processing of personal data?

  • Right to access personal data
    Users have the right to access their personal data, upon request submitted to the Administrator.
  • The right to rectify personal data
    Users have the right to demand from the Administrator the immediate rectification of personal data that is incorrect and/or the completion of incomplete personal data, carried out upon a request submitted to the Administrator
  • Right to delete personal data
    Users have the right to demand that the Administrator immediately delete their personal data, upon request submitted to the Administrator.

    In the case of user accounts, data deletion involves anonymizing the data that enables the identification of the User.

    In the case of the Newsletter service, the User has the option of deleting his or her personal data by using the link included in each e-mail sent.
  • Right to restrict the processing of personal data
    Users have the right to limit the processing of personal data in the cases indicated in Article 18 of the GDPR, including questioning the accuracy of personal data, upon request submitted to the Controller.
  • The right to transfer personal data
    Users have the right to obtain from the Administrator personal data concerning the User in a structured, commonly used and machine-readable format, upon request submitted to the Administrator.
  • The right to object to the processing of personal data
    Users have the right to object to the processing of their personal data in the cases specified in Article 21 of the GDPR, upon request submitted to the Controller.
  • Right to file a complaint
    Users have the right to lodge a complaint with the supervisory authority responsible for personal data protection.
Blog - Signing of the Letter of Intent regarding the construction of the Care and Treatment Facility in Skierniewice – July 28, 2025
Signing of the Letter of Intent regarding the construction of the Care and Treatment Facility in Skierniewice – July 28, 2025

The cost of the entire investment is over PLN 23 million, of which almost PLN 19.5 million comes from funding under the National Recovery and Resilience Plan, and PLN 4…