Privacy Policy

Last updated on 1 April 2021 

This Privacy Policy applies to the website(s) provided by RASC Sp. z o.o. (RASC), a company headquartered in Warsaw, Poland, and/or the other companies of the RASC group who act as data controllers[1] with respect to the personal data you share with RASC under this Policy.

The Sites include and additional websites produced and managed by RASC. 

RASC knows that your privacy is important to you and takes user privacy very seriously. We are committed to protecting your personal data[2] (i.e. any information you provide to us from which you can be identified) in accordance with this Privacy Policy.

RASC reserves the right, at its sole discretion, to alter and update this Privacy Policy from time to time. We therefore invite you to review the current version of the Privacy Policy each time you return to our Sites.

Some terms are defined throughout this Policy. To obtain their definition refer to the definitions at the bottom of this Policy.

Information we collect and how we use it

RASC collects personal data from you when you request information from RASC and/or supply, information through the Sites, such as when you fill out a subscription form or consulting expertise inquiry, opt in to receive emails from RASC, agree to participate in surveys.

Personal data we collect might include your name, e-mail address, title, occupation, company or university affiliation, industry, region/country, reason for contacting RASC, topics you are interested in, any other background information provided with an application and any other information contained in messages you send us.

We might also collect information about how you use our Sites in accordance with our Cookie Policy.

By browsing our Sites and submitting this information to us, you explicitly agree to RASC using your personal data for the purposes and in the manner described in this Privacy Policy. Please do not send us any information you do not wish RASC to use.

RASC will use your personal data to fulfil your request, provide you with the information you requested and/or send you marketing communications. If you have applied for a job at RASC, your data will be processed for the purposes of evaluating and processing your application and candidacy for the position to which you have applied. We may also use your information to analyze and improve our recruiting and onboarding processes as well as to communicate with you about RASC events and to send you publications that we think may be of interest to you.

RASC may collect personal data and may disclose such information to third party service providers in aggregate for marketing and promotional purposes. However, in these situations, we do not disclose to these entities any information that could be used to personally identify you.

You do not have to provide us with any personal data.  However, if you do not, we may be unable to handle your request or to provide you with the services you are requesting.

RASC will keep your personal data for as long as needed to handle your request or for as long as we have a relationship with you. If you have applied for a role with RASC, RASC will keep your personal data associated with your application for a period of up to five years.

Please note that RASC is not responsible for any information you may disclose publicly in any chat rooms, message boards, or similar web pages, including those hosted on or linked to our Sites. You should keep in mind that, whenever you publicly disclose information about yourself online (for example, via message boards or chat rooms), such information could be collected and used by people whom you do not know. In addition, certain message boards and similar user forums may display IP addresses along with the message poster’s name and message. RASC bears no responsibility for any action or policies of any third parties who collect any information users may disclose on the message boards, chat areas or other user forums, if any, on the Sites.

Who we share your personal data with

We may share your personal data with other companies of the RASC group as well as with other third parties that might be located in a different country than your country of residence. RASC will not share or sell your data to any third party for their own use.

We may share your personal data with others, such as:

•  carefully selected third party service providers, such as marketing service providers (if you have subscribed to our marketing communications), IT systems providers, recruitment service providers, background check providers, data cleansing providers or event organizers, so they can provide services to RASC;

•  our advisors; and

•  law enforcement authorities or other government bodies when we are required to do so.

Third parties, other than law enforcement authorities or government bodies, will only handle your personal data on behalf of RASC for the purposes described in this Policy. RASC will not sell or otherwise share your personal data with such third parties for their own use.

The companies of the RASC group and other third parties we share your information with may be located in other countries, including countries that do not offer the same protection to your personal data as the country in which you reside. Where that is the case, RASC ensures that your personal data is protected by using appropriate legal mechanisms. If you reside in the European Union, such mechanisms include using contracts or wording approved by the European Commission (called “Standard Contractual Clauses” [3]).


Security of your personal data

RASC has implemented appropriate technical and organizational security measures in order to protect your personal data from loss, misuse, alteration, or destruction.

RASC has implemented appropriate technical and organizational security measures in order to protect your personal data from loss, misuse, alteration, or destruction. Such measures include anonymizing [4] data where possible. Authorized RASC personnel and third parties mentioned above will only have access to your personal data to the extent they need it to do their job or provide their services. Despite these precautions, however, RASC cannot guarantee that unauthorized persons will not obtain access to your information.

Your Rights

Depending on where you reside you might have the right to request access to, rectification or erasure of your personal data and to object to or ask for the restriction of the processing of your personal data. You might also have the right to withdraw your consent and request that we stop processing or delete your personal data.

To exercise your rights, please submit your request using our Contact Form.

Depending on where you reside, you may be entitled to certain rights regarding the personal data RASC holds about you. For instance, you may have the right to request access to your information, obtain a copy of it as well as information about how we use it. You have the right to request that we correct incorrect, inaccurate or out-of-date information about you. You may also have the right to request that we stop processing your information and/or withdraw your consent to such processing and to ask us to delete your information.

In the event that RASC holds personal data about you and you no longer wish for this data to be processed as described in this Policy, or if you wish to access, rectify, cancel or oppose such processing, please submit your request using our Contact Form.

If you receive marketing communications from RASC, you can opt out of receiving future emails from RASC or unsubscribe from participating in our programs through the “preferences” page, which is accessible in every marketing email you receive from RASC. You can also submit an opt-out request by using our Contact Form.

If you think we are handling your information unlawfully, we encourage you to get in touch with us using our Contact Form. You may also have the right to lodge a complaint with your national supervisory authority.

Please note that we will take reasonable steps to check your identity before handling your request.


1. The data controller is the person or company that, together or jointly with others, determines the purposes (why) and means (how) of the processing of personal data.

2. Personal data is any information that relates to an individual who is identified or identifiable, for instance by reference to a name, an identification number or an online identifier.

3. Standard Contractual Clauses are an agreement that can be entered into by companies for transfers of personal data outside of the European Union. They are a mechanism approved by the European Commission to ensure adequate safeguards to personal data when it is transferred outside of the European Union.

4. Anonymizing means transforming data in such a way that it is no longer identifiable, i.e. the data can no longer be linked to an individual, even if combined with other information. Anonymous data is not considered “personal data”.