This website uses cookies

Read our Privacy policy and Terms of use for more information.

Privacy Policy

Introduction

At [PUBLICATION NAME], we are committed to protecting your personal data and upholding your rights under European and Polish data protection laws.

This Privacy Policy explains how we collect, use, and safeguard your personal data when you visit the website, engage with our services, or interact with us in other ways. It applies to all processing of personal data where [PUBLICATION NAME] acts as the data controller — that is, when we determine the purposes and means of processing your data.

In this policy, "we", "us", and "our" refer to [PUBLICATION NAME], a for-profit legal entity based in Warsaw, Poland.

We process your personal data responsibly, transparently and in compliance with the General Data Protection Regulation (GDPR) and the Polish Act concerning the Protection of Personal Data. Our aim is to ensure you understand what data we collect, why we collect it, and how you can exercise your rights.

General Information

In accordance with the Polish Act concerning the Protection of Personal Data and the EU General Data Protection Regulation (Regulation (EU) 2016/679), every individual has the right to the protection of their personal data. We handle your data in compliance with that legal framework and take appropriate technical and organisational measures to protect it against unauthorised access, loss, or misuse.

Please note that data transmission over the internet (e.g., via email) may be subject to vulnerabilities. While we work with secure hosting providers to safeguard our systems, full protection cannot be guaranteed.

By accessing the website, you consent to the collection and processing of data as outlined below. The website may be used without registration. We may store anonymised usage data (e.g., accessed pages, timestamps) for analytical purposes. Any personal data (e.g., name, email) is collected voluntarily and not shared with third parties without your consent.

Processing of Personal Data

Personal data is any information relating to an identified or identifiable person. Processing includes any handling of personal data — storage, disclosure, procurement, deletion, modification, destruction and use of personal data.

We process personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and the Polish Act concerning the Protection of Personal Data of [DATE].

The legal bases for processing are set out in Article 6(1) GDPR, including:

  • Consent (a): when you have given clear permission for a specific purpose;
  • Contract (b): when processing is necessary for a contract or steps prior to a contract;
  • Legal obligation (c): when required to meet a legal duty;
  • Vital interests (d): to protect someone's life or safety;
  • Legitimate interest (f): for our justified interests unless overridden by your fundamental rights.

We process personal data for the duration required for the respective purpose. In the case of longer-term retention obligations due to legal requirements, we restrict processing accordingly.

Transfer of Personal Data

As part of our processing of personal data, data may be transferred to other bodies, companies, legally independent organisational units or persons. Recipients may include service providers commissioned with IT tasks or providers of services integrated into our website. We observe all legal requirements and conclude appropriate contracts with recipients to protect your data.

Data Processing in Third Countries

If we process data outside the European Union (EU) or European Economic Area (EEA), this will only take place in accordance with legal requirements. We only process data in third countries with a recognised level of data protection, via EU Commission standard contractual clauses, or where certifications or binding internal data protection regulations are in place (Art. 44–49 GDPR).

Relevant Legal Bases

In accordance with Article 13 GDPR, we inform you of the legal bases for our processing of personal data:

  • Consent: Article 6(1)(a) and Article 7 GDPR – where you have given consent for one or more specific purposes.
  • Contractual necessity: Article 6(1)(b) GDPR – where processing is necessary for the performance of a contract or to take steps prior to entering into a contract.
  • Legal obligation: Article 6(1)(c) GDPR – where processing is necessary for compliance with a legal obligation.
  • Vital interests: Article 6(1)(d) GDPR – where processing is necessary to protect the vital interests of the data subject or another natural person.
  • Legitimate interests: Article 6(1)(f) GDPR – where processing is necessary for the purposes of our legitimate interests, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject.

Security Measures

We implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk, in line with legal requirements. These include safeguards for confidentiality, integrity and availability of personal data, as well as controls on access, disclosure and storage. Data protection is considered from the outset in our choice of systems and processes, following privacy-by-design and default principles.

Website Privacy Policies

Cookies

This website is run by Beehiiv ([ADDRESS]). Beehiiv uses cookies — text files stored by your browser to retain data about your visit, such as language settings, login status, or viewed content. The term also covers similar technologies serving the same purpose, including pseudonymous user identifiers.

You can find more information in Beehiiv's privacy policy.

Contact Form

If you send us enquiries via the contact form, your details — including the contact data you provide — will be stored by us for the purpose of processing the enquiry and in the event of follow-up questions. We will not pass on this data without your consent.

