PRIVACY POLICY
I GENERAL INFORMATION
1. This Privacy Policy (hereinafter referred to as the “Privacy Policy”) of the website www.polishlanguagestudio.pl (hereinafter referred to as the “Website” or “Site”) is addressed to users of the Website and provides information, among other things, on the rights and obligations of Website users, the principles of personal data processing, the purposes of processing and the legal basis thereof, the tools used within the Website, and the recipients of Website user data.
2. The personal data controller is Beata Kozakowska, running a business under the name POLISH LANGUAGE STUDIO BEATA KOZAKOWSKA, address: 05-220 Zielonka, ul.Ossowska 12, Tax Reference Number (NIP) 1250169864, National Business Registry Number (REGON) 367809639 (hereinafter referred to as the “Data Controller”).
3. In any matter concerning the protection of personal data, you can contact the Data Controller at biuro@polishlanguagetudio.pl
4. Personal data collected by the Data Controller are processed in accordance with the principles set out in personal data protection law, including Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) ( “GDPR”), and Polish regulations issued in connection with the GDPR, including the Personal Data Protection Act of 10 May 2018. The Controller keeps personal data confidential and protects them against unauthorized access by third parties in accordance with the principles set out in the above-mentioned legal acts.
5. The Website provides a contact form, i.e. an interactive part of the Website used to directly send messages, inquiries and notifications by users to the owner of the Website, without the need to open an email program (hereinafter referred to as the “Contact Form”).
6. Use of the Website is voluntary. Users are not compelled to provide personal data in any way. However, failure to provide certain information may result in the inability to provide a given service or achieve a specific purpose, e.g., contact via the Contact Form or email.
II PURPOSE AND LEGAL BASIS FOR DATA PROCESSING
Personal data provided by the user may be processed for the purposes and on following legal bases:
Purpose | Data type | Information and legal basis |
Mail and contact form support, contact with POLISH LANGUAGE STUDIO BEATA KOZAKOWSKA | Email address, name and surname, data indicated in the message body | Sending an email or contacting us via the Contact Form involves providing your email address and other data provided in the message. Providing your email address is voluntary, but necessary to establish contact. The data is then processed for the purpose of contacting you.
Basis for processing: Article 6(1)(a)GDPR – consent resulting from initiating contact. Data will be processed even after the contact ends. The legal basis for this processing is the legitimate purpose on archiving correspondence for future reference (Article 6(1)(f)GDPR). |
Creating registers of data processing activities and records resulting from the GDPR | Name and surname, email address, data indicated on accounting documents, other data provided | This is an obligation resulting from the provisions of law – Article 6 paragraph 1 letter c of the GDPR and from the legitimate interest of the Administrator of this Website ( resulting from the content of Article 6 paragraph 1 letter f of the GDPR). |
Use of cookies on the Website | IP and user behavior on the Website | The basis is the user’s consent, which is granted before the Website is fully loaded. |
Website Management | IP and user behavior on the Website | The basis for processing is the right as the Data Controller, implemented pursuant to Article 6(1)(f) of the GDPR – the legitimate interest o the Controller. |
Archival and evidentiary | All data indicated in this table | Data processing is intended to secure information that can be used to prove facts. The basis for processing is the legitimate interest of the Data Controller, in accordance with Article 6(1)(f) of the GDPR |
Accountant | Name, surname, NIP, REGON, address | The basis is the obligation arising from legal provisions, implemented for the purpose of issuing a VAT invoice or other document on the basis of which settlements are made – Article 6 paragraph 1 letter c of the GDPR |
Contact via the Contact Form and Contact Form management | Name, email address and data indicated in the message content | By sending a message via the Contact Form on the Website, the user provides the data contained in the message and their email address, as well as their name and surname, if provided. Providing this data, including the email address, is voluntary but necessary to establish contact. The data is then processed for the purpose of contacting the user. The basis for processing in this case is Article 6(1)(a) of the GDPR, i.e., consent resulting from initiating contact. The data will also be processed after the contact has ended. The legal basis for such processing is the legitimate purpose of archiving correspondence for the purpose of documenting its progress in the future (Article 6(1)(f)of the GDPR). |
Analyzing data collected automatically when using the Website | Name, surname, email address, data indicated in invoices, bills, and other data provided | Data are processed on the basis of Article 6(1)(f) of the GDPR, i.e. the Controller’s legitimate interest. |
III RIGHTS RELATED TO PERSONAL DATA PROCESSING
In connection with the processing of their personal data, the User has:
1) The right of access to information and the obligation to provide information – this means that every person whose data is being processed has the right to know what is happening with their personal data.
2) The right to access personal data - this means that if the Data Controller receives a request from a user for access to their data, they are obligated to provide the user with such information. The Data Controller must fulfill their obligations in this regard immediately, no later than within one month. If this is not possible within this period, the Data Controller is obligated to at least inform the user whether they are processing their data, and then the Data Controller may extend the deadline by two months to provide a complete response to the user’s request.
