Privacy Policy

1. basics

We take your privacy seriously and are committed to protecting the personal data you provide to us. This Privacy Policy explains how we collect, use and secure your personal information when you use our website or services.

By using our website or providing your data using forms or other means, you agree to the conditions set out in this Policy.

2. SCOPE OF APPLICATION

This Policy applies to all personal data collected through our website, application and other communication channels. It explains what types of data we may collect, how we use and protect it, and what your rights are under applicable data protection laws.

We may update this Policy from time to time to reflect changes in our legal practices or requirements. We encourage you to read its content regularly.

3. DEFINITIONS

Personal data  — means any information that can directly or indirectly identify you, such as name and surname, contact details.

Website  — refers to the website you are currently visiting, including any of its subdomains or associated services.

Services  — any informational, visual, interactive or functional content and functions available on the Website.

Company  — operator of the Website.

Account  — a profile created by the user on the Website, enabling access to the Services.

User  — any natural person who accesses the Website or uses its Services.

4. YOUR RIGHTS

Depending on applicable data protection laws, such as the GDPR, you have different rights regarding your personal data. They include the right to:

  • Access and receive a copy of the personal data we hold about you.
  • Request rectification or updating of any incorrect or incomplete information.
  • Request the deletion of your personal data, if applicable, whereby some data may be stored for legal reasons.
  • Restriction or objection to certain forms of data processing based on legitimate interest.
  • Request a copy of your data in a format that allows them to be transferred and used in other services.
  • Withdraw the consent to the processing of data at any time.
  • File a complaint with the competent data protection authority if you believe that your rights have been violated.

To exercise these rights, please contact us via the data provided on our website. We will response to your request in accordance with the applicable deadlines provided for in the law.

5. THE PRINCIPLES WE FOLLOW

We are committed to the responsible management of your personal data in accordance with accepted data protection standards. Our activities are based on the following key principles:

  • Transparency and legality: We process your data only if we have a legal basis for it, and we always strive for full transparency as to how and for the purpose of its use.
  • Use for a specific purpose: Personal data is collected for clearly defined and lawful purposes, and is not used for purposes not related to those for which it was collected.
  • Data minimization: We only collect information that is really necessary for the operation and achievement of the purposes of our services.
  • Accuracy and adequacy: We strive to ensure that your personal data is accurate, complete and up-to-date, making the necessary corrections when required.
  • Limited retention period: Your data is stored only for the period necessary to achieve the purposes for which it was collected or to comply with legal obligations.
  • Safety and security: We use appropriate technical and organizational measures to prevent unauthorised access, misuse or accidental loss of your personal data.

6. LEGAL BASIS FOR DATA PROCESSING

We process your personal data on the basis of one or more of the following legal bases:

  • In order to fulfill our contractual obligations during the provision of services.
  • To meet legal and regulatory requirements.
  • As part of our legitimate interest, such as improving our services or protecting our systems, while respecting your rights.
  • Based on your explicit consent, for example in the case of sending marketing communications. You can withdraw your consent at any time.

7. OVERVIEW OF PERSONAL DATA COLLECTED AND PROCESSED

We collect different types of personal data depending on your interaction with our services. The following is a summary of the types of data we may collect, the moments of their collection, the method of use and the legal basis for their processing:

  • Account-related data (e.g. public profile information):
    Collected during registration or login to enable access to your account.
  • Payment-related data (including the e-mail address used for transactions):
    Collected during payment. Used to carry out transactions. Payment data is processed by external payment operators.
  • IP address history:
    Collected when using the service. It is used to offer location-specific options and to detect suspicious activity.
  • Data on the use of the service (e.g. visited pages, user activity):
    Collected during regular use of the website to improve functionality and user experience.
  • E-mail address (for communication):
    Collected when you agree to receive marketing materials or contact us. Used to send promotional or service-related information.

Additional information may be required as part of security procedures or to comply with legal obligations.

8. SECURITY AND DATA STORAGE

How we protect your data

We take data security seriously and use a combination of physical, technical, and administrative safeguards to protect your personal information from unauthorised access, misuse, or disclosure. Your information is stored on secure servers, which are accessible only to authorised persons or service providers who need this data to perform their official duties. These persons are trained in data processing and are covered by confidentiality obligations.

All data transmitted through our website is encrypted using industry-standard protocols, which helps ensure that it is secure during transmission. In the case of cooperation with third parties regarding the processing of personal data on our behalf, we require them to apply appropriate security measures and comply with applicable data protection regulations.

Your role in protecting your data

We recommend using strong, unique passwords for your accounts and avoiding sharing them with others. If you suspect unauthorized access, change your login details immediately and, if necessary, let us know. Avoid storing sensitive login information on shared or unsecured devices.

Data retention period

We only retain personal information for the period necessary to fulfill the purposes for which it was collected, including to meet legal, regulatory or internal business requirements.

When determining how long your data is stored, we take into account:

  • Nature and amount of data collected
  • Information sensitivity
  • Purpose for which the data was collected
  • Applicable legal or regulatory requirements
  • Ongoing contractual relationship or relationship with the user

If your account is deleted or becomes inactive, we only store the data necessary to comply with legal obligations or comply with regulations. This data is stored securely for the minimum required period, usually up to 3 years, unless the law requires longer storage. After this period, the data is safely archived or deleted.

9. SHARING PERSONAL DATA

We may share personal data with third parties under certain conditions and for clearly defined purposes. They include:

With service providers
We may share data with external providers who support our operational activities. These entities are contractually obliged to use the data only for the agreed purpose and to apply appropriate security measures.

With legal authorities
We may disclose personal information to regulatory or government authorities if required to do so by law, legal process, or to protect our rights. If possible, we will inform you in advance, unless prohibited by law.

With consent
If we want to share your personal data for purposes not indicated in this Policy, we will ask for your explicit consent in advance.

In case of emergency
We may disclose data when it is necessary to protect the life or physical safety of a person, especially in emergency situations involving an immediate threat.

For enforcement purposes
We may share personal information if we believe your conduct violates our terms of service, policies, or legal agreements, or to protect our rights and property.

With related entities and partners
Data may be shared internally within our company, affiliates or trusted business partners providing services on our behalf. Such sharing is governed by confidentiality agreements and data protection standards in accordance with this Policy.

10. INTERNATIONAL DATA TRANSFER

If your data is processed outside the European Economic Area (EEA), we ensure that such transfer takes place with appropriate protective measures, including:

  • European Commission Decision on an adequate level of protection
  • Standard contractual clauses
  • Your explicit and informed consent (if applicable)

We will never transfer your personal data abroad without ensuring an adequate level of protection in accordance with applicable regulations.

11. INFORMATION THAT DOES NOT ALLOW THE IDENTIFICATION OF A PERSON

We may collect and share aggregated or pseudonymous information, such as usage statistics or browser types that do not allow individual identification. This type of data helps us understand user behavior, improve our services and measure the effectiveness of our website or content.

We do not share personally identifiable personal information (e.g. name, surname or e-mail address) with advertisers or third parties not related to our business.

12. COOKIES

We use cookies and similar technologies to improve your experience, remember your preferences and analyse website traffic. Some cookies are necessary for the proper functioning of our website (e.g. session authentication), while others help us optimize performance.

Cookies usually do not contain personal data, however, if we store personal data associated with information from cookies, it will be processed in accordance with this Policy.

13. EXTERNAL LINKS

Our website may contain links to third-party websites or services. These external sites have their own practices and privacy policies that we have no control over. We recommend that you read their privacy policies, as we are not responsible for the way in which they process personal data.

14. Contact us

If you have questions about this Privacy Policy, need additional clarification or want to exercise your rights under applicable data protection laws, you can contact us.