ENPL
Book a free consultation
Legal documents

Privacy policy.

Information about how Engel Consulting Group processes the personal data of website users and clients.

1. General information

  1. This policy concerns the website Service, operating at the url address: engelgroup.pl
  2. The operator of the service and the Administrator of personal data is: Engel Consulting Group Jakub Engel, Krakowska 43, 42-500 Będzin, Silesian Voivodeship. NIP: 6252499746, REGON: 541375340.
  3. The operator's contact email address: kontakt@engelgroup.pl
  4. The Operator is the Administrator of your personal data with respect to the data provided voluntarily in the Service.
  5. The Service uses personal data for the following purposes:
    • Running a newsletter
    • Conducting online chat conversations
    • Handling inquiries through the form
    • Delivery of ordered services
    • Presentation of an offer or information
  6. The Service performs the functions of obtaining information about users and their behaviour in the following ways:
    1. Through data voluntarily entered into the forms, which is then entered into the Operator's systems.
    2. By saving cookie files (so-called “cookies”) on end devices.

2. Selected data protection methods applied by the Operator

  1. The login and personal data entry points are protected at the transmission layer (SSL certificate). Thanks to this, personal data and login data entered on the site are encrypted on the user's computer and can only be read on the target server.
  2. User passwords are stored in hashed form. The hashing function works one-way — it is not possible to reverse its operation, which currently constitutes a modern standard for storing user passwords.
  3. The Operator periodically changes its administrative passwords.
  4. In order to minimise the risk of unauthorised access to data, the Operator uses complex passwords containing lowercase and uppercase letters, digits and special characters, no shorter than 8 characters.
  5. An important element of data protection is the regular updating of all software used by the Operator to process personal data, which in particular means regular updates of programming components.
  6. In order to protect data, the Operator regularly makes backup copies.

3. Hosting

  1. The Service is hosted (technically maintained) on the operator's server: ovh.pl
  2. To ensure technical reliability, the hosting company keeps logs at the server level. The following may be recorded:
    • resources identified by a URL (addresses of requested resources — pages, files),
    • the time the request arrived,
    • the time the response was sent,
    • the name of the client workstation — identification carried out by the HTTP protocol,
    • information about errors that occurred during the HTTP transaction,
    • the URL of the page previously visited by the user (referer link) — in the case where access to the Service was made through a link,
    • information about the user's browser,
    • information about the IP address,
    • diagnostic information related to the process of self-ordering services through the registrars on the site,
    • information related to handling email directed to the Operator and sent by the Operator.

4. Your rights and additional information about how data is used

  1. In some situations, the Administrator has the right to pass your personal data on to other recipients if this is necessary to perform the agreement concluded with you or to fulfil obligations resting on the Administrator. This concerns the following groups of recipients:
    • the hosting company on an entrustment basis
    • postal operators
    • law firms and debt collectors
    • payment operators
    • comment system operators
    • authorised employees and associates who use the data in order to carry out the purpose of the site's operation
    • online chat solution operators
    • companies providing marketing services for the Administrator
  2. Your personal data is processed by the Administrator for no longer than is necessary to perform the related activities specified by separate regulations (e.g. on keeping accounts). With respect to marketing data, the data will not be processed for longer than 3 years.
  3. You have the right to request from the Administrator:
    • access to the personal data concerning you,
    • its rectification,
    • erasure,
    • restriction of processing,
    • and data portability.
  4. You have the right to lodge an objection regarding the processing indicated in point 3.3 c) against the processing of personal data for the purpose of pursuing the legitimate interests pursued by the Administrator, including profiling, whereby the right of objection may not be exercised if there are valid legitimate grounds for processing that override your interests, rights and freedoms, in particular the establishment, pursuit or defence of claims.
  5. You have the right to lodge a complaint about the Administrator's actions with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warszawa.
  6. Providing personal data is voluntary, but necessary for the operation of the Service.
  7. You may be subject to actions consisting of automated decision-making, including profiling, for the purpose of providing services under the concluded agreement and for the purpose of the Administrator conducting direct marketing.
  8. Personal data is transferred to third countries within the meaning of the personal data protection regulations. This means that we send it outside the territory of the European Union.

