1. pl
  2. en

Privacy Policy

The following Privacy Policy defines the rules for storing and accessing data on User Devices using the Website for the purposes of providing services electronically by the Administrator, as well as the rules for collecting and processing Users' personal data provided personally and voluntarily using the tools available on the Website. The following Privacy Policy is an integral part of the Service Terms and Conditions, which define the rules, rights, and obligations of Users using the Website.

 

§1. General information

  1. This policy applies to the website operating at the URL: planit-maciejewski.pl.

  2. The owner of the website and the personal data controller is: PlanIT Maksymilian Maciejewski, Heinricha Lauterbacha Street 4/9, 54-115 Wrocław, Poland, Tax Identification Number (NIP): 8971712581.

  3. The operator's email address is: info@planit-maciejewski.pl.

  4. The operator is the controller of your personal data in relation to the data voluntarily provided on the website.

  5. The site uses personal data for the following purposes:

    1. Web providing requested services

    2. Presenting offers or information

    3. Conducting video conference calls

    4. Enabling Users to book online meetings (video conferences) to learn more about the Owner's offerings

    5. Handling inquiries via a contact form

    6. Maintaining a newsletter

  6. The Website collects information about users and their behavior in the following ways:

    1. Through data voluntarily entered in forms, which is entered into the Operator's systems

    2. By storing cookies on end devices.

 

§2 Definitions

  • Service – the "PlanIT Maksymilian Maciejewski" website operating at https://planit-maciejewski.pl

  • External Service – websites of partners, service providers, or service recipients cooperating with the Administrator

  • Website/Data Administrator, Owner, Operator – the company "PlanIT Maksymilian Maciejewski", operating at:  Heinricha Lauterbacha Street 4/9, 54-115 Wrocław, NIP: 8971712581, providing services electronically via the Website

  • User – a natural person for whom the Administrator provides electronic services through the Service.

  • Device – an electronic device together with software, through which the User gains access to the Service.

  • Cookies – text data collected in the form of files placed on the User’s Device.

  • GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation). The full text of the Regulation is available at: https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A32016R0679

  • Personal Data – information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

  • Processing – any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.

  • Restriction of Processing – marking stored personal data in order to limit their future processing.

  • Profiling – any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal factors relating to a natural person, in particular to analyze or predict aspects concerning that person’s work performance, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

  • Consent – a freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.

  • Personal Data Breach – a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored, or otherwise processed.

  • Pseudonymization – the processing of personal data in such a manner that the data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures ensuring non-attribution to an identified or identifiable natural person.

  • Anonymization – an irreversible process of operations on data that destroys or overwrites “personal data,” preventing identification or linking of a given record with a specific user or natural person.

 

§3. Data Protection Officer

Pursuant to Article 37 of the GDPR, the Administrator has not appointed a Data Protection Officer.
For matters related to data processing, including personal data, contact should be made directly with the Administrator.

 

§4. Selected methods of data protection used by the Administrator

  1. Login areas and places where personal data is entered are protected at the transmission layer (SSL certificate). As a result, personal data and login details entered on the website are encrypted on the user’s computer and can only be read on the target server.

  2. The Administrator periodically changes administrative passwords.

  3. An important element of data protection is the regular updating of all software used by the Administrator to process personal data, which in particular means regular updates of programming components.

 

§5. Hosting

  1. The Service is hosted (technically maintained) on the servers of the operator: webwavecms.com

  2. To ensure technical reliability, the hosting company keeps server-level logs. The following may be recorded:

    1. resources identified by URL (addresses of requested resources – pages, files),

    2. time of the request,

    3. time the response was sent,

    4. client station name – identification carried out by the HTTP protocol,

    5. information about errors that occurred during the execution of HTTP transactions,

    6. URL address of the previously visited page (referrer link) – if the Service was accessed via a hyperlink,

    7. information about the user’s browser,

    8. information about the IP address,

    9. diagnostic information related to the process of independently ordering services via forms on the website,

    10. information related to the handling of email messages addressed to the Administrator and sent by the Administrator.

