Explanation note:
[1] Processing operation covered by legal ground of legitimate interest pursuant Art. 6 (1) letter f) GDPR is highlighted in text.
[2] Legitimate interest is pursued only if conditions for opt-out direct marketing communication to existing customers or legal persons under Art. 13 of the ePrivacy Directive (2002/58/EC) (as implemented) are met. If not met, processing is based on a consent.
Specification of purpose and legitimate interest[1]
It includes especially: (i) Scan of ID Cards, (ii) processing of payment documentation, (iii) Basic data for toll registration, (iv) processing of technical data and invoicing, (v) processing WAG OBU data.
It includes especially: (i) processing of technical data and cross invoicing, request for payment, (ii) Basic data for toll registration, (iii) Scan of ID Cards, (iv), (v) Payment documentation, (vi) WAG OBU data.
It includes especially: (i) verification of user identity based on processing copies of IDs, signatures and CCTV records and evaluation of potential risk patterns by specialised software during customer’s onboarding procedures.
Specification of purpose and legitimate interest[1]
It includes the processing of personal data necessary for: (i) Fleet Management Data, (ii) Telematic system innovation data and telematics.
It includes the processing of personal data necessary for: (i) Telematics data.
It includes the processing of personal data necessary for processing of: (i) processing of telematics data, (ii) telematic system innovation data.
It includes especially: (i) verification of user identity based on processing copies of IDs, signatures and CCTV records and evaluation of potential risk patterns by specialised software during customer’s onboarding procedures.
Specification of purpose and legitimate interest[1]
It includes especially: (i) Realisation of antifraud system, (ii) Provision of FUEL services, (iii) Manual and phone authorisation of customers (iv) Provision of EW Petrol station CCTV (Monitoring of fuelling for customer’s needs), (v) Provision of E-mobility services.
It includes especially: (i) verification of user identity based on processing copies of IDs, signatures and CCTV records and evaluation of potential risk patterns by specialised software during customer’s onboarding procedures.
Specification of purpose and legitimate interest[1]
It includes especially:(i) Reporting EWMC (provide payment services), (ii) Factoring services, (iii) Insurance services, (iv) Reporting for customers (Finance reporting a business analyses).
Specification of purpose and legitimate interest[1]
It includes especially (i) Early Money Collection (refund of VAT on behalf of the customer), (ii) Tax refund and Registration Process (refund of VAT on behalf of the customer), (iii) Tax refund and Registration Process (fuel tax refunds), (iv) MiniWAGes (fuel tax refunds).
It includes especially: (i) verification of user identity based on processing copies of IDs, signatures and CCTV records and evaluation of potential risk patterns by specialised software during customer’s onboarding procedures.
Specification of purpose and legitimate interest[1]
It includes especially: (i) Washing services, (ii) Parking services, (iii) MiniWAGes services (mediation of trade), (iv) provision of services via DXX platform, including internal analysis of the obtained platform data.
It includes especially: (i) verification of user identity based on processing copies of IDs, signatures and CCTV records and evaluation of potential risk patterns by specialised software.
Specification of purpose and legitimate interest[1]
It includes especially: (i) Identification persons in internal system (contact details, ADAC), (ii) Onboarding process, (iii) Provision of service support, (iv) Provision of technical support, (v) Provision of education, promotion and training for users, (vi) Solving of customers issues.
Specification of purpose and legitimate interest[1]
It includes especially: (i) concluding, amending and fulfilling any contract concluded between the controller and data subject, (ii) approval and revision of contracts by the legal department, (iii) communication between the contracting parties, including the processing of contact person data and statutes of the contracting parties and further processing of personal data necessary for the proper conclusion, fulfilment and changes of contractual relationships in which the persons concerned do not act as contractual parties of the given legal relationship, (iv) records of internal and external powers of attorney, (v) records of supplier-customer contractual relationships between the controller and its customers, partners and suppliers.
Specification of purpose and legitimate interest[1]
It includes especially: (i) Assessment of credit risk of customers, (ii) Realisation of credit risk screening of the customers, (iii) Preparing of credit scoring model and payment behaviour reporting of customers.
Specification of purpose and legitimate interest[1]
It includes especially: (i) Management of B2B relationship, (ii) Preparation of B2B pricing policy and discounts for customers.
It includes especially the processing of personal data necessary for creating and management of network of partner suppliers.
It includes especially: (i) Processing of payments, (ii) Payments/Invoicing, (iii) Early Money Collection, (iv) Processing of payment documentation, (v) Fulfilling of accounting and tax obligations, (vi) Invoicing, (vii) Tax refund and Registration Process, (viii) MiniWAGes.