Newsletter — Beehiiv

We use Beehiiv to manage and send our newsletters. That platform allows us to maintain subscriber lists, design campaigns, and analyse engagement metrics. Beehiiv processes personal data in accordance with the GDPR and acts as a data processor on our behalf under Article 28(3) GDPR.

Beehiiv may process subscriber data in a pseudonymised format for the purpose of improving service reliability and generating usage statistics. They do not use personal data to contact subscribers directly or share it with third parties.

The legal basis for this data processing is our legitimate interest in communicating effectively and securely with our subscribers, as set out in Article 6(1)(f) GDPR.

Newsletter Data

To receive our newsletter, we require an email address and confirmation that you are its owner and agree to receive the newsletter. No further data is collected or passed on to third parties.

You can revoke your consent at any time via the unsubscribe link in any newsletter.

Social Media

Functions of [SOCIAL MEDIA SERVICE] are integrated on our website, offered by [COMPANY NAME, ADDRESS]. If you are logged in to your account, clicking the associated button may allow [SERVICE NAME] to associate your visit with your user account. We have no knowledge of the content of transmitted data or its use by [SERVICE NAME].

More information: Privacy Policy of [SERVICE NAME].

Rights of Data Subjects

Under the GDPR, you are entitled to the following rights. To exercise any of them, contact us at [email protected].

Right to Confirmation

You may request confirmation as to whether your personal data is being processed.

Right to Access

You may request access to your personal data and information about:

  • The purposes of processing;
  • Categories of personal data processed;
  • Recipients or categories of recipients to whom the data has been or will be disclosed;
  • The envisaged storage period or criteria used to determine it;
  • The existence of the right to rectification, erasure, restriction or objection;
  • The right to lodge a complaint with a supervisory authority;
  • Where data was not collected from you, any available information about its source;
  • Whether the data has been transferred to a third country or international organisation.

Right to Rectification

You may request correction of inaccurate personal data and the completion of incomplete data.

Right to Erasure (Right to Be Forgotten)

You may request deletion of your personal data where:

  • It is no longer necessary for the purposes for which it was collected;
  • You withdraw consent and no other legal ground applies;
  • You object to processing and no overriding legitimate grounds exist;
  • The data was unlawfully processed;
  • Erasure is required by a legal obligation;
  • The data was collected in relation to services offered to a child.

Right to Restriction of Processing

You may request restriction of processing where:

  • The accuracy of the data is contested;
  • Processing is unlawful but erasure is opposed;
  • The data is no longer needed for processing but is required for legal claims;
  • An objection to processing is pending verification of overriding grounds.

Right to Data Portability

You may request your personal data in a structured, commonly used, machine-readable format and request its transfer to another controller where technically feasible.

Right to Object

You may object to processing on grounds relating to your particular situation. Processing must cease unless compelling legitimate grounds are demonstrated or the data is required for legal claims.

Right to Withdraw Consent

You may withdraw consent to data processing at any time by contacting us at [email protected].

Right to Lodge a Complaint

You have the right to lodge a complaint with the Polish Data Protection Authority ([NAME IN POLISH]), [ADDRESS], [WEBPAGE].

External Payment Service Providers

This website uses external payment service providers through whose platforms payment transactions can be carried out, for example:

Processed data may include name, address, bank or card details, and transaction information. This data is handled solely by the payment providers and is not accessible to us, except for confirmation of payment status. All transactions are subject to the terms and privacy policies of the respective providers.

Note on Data Transfer to the USA

Our website's service provider is based in the USA. Your personal data may be transferred to US servers. Please note that the USA is not considered a safe third country within the meaning of EU data protection law. US companies may be obliged to disclose personal data to security authorities without legal recourse for the data subject. We do not influence these processing activities.

General Disclaimer

All content on this website and newsletter is reviewed with care. However, we cannot guarantee the accuracy, completeness or timeliness of all content. We accept no liability for damages arising from use of the website or newsletter, unless due to wilful misconduct or gross negligence. We are not liable for the content or availability of third-party sites linked here.

Changes

We may amend this privacy policy at any time without prior notice. The current version published on our website shall apply. If this policy forms part of an agreement with you, we will inform you of changes by email or other suitable means.

Questions Regarding Data Protection

If you have any questions about data protection, please email us at [email protected].