Privacy policy

Safety and liability

This website is used to inform its visiors. Polskie Elektrownie Jądrowe sp. z o.o (PEJ sp. z o.o.) makes an effort to keep safe and to present the information that is as complete and up-to-date as possible. PEJ does not provide guarantees on the content on their website and bears no direct or indirect liability for losses incurred by relying on information presented here. PEJ is not responsible for contents of websites that the external links quoted on PEJ website redirect you to.

PEJ reserves the right to modify the contents of the  website at any time and within any scope they see appropriate, without prior notice of the website users.

Cookie notice

Cookies are text files allowing for correct presentation of the website contents and enabling the correct functioning of the visited website.  Cookies are stored by web browsers on hard drives of website users’ computers. Cookies are used solely for internal website performance optimization needs and statistical analysis. PEJ does not collect cookies to identify users.

User has the right to disable, reject or block cookies. It can only be done by changing the settings of the web browser. For the most popular web browsers it is done as follows:

Personal data

PEJ sp. z o.o. is the controller of personal data as defined in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.

PEJ makes the protection of privacy and personal data its top priority. Privacy of the data subject translates into their safety, security, calm and quality of life.

When processing personal data, including data that belong to our clients, business partners and employees, PEJ:

  • identifies and meets the requirements arising from legislation on personal data protection;
  • carefully identifies the legal basis for personal data processing;
  • processes personal data in line with the law, in a reliable and transparent manner;
  • processes only the data that is correct, relevant and necessary to achieve the objective of its processing;
  • respects the appropriate data retention period, i.e.g. the period associated with achieving the purpose of data processing;
  • allows for the correct exercise of rights of data subjects;
  • applies organizational and technical measures of personal data protection, including a personal data protection policy, provides relevant training to their staff and makes sure that only the authorised employees are allowed to process personal data;
  • attaches great importance to personal data protection, accounting in particular for ICT-related risks. This translates into, among others, implementation and application of procedures compliant with the standards and best practices, personnel trainings and monitoring the performance of personal data processing activities.

The purposes of, the scope of, and the basis for the processing of personal data result from the business processes carried out within PEJ and are subject to the obligations resulting from the provisions of the law, processed or performed agreement, and legitimate interest of the administrator, especially one that is associated with company management, ensuring the safety of the conducted activities, implementation of the internal regulations of the company and preparation of the associated documentation, as well as maintaining effective communication, and the possible claims.

The stakeholders of PEJ whose personal data is collected by PEJ as part of the data processing activities are informed about the details of the data processing in a way that they were notified about. The persons having email correspondence with PEJ, including correspondence related to making enquiries or to requests and issues, may find the information on the processing of personal data in the footer of the email correspondence received from PEJ.

Information regarding the video monitoring and access control applied in PEJ

  • Protected areas at PEJ premises are subject to video surveillance.
  • Entries to protected areas subject to video surveillance are marked with VIDEO SURVEILLANCE sign
  • Cameras are installed in hallways and other shared areas and in selected conference rooms if required
  • Surveillance does not cover rest areas and sanitary facilities
  • Video surveillance system may be used for identification of persons
  • The image of a person potentially recorded in the video surveillance system is only a fragment of the entire image subject to surveillance, it is processed temporarily over a period on no more than 3 months from recording or until a lawful proceeding is concluded if the recording is or may be used as evidence in such proceeding.
  • Independently of the video surveillance system, PEJ also uses an access control system fitted with card scanners and access cards as well as an access control system protecting keys to premises.
  • The above video surveillance systems are technical measures applied to ensure security and order in the premises and areas of the company and for the protection of its assets, as well as enabling control over such areas.
  • Surveillance is used to ensure proper organisation of the company and supervision of the proper use of access authorisations, the use of company resources and key deposit.
  • Visitors arriving at the company move around the protected areas of PEJ accompanied by an employee.
  • Surveillance is necessary for the above purposes and does not infringe on the dignity or personal rights of persons present in the surveillance areas.

Contact with the PEJ Data Protection Officer

In PEJ a competent person has been dedicated to personal data protection to work as the Data Protection Officer.

Persons whose data is processed by PEJ can, in justified cases, submit requests related to exercise of their rights arising from art. 15-22 of GDPR, i.e. to the right of access to and rectification or erasure of their personal data, to obtain a copy of data, the right to limitation of data processing, to restriction of processing, to data portability, or to object the processing of data concerning the data subject.

To ensure correct response to these requests and to ensure data protection, including guarantee of authorized access to data and effective identity verification, complete request forms signed in hand must be submitted in person by contacting the PEJ Data Protection Officer in the company’s office.

Persons, whose identity PEJ can potentially establish on the basis of, p.ex., their confirmed e-mail address, can send a scanned copy of their request from their confirmed address to the PEJ Personal Data Protection Inspector’s email with the title: “GDPR: servicing the data subject's rights”. In case of a request submitted in person, it is required to show a document confirming one’s identity (p.ex. ID card, passport, driving license). Requests sent via traditional mail or submitted by telephone cannot be processed since these forms of contact do not allow for effective confirmation of a person’s identity and their processing could result on compromising personal data safety and protection leading to granting an unauthorized person access to the data.

Requests must be dated, include name and surname of the applicant, title of rights of the object of data as well as identification of the type of data the request refers to, area, enterprise or process that required granting access to the data to its present controller or that led to the collection of data by the controller upon approval of the object of the data.

Contact with the PEJ Data Protection Officer:

Anna Majewska

e-mail address:

PEJ sp. z o.o. address: Aleje Jerozolimskie 132/136, 02-305 Warsaw

Information on the processing of personal data, provided to PEJ for the procurement procedure and business contract implementation needs, is available on the company’s website at the following link:

Update data: 2024-03-14