It includes especially: (i) Copy of ID card, (ii) AML Onboarding process, (iii) EWMC, (iv) Quick sanction list screening, (v) AML Check process (vi) Reporting EWMC.
It includes especially: (i) performing actions related to the protection of the whistleblower of anti-social activity by the employer, (ii) receiving, evaluating and recording notifications within the internal notification verification platform, (iii) Internal investigation.
It includes especially: (i) processing data for creation Environmental, Social and Government reports primarily for the purpose of evaluating the impact on the environment, including fuel consumption and mileage.
Specification of purpose and legitimate interest[1]
It includes especially: (i) ensuring the typical agenda of the internal legal department, (ii) control of legal matters and internal legal advice, (iii) reporting various facts to public authorities (including notifications of various delicts and criminal acts) or insurance companies (e.g. insurance claims), (iv) use of legal representation and legal advice from law firms; (v) conducting due diligence, including providing data to potential buyers and their advisors, (vi) management of the corporate agenda and fulfilment of all obligations in accordance with respective law, (vii) preparation, securing and storage of various legal filings and evidence containing personal data, (viii) early recovery of outstanding debts, i.e. Exit report in JIRA and Early Money Collection, (ix) conducting various administrative proceedings, lawsuits and other legal proceedings (e.g. concluding reconciliations, settlement agreements, payment schedules), (x) verifying the facts before a notary and ensuring official translations, (xi) Security management, (xii) Internal transfer of claims (late recovery of outstanding debts), (xiii) Assignment of receivables from subsidiaries to WAG Group.
Specification of purpose and legitimate interest[1]
It includes especially: (i) control, withdrawal and management of access authorisations, (ii) monitoring and evaluation of suspicious events based on log analysis through specific software applications, (iii) creation of security logs capturing behaviour users in important applications and systems, (iv) creation of security backups, (v) vulnerability scanning and anti-malware activity, (vi) management of security incidents and personal data breaches, (vi) management of information security in the WAG Group, (vii) penetration testing and performance of security audits with the possibility of access to protected data, (viii) monitoring of users network and systems.
It includes especially: (i) development, improvement and diagnostic of security systems, (ii) integration and configuration tests of corporate information systems by intermediaries when migrating from old systems, (iii) service interventions and ongoing software modifications performed by remote access of our intermediaries based on our requests and instructions, (iv) system recovery tests based on backed-up data.
Specification of purpose and legitimate interest[1]
It includes especially: (i) operation of camera systems monitoring clearly marked defined areas and objects used in the business activities of the WAG Group including EW Petrol station CCTV or HQ CCTV security system.
It includes especially: (i) recording the personal data of visitors entering protected areas and objects of WAG Group, (ii) fingerprinting at the entrance to the protected area, (iii) recording of personal cards at the entrance to the protected area.
Specification of purpose and legitimate interest[1]
It includes especially: (i) customising and sending marketing electronic mail – newsletters (e-mail, SMS) to existing customers, (ii) creating, customising, and sending flyers or printed address forms of marketing, (iii) realisation of tele-marketing activities including campaigns for current customers and voice records, (iv) Sales activities of external call centre and internal telesales, (v) creation of purchaser database. Where the law requires to use consent for unsolicited communication or cookies, we rely on consent.[2]
It includes especially: (i) customisation and display of advertising and campaign on social networks, (ii) customisation and display of banner advertising and sponsored links during searches when using the Internet. Where the law requires us to consent for unsolicited communications or cookies, we rely on consent.
It includes especially: (i) management and administration of content on official profiles set up on social networks, (ii) organising events, including sending invitations to the event even without consent and making photos and videos capturing the participants of the event and publishing them during promotion (usually based on consent), (iii) publishing content and posts containing personal data as part of various PR content (PR articles, press releases, posts published on social networks).
It includes especially collection and analysis of customers feedback from all marketing activities by using of Qualtrics service.
It includes especially: (i) compilation of statistical outputs, reports, reports, reports, analyses and various work and analytical documents necessary for the internal statistical purposes of the WAG Group, state authorities and other legal entities, (ii) creation of anonymised and aggregated statistical data from personal data processed for other legitimate purposes of processing personal data that have a legal basis and of which the persons concerned have been properly informed in accordance with recital 50 and Art. 89 GDPR.
Explanation note:
[1] Processing operation covered by legal ground of legitimate interest pursuant Art. 6 (1) letter f) GDPR is highlighted in text.
[2] Legitimate interest is pursued only if conditions for opt-out direct marketing communication to existing customers or legal persons under Art. 13 of the ePrivacy Directive (2002/58/EC) (as implemented) are met. If not met, processing is based on a consent.
