- This privacy policy applies to the website whose URL address is sebastianpietrzyk.pl (the “Website”).
- Website administrator (the “Website Administrator”) and personal data controller (the “Controller”): Sebastian Pietrzyk, Grzybowska 4/172, 00-131 Warsaw.
- Website Administrator’s email address: hello@sebastianpietrzyk.pl.
- The Website Administrator is the Controller of your personal data provided voluntarily while using the Website.
- The Website uses personal data for the following purposes:
a. processing inquiries;
b. providing services;
c. providing information about services and price quotes.
6. The Website obtains information about users and their behavior in the following manner:
a. data provided voluntarily in the forms, which is subsequently entered into the Website Administrator’s systems;
b. storing cookie files on end devices.
Privacy Policy
This Privacy Policy describes how we process your data.
1. General
2. Selected data protection methods used by the Website Administrator
- Login points and personal data entry points are protected at the transmission level (SSL certificate). This means that personal and login data provided while using the Website is encrypted on the user’s computer and can only be read on the target server.
- User passwords are stored in a hashed form. The hash function works on a one-way basis, meaning that it is not possible to reverse its operation; this is a contemporary standard for storing user passwords.
- The Website Administrator periodically changes administrative passwords.
- In order to protect the data, the Website Administrator makes security copies (backups) on a regular basis.
- An important element of data protection is the regular updating of all software used by the Website Administrator to process personal data, especially periodic updates of software components.
3. Hosting
- The Website is hosted on the servers of cyberFolks.pl.
- The hosting company keeps logs at the server level to ensure technical reliability. The following may be recorded:
a. resources specified by the URL identifier (addresses of the requested resources – pages, files);
b. inquiry submission time;
c. response sent time;
d. client station’s name – identification performed by HTTP;
e. information about errors that occurred during HTTP transactions;
f. URL address of the page previously visited by the user (referrer link) – in case the Website was accessed through a link;
g. information about the user’s browser;
h. IP address details;
i. diagnostic information related to the process of ordering services through dedicated functions available at the Website;
j. information related to the processing of emails sent to and by the Website Administrator.
4. Data subject rights and additional information about personal data processing
- In some cases, the Controller is entitled to transfer your personal data to other recipients, if necessary for the performance of an agreement made with you or to fulfill the Controller’s obligations. This applies to the following groups of recipients:
a. hosting company (outsourcing of personal data processing);
b. authorized employees and associates who use the data to fulfill the purposes of the Website’s operations. - Your personal data will be processed by the Controller for no longer than necessary to perform related activities specified in separate regulations (e.g. accounting laws). With regard to marketing, your data will be processed for no more than 3 years.
- You have the following rights towards the Controller with respect to your personal data:
a. right of access;
b. right to rectification;
c. right to erasure;
d. right to restriction of processing; and
e. right to data portability. - With respect to the processing discussed in section 3.2 hereof, you have the right to object to the processing of your personal data for the purposes of legitimate interests pursued by the Controller, including profiling, unless the Controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defense of legal claims.
- You can file a complaint against the Controller’s actions to the President of the Personal Data Protection Office, address: Stawki 2, 00-193 Warsaw.
- Data submission is voluntary but indispensable to use the Website.
- Automated decision-making may be undertaken in relation to you; this includes profiling for the purpose of providing services under a respective agreement and for the purpose of direct marketing activities performed by the Controller.
- Personal data is not transferred to third countries (as defined in personal data protection laws). This means that we do not send it outside the European Union.
5. Information provided in forms
- The Website collects information provided voluntarily by the user, including personal data, if applicable.
- The Website may save information about the connection parameters (timestamp, IP address).
- The Website may record information that makes it easier to link the data in the form to the email address of the user filling out the form. In such a case, the user’s email address appears within the URL of the page containing the form.
- The data provided in the form is processed for the purposes resulting from the function of a given form, e.g. to process a service request, establish a business contact, register services, etc. The context and description of each form clearly specify its role.
6. Controller’s logs
- User behavior information related to the Website may be subject to logging. This data is used for the purpose of administering the Website.
7. Relevant marketing activities
- The Website Administrator uses a statistical analysis of website traffic data through Google Analytics (Google Inc., with its registered office in the USA). The Website Administrator does not transfer personal data to Google Inc. Instead, it only provides anonymized information. The Website relies on the use of cookies on the user’s end device. As regards information about user preferences, collected by the Google advertising network, the user can view and edit the information derived from cookies by using the following tool: https://www.google.com/ads/preferences/
- The Website Administrator uses a solution aimed at studying user behavior by creating heatmaps and recording behavior at the Website. This information gets anonymized before it is sent to the service provider, so that the service provider does not know to which individual specific data pertains. In particular, the typing of passwords and other personal data is not recorded.