Our Company Privacy Policy
Mikrosystem is a provider of eKNF mid-office system, reporting tools, and automated data processing tools for travel industry. This privacy policy will explain how our organization uses the personal data we collect providing the service.
What data do we collect?
Our Company collects the following data:
- Personal identification information (Name, email address, phone number, etc.)
- Travel related information (booked flights, rail, hotels, cars, etc.)
How do we collect personal data?
We collect and process data when travel agency / airline using our tools make bookings or issue tickets, invoices, vouchers, etc.
How will we use the data?
Our Company collects personal data so that travel agencies / airlines can
- Process orders
- Issue invoices, vouchers, etc.
- Provide travel and sales related reports
How do we store the data?
Our Company securely stores data at ATMAN DATA CENTER, 21A Grochowska Str., 04-186 Warsaw, Poland.
Hardware security
Servers are located in the protected and safe environment of the ATM S.A data center guarded from unauthorized access, physical damage, power-loss, or electric/electromagnetic shocks. All server drives are mirrored in RAID1 type arrays.
Communication Security
SSL protocol is required to communicate with our services. SSL certificates: SHA-256 with RSA. Access can be limited to selected IPs or networks only.
Password security
Our tools have a built-in password management module with a definable password length, complexity, and expiration time.
Software protection
Operating system and system components are monitored, regularly patched and kept up-to-date. Servers are monitored and protected by a centralized software update, antivirus, and network threat detection systems.
Network protection
All ports not required by the service are blocked. VPN access is obligatory. Centralized threat detection system automatically blocks access from blacklisted addresses/networks and scans server security logs for possible threats.
Backup copies of the service and the database
Encrypted backup copies of the database are made twice a day (at 14:00 and 19:00 hours) and stored on a mirrored backup drive. The second encrypted backup copy of the database is stored in a backup management server cluster in a separate physical location (ATMAN DATA CENTER WAW-2) where it is transferred from the EcoServers once a day. Seven subsequent copies from the last 7 days are stored. Copies older than 7 days are deleted.
Data retention policy
Our Company will keep the data of different types for the time periods provided below. Once this time period has expired, the data will be automatically deleted.
| Type of data | Retention period |
|---|---|
| Sales data: Invoices, orders and assoc. internal docs. | 7 years |
| Fiscal receipts data | 1 year |
| Travel related information: passenger data,bookings, tickets, insurances, etc. | 4 years |
| Associated GDS documents (Agent/Audit cupony, Refund notice, CCCF) | 4 years |
| Source GDS data and files | 3 years |
| Low cost airline bookings, rail, hotel, transfer, car, insurance data in our database | 1 year |
| Emails with travel related information on our import mailbox | 3 months |
| Event log | 7 years |
| Inactive customer information | Till the last customer related document is deleted from the database |
| Deleted user data | Till the last user generated document is deleted from the database |
| Application logs | 100 days |
| Parser logs and internal database logs | 1 year |
| Backup database copies | 7 days |
Changes to our privacy policy
Our Company keeps its privacy policy under regular review and places any updates on this web page. This privacy policy was last updated on 16 January 2024.
How to contact us
If you have any questions about Our Company’s privacy policy, the data we process, or you would like to exercise one of your data protection rights, please do not hesitate to contact us.
Email us at: pomoc@mikrosystem.pl
Call us: +48 22 100 50 48