top of page

privacy policy

I. General information

  1. The website address (hereinafter: 'Website') is administered by Eliana Kresa-Ojdana, running a business under the name ELIANA KRESA-OJDANA "ELIANA KRESA", NIP: 8241805117, REGON: 367108658 (hereinafter: 'Administrator').

  2. When using the Website, data of Website users (hereinafter: 'Users'), including personal data, may be collected and used.

  3. Users' data may be collected as a result of their voluntary provision by Users (e.g. when filling out the contact form or subscribing to the newsletter) and the use of cookies - both their own and those from external entities.

  4. Information may also be collected about the User's IP address, the time of arrival of the query and sending the response, the address of the website from which the user was redirected to the Website and the type of software the user uses (type of operating system and browser type). This information is used for the purposes of administering the Website and creating statistics and analyses.

  5. The Administrator ensures proper security of Users' data by using appropriate organizational and technical measures.

  6. The security of personal data during transmission is ensured by the SSL transmission protocol used by the Administrator. The protocol encodes data before it is sent from the User's browser and decodes it after it safely reaches the Website's server.

II. Personal data

  1. The administrator of users' personal data is Eliana Kresa-Ojdana, running a business under the name ELIANA KRESA-OJDANA "ELIANA KRESA", NIP: 8241805117, REGON: 367108658.

  2. The Administrator may process personal data via the Website for purposes such as:
    sending the User a newsletter - pursuant to Art. 6 section 1 letter a GDPR, i.e. the User's consent to sending him the newsletter; consent is given pby providing your e-mail address and clicking the button confirming subscription to the newsletter;
    contacting the User if he or she wrote a message to the Administrator or completed the contact form - pursuant to Art. 6 section 1 letter fRPDO, because processing is necessary for the purposes of the legitimate interests pursued by the Administrator; such interest is to contact the User;
    conducting direct marketing of the Administrator's products and services - pursuant to Art. 6 section 1 letter f GDPR, because processing is necessary for the purposes of the legitimate interests pursued by the Administrator; such interest is the promotion of the Administrator's products and services;
    statistics and analyzes of Users' behavior on the Website - pursuant to Art. 6 section 1 letter f GDPR, because processing is necessary for the purposes of the legitimate interests pursued by the Administrator; such interest is in making arrangements regarding the use of the Website by Users in order to optimize it to the needs of these Users.

  3. The Administrator may make personal data available to its subcontractors (entities whose services it uses for processing) in order to manage the organization of work in the Administrator's enterprise.

  4. With respect to personal data contained in event data regarding the activities of people on the User's websites and applications that integrate Facebook business tools, for the processing of which the Administrator and Facebook jointly determine the means and purposes, the Administrator and Facebook Ireland are joint controllers of personal data in accordance with Art. 26 GDPR. More information can be found at this link: https://www.facebook.com/legal/terms/businesstools_jointprocessing.

  5. The recipients of the User's personal data may also be the following categories of entities: employees and associates of the Administrator, hosting providers, marketing and advertising agencies, entities providing IT system operation and maintenance services, legal advisors. The Administrator provides Users' personal data to these entities in accordance with applicable law (for example, based on data processing agreements, if their conclusion is required in accordance with the GDPR).

  6. The Administrator does not transfer personal data outside the European Economic Area.

  7. Personal data is processed for the purpose of:
    sending the User a newsletter - are processed until the User withdraws consent;
    contacting the User - are processed for a period of 3 years from the date of their collection;
    conducting direct marketing of the Administrator's products and services - will be stored until an objection is raised against their processing for this purpose, unless the Administrator demonstrates the existence of valid legally justified grounds for processing, overriding the interests, rights and freedoms of the data subject - in such a case, the data will be stored until such valid legitimate grounds for processing exist, or
    withdrawal of consent to receive commercial information;
    ststatistics and analysis of Users' behavior on the Website - are processed for a period of 3 years from the date of their collection.

  8. The data subject has the following rights:
    the right to access the personal data provided and the right to receive a copy thereof;
    the right to rectify personal data;
    the right to delete personal data;
    the right to request restriction of the processing of personal data;
    the right to transfer personal data;
    the right to object to the processing of personal data;
    the right to lodge a complaint with the President of the Personal Data Protection Office.

  9. If data processing is based on consent, the data subject also has the right to withdraw consent to the processing of personal data at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

  10. The right to withdraw consent also applies to consent to receive commercial information.

  11. The User can unsubscribe from the newsletter using the link located in the footer of the emails sent or by sending the Administrator a message asking to unsubscribe from the newsletter.

  12. In order to exercise their rights, data subjects may contact the Administrator.

  13. The User may also contact the Administrator to obtain information on why the Administrator decided that he can process the User's personal data on the basis of legitimate interests.

  14. Providing personal data when using the Website is voluntary. However, if the User does not provide them, it will not be possible to contact him or send him offers or a newsletter.

  15. The Administrator does not make decisions regarding Users that are based solely on automated processing, including profiling, and that produce legal effects for Users or significantly affect them in a similar way.

 


III. Cookies

  1. As part of the operation of the Website, cookies are used and stored on Users' end devices. The use of cookies should be understood as their storage and access to them by the Administrator.
    Cookies are IT data, in particular text files, which are stored on the User's end device and are intended for using websites. Cookies usually contain the name of the website they come from, their storage time on the end device, content (e.g. action identifiers) and a unique number.

  2. Cookies are used for the following purposes:
    adapting the content of the Website to the User's preferences and optimizing the use of the Website; especially these p filesallow you to recognize the User's device and properly display the Website, adapting it to your needs and preferences;
    adapting advertisements displayed to the User to his preferences;
    creating statistics and analyzes regarding the use of the Website.

  3. The Website uses two basic types of cookies: 'session cookies' (session cookies, session storage) and 'persistent cookies' (persistent cookies, local storage). 'Session' cookies are temporary files that are stored on the User's end device until the session expires (e.g. leaving the Website, deleting them by the User, or turning off the software). 'Permanent' cookies are stored on the User's end device for the time specified in the cookie parameters or until they are deleted by the User.

  4. The use of cookies does not cause any configuration changes in the User's end device or the software installed on this device.

  5. The default settings of web browsers usually allow cookies to be saved on the end devices of website users. However, these settings can be changed by the User.

  6. The user can specify the conditions for the use of cookies using the software (web browser) settings installed on his end device.

  7. The user also has the option of changing the set conditions for the use of cookies. The change may consist in partial or complete limitation of the possibility of saving cookies on the User's end device.

  8. Blocking or deleting cookies may cause difficulties in using the Website, e.g. because some of its options will not be available to the User.

  9. The Administrator informs that, in accordance with the provisions of the Telecommunications Law, the end-user's consent to storing information or gaining access to information already stored in the end-user's telecommunications terminal device may also be expressed by the user through the settings of the software installed in the end-user device used by him. Therefore, if the user does not want to give such consent, he or she should change the settings of the web browser.

  10. Detailed information on changing browser settings regarding cookies and deleting them can be obtained on the official website of a specific browser.

bottom of page