 

§6. Your rights and additional information on the use of data

  1. In certain situations, the Administrator has the right to transfer your personal data to other recipients if this is necessary to perform the contract concluded with you or to fulfill the obligations imposed on the Administrator.
    This applies to the following groups of recipients:

    1. hosting company on the basis of entrustment,

    2. postal operators,

    3. payment operators,

    4. public authorities,

    5. comment system operators,

    6. videoconferencing solution operators,

    7. booking system operators for scheduling online meetings (videoconference),

    8. authorized employees and collaborators who use the data in order to carry out the purpose of the website, in particular the provision of services,

    9. companies providing marketing services on behalf of the Administrator.

  2. Your personal data is processed by the Administrator no longer than necessary to perform activities related to them, as defined by separate regulations (e.g. accounting regulations). With regard to marketing data, the data will not be processed for longer than 3 years.

  3. You have the right to request from the Administrator:

    1. access to your personal data,

    2. their rectification,

    3. erasure,

    4. restriction of processing,

    5. and data portability.

  4. You have the right to object to the processing referred to in §5.2 regarding the processing of personal data for the purposes of legitimate interests pursued by the Administrator, including profiling. However, the right to object may not be exercised where there are compelling legitimate grounds for the processing, overriding your interests, rights, and freedoms, in particular for the establishment, exercise, or defense of legal claims.

  5. You have the right to lodge a complaint against the Administrator’s actions with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.

  6. Providing personal data is voluntary but necessary for the operation of the Service.

  7. You may be subject to actions involving automated decision-making, including profiling, in order to provide services under the concluded agreement and for the Administrator’s direct marketing purposes.

  8. Personal data is transferred to third countries within the meaning of data protection regulations. This means that we transfer it outside the territory of the European Union.

 

§7. Information in Forms

The Service collects information provided voluntarily by users, including personal data, if such data is provided.

The Service may save information about connection parameters (time designation, IP address).

The Service may, in some cases, save information facilitating the connection of form data with the email address of the user filling out the form. In such cases, the user's email address appears within the URL of the page containing the form.

Data provided in forms is processed for purposes resulting from the function of a specific form, e.g., for the purpose of handling a request or commercial contact, service registration, etc. In each case, the context and description of the form clearly informs what it serves.

§8. Administrator Logs

Information about user behavior on the service may be subject to logging. This data is used for service administration purposes.

§9. Purposes of Personal Data Processing

Personal data voluntarily provided by Users is processed for at least one of the following purposes:

  1. Implementation of electronic services:

    1. User account registration and maintenance services in the Service and related functionalities

    2. Newsletter services (including sending advertising content with consent)

    3. Services for sharing information about content placed in the Service on social networks or other websites

  2. Administrator communication with Users regarding Service-related matters and data protection

  3. Ensuring the Administrator's legally justified interest

Data about Users collected anonymously and automatically is processed for at least one of the following purposes:

  1. Statistics management

  2. Remarketing

  3. Serving ads tailored to User preferences

  4. Handling affiliate programs

  5. Ensuring the Administrator's legally justified interest

 

§10. Important Marketing Techniques

  1. The Administrator uses statistical analysis of website traffic through Google Analytics - Google Ireland Limited (Gordon House, Barrow Street, Dublin, D04 E5W5, Dublin, Ireland). The Operator does not transfer personal data to this service operator, only anonymized information. The service is based on the use of cookies on the user's end device. Regarding information about user preferences collected by Google's advertising network, users can view and edit information resulting from cookies using the tool: https://www.google.com/ads/preferences/

  2. The Administrator uses remarketing techniques that allow advertising messages to be tailored to user behavior on the site, which may give the illusion that the user's personal data is being used to track them, but in practice no personal data is transferred from the Administrator to ad operators. The technological condition for such activities is enabled cookie support.

  3. The Administrator uses solutions that automate the Service's operation in relation to users, e.g., may send an email to the user after visiting a specific subpage, provided they have consented to receiving commercial correspondence from the Administrator.

 

§11. Cookie Information

  1. The Service uses cookies.

  2. Cookie files (so-called "cookies") constitute IT data, in particular text files, which are stored on the Service User's end device and are intended for use with the Service's websites. Cookies usually contain the name of the website they come from, the time they are stored on the end device, and a unique number.