5. Information in forms

  1. The Service collects information provided voluntarily by the user, including personal data, if such data is provided.
  2. The Service may save information about connection parameters (time stamp, IP address).
  3. The Service may, in some cases, save information facilitating the linking of the data in the form with the email address of the user filling out the form. In such a case, the user's email address appears within the url of the page containing the form.
  4. The data provided in the form is processed for the purpose arising from the function of the specific form, e.g. to carry out the process of handling a service request or commercial contact, registering services, etc. In each case, the context and description of the form clearly informs what it is used for.

6. Administrator's logs

  1. Information about user behaviour on the service may be subject to logging. This data is used to administer the service.

7. Important marketing techniques

  1. The Operator applies statistical analysis of site traffic through Google Analytics (Google Inc. based in the USA). The Operator does not pass personal data to the provider of this service, only anonymised information. The service is based on the use of cookies on the user's end device. As regards information about the user's preferences gathered by the Google advertising network, the user can view and edit the information arising from cookie files using the tool: https://www.google.com/ads/preferences/
  2. The Operator uses the Facebook pixel. This technology causes the Facebook service (Facebook Inc. based in the USA) to know that a given person registered with it is using the Service. In this case it is based on data of which it is itself the administrator; the Operator does not pass any additional personal data of its own to the Facebook service. The service is based on the use of cookies on the user's end device.
  3. The Operator uses a solution that studies user behaviour by creating heat maps and recording behaviour on the site. This information is anonymised before being sent to the service provider, so that it does not know which natural person it concerns. In particular, entered passwords and other personal data are not recorded.
  4. The Operator uses a solution that automates the operation of the Service with respect to users, e.g. capable of sending an email to a user after visiting a specific subpage, provided they have consented to receiving commercial correspondence from the Operator.

8. Information about cookie files

  1. The Service uses cookie files.
  2. Cookie files (so-called “cookies”) are IT data, in particular text files, which are stored on the end device of the Service User and intended for use with the Service's web pages. Cookies usually contain the name of the website they come from, the time they are stored on the end device and a unique number.
  3. The entity placing cookie files on the end device of the Service User and obtaining access to them is the Service operator.
  4. Cookie files are used for the following purposes:
    1. maintaining the Service user's session (after logging in), thanks to which the user does not have to re-enter their login and password on every subpage of the Service;
    2. realising the purposes specified above in the section “Important marketing techniques”;
  5. Two essential types of cookie files are used within the Service: “session” (session cookies) and “persistent” (persistent cookies). “Session” cookies are temporary files stored on the User's end device until logging out, leaving the website or shutting down the software (web browser). “Persistent” cookie files are stored on the User's end device for the time specified in the cookie file parameters or until they are deleted by the User.
  6. Software for browsing web pages (a web browser) usually allows cookie files to be stored on the User's end device by default. Service Users can change the settings in this regard. The web browser allows cookie files to be deleted. It is also possible to automatically block cookie files. Detailed information on this subject is contained in the help or documentation of the web browser.
  7. Restrictions on the use of cookie files may affect some functionalities available on the Service's web pages.
  8. Cookie files placed on the end device of the Service User may also be used by entities cooperating with the Service operator, in particular this concerns the companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).

9. Managing cookie files — how to give and withdraw consent in practice?

  1. If the user does not want to receive cookie files, they can change their browser settings. We note that disabling the handling of cookie files necessary for authentication, security and maintaining user preferences may make it difficult, and in extreme cases may make it impossible, to use the website.
  2. To manage cookie settings, select the web browser you use from the list below and follow the instructions:

    Mobile devices:

This policy template was generated free of charge, for informational purposes, based on our knowledge, industry practices and the legal regulations in force as of 2018-08-14. We recommend reviewing the policy template before using it on your site. The template is based on the situations most commonly occurring on websites, but may not reflect the full and exact specifics of your website. Read the generated document carefully and, if necessary, adapt it to your situation or seek legal advice. We take no responsibility for the consequences of using this document, since only you have control over whether all the information it contains is true. Note also that a Privacy Policy, even the best one, is only one of the elements of your care for personal data and user privacy on the website.

Have a question?

Write to us — we'll reply directly.

kontakt@engelgroup.pl Back to home page
0%