2.2. we will not transfer your personal data to third countries (outside the European Economic Area) – also when using solutions such as Google Analytics, we use solutions that prevent the collection of any personal data and anonymize all collected information.
2.3. However, if your data is to be transferred outside the EEA, we will inform you about it via an appropriate message. The transfer of data to a third country will always take place: i) to countries for which a Commission decision has been issued to ensure adequate protection; or ii) pursuant to standard contractual clauses. Before transferring the data, we will verify whether the recipient applies measures to ensure the security and integrity of the data, as well as whether the country to which the personal data is transferred provides appropriate measures to protect data subjects;
2.4. Your data may be profiled by us, in particular based on the number of sessions, in order to undertake commercial and marketing activities. We will not make automated decisions about you;
2.5. You can object to profiling at kontakt@conversion.pl. In such a case, we will stop profiling.
3. DATA RECIPIENTS
3.1. We may entrust the processing of personal data to third parties in order to perform specific activities. Then the recipients of your data may be: i) hosting provider, ii) e-mail operator; iii) companies providing technical support; iv) service provider for sending e-mails, including newsletters; v) law firms; vi) the supplier of the CRM system used in our ongoing work;
3.2. The personal data we collect may be made available to relevant state authorities upon their request pursuant to relevant legal provisions or to other persons and entities – in cases provided for by law;
3.3. Each entity to which we entrust personal data for processing, based on the entrustment agreement for the processing of personal data (hereinafter referred to as the “Entrustment Agreement”), guarantees an appropriate level of security and confidentiality of personal data processing. The processing entity based on the Entrustment Agreement may process personal data through another entity only on the basis of our prior consent.
3.4. Personal data may be made available to unauthorized entities in accordance with this Privacy Policy only with the prior consent of the person concerned.
4. RIGHTS OF THE DATA SUBJECT
4.1. In connection with the processing of your personal data by us, you have the following rights: i) to request the removal of your personal data from our database, ii) to limit the processing of your data, iii) to transfer personal data, including to receive it in a structured form, iv ) request from us access to your personal data and rectification of it; v) object to processing, vi) withdraw previously expressed consent to the processing of personal data at any time, without affecting the lawfulness of processing based on consent before its withdrawal; vii) submit a complaint against us to the supervisory authority (President of the Personal Data Protection Office).
5. OTHER DATA
5.1. We may store http queries, therefore some information may be saved in the server log files, including the IP address of the computer from which the query came, the name of the data subject’s station – identification carried out via the http protocol, if possible, date and system time of registration on the website and the arrival of the query, the number of bytes sent by the server, the URL address of the previously visited page if you entered our website using a link, information about the browser, information about errors that occurred during the http transaction. Logs may be collected as material for the proper administration of our website. Only persons authorized to administer the IT system have access to the information. Log files can be analyzed to prepare statistics on traffic on the Conversion website and any errors that may occur. The summary of such information does not allow the identification of a natural person and therefore does not constitute the processing of personal data.
6. SECURITY
6.1. We use technical and organizational measures to ensure protection of processed personal data appropriate to the threats and categories of data protected, and in particular, it technically and organizationally protects data against disclosure to unauthorized persons, removal by an unauthorized person, processing in violation of the Act and change, loss, damage or destruction, among others SSL certificates are used. The set of collected personal data is stored on a secured server. The data is also protected by our internal procedures for the processing of personal data and information security policy;
6.2. We have also implemented appropriate technical and organizational measures, such as pseudonymization, designed to effectively implement data protection principles, such as data minimization, and to provide the processing with the necessary safeguards to comply with the requirements of the GDPR and to protect the rights of data subjects;
6.3. Remember that using the Internet and services provided electronically may be at risk of malicious software (malware) entering the IT system and device of a given user, as well as unauthorized access to data, including personal data, by third parties. In order to minimize these threats, you should use appropriate technical security measures, e.g. using up-to-date antivirus programs or programs that protect your identification on the Internet.
7. COOKIES
7.1. In order for the website to function properly, we use cookie technology. Cookies are information packages saved on a given user’s device, usually containing information consistent with the purpose of a given file, through which a given user uses the Conversion website – these are usually: website address, date of placement, expiration date, unique number and additional information in accordance with the purpose of a given file;
7.2. We use two types of cookies: (a) session cookies, which are permanently deleted when the user’s browser session ends; (b) persistent, which remain after the end of the browser session on the user’s device until they are deleted;
7.3. It is not possible to determine the identity of a given user based on cookies, both session and persistent. The Cookie mechanism does not allow the collection of any personal data;
7.4. The cookies we use are safe for the user’s device, in particular they do not allow viruses or other software to enter the device;
7.5. Cookies generated directly by us cannot be read by other websites. External Cookies (i.e. Cookies placed by entities cooperating with us) can be read by an external server;
7.6. We use cookies to the extent that you consented to it when you first visited our website or to the extent that you changed the scope of this consent. Without your consent, we only use cookies necessary to properly display our website and enable you to use its functionality;
7.7. If you consent, we may use cookies for the following purposes: i) statistical purposes; ii) marketing; iii) preferential. Of course, you can consent to the use of Cookies only for some of the above purposes;
7.8. You can change the scope of your previously expressed consent using the button below. In addition, in the table below you will find detailed information on individual cookies that we use on our website.
8. FINAL PROVISIONS
8.1. This Privacy Policy enters into force on December 20, 2023.