  3. Cookie Storage and Reading Mechanisms - The mechanisms for storing, reading, and exchanging data between Cookie Files saved on the User's Device and the Service are implemented through built-in web browser mechanisms and do not allow downloading other data from the User's Device or data from other websites that the User visited, including personal data or confidential information. Transfer of viruses, Trojan horses, and other malicious codes to the User's Device is also practically impossible.

  4. Internal Cookies - Cookie files used by the Administrator are safe for User Devices and do not contain scripts, content, or information that could threaten the security of personal data or the security of the Device used by the User.

  5. External Cookies - The Administrator makes every possible effort to verify and select service partners in the context of User security. The Administrator selects known, large partners with global social trust for cooperation. However, it does not have full control over the content of Cookie files from external partners. The Administrator is not responsible for the security of Cookie files, their content, and licensed use by Scripts installed on the service from external Services, to the extent permitted by law. The list of partners is included in the further part of the Privacy Policy.

  6. The entity placing cookie files on the Service User's end device and gaining access to them is the Service operator.

  7. Cookie files are used for the following purposes:

    1. Implementation of goals specified above in the "Important Marketing Techniques" section

  8. Within the Service, two basic types of cookies are used: "session" cookies and "persistent" cookies. "Session" cookies are temporary files stored on the User's end device until logging out, leaving the website, or turning off software (web browser). "Persistent" cookie files are stored on the User's end device for the time specified in the cookie parameters or until they are deleted by the User.

  9. Web browsing software (web browser) usually allows cookie storage on the User's end device by default. Service Users can change settings in this regard. The web browser allows cookie deletion. It is also possible to automatically block cookies. Detailed information on this subject is contained in the help or documentation of the web browser.

  10. Restrictions on the use of cookies may affect some functionalities available on the Service websites.

  11. Cookie files placed on the Service User's end device may also be used by entities cooperating with the Service operator, particularly this applies to companies: Google (Google Ireland Limited (Gordon House, Barrow Street, Dublin, D04 E5W5, Dublin, Ireland), YouCanBookMe (38 Mill Street, Bedford, UK MK40 3HD, GB), MailerLight (88 Harcourt Street, Dublin 2, D02 DK18 Ireland)

  12. Cookie Control

    1. The User can at any time independently change settings regarding saving, deleting, and access to data saved in Cookie files by any website.

    2. If the user does not want to receive cookies, they can change browser settings. We reserve that disabling support for cookies necessary for authentication processes, security, maintaining user preferences may hinder, and in extreme cases may make it impossible to use websites.

    3. To manage cookie settings, select your web browser from the list below and follow the instructions:

    4. Mobile devices:

  13. Information on how to disable Cookie files in the most popular computer browsers is available from one of the indicated providers:

  14. The User also has the possibility to independently install an add-on to their web browser to block the collection of information about their activity on browsed websites. The add-on is provided by Google Ireland Ltd. at https://tools.google.com/dlpage/gaoptout?hl=en

  15. The User can at any time delete all Cookie files saved so far using the tools of the User's Device through which the User uses the Service's services.

  16. Threats on the User's Side - The Administrator uses all possible technical means to ensure the security of data placed in Cookie files. However, it should be noted that ensuring the security of this data depends on both parties, including the User's activity. The Administrator does not take responsibility for the interception of this data, impersonation of the User's session, or their deletion, as a result of conscious or unconscious User activity, viruses, Trojan horses, and other spyware that may infect, is, or was the User's Device.

  17. Personal Data Storage - The Administrator ensures that it makes every effort so that processed personal data voluntarily entered by Users is secure, access to it is limited and implemented in accordance with their purpose and processing goals. The Administrator also ensures that it makes every effort to secure the data it holds against loss through the application of appropriate physical and organizational security measures.

