The following Privacy Policy defines the rules for storing and accessing data on the Users’ devices using the Service for the purpose of providing electronic services by the Administrator and the rules for collecting and processing personal data of Users, which have been provided by them personally and voluntarily through the tools available on the Service.
This Privacy Policy is an integral part of the Service Regulations, which define the rules, rights, and obligations of Users using the Service.
§1 Definitions
Service – the internet service “Our Website” operating at the address https://nasza-stronka.pl
External Service – internet services of partners, service providers, or service recipients cooperating with the Administrator
Service Administrator / Data – The Administrator of the Service and Data (hereinafter referred to as the Administrator) is a natural person “Daniel Bąkowski” residing at Racice 18A, providing electronic services through the Service
User – a natural person for whom the Administrator provides electronic services through the Service.
Device – an electronic device with software through which the User accesses the Service
Cookies – text data collected in the form of files placed on the User’s Device
GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
Personal Data – means information about an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
Processing – means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
Restriction of processing – means the marking of stored personal data with the aim of limiting their processing in the future
Profiling – means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location or movements
Consent – consent of the data subject means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her
Personal data breach – means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed
Pseudonymization – means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person
Anonymization – Anonymization of data is an irreversible process of operations on data that destroys / overwrites “personal data”, preventing identification or linking of a given record with a specific user or individual.
§2 Data Protection Officer
Based on Art. 37 of the GDPR, the Administrator has not appointed a Data Protection Officer.
Regarding matters concerning the processing of data, including personal data, please contact the Administrator directly.
§3 Types of Cookies
Internal cookies – files placed and read from the User’s Device by the teleinformation system of the Service
External cookies – files placed and read from the User’s Device by the teleinformation systems of external Services. Scripts of external Services, which may place Cookies on the User’s Device, have been consciously placed on the Service through scripts and services provided and installed on the Service
Session cookies – files placed and read from the User’s Device by the Service during one session of that Device. After the session ends, the files are deleted from the User’s Device.
Persistent cookies – files placed and read from the User’s Device by the Service until they are manually deleted. The files are not deleted automatically after the Device session ends unless the User’s Device configuration is set to delete Cookie files after the Device session ends.
§4 Data Storage Security
Mechanisms for storing and reading cookie files – The mechanisms for storing, reading, and exchanging data between Cookie Files saved on the User’s Device and the Service are carried out through built-in mechanisms of web browsers and do not allow for the retrieval of other data from the User’s Device or data from other websites visited by the User.
Encryption of data stored in Cookie files – Cookie files stored and read from the User’s Device are encrypted to prevent access by unauthorized persons.
§5 Purposes for which Cookies are Used
Improving and facilitating access to the Service – Cookies are used to store data and settings on the User’s Device, which are used to improve, facilitate, and accelerate the operation of the Service.
Logging in – Cookies are used to log in to the Service automatically
Remembering the User’s Session – Cookies are used to remember the User’s session, which prevents the User from having to log in every time they visit the Service
User Sessions Analysis – Cookies are used to collect anonymous statistical data about the User’s activity to analyze and improve the operation of the Service.
§6 External Services
The Administrator is not responsible for the privacy policies of external Services that are linked or recommended by the Service. Users should read the privacy policies of those External Services.
§7 Possibility to determine the Conditions of Storage or Access of Cookies
The User may independently and at any time change the settings of the web browser to specify the conditions for storing and accessing Cookie files on the User’s Device.
The User can change the settings referred to in the previous sentence in such a way as to block the automatic handling of Cookies in the settings of the web browser or inform about their every posting on the User’s Device.
Detailed information about the possibilities and ways of handling Cookie files is available in the settings of the web browser.
The User may delete Cookie files at any time using the functions available in the web browser they use.
Restricting the use of Cookie files may affect some of the functionalities available on the Service website.
§8 Server Logs
Information about some of the behaviors of Users is subject to logging on the server layer. This data is used only to administer the Service and ensure the most efficient Service is provided.
Browsed resources are identified by URLs. In addition, the subscription may be subject to:
The time of arrival of the query,
The time of sending a response,
The name of the client station – identification carried out by the HTTP protocol,
Information about errors that occurred during the execution of the HTTP transaction,
URL address of the page previously visited by the User (referrer link) – in the case when the transition to the Service occurred via a link,
Information about the User’s browser,
Information about the IP address.
The aforementioned data is not associated with specific people browsing the Service.
The aforementioned data is used only for server administration purposes.
§9 Data Provided by the User
The User may provide personal data voluntarily through forms available on the Service.
The data provided in the forms are processed for the purpose resulting from the function of a specific form, e.g., to process the User’s inquiry.
The Service may store information about connection parameters (time stamp, IP address).
The data provided in the form is processed only for the purpose of processing the User’s inquiry. The data provided in the form may be provided to entities that are technically responsible for providing certain services – in particular, it concerns the transfer of information about the holder of the registered domain to entities that are Internet domain operators (primarily the Research and Academic Computer Network j.b.r.). Personal data collected by the administrator may be transferred to appropriate authorities on the basis of lawful requests to the extent resulting from the request.
Personal data is processed with the consent of the User, and in cases where the law authorizes the Administrator to process personal data without the consent of the data subject, the processing of personal data takes place on the basis of legal provisions or to implement the contract concluded between the parties.
The Administrator does not sell or share personal data provided by Users to external entities.
The Administrator may be required to provide information collected by the Service to authorized authorities based on lawful requests to the extent resulting from the request.
§10 Change of Privacy Policy
The Administrator reserves the right to change the Privacy Policy of the Service, which may be affected by the development of internet technology, possible changes in the law regarding the protection of personal data, and the development of the Service.
The Administrator will inform Users about any changes in a visible and understandable way.
Each change of the Privacy Policy will be made by the Administrator and will take effect on the date of publication of the new Privacy Policy.
In matters not covered by this Privacy Policy, the provisions of the GDPR and other relevant laws shall apply.
§11 Final Provisions
In matters not covered by this Privacy Policy, the provisions of the GDPR and other relevant laws shall apply.
The Administrator applies technical and organizational measures ensuring protection of the processed data appropriate to the risks and categories of data protected, and in particular, protects data against disclosure to unauthorized persons, removal by an unauthorized person, processing in violation of the law, and change, loss, damage, or destruction.
The Administrator provides appropriate technical measures to prevent unauthorized persons from obtaining and modifying personal data sent electronically.
In order to provide the User with full data protection, the User should use all possible means to protect their data, in particular, using anti-virus programs and protecting the identification data necessary to log in to the Service.
The Service may contain links and references to other websites. The Administrator recommends that after going to another website, the User read the privacy policy there. This privacy policy applies only to the Service. The Administrator is not responsible for the privacy practices of other websites.