PL: +48 798 777 660 EN: +44 7448 846 356 e.palajska@aplusdesign.pl

 

 

 

Privacy Policy

PRIVACY POLICY

General regulations

  1. The present Privacy Policy (also referred to as “Policy”) contains information regarding the handling of personal data, which is collected directly from you (also referred to as “Client”) or via cookies and similar technologies.
  2. The Policy refers to the GDPR, namely the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons about the processing of personal data and the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
  3. The requirements of universally applicable laws carry out data protection, and their storage occurs on secured servers.
  4. We respect the right to privacy and care about data security. For this purpose, a secure communication encryption protocol (SSL) is used, among others.
  5. Personal data provided in the form on the website https://www.aplusdesign.pl/ is treated as confidential and is not visible to unauthorized persons.

The data administrator and his contact details

  1. The administrator of the personal data of Clients and visitors to the website, voluntarily provided during visits to the website https://www.aplusdesign.pl/, profiles on Facebook and Instagram, and within the provision of services electronically, is Ewelina Pałajska conducting business under the name A+ design Ewelina Pałajska, Jugowicka 8T St., 30-443 Cracow, NIP 8822056976, REGON 364795150, e-mail: kontakt@aplusdesign.pl (from now on referred to as the “Administrator”).
  2. For matters related to the processing of personal data by the administrator, you can contact us using the above contact details.
  3. The administrator takes special care to protect the interests of data subjects and, in particular, ensures that the data it collects are processed lawfully; collected for specified, legitimate purposes and not subjected to further processing incompatible with those purposes; substantively correct and adequate to the purposes for which they are processed; and stored in a form that allows the identification of data subjects for no longer than is necessary to achieve the purpose of the processing.
  4. The administrator has not established a Personal Data Inspector.

Data source.

  1. If the Client has contacted the Administrator, the data has been provided to us directly by the Client.
  2. The website implements data acquisition functions by saving cookies on end devices.

Scope of Data Collected

  1. The website https://www.aplusdesign.pl/ lets you contact the administrator and provide him with identification data (name), contact data (e-mail address, phone number), and data related to the message content.
  2. The Administrator collects data related to the activity of Clients, such as time spent on the site, searched phrases, the number of displayed subpages, date, and source of visit.

Purpose and Legal Basis for Data Processing

  1. Customers’ data may be processed in order to:
    – answer questions asked, contact requests, provide an offer, and conduct correspondence in connection with the proposal
    l- establish, shape the content, change, perform, or terminate the contractual relationship between the customer and the administrator, consisting of the provision of services by the administrator.
    – direct marketing of the administrator’s services;
    – analysis through cookies- analysis of web traffic
    ensuring safety within the website and customizing content to users’ needs based on the administrator’s legitimate interest.
  2. The legal basis for the processing of Clients’ data is the necessity for purposes resulting from the legitimate interests pursued by the administrator, consent, or the need to perform a contract to which the Client is a party or to take action at his request before or after its conclusion, as well as direct marketing of the administrator’s services.

Right to Withdraw Consent

The Client can withdraw consent for data processing at any time by contacting the Administrator. Withdrawing consent may hinder or prevent contact with the Client and/or the execution of the contract.

Obligation or Voluntariness of Providing Data

  1. Providing data by Clients for purposes related to concluding a contract and providing services is voluntary but necessary. Provide them to ensure the conclusion of the contract and the provision of services is maintained.
  2. Providing data necessary for the statistical analysis of website users is voluntary. Clients can use the so-called incognito mode to browse the site without giving the administrator information about the visit to the website. Using incognito mode, and therefore not providing data, does not affect the website’s ability.

Rights Under GDPR Concerning Processed Data

  1. The customer has the right:
    * * demand from the administrator to inspect his/her data, as well as to receive a copy of it (Art. 15 GDPR);
    * demand from the administrator to correct or rectify his/her data (Art. 16 GDPR) – with regard to the demand for data rectification, when the customer notices that the data is incorrect or incomplete;
    * demand from the administrator to delete the data (Art. 17 GDPR);
    * demand from the administrator to limit processing (18 GDPR) – e.g., when the customer notices that the data is incorrect – he may demand to restrict processing of his data for a period allowing us to verify the correctness of such data);
    * file a complaint concerning the administrator’s processing of the customer’s data to the President of the Office for Personal Data Protection.
  2. In the case of processing data for the direct marketing of the administrator’s products or services, the person whose data is concerned also has the right to submit a written request to cease processing their data and object to the processing of their data.
  3. To exercise the rights mentioned above, an appropriate request can be sent via email to: kontakt@aplusdesign.pl or in writing to the Administrator’s office address.

Recipients of Personal Data

  1. The personal data provided by Clients will not be shared with other entities except those with the proper legal basis, including based on data processing agreements in a manner no less restrictive than that provided by the Data Administrator.
  2. Moreover, Clients’ data may be disclosed to the hosting provider, mail server provider, entities, establishments, and institutions with which contact is necessary to perform the contract.

Data Retention Period

  1. Personal data will be stored for the duration of the contract and the period required by legal obligations, including 5 years from the date of issue of the last invoice/bill according to the Accounting Act, and in the case of non-payment or other claims, for the period necessary to pursue a claim (limitation). Data transferred on the basis of consent will be processed until the consent is withdrawn.
  2. Data related to network traffic analysis, collected through cookies and similar technologies, may be stored until the cookie expires. Some cookies never expire, therefore, the data retention period will be equivalent to the time necessary for the Administrator to achieve the objectives related to data collection, such as ensuring security and analyzing historical data related to website traffic.

Data Transfer to a Third Country or International Organization

Data will not be transferred to third countries or international organizations.

Use of Cookies and Similar Technologies

  1. The service allows collecting information about the user through cookies and similar technologies, which typically involves installing this tool on the user’s device (computer, smartphone, etc.). This information is used to remember user decisions (font choice, contrast, policy acceptance), maintain the user session (e.g., after logging in), remember the password (with consent), collect information about the user’s device and visit to ensure security, as well as visit analysis and content customization.
  2. Information obtained through cookies and similar technologies is not combined with other user data from the website, nor does the administrator use it to identify them.
  3. Users can set their browsers to block specific types of cookies and other technologies by specifying, for example, that only those necessary for the proper page display will be allowed. By default, most browsers allow the use of all cookies, however, users can change these settings at any time and delete already installed cookies. Each browser enables this action through one of the options available in settings or preferences.
  4. Users also have the option to use the website in so-called incognito mode, which blocks data collection about their visit.
  5. Using the service without changing browser settings, i.e., with default acceptance of cookies and similar technologies, means consent to their use for the purposes stated above. The Administrator does not use the obtained information for marketing purposes.

Final Provisions

  1. The website may, but does not have to, contain links to other websites. After moving to other pages, the administrator recommends that you familiarize yourself with the privacy policy established there. This Policy applies only to the administrator’s website.
  2. The administrator applies technical and organizational measures to ensure the protection of the processed personal data appropriate to the threats and category of data to be protected, and in particular, secures data against being disclosed to unauthorized persons, taken by an unauthorized person, processed in violation of applicable laws, and changed, lost, damaged, or destroyed under applicable laws.
  3. This Policy is also provided to Customers free of charge in a PDF version, which can be downloaded to a private computer unit by the Customer independently without any restrictions.