 

§12. External Service Cookie Files

The Administrator uses javascript scripts and web components of partners in the Service who may place their own cookie files on the User's Device. Remember that in your browser settings you can decide about allowed cookies that can be used by individual websites. Below is a list of partners or their services implemented in the Service that may place cookies:

  1. Newsletter Services:

    1. MailerLite

  2. Social Services:

    1. LinkedIn

  3. Online Meeting Booking Services (video conferencing):

    1. YouCanBookMe

  4. Online Meeting Services (video conferencing):

    1. Google Meet and Google Calendar

  5. Ad Serving Services and Affiliate Networks:

    1. Google Ads

  6. Statistics Management:

    1. Google Analytics

  7. Multimedia Services:

    1. YouTube

  8. Other Services:

    1. Google Maps

 

Services provided by third parties are beyond the Administrator's control. These entities may at any time change their terms of service, privacy policies, data processing purposes, and ways of using cookie files.

§13. Types of Collected Data

The Service collects data about Users. Some data is collected automatically and anonymously, and some data is personal data provided voluntarily by Users when signing up for individual services offered by the Service.

  1. Anonymous data collected automatically:

    1. Browser type

    2. Approximate location

    3. Opened service subpages

    4. Time spent on the appropriate service subpage

    5. Operating system type

    6. Previous subpage address

    7. Referring page address

    8. Browser language

    9. Internet connection speed

    10. Internet service provider

    11. Demographic data (age, gender)

  2. Data collected during Newsletter service registration:

    1. Email address

  3. Data collected when using booking service:

    1. Email address

    2. First and last name

Some data (without identifying data) may be stored in cookie files. Some data (without identifying data) may be transferred to the statistical services provider.

§14. Access to Personal Data by Third Parties

  1. As a rule, the only recipient of personal data provided by Users is the Administrator. Data collected as part of the services provided is not transferred or sold to third parties.

  2. Access to data (most often based on a Data Processing Agreement) may be held by entities responsible for maintaining infrastructure and services necessary for running the service, i.e.:

    1. Hosting companies providing hosting services or related services for the Administrator

    2. Companies through which Newsletter services, online meetings, and booking services are provided

    3. Service companies and IT support performing maintenance or responsible for maintaining IT infrastructure

  3. Personal Data Processing Entrustment – Newsletter

    1. The Administrator, in order to provide the Newsletter service, uses the services of a third party - the MailerLite service. Data entered in the newsletter registration form is transferred, stored, and processed in the external service of this service provider.

  4. Personal Data Processing Entrustment – online meeting booking

    1. The Administrator, in order to enable online meeting booking, uses the services of a third party - the YouCanBookMe service. Data entered to confirm meeting booking is transferred, stored, and processed in the external service of this service provider.

  5. Personal Data Processing Entrustment – online meeting implementation

    1. The Administrator, in order to provide online meeting services (video conferencing), uses the services of a third party - Google service (Google Meet and Google Calendar – hereinafter Google). Data entered to confirm meeting booking in the YouCanBookMe service is transferred to Google service, stored, and processed in the external service of this service provider (Google).

We inform that the indicated partners may modify the indicated privacy policy without the Administrator's consent.

§15. Method of Personal Data Processing

Personal data provided voluntarily by Users:

  1. Personal data is not transferred outside the European Union

  2. Personal data is used for automated decision-making (profiling)

  3. Personal data profiling does not produce legal effects or similarly significantly affect the person whose data is subject to automated decision-making

  4. Personal data will not be sold to third parties

Anonymous data (without personal data) collected automatically:

  1. Anonymous data (without personal data) will not be transferred outside the European Union

  2. Anonymous data (without personal data) may be used for automated decision-making (profiling)

  3. Profiling of anonymous data (without personal data) does not produce legal effects or similarly significantly affect the person whose data is subject to automated decision-making

  4. Anonymous data (without personal data) will not be sold to third parties

 

§16. Legal Bases for Personal Data Processing

The Service collects and processes User data based on:

  1. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)

    1. Art. 6 para. 1 lit. a

  2. The data subject has given consent to the processing of his or her personal data for one or more specific purposes

    1. Art. 6 para. 1 lit. b

  3. processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract

    1. Art. 6 para. 1 lit. f

  4. processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party

    1. Act of 10 May 2018 on the protection of personal data (Journal of Laws 2018 item 1000)

    2. Act of 16 July 2004 Telecommunications Law (Journal of Laws 2004 No. 171 item 1800)

    3. Act of 4 February 1994 on copyright and related rights (Journal of Laws 1994 No. 24 item 83)

 

§17. Period of Personal Data Processing

  1. Personal data provided voluntarily by Users:

    1. As a rule, the indicated personal data is stored only for the period of providing the Service within the Service by the Administrator. It is deleted or anonymized within 30 days from the end of service provision (e.g., unsubscribing from the Newsletter list, conducting an online meeting, etc.)

