Privacy policy

1. General Information

• This policy applies to the website operating at the URL: akospray.pl
• The website operator and personal data controller is: Marek Krysiński, Prymasa Stefana Wyszyńskiego 4/7, 87-800 Włocławek, Poland
• Operator’s contact email address: kontakt@akospray.pl
• The operator is the controller of your personal data with respect to the data voluntarily provided on the website.
• The website uses personal data for the following purposes:
  1. Handling inquiries submitted via the form
• The website collects information about users and their behavior in the following ways:
  1. Through data voluntarily entered in forms, which is then stored in the Operator’s systems.
  2. By saving cookie files (so-called “cookies”) on end-user devices.

2. Selected Data Protection Methods Used by the Operator

• Login areas and fields for entering personal data are protected at the transmission layer (SSL certificate). This ensures that personal data and login information entered on the website are encrypted on the user’s computer and can only be decrypted on the target server.
• The Operator periodically changes its administrative passwords.
• To protect data, the Operator regularly performs backups.
• An important element of data protection is the regular updating of all software used by the Operator to process personal data, which includes regular updates of programming components.

3. Hosting

• The website is hosted (technically maintained) on servers operated by: cyberFolks.pl
• To ensure technical reliability, the hosting company maintains server-level logs. The following information may be recorded:
  1. Resources identified by URL (addresses of requested resources – pages, files),
  2. Time of the incoming request,
  3. Time of sending the response,
  4. Client station name – identification performed via the HTTP protocol,
  5. Information about errors that occurred during the HTTP transaction,
  6. URL of the previously visited page (referrer link) – in cases where access to the website occurred via a link,
  7. Information about the user’s browser,
  8. Information about the IP address,
  9. Diagnostic information related to the self-service ordering process through website registrars,
  10. Information related to the handling of emails sent to and by the Operator.

4. Your Rights and Additional Information on Data Usage

• In some cases, the Administrator is entitled to share your personal data with other recipients if it is necessary to perform the contract concluded with you or to fulfill the obligations imposed on the Administrator. This applies to the following groups of recipients:
  1. Authorized employees and associates who use the data for the purpose of operating the website
  2. Companies providing marketing services on behalf of the Administrator
• Your personal data processed by the Administrator will not be retained longer than necessary to perform the related activities as required by separate regulations (e.g., accounting laws). With respect to marketing data, the data will not be processed for longer than 3 years.
• You have the right to request from the Administrator:
  1. Access to your personal data,
  2. Rectification of your data,
  3. Erasure of your data,
  4. Restriction of processing,
  5. Data portability.
• You have the right to object to the processing of personal data for the purpose of performing the legitimate interests pursued by the Administrator, including profiling, except where there are important legally justified grounds for processing that override your interests, rights, and freedoms, particularly for the establishment, exercise, or defense of claims.
• You have the right to lodge a complaint regarding the Administrator’s actions with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
• Providing personal data is voluntary, but necessary for the operation of the website.
• Automated decision-making processes, including profiling, may be applied to you for the purpose of providing services under the concluded contract and for conducting direct marketing by the Administrator.
• Personal data is not transferred from third countries as defined by data protection regulations. This means that we do not transfer it outside the European Union.

5. Information in the Forms

• The website collects information provided voluntarily by the user, including personal data if it is provided.
• The website may record connection parameters (such as timestamp and IP address).
• In some cases, the website may record information that facilitates linking the data entered in the form with the email address of the user filling out the form. In such cases, the user’s email address appears within the URL of the page containing the form.
• Data provided in the form is processed for the purpose inherent to that specific form (e.g., processing a service request, commercial contact, service registration, etc.). Each form clearly indicates its purpose through its context and description.

6. Administrator Logs

• Information about user behavior on the website may be logged. This data is used for website administration purposes.

7. Significant Marketing Techniques

• The Operator employs statistical analysis of website traffic through Google Analytics (Google Inc. based in the USA). The Operator does not transfer personal data to the provider of this service; only anonymized information is shared. The service relies on the use of cookies on the user’s device. Regarding user preferences collected by Google’s advertising network, the user can view and edit the information derived from cookies using the tool: https://www.google.com/ads/preferences/
• The Operator employs remarketing techniques, which allow tailoring advertising messages to the user’s behavior on the website. This may create the impression that the user’s personal data is being used for tracking; however, in practice, no personal data is transferred from the Operator to advertising providers. A technological prerequisite for such actions is that cookies are enabled.
• The Operator uses the Facebook Pixel. This technology causes Facebook (Facebook Inc. based in the USA) to know that a registered user on Facebook is accessing the website. In this case, the process is based on data for which Facebook is the controller; the Operator does not provide any additional personal data to Facebook. The service relies on cookies stored on the user’s device.
• The Operator uses a solution that examines user behavior by creating heat maps and recording on-site activity. This information is anonymized before being sent to the service provider so that it cannot be associated with any specific individual. In particular, passwords and other personal data are not recorded.

8. Information About Cookies

• The website uses cookies.
• Cookies (so-called “cookies”) are data files, in particular text files, that are stored on the user’s device and are intended for use on the website’s pages. Cookies typically contain the name of the website from which they originate, the duration for which they are stored on the device, and a unique number.
• The entity placing cookies on the user’s device and accessing them is the website operator.
• Cookies are used for the following purposes:
  1. Maintaining the user’s session on the website (after logging in), so that the user does not have to re-enter login details on every page;
  2. Fulfilling the purposes described above in the “Significant Marketing Techniques” section;
• Within the website, two main types of cookies are used: “session” cookies and “persistent” cookies. Session cookies are temporary files stored on the user’s device until logout, leaving the website, or closing the browser. Persistent cookies are stored on the user’s device for the period specified in the cookie parameters or until they are deleted by the user.
• Web browser software typically allows cookies to be stored on the user’s device by default. Website users can change these settings. The web browser enables the deletion of cookies and can also automatically block cookies. Detailed information on this is available in the browser’s help or documentation.
• Limiting the use of cookies may affect some functionalities available on the website’s pages.
• Cookies placed on the user’s device may also be used by entities cooperating with the website operator, particularly companies such as: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).

9. Managing Cookies – How to Give and Withdraw Consent in Practice

• If the user does not wish to receive cookies, they can change the settings in their browser. Please note that disabling cookies that are necessary for authentication, security, or maintaining user preferences may hinder or, in extreme cases, prevent the use of the website.
• To manage cookie settings, choose from the list below the web browser you are using and follow the provided instructions:
  • Edge
  • Internet Explorer
  • Chrome
  • Safari
  • Firefox
  • Opera
• Mobile devices:
  • Android
  • Safari (iOS)
  • Windows Phone