Privacy policy - Yush

The Privacy Policy Yush Pracownia Marketingowa

This policy applies to the website operating at URL: yushpracownia.pl The operator of the website and the personal data manager is: Yush Pracownia Marketingowa Magdalena Janaczek, Jagiełły 31b, 02-495 Warsaw. The operator’s email address is: magda@yushpracownia.pl. The operator is the administrator of your personal data for data voluntarily provided on webpage.

The Administrator has the authority to process Users’ personal data in the following circumstances:

a. For the purpose of maintaining ongoing contact, including through the contact form, email, or telephone. The Administrator may process Users’ data such as their name, surname, email address, and any other data required by the contact form. Additionally, any other data that the User chooses to include in their messages to the Administrator will also be processed. This processing is carried out in order to respond to the User’s message or address any issues raised by the User, such as inquiries about the Administrator’s business activities, products, or any other correspondence. The legal basis for this processing is the Administrator’s legitimate interest in providing proper service to the User, which includes answering questions and addressing matters raised by the User through the contact form, email, or telephone.

b. For archiving purposes, after the conclusion of joint correspondence or information exchange. This is also considered a legitimate interest of the Administrator, as stated in Article 6(1)(f) of the General Data Protection Regulation (GDPR).

c. For the identification of the sender and handling of inquiries or issues submitted through the contact form, email, or telephone. This processing is also based on the Administrator’s legitimate interest, as outlined in Article 6(1)(f) of the GDPR.

d. For any data that is not necessary for establishing contact or handling inquiries or issues, the legal basis for processing is the User’s consent, as stated in Article 6(1)(a) of the GDPR. Providing this data is voluntary but necessary in order to correspond with the Administrator or exchange information. The processing of the User’s personal data will continue until a justified objection is submitted. Furthermore, the Administrator may process Users’ personal data in order to establish, pursue, or defend possible claims and rights. This processing is based on the Administrator’s legitimate interest, as stated in Article 6(1)(f) of the GDPR.

To the extent that applicable legal provisions regarding personal data provide for it, the User has the following rights:

a. The right to access personal data (Article 15 of the GDPR): The User has the right to obtain from the Administrator confirmation whether his or her personal data is being processed, and if this is the case, he or she has the right to access them and obtain information, among others: about the purpose of their processing, the categories of personal data concerned, the recipients or categories of recipients to whom his personal data have been or will be disclosed, including recipients in third countries or international organizations.
b. The right to rectify data (Article 16 of the GDPR): The User has the right to request the Administrator to rectify his or her personal data due to its incorrectness or incompleteness.
c. The right to delete personal data, i.e. the so-called the right to be forgotten (Article 17 of the GDPR) – in cases provided for by applicable law, the User has the right to request the Administrator to delete his or her personal data and to inform the entities to which the Administrator transferred his or her data about the User’s request.
d. The right to limit processing (Article 18 of the GDPR): in certain cases, the User has the right to request restriction of the processing of personal data, i.e.: a) when the User questions the accuracy of the personal data – for a period enabling the Administrator to check the accuracy of the data; b) the processing is unlawful and the User objects to the deletion of personal data and requests instead to limit their use; c) The Administrator no longer needs personal data for processing purposes, but the User needs them to establish, pursue or defend claims; d) The user has objected to processing pursuant to Art. 21 section 1 GDPR – until it is determined whether the legally justified grounds on the part of the Administrator override the grounds for the User’s objection.
e. The right to transfer data (Article 20 of the GDPR): The User has the right to receive personal data provided to the Administrator and to send them to another personal data administrator selected by the User. The right to transfer applies when the Administrator processes personal data on the basis of the User’s consent (Article 6(1)(a) of the GDPR) or the conditions for the performance of a contract (Article 6(1)(b) of the GDPR), and the processing is carried out in an automated manner. . If technically possible, the User may also request that his or her personal data be sent by the Administrator directly to another authorized administrator.
f. The right to claim (Article 21 of the GDPR): if the Administrator processes the User’s data on the basis of its legitimate interest, the User has the right to object to the Administrator’s processing of his or her personal data at any time for reasons related to the User’s particular situation. The User’s objection in this respect should include justification (except for the cases specified in the law). Then, the Administrator cannot process the User’s data unless he proves the existence of valid, legally justified grounds for processing, overriding the User’s interests, rights and freedoms, or grounds for establishing, pursuing or defending claims.
g. The right to withdraw consent (Article 7 of the GDPR): if the processing of personal data is based on the User’s consent (Article 6(1)(a) of the GDPR), he has the right to withdraw such consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
h. The right to lodge a complaint with the supervisory authority (Article 77 of the GDPR): if it is considered that the processing of the User’s personal data violates applicable provisions, he or she has the right to lodge a complaint with the supervisory authority – the President of the Office for Personal Data Protection.

To use those rights (except for the right referred to in letter h above), the User should contact the Administrator via e-mail at: magda@yushpracownia.pl.

The User’s personal data may be transferred to entities processing personal data at the request of the Administrator, among others: IT service providers, providers of telecommunications, hosting, courier and legal services, as well as entities providing statistical analysis services, advertising and marketing services (including mailing services), marketing agencies or entities ensuring the maintenance of the Administrator’s Website and entities providing training and advisory services in the field of personal data protection.

As a rule, the Administrator does not transfer Users’ personal data outside the European Economic Area (EEA), however, if necessary, it may transfer them outside the EEA only if an appropriate level of protection is ensured in accordance with the GDPR, including: by: using appropriate safeguards in the form of standard contractual clauses adopted pursuant to decisions of the European Commission and contracts entrusting the processing of personal data that meet the requirements of the GDPR; cooperation with entities processing personal data in countries for which an appropriate and up-to-date decision of the European Commission has been issued regarding the assurance of an adequate level of personal data protection; application of binding corporate rules approved by the competent supervisory authority.

Marketing tools

1/ Google Analytics 4 – The administrator of the website uses an analytical tool called Google Analytics 4. This tool uses its own cookies and uses a special code to analyze statistics and verify traffic on the website. This is intended to improve and develop the Administrator’s website. Google Analytics collects, among others: anonymous information regarding visits to the website or time spent on the website by Users. As part of the Google Analytics service, the Administrator may use the following advertising functions, including: (1) impression reports in the Google advertising network; (2) Google Analytics Demographics and Interests Reporting; (3) integrated services that require Google Analytics to collect data for advertising purposes, including the use of advertising identifiers and cookies. You may opt-out of the advertising features we use through your browser settings, ad settings, mobile app ad settings and any other available methods (e.g. NAI consumer opt-out feature). Information about data collection and processing by Google is available at: https://policies.google.com/technologies/partner-sites?hl=pl.

2/ Google Ads – in order to develop the functionality of the website, the Administrator may use the Google Ads marketing tool. Thanks to this service, the Administrator’s advertisements can be displayed on external websites, and based on the data collected during advertising campaigns, the Administrator can assess the effectiveness of the advertising measures selected by him. Google Ads uses cookies to measure the parameters of reaching the recipient with the advertising message. The Administrator uses the collected data only for statistical purposes. Advertising campaigns are ordered by the Administrator only on the basis of collective criteria (specific target groups), and not on the basis of the criteria of a specific User using the website.

Social media

The Administrator may place plug-ins for social networking sites on the website, e.g. Linkedin. The use of plug-in functions may involve the use of cookies from such portals. The plug-in function is used by clicking the button with the appropriate icon, which causes a direct connection to the Administrator’s profile on individual portals. If the User uses the website and at the same time remains logged in to such portals, information about entering the website is recorded on these portals. If the User does not consent to the portals indicated above obtaining information about his visits to the Website, it is recommended to first log out of his accounts on such portals.

Cookies policy

Cookies (so-called “cookies”) are IT data, in particular text files, which are stored on the User’s end device and are intended for using the Website. Cookies usually contain the name of the website they come from, their storage time on the end device and a unique number.

The website does not automatically collect any information, except for information contained in cookies.

The entity that places cookies on the website User’s end device and obtains access to them is the Administrator (applies to own cookies).

Cookies are used for the following purposes:

adapting the content of the Website’s pages to the User’s preferences and optimizing the use of websites; in particular, these files make it possible to recognize the User’s device and properly display the Website page, tailored to its individual needs;
creating statistics that help understand how Website Users use websites, which allows improving their structure and content.

This website uses two basic types of cookies:

“session cookies” – which are temporary files that are stored on the User’s end device until they leave the website or turn off the software (web browser),
“persistent cookies”, which are cookies stored on the User’s end device for the period specified in the cookie parameters or until they are deleted by the User.
“performance” cookies, enabling the collection of information on how the Website pages are used;
“functional” cookies, enabling “remembering” the settings selected by the User and personalizing the User’s interface, e.g. in terms of the selected language or region from which the User comes, font size, appearance of the website, etc.;
“advertising” cookies, enabling the provision of advertising content to Users more tailored to their interests.

In many cases, the software used to browse websites (web browser) allows cookies to be stored on the User’s end device by default. Website users may change cookie settings at any time. These settings can be changed in particular in such a way as to block the automatic handling of cookies in the web browser settings or to inform each time they are placed on the Website User’s device. Detailed information about the possibilities and methods of handling cookies is available in the software (web browser) settings.

You can withdraw your consent to the use of cookies by changing your browser settings or settings to limit advertising tracking on your device. The Administrator informs that restrictions on the use of cookies may affect some functionalities available on the Website.

Cookies placed on the Website User’s end device may also be used by advertisers and partners cooperating with the Website operator.

Third parties, including Facebook and Google, may use their cookies (third-party cookies), web beacons and similar technologies to collect or receive information from the Website and elsewhere on the Internet and use it to provide measurement and advertising targeting services. More information about cookies is available at http://www.wszystkoociasteczkach.pl/ or in the “Help” section in the web browser menu.

The Administrator verifies the content of this Privacy Policy on an ongoing basis to ensure that it is fully up to date. In the event of any changes or additions, which may result in particular from the need to adapt to changes in applicable law or applicable privacy standards or related to the expansion of the Administrator’s offer or the functionalities of the Website, the Administrator will inform about it on its Website (e.g. via a message web push) or perhaps also by sending an appropriate e-mail as soon as the change is published. Whenever the User uses the Website, he or she is encouraged to visit the “Privacy Policy” tab.

The website performs the functions of obtaining information about users and their behavior in the following way: By voluntarily entering data in forms that are entered into the Operator’s systems.

By saving cookies on end devices (so-called “cookies”).

Selected data protection methods used by the Operator

The operator periodically changes its administrative passwords.

In order to protect data, the Operator regularly makes backup copies.

An important element of data protection is the regular updating of all software used by the Operator to process personal data, which in particular means regular updates of programming components.

Hosting

The website is hosted (technically maintained) on the operator’s server: cyberfolks.pl

Date of the last update: July 17, 2023.