    2. An exception is a situation that requires securing legally justified purposes for further processing of this data by the Administrator. In such a situation, the Administrator will store the indicated data, from the time of the User's request for their deletion, for no longer than 3 years in case of violation or suspicion of violation of the service regulations by the User.

  2. Anonymous data (without personal data) collected automatically:

    1. Anonymous statistical data, not constituting personal data, is stored by the Administrator for the purpose of conducting service statistics for an indefinite time.

 

§18. User Rights Related to Personal Data Processing

The Service collects and processes User data based on:

  1. Right of access to personal data

    1. Users have the right to obtain access to their personal data, implemented upon request submitted to the Administrator

  2. Right to rectify personal data Users have the right to request from the Administrator immediate rectification of personal data that is incorrect and/or completion of incomplete personal data, implemented upon request submitted to the Administrator

  3. Right to delete personal data

    1. Users have the right to request from the Administrator immediate deletion of personal data, implemented upon request submitted to the Administrator. The Administrator reserves the right to suspend the implementation of the data deletion request in order to protect the Administrator's legally justified interest (e.g., when data was obtained as a result of conducted correspondence).

    2. In the case of the Newsletter service, the User has the possibility to independently delete their personal data using the link placed in each sent email message.

  4. Right to restrict personal data processing

    1. Users have the right to restrict personal data processing in cases indicated in Art. 18 GDPR, including questioning the correctness of personal data, implemented upon request submitted to the Administrator

  5. Right to data portability

    1. Users have the right to obtain from the Administrator personal data concerning the User in a structured, commonly used, machine-readable format, implemented upon request submitted to the Administrator

  6. Right to object to personal data processing

    1. Users have the right to object to the processing of their personal data in cases specified in Art. 21 GDPR, implemented upon request submitted to the Administrator

  7. Right to lodge a complaint

    1. Users have the right to lodge a complaint with the supervisory authority dealing with personal data protection.

 

§19. Contact with the Administrator

The Administrator can be contacted in one of the following ways:

  1. Postal address - PlanIT Maksymilian Maciejewski, Heinricha Lauterbacha Street 4/9, 54-115 Wrocław

  2. Email address - info@planit-maciejewski.pl

  3. Telephone connection - +48 791 895 243

 

§20. Service Requirements

  1. Limiting the recording and access to Cookie files on the User's Device may cause improper functioning of some Service functions.

  2. The Administrator bears no responsibility for improperly functioning Service functions in case the User limits in any way the possibility of saving and reading Cookie files.

 

§21. External Links

  1. The Service - articles, posts, entries may contain references to external websites with which the Service Owner cooperates or contain content to which it refers. At the same time, the Administrator, despite making every effort, bears no responsibility for content located outside the Service, due to physical lack of control and influence over content located under links (files, forms, etc.), which may be changed and updated without the Administrator's knowledge, participation, and consent.

§22. Changes to the Privacy Policy

  1. The Administrator reserves the right to make any changes to this Privacy Policy without the need to inform Users about this in terms of the use and utilization of anonymous data or the use of Cookie files.

  2. The Administrator reserves the right to make any changes to this Privacy Policy regarding the processing of Personal Data, about which it will inform Users registered for the newsletter service via email within 7 days of the change of provisions. Continued use of services means familiarization with and acceptance of the introduced changes to the Privacy Policy. In case the User does not agree with the introduced changes, they are obliged to unsubscribe from the Newsletter service.

  3. Changes introduced to the Privacy Policy will be published on this Service subpage.

  4. Changes introduced come into effect upon their publication.

 

 

 

Privacy Policy       Service Terms and Conditions

Copyright 2025 PlanIT Maksymilian Maciejewski