The Operator is the Administrator of your personal data regarding data voluntarily provided on the Website.
The Website uses personal data for the following purposes:
Running a newsletter
Managing a comment system
Operating an online chat system
Managing a classified ads system
Handling inquiries via forms
Preparing, packaging, and shipping goods
Providing ordered services
Presenting offers or information
The Website collects information about users and their behavior in the following ways:
Through voluntarily entered data in forms, which are then stored in the Operator’s systems.
By saving cookies (so-called "cookies") on users’ devices.
2. Selected Data Protection Methods Used by the Operator
Login and personal data entry areas are protected by a transmission layer (SSL certificate), ensuring that personal data and login credentials entered on the site are encrypted on the user’s device and can only be read by the target server.
Personal data stored in the database is encrypted in a way that only the Operator with the key can read it. This protects the data in case of a database theft from the server.
User passwords are stored in hashed form. The hashing function is one-way—it cannot be reversed, which is the current standard for storing user passwords.
The Website uses two-factor authentication, providing an additional layer of login security.
The Operator periodically changes administrative passwords.
To protect data, the Operator regularly performs backups.
A key aspect of data protection is the regular updating of all software used by the Operator to process personal data, including frequent updates of programming components.
3. Hosting
The Website is hosted (technically maintained) on the servers of home.pl.
The hosting company maintains server logs for technical reliability, which may record:
Resources accessed via URL (addresses of requested pages/files),
Timestamp of the request,
Response time,
Client station name (identified via HTTP protocol),
Errors encountered during HTTP transactions,
Referrer URL (if the user accessed the site via a link),
User’s browser information,
IP address,
Diagnostic data related to self-service ordering processes,
Information related to email handling (sent to or by the Operator).
4. Your Rights and Additional Information on Data Use
In certain situations, the Administrator may transfer your personal data to other recipients if necessary to fulfill a contract with you or to meet the Administrator’s obligations. This applies to the following groups:
Hosting company (under data entrustment),
Couriers,
Postal operators,
Payment processors,
Online chat service providers,
Authorized employees and associates who use the data to achieve the Website’s purpose,
Marketing service providers acting on behalf of the Administrator.
Your personal data is processed by the Administrator no longer than necessary for the activities covered by separate regulations (e.g., accounting). For marketing data, processing does not exceed 3 years.
You have the right to request from the Administrator:
Access to your personal data,
Rectification,
Erasure,
Restriction of processing,
Data portability.
You have the right to object to processing under Section 3.2, including profiling, unless there are overriding legitimate grounds for processing (e.g., legal claims).
You may lodge a complaint with the President of the Personal Data Protection Office (PDPO), ul. Stawki 2, 00-193 Warsaw, Poland.
Providing personal data is voluntary but necessary to use the Website.
Automated decision-making, including profiling, may occur to provide services under a contract or for the Administrator’s direct marketing.
Personal data may be transferred to third countries (outside the EU) under data protection laws.
5. Information in Forms
The Website collects voluntarily provided user data, including personal data, if submitted.
The Website may record connection parameters (timestamp, IP address).
In some cases, the Website may store information linking form data to the user’s email address (e.g., the email may appear in the URL of the form page).
Form data is processed for the purpose specified in the form (e.g., service requests, commercial contact, registrations). Each form’s context clearly explains its purpose.
6. Administrator’s Logs
User behavior on the Website may be logged for administrative purposes.
7. Key Marketing Techniques
The Operator uses Google Analytics (Google Inc., USA) for traffic analysis. No personal data is shared—only anonymized information. The service relies on cookies. Users can manage cookie preferences via: Google Ads Preferences.
The Operator uses remarketing to tailor ads to user behavior, without sharing personal data with advertisers. This requires cookies.
The Operator employs the Facebook Pixel, allowing Facebook (Facebook Inc., USA) to track registered users’ activity on the Website. No additional personal data is shared. This also uses cookies.
The Operator may automate actions (e.g., sending emails after visiting specific pages) if the user consents to commercial correspondence.
8. Information on Cookies
The Website uses cookies.
Cookies are text files stored on the user’s device, typically containing the website name, storage duration, and a unique ID.
The Operator places and accesses cookies on the user’s device.
Cookies are used for:
Maintaining user sessions (so logins are not required on every page),
Achieving the marketing purposes outlined in Section 7.
Two main types of cookies are used:
Session cookies (temporary, deleted after logging out or closing the browser),
Persistent cookies (stored until deleted or expired).
Browser settings allow users to block or delete cookies, but this may impair Website functionality.
Cookies may also be used by the Operator’s partners (e.g., Google, Facebook, Twitter).
9. Managing Cookies – How to Grant or Withdraw Consent?
Users can disable cookies in browser settings, but this may hinder or prevent access to certain features (e.g., authentication).
Instructions for managing cookies in popular browsers: