arrow-icon-size3 Get in Touch

Privacy Policy

Privacy Policy

 

  1. General Information

     

    1. This privacy policy applies to the website operating at the address: innothink.com.pl
    2. The Website Operator and the Data Controller is InnoThink Limited Liability Company with its registered office at 00-105 Warsaw, ul. Twarda 18, KRS number 0000796233, NIP: 5252795941, REGON: 38394255000000
    3. The operator’s contact email address is: biuro[at]innothink.com.pl
    4. The Administrator has appointed a Data Protection Officer who can be contacted regarding matters related to the processing of personal data and the exercise of rights under the GDPR at email address: rodo[at]innothink.com.pl or in writing to the Administrator’s registered office address.
    5. The Operator is the Controller of your personal data with respect to the data you voluntarily provide in the service.
    6. The Service uses personal data for the following purposes:
      1. 1.6.1.Handling inquiries via the form
      2. 1.6.2.Execution of ordered services
      3. 1.6.3.Recruitment of new employees
      4. 1.6.4.Marketing purposes
      5. 1.6.5.Analysis, statistics and optimization of the Service functioning
      6. 1.6.6.Fulfillment of legal obligations incumbent on the Administrator
    7. The legal basis for the processing of personal data is:
      1. 1.7.1.Article 6(1)(a) GDPR – consent of the data subject
      2. 1.7.2.Article 6(1)(b) GDPR – necessity for the performance of a contract
      3. 1.7.3.Article 6(1)(c) GDPR – necessity for compliance with a legal obligation
      4. 1.7.4.Article 6(1)(f) GDPR – legitimate interest of the Administrator
    8. The Service obtains information about users and their behavior in the following ways:
      1. 1.8.1.Through data voluntarily entered in forms, which are then entered into the Operator’s systems.
      2. 1.8.2.By storing Cookie files in end devices.
      3. 1.8.3.By collecting www server logs.
  2. Your Rights and Additional Information on How Data is Used

     

    1. In some situations, the Administrator has the right to transfer your data to other recipients if it is necessary to perform the contract concluded with you or to fulfill the obligations incumbent on the Administrator. This applies in particular to:
      1. 2.1.1.authorized employees and associates who use the data for the purpose of website operation
      2. 2.1.2.processing entities to whom the Administrator will commission data processing activities
      3. 2.1.3.technical and organizational service providers
      4. 2.1.4.entities entitled to obtain data under applicable law, e.g., courts and law enforcement agencies – if requested by the authority on an appropriate legal basis
    2. The Administrator transfers collected personal data outside the European Economic Area only to the extent necessary to achieve the purposes indicated in point 1.6, ensuring an adequate level of protection, in particular through:
      1. 2.2.1.cooperation with entities processing personal data in countries for which an appropriate decision of the European Commission has been issued
      2. 2.2.2.application of standard contractual clauses approved by the European Commission
      3. 2.2.3.application of binding corporate rules approved by the competent supervisory authority
    3. Your personal data will be processed by the Administrator for no longer than necessary to perform the activities specified in separate regulations. In particular:
      1. 2.3.1.data related to handling inquiries – for the time necessary to handle the inquiry and communicate with the user
      2. 2.3.2.data related to the implementation of contracts – for the duration of the contract and the period specified by accounting regulations and consumer rights
      3. 2.3.3.
      4. 2.3.4.data for marketing purposes – until withdrawal of consent or for a period of 3 years from the last contact with the data subject
      5. 2.3.5.data related to recruitment – during the recruitment period and up to 12 months after its completion (with the candidate’s consent)
    4. You have the right to request from the Administrator:
      1. 2.4.1.access to your personal data
      2. 2.4.2.their rectification
      3. 2.4.3.erasure
      4. 2.4.4.restriction of processing
      5. 2.4.5.data portability
      6. 2.4.6.objection to processing
      7. 2.4.7.withdrawal of consent at any time without affecting the lawfulness of processing based on consent before its withdrawal
    5. You have the right to object to the processing of personal data in order to perform legally justified interests pursued by the Administrator, including profiling, whereby the right to object cannot be exercised if there are valid legally justified grounds for processing, overriding your interests, rights and freedoms, in particular the establishment, exercise or defense of claims.
    6. You can file a complaint against the Administrator’s actions to the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw.
    7. Providing personal data is voluntary, but necessary to use the Service and provide services.
    8. Automated decision-making processes, including profiling, may be taken in relation to you in order to provide services under the concluded contract and for the Administrator’s direct marketing purposes. You have the right to object to such processing.
    9. The Administrator takes special care to protect the interests of data subjects, and in particular ensures that the data collected is processed in accordance with the law, collected for specified lawful purposes and not subjected to further processing incompatible with these purposes, factually correct and adequate in relation to the purposes for which they are processed, and stored in a form allowing identification of the persons to whom they relate, no longer than is necessary to achieve the purpose of processing.
  3. Information in Forms

     

    1. The Service collects information provided voluntarily by the user, including personal data, if provided.
    2. The Service, in some cases, especially related to recruitment processes and business inquiries, may record information facilitating the association of form data with the email address of the user completing the form.
    3. Data entered in the form is processed for the purpose resulting from the function of a specific form, e.g., to process a service request or business contact, service registration, etc. The context and description of the form clearly informs what it is used for.
    4. If the form is used to collect data for contract conclusion or is necessary to provide a service, its scope is limited to data necessary for the implementation of the contract or provision of the service.
  4. Server Logs

     

    1. Information about certain user behaviors is subject to logging in the server layer. This data is used solely for the purpose of administering the service and to ensure the most efficient service of the provided hosting services.
    2. Browsed resources are identified by URLs. Additionally, the following may be recorded:
      1. 4.2.1.time of request arrival
      2. 4.2.2.time of sending the response
      3. 4.2.3.name of the client station – identification performed by the HTTP protocol
      4. 4.2.4.information about errors that occurred during the execution of the HTTP transaction
      5. 4.2.5.URL of the page previously visited by the user (referer link) – in case the transition to the Service was made through a link
      6. 4.2.6.information about the user’s browser
      7. 4.2.7.information about the IP address
    3. The above data is not associated with specific individuals browsing the pages.
    4. The above data is used only for server administration purposes.
  5. Information About Cookies

     

    1. The Service uses cookies.
    2. Cookies are IT data, in particular text files, which are stored in the end device of the Service User and are intended for using the Service’s websites. Cookies usually contain the name of the website they come from, the storage time on the end device, and a unique number.
    3. The entity placing cookies on the Service User’s end device and accessing them is the Service operator.
    4. Cookies are used for the following purposes:
      1. 5.4.1.creating statistics that help understand how Service Users use websites, which allows improving their structure and content
      2. 5.4.2.maintaining the Service User’s session (after logging in), thanks to which the User does not have to re-enter their login and password on each subpage of the Service
      3. 5.4.3.determining the user’s profile in order to display matching materials in advertising networks, in particular the Google network
      4. 5.4.4.proper functioning of the Service and collecting traffic data
    5. Two main types of cookies are used within the Service: ‘session’ cookies and ‘persistent’ cookies. ‘Session’ cookies are temporary files that are stored in the User’s end device until they leave the website or disable the software (web browser). ‘Persistent’ cookies are stored in the User’s end device for the time specified in the cookie parameters or until they are deleted by the User.
    6. The following types of cookies are used within the Service:
      1. 5.6.1.necessary cookies, enabling the use of services available within the Service, e.g., authentication cookies used for services requiring authentication within the Service
      2. 5.6.2.security cookies, e.g., used to detect authentication abuse within the Service
      3. 5.6.3.performance cookies, enabling the collection of information on how the Service’s websites are used
      4. 5.6.4.functional cookies, allowing ‘remembering’ the settings selected by the User and personalizing the User’s interface, e.g., in terms of the selected language or region the User comes from, font size, website appearance, etc.
      5. 5.6.5.advertising cookies, enabling the delivery of advertising content to Users that is more tailored to their interests
    7. Web browsing software (web browser) usually allows cookies to be stored on the User’s end device by default. Service Users can change settings in this regard. The web browser allows the deletion of cookies. It is also possible to automatically block cookies. Detailed information on this subject can be found in the help or documentation of the web browser.
    8. Restrictions on the use of cookies may affect some functionalities available on the Service’s websites.
    9. Cookies placed in the Service User’s end device may also be used by entities cooperating with the Service operator, in particular companies: Google (Google Inc. based in the USA), Facebook (Meta Platforms, Inc. based in the USA), Twitter (Twitter Inc. based in the USA).
    10. 5.10.More information about cookies is available in the ‘Help’ section in the web browser menu or on the websites of individual browser providers
      1. 5.10.1.Chrome: https://support.google.com/chrome/answer/95647
      2. 5.10.2.Firefox: https://support.mozilla.org/pl/kb/ciasteczka
      3. 5.10.3.Internet Explorer: https://support.microsoft.com/pl-pl/help/17442/windows-internet-explorer-delete-manage-cookies
      4. 5.10.4.https://help.opera.com/pl/latest/web-preferences/
      5. 5.10.5.https://support.apple.com/pl-pl/guide/safari/sfri11471/mac
  6. Managing Cookies – How to Express and Withdraw Consent in Practice?

     

    1. If a user does not want to receive cookies, they can change their browser settings. We stipulate that disabling cookies necessary for authentication processes, security, maintaining user preferences may make it difficult, and in extreme cases may make it impossible to use the websites.
    2. To manage cookie settings, select the browser you use and follow the instructions specified in point 5.10.
  7. Analytical and Marketing Tools Used by the Administrator

     

    1. The Administrator uses Google Analytics, a web analytics service provided by Google, Inc. Google Analytics uses cookies to enable analysis of how the Service is used. Information generated by cookies about the User’s use of the Service is transmitted to Google and stored by it on servers.
    2. The Administrator uses the remarketing function in Google Analytics to display ads in the Google advertising network. The remarketing function allows displaying ads tailored to the User’s previous visits to the Service.
    3. The Administrator uses the Facebook pixel, which enables tracking conversions from Facebook ads, optimizing ads, building audiences for future ads, and remarketing.
    4. The user can opt out of Google Analytics cookies by installing the Google Analytics opt-out browser add-on, available at: https://tools.google.com/dlpage/gaoptout 
    5. The user can manage their preferences regarding cookies used by Facebook through their Facebook account settings.
  8. Final Provisions

     

    1. The Administrator applies technical and organizational measures ensuring protection of the processed personal data appropriate to the threats and categories of data subject to protection, and in particular, protects the data against unauthorized access, unauthorized taking, processing in violation of applicable regulations, as well as against change, loss, damage or destruction.
    2. The Administrator appropriately provides technical measures to prevent the acquisition and modification of personal data transmitted electronically by unauthorized persons.
    3. In matters not regulated by this Privacy Policy, the provisions of the GDPR and other relevant provisions of Polish law shall apply accordingly.
    4. The Administrator reserves the right to change this Privacy Policy at any time. Changes take effect from the moment of their publication in the Service.

 

Date of last update: March 24, 2025