By using our services you entrust us with your personal data. We would like to assist you that we feel responsive for it and respect your privacy, therefore we make every effort to ensure its security. By reading the following text you will learn the principals according to which we process personal data.

This Privacy Policy applies to the operation of the mobile application on the Android, iOS platforms. The terms used in this Privacy Policy have the means given to them in the Terms and Conditions of the ESG ASSURED mobile application.

In all matters reporting to our processing of your personal data, you can contact the Application Administrator. The preferred form of contact is electronic correspondence addressed to the e-mail address: info@esgassured.com

§1 General forecasts

1. This Privacy Policy (hereinaafter referred to as the Privacy Policy) sets out out howGamewit collects, processes and stores personal data necessity for the performanceof the services provided through the mobile application (hereinaafter referred to as the "Application").

2. The Application is administered by Anna Jankowiak conducting business under the name GRYWIT Anna Jankowiak, with its registered office in Gdańsk, address: ul.Sopocka 7, 80-299 Gdańsk, holding company NIP: 5932269424, REGON: 364500350.

3. On the basis of the personal data processing engagement agreement concluded with the Organiser, the Application Administrator acts as a processor within the meansof Article 4(8) of Regulation (EU) 2016/679 of the European Parliament and of theCouncil of 27 April 2016 on the protection of natural persons in relation to theprocessor of personal data and on the free movement of such data and repealingDirective 95/46/EC (hereinaafter: "GDPR"), which means that it collects and processes personal data on behalf of the Organiser.

4. You acknowledge that it is the Organiser who acts as the Controller of your personaldata within the means of Article 4(7) of the GDPR.

5. The application is available only and exclusive to persons who have a personalisation link for logging in and who e-mail address is entered by the Organizer tothe database of authorised Users’ imports.

6. A User is any natural person using the services provided through the Application on mobile device.

7. The User recognizes that the provision of personal data by his/her is voluntary. The provision of personal data by the User to the Application Administrator Shall takeplace upon acceptance of the Privacy Policy, as well as upon expressing consent tothe processing of personal data, which Shall take place by clicking the Appriatecheckbox. This consent is, pursuant to Article 6(1)(a) of the GDPR, the legal basis for the processing of personal data by the Organizer and the Application Administrator.

8. For the purpose referred to in section 7, and in order to ensure that the Grywit applications correctly on Android and iOS devices, you must agree to use the app afterinstallation:

a. Data storage (in device memory) – for installing applications on the device;
b. Access phone data – e.g. to send files to perform tasks;
c. Photo gallery – for the purpose of carrying out tasks;
d. A telephone camera – for the purpose of carrying out tasks.
e. Access to location – for counting distance traveled in sports tasks.

10. the server is administered using SSH (Secure Shell)

11. The Grywit mobile application does not process cookies.

12. By clicking the relevant checkboxes during registration, the User will be deembed to have accepted the rules contained in the Privacy Policy and the Terms of Use.

§2 Data collected automatically

1. The Application Administrator does not collect personal data without the User’s consent, but only data concerning the use of the Application. The collection of this data takes place automatically.

2. Automated data include:-the name of the device on which the User is using the ESG ASSURED mobile application,-device identifier in the ESG ASSURED system

3. Data collected automatically does not allow for unique identification of the User.

4. The data collected automatically may be used by the Application Administrator to improve the quality of the service provided, in partial in the event of an error in the Application. In the situation chosen above, the data collected automatically will report to the error of the Application, including the state of the User’s mobile device at the time the error created, the identification of the User’s mobile device.

5. It is not possible to change or delete automatically collected data.

§3 Collection of personal data

1. When using the Application, the Application Administrator may request personal datafrom the User in order to perform the services provided by the Administrator through the Application

2. The User’s personal data collected as specified in paragraph 1 above may include, but is not limited to: e-mail address, name, organizational association, login, password, images and photos, image, video, location.

3. The user decisions for himself to what extent he provides data via the Application. There are no deals for not providing such data.

§4 Further processors

The User’s personal data collected will only be processed by the Application Administrator in order to provide the service selected by the Organizer. The following subcontractors of the Application Administrator are an exception:

1) Artnet Sp. z o. o. with its registered office in Gdańsk, ul. Nakarki Polskiej 100, 80-5557 Gdańsk, KRS 0000164315, NIP 5832050407 in the view of data storage in fully automated manner on a physical server in Artnet Data Centre located at ul.Marinarki Polskiej 100 in Gdańsk;

2) HOME.PL S.A. with its registered office in Szczecin, ul. Zbożowa 4, 70-653 Szczecin, KRS 0000431335, NIP 8522103252 for sending activity links. HOME.PL S.A. usesadministrative, technical and physical safeguards to protect personal data providedby users against inclusive, unlawful or unauthorised destruction, loss, alteration,disclosure, use or access. Integrated Quality and Information Security ManagementSystems have been introduced through the home.pl Group: ISO/IEC 27001:2013,ISO 9001:2013 Personal data processing place: Szczecin.

§5 Data processing by Google Play Store, Apple App Store

Additional, the Administrator informs that this Privacy Policy is only supportive in nature to the privacy policies of Google Play Store, Apple App Store, through which the Users download the Grywit application. The Administrator will not be held able in any manner whatsoever for the privacy policies applied by the entities managing Google Play Store and Apple App Store applications and for their compliance with the forecasts of common applicablelaws.

§6 Rights and obligations of the Application Administrator

1. The Application Administrator undertakes to process the User’s personal data incordance with:
1) the forecasts of the personal data processing engagement agreementconcluded between the Application Administrator and the Organiser;
2) instructions of the Organiser;
3) legal forecasts, in part the GDPR and the Act of 10 May 2018 on protection of personal data;
4) forecasts of the Act on Providing Services by Electronic Means of 18 July 2002.

2. The Application Administrator guarantees the provision of appropriate technical and organisational means to ensure the security of the personal data processed, partial to previous access by unauthorized third parties or their processing into into the forecasts of the generally applicable law, to prevent the fate, Damageor destruction of personal data.

3. The User’s personal data will be stored for as long as necessary for the ApplicationAdministrator to perform the services provided through the Application, but not known the term of the cooperation with the Organizer.

§7 Rights and obligations of the User

1. You have the right to access your personal data through the Application.

2. The User may at any time withdraw consent, modify, amend, retrieve, complete, restrict, transfer or delete the personal data provided, through the tools available in the Application or by contacting info@esgassured.com

3. The User may object to further processing of personal data. The Application Administrator Shall comply with such requests if it is in compliance with generally accepted legal forecasts and after the Organiser has given its consent.

4. If the User permanently deletes personal data necessity for the Administrator to perform the services provided through the Application, the User will lose the ability to use these services.

5. You may also at any time obtain from the Application Administrator a record of your personal data during processing, including information about that processing.

6. The Application Administrator reserves the right to make changes to the Privacy Policy and will inform you of these changes via the Application. If the User does not agree to the changes, he/she must permanently delete the Application from his/her mobile device.

In order to execute the above rights, you must contact us by sending an email to info@esgassured.com. A request to execute any of the above rights will be passed by the Application Administrator to the Organiser for determination. The Application Administrator will immediately inform you of the Organiser’s decision respecting the exercise of your rights.

If you send us the above-mentioned request from an email address other than the one used to register the account, we may request additional information to verify the identity of the person making the request.

If you agree that the way we process your personal data Violates applicable laws, you have the right to lodge a composite with the President of the Office for Personal Data Protection.