3) The right to rectify personal data – means thet the user may request that the Data Controller rectify incorrect data or supplement incomplete data.
4) The right to delete personal data, the right to be forgotten – this means that the user may request that the Data Controller delete their personal data and inform the person to whom the data has been transferred of its deletion. The user has the right to reuest that their data, which has been made public by the Data Controller, be deleted by other data controllers as well.
The Data Controller is also obligated, upon the user’s request, to inform the recipients to whom the data subject to deletion has been transferred.
5) The right to restrict the processing of personal data – means that the user may reuest that the processing of their personal data be restricted.
6) The right to object to the processing of personal data – means that the user may object to their data being processed by the controller.
7) The right to data portability – means that, under certain conditions, the user may request the transfer of data directly to another designated controller.
8) The right to file a complaint – means that if the user believes that the processing of their data violates the law, they may file a complaint with the President of the Personal Data Protection Office.
IV TRANSFER OF PERSONAL DATA
1. User personal data may be transferred to third parties whose services the Data Controller uses in connection with the operation of the Website, the Contact Form and its business activities.
2. Due to the use of Google services, user data may be transferred to the United States of America (USA). This entity guarantees an adequate level of personal data protection required by European law.
3. User data may be transferred to entities in the European Union to provide services to the Controller in connection with its business activities.
V COOKIES
1. This Website, like many others, uses cookies.
2. Upon your first visit, information about the use of cookies is displayed. Failure to change your browser settings constitutes consent to their use.
3. Cookies are short text files stored on the device used by the user when browsing the Website.
4. The following types of cookies are used on the Website:
a) essential cookies – these cookies are used to ensure the proper functioning of the Website, the ability to navigate the Website, use its basic features, remember user choices, and ensure security. They are essential for the operation of the Website and cannot be disabled, as disabling them would prevent the Website from functioning, and
b) analytical cookies – these cookies are used to improve the performance of the Website, collect information on how users use the Website, improve the Website, adapt the operation of the Websites to user preferences and create analyses and statistics of Website views.
5. Types of cookies based on their storage period in the browser:
a) session cookies – these are stored on the user’s device and remain there until the browser session ends. The stored information is then permanently deleted from the device’s memory;
b) persistent cookies – these are stored on the user’s device for the time specified in the cookie parameters or until they are deleted by the user. Ending a browser session or turning off the device does not delete them from the user’s device.
6. Types of cookies based on their origin:
a) first- party cookies – set by the Website’s web servers;
b) third-party cookies – set by web servers of websites other than the Website.
7. Below is detailed information about the cookies used on the Website:
Cookie name | Type of cookie file by purpose | Cookie retention period | Cookie origin |
cookies_modal_closed | essential | 1 year | first-party cookie |
cookies_analytics_accepted | essential | 1 year | first-party cookie |
cookies_obligatory_accepted | essential | 1 year | first-party cookie |
XSRF-TOKEN | essential | 2 hours | first-party cookie |
8. The Website uses necessary cookies, which are essential for the proper functioning of the Website and cannot be disabled, as disabling them would prevent the Website from functioning. Analytical cookies are used on the Website based on the user’s consent expressed by selecting the appropiate option when first visiting the Website, adjusting cookie choices via the Cookie Settings panel, or by appropiately configuring the user’s browser settings. Consent to the use of analytical cookies on the Website is voluntary.
9. Before consenting to the use of analytical cookies, the user is informed about the purposes of using analytical cookies on the Website and about the possibility of changing cookie settings at any time.
10. The user may withdraw previously granted consent to the use of analytical cookies and change cookie settings at any time via the Cookie Settings panel, as well as delete cookies from the user’s device memory.
11. Users may change their cookie settings at any time in their web browser settings. Detailed information about the possibilities and methods for changing cookie settings in the most popular web browser can be found at:
a) Google Chrome https://support.google.com/chrome/answer/95647?hl=pl;
b) Firefox https://support.mozilla.org/pl/kb/ciasteczka;
c) Internet Explorer https://support.microsoft.com/pl-pl/help/17442/windows-internet-explorer-delete-manage-cookies;
d) Opera http://help.opera.com/Windows/12.10/pl/cookies.html;
e) Safari https://support.apple.com/pl-pl/guide/safari/sfri11471/mac
VI CONTACT
Please send any additional questions or information regarding the Privacy Policy and Cookies to the following email address: biuro@polishlanguagestudio.pl
VII FINAL PROVISIONS
1. The principles set out in this Policy are subject to Polish law.
2. Personal data are processed for the period necessary to achieve the purposes reffered to above or in accordance with legal requirements.
3. This website, in whole or in part, uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as inquiries sent to Beata Kozakowska:
biuro@polishlanguagestudio.pl as the website operator. You can recognize an encrypted connection in your browser’s address line when it changes from http:// to https:// and the padlock icon appears in the browser’s address bar. If SSL or TLS encryption is activated, the data you provide cannot be read by third parties.
4. This Privacy Policy has been drawn up in Polish and English; in the event of any discrepancies, the Polish language version shall prevail.