DGD AGENCY

Privacy and Cookies Policy

I. Personal Data Processing

In accordance with Articles 12-14 of Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and the free movement of such data, and repealing Directive 95/46/EC, we inform you that:

  1. Data Controller
    The Data Controller of your personal data is “DGD AGENCY SP. Z O.O.”, located at Zamknięta 10/1.5, 30-554 Kraków, Poland, registered in the National Court Register under the number KRS: 0001103562, REGON: 528575306, NIP: 6793298605, email: agencydgd@gmail.com.
  2. Data Protection Officer
    The Data Protection Officer appointed by the Controller operates at the company’s headquarters at the address: “DGD AGENCY SP. Z O.O.”, Zamknięta 10/1.5, 30-554 Kraków, email: agencydgd@gmail.com.
  3. Purposes of Personal Data Processing
    Your personal data may be processed for the following purposes:
    • a) Purpose: All activities related to the preparation, conclusion, proper execution, and termination of contracts.
      Processing period: Until the contract is concluded, and thereafter for other purposes related to the contract, such as securing potential claims.
      Legal basis: Regulation, Article 6(1)(b).
    • b) Purpose: All activities related to the preparation, conclusion, proper execution, and termination of contracts in which you are not a party.
      Processing period: Until the contract is concluded, and thereafter for other purposes related to the contract, such as securing potential claims.
      Legal basis: Regulation, Article 6(1)(f).
    • c) Purpose: Carrying out activities based on consents granted, including providing information about the Controller and its activities, marketing via electronic and telephone channels, preparing and sending requested commercial offers, and responding to messages sent via the Controller’s website.
      Processing period: Until consent is withdrawn.
      Legal basis: Regulation, Article 6(1)(a). In the cases described in points 3(a-b), providing personal data is voluntary but necessary for achieving the specified purposes.
  4. Sources of Personal Data
    We process your personal data obtained directly from you (e.g., data provided on forms) and also from other publicly available sources, such as the National Court Register (KRS), the Central Register and Information on Economic Activity (CEIDG), and the REGON database.
  5. Recipients of Personal Data
    Recipients of your personal data may include:
    • a) Public authorities or entities entitled to request access or receive personal data under the law,
    • b) Entities with which the Controller has entrusted the processing of personal data based on contracts, such as accounting offices, law firms, printing services, courier service providers, IT service providers, and others processing data on behalf of the Controller,
    • c) Entities for which you have given consent for the sharing and processing of your personal data. The Controller will not transfer your personal data to a third country or international organizations.
  6. Data Retention Period
    Your personal data will be stored for the duration of cooperation with you or the entity you represent. After this time, they will be stored for the period necessary to pursue any claims related to this cooperation or to fulfill obligations imposed by applicable laws. Personal data processed based on consent will be stored for the duration of the consent, i.e., until its withdrawal. After that, they will be kept as long as necessary to fulfill any legal obligations.
  7. Your Rights
    You have the right to:
    • a) Request access to your personal data,
    • b) Request correction of your personal data,
    • c) Request deletion or restriction of the processing of your personal data,
    • d) Object to the processing of your personal data,
    • e) Request the transfer of your personal data,
    • f) Lodge a complaint with the Supervisory Authority (the President of the Personal Data Protection Office, previously known as the General Inspector for Personal Data Protection). A detailed description of your rights as a data subject can be found in Chapter III of the GDPR titled “Rights of the data subject.”
  8. Automated Decision Making
    Your personal data will be processed in an automated or partially automