1. general information
This policy applies to the Website operating under the url: bwservice.pl
The Operator of the Website and the Administrator of personal data is: B&W Service Sp. z o.o. Dubois 8/10/7 50-208 Wrocław
Operator’s contact e-mail address: email@example.com
The Operator is the Administrator of your personal data with regard to the data provided voluntarily on the Website.
The Website uses your personal data for the following purposes:
Handling of queries via the form
Delivery of ordered services
Presentation of offers or information
The Website performs the functions of obtaining information on users and their behaviour in the following manner:
Through voluntary data entered in the forms, which are entered into the Operator’s systems.
By storing cookies in the end devices.
2. Selected data protection methods used by the Operator
The login and entry points for personal data are protected in the transmission layer (SSL certificate). In this way, the personal and login data entered on the website are encrypted on the user’s computer and can only be read on the target server.
The personal data stored in the database are encrypted in such a way that only the operator with his/her key can read them. In this way, the data is protected in case the database is stolen from the server.
The Operator periodically changes his/her administrative passwords.
An important element of data protection is the regular updating of all software used by the Operator to process personal data, which in particular means regular updates of programming components.
The Website is hosted (technically maintained) on the servers of the operator: domeny.pl
Registration data of the hosting company: H88 S.A. with registered office in Poznań, Franklin Roosevelt 22, 60-829 Poznań, registered in the National Court Register by the District Court Poznań – Nowe Miasto and Wilda in Poznań, VIII Economic Department of the National Court Register under KRS 0000612359, REGON 364261632, NIP 7822622168, share capital 210,000.00 PLN fully paid up.
The hosting company:
applies measures to protect against data loss (e.g. disk arrays, regular backups),
applies adequate measures to protect data processing sites in case of fire (e.g. special fire extinguishing systems),
applies adequate measures to protect the processing systems in case of a sudden power failure (e.g. dual power supply paths, generators, UPS voltage backup systems)
apply measures to physically protect access to data processing facilities (e.g. access control, monitoring)
applies measures to ensure appropriate environmental conditions for servers as elements of the data processing system (e.g. control of environmental conditions, specialised air-conditioning systems)
applies organisational solutions to ensure the highest possible level of protection and confidentiality (training, internal rules, password policies, etc.),
has appointed a Data Protection Officer.
The hosting company, in order to ensure technical reliability, keeps logs at the server level. The logs may include:
resources specified with a URL identifier (addresses of requested resources – pages, files),
request arrival time,
time of sending the response,
name of the client station – identification carried out by the HTTP protocol,
information about errors which occurred during the HTTP transaction,
the URL address of a website previously visited by the user (referer link), in the event that the website was accessed through a link,
information about your browser,
information about your IP address,
diagnostic information related to the process of self-ordering services via registers on the site,
information related to the handling of electronic mail addressed to and sent by the Operator.
4. Your rights and additional information on how your data will be used
In certain situations, the Administrator has the right to transfer your personal data to other recipients if this is necessary for the performance of a contract concluded with you or for the fulfilment of obligations incumbent on the Administrator. This applies to such groups of recipients:
hosting company on the basis of entrustment
Law firms and debt collectors
operators of the comments system
authorised employees and collaborators who use the data in order to fulfil the purpose of the website
companies providing marketing services to the Administrator
Your personal data will be processed by the Administrator no longer than it is necessary for the performance of the related activities specified in separate regulations (e.g. on accounting). With regard to marketing data, the data will not be processed for longer than 3 years.
You have the right to request from the Administrator
access to personal data concerning you,
have them rectified,
restriction of processing,
and to data transfer.
You have the right to object, with regard to the processing indicated in 3.3 c), to the processing of personal data for the purposes of pursuing the legitimate interests pursued by the Controller, including profiling, whereby the right to object will not be exercisable where there are valid legitimate grounds for processing overriding your interests, rights and freedoms, in particular the establishment, assertion or defence of claims.
The Administrator’s actions may be complained about to the President of the Office for Personal Data Protection, 2 Stawki Street, 00-193 Warsaw.
Providing personal data is voluntary, but necessary to operate the website.
Activities involving automated decision-making, including profiling, may be undertaken in relation to you in order to provide services under the concluded agreement and in order for the Administrator to conduct direct marketing.
Personal data is not transferred from third countries within the meaning of data protection legislation. This means that we do not send them outside the European Union.
5. Information in forms
The website collects information voluntarily provided by the user, including personal data if provided.
The website may save information on connection parameters (time stamp, IP address).
The website may, in some cases, save information making it easier to associate the data in the form with the e-mail address of the user completing the form
6 Administrator logs
Information on user behaviour on the website may be subject to logging. This data is used to administer the website.
7. Essential marketing techniques
The Operator uses a solution which examines the behaviour of users by creating heat maps and recording the behaviour on the website. This information is anonymised before it is sent to the operator of the service so that the operator does not know which individual it relates to. In particular, typed passwords and other personal data are not recorded.
8. information on cookies
Cookies are computer data, in particular text files, which are stored in the final device of the website User and are intended for use on the pages of the website. Cookies usually contain the name of the website from which they come, the time of storing them on the End User’s device and a unique number.
The operator of the Website is the entity placing cookies on the Website User’s terminal equipment and accessing them.
Cookies are used for the following purposes:
maintaining a session of a Website user (after logging in), thanks to which a user does not have to re-enter login and password on each subpage of the Website;
for the purposes specified above under “Essential marketing techniques”;
There are two main types of cookies used on the Website: “session” and “persistent cookies”. “Session” cookies are temporary files that are stored in the final device of the User until logging out, leaving the website or switching off software (web browser). “Session” cookies are stored in the User’s end device until the User logs out.
Session” cookies are temporary files that are stored in the final device of the User until logging out, leaving the website or switching off software (web browser). “Persistent” cookies are stored in the User’s terminal equipment for the time specified in the parameters of cookies or until they are deleted by the User.
Web browsing software (internet browser) usually allows the storage of cookies in the User’s terminal equipment by default. Users of the Website may change their settings in this respect. The Internet browser makes it possible to delete cookies. It is also possible to block cookies automatically. Detailed information on this subject is contained in the help or documentation of the Internet browser.
Cookies placed in the Website User’s end device may also be used by entities cooperating with the Service Operator, in particular these companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).
9. managing cookies – how to give and withdraw consent in practice?
If you do not wish to receive cookies, you can change your browser settings. We stipulate that disabling cookies necessary for authentication processes, security, maintaining user preferences may hinder and in extreme cases make it impossible to use websites
In order to manage cookie settings, select the web browser you are using from the list below and follow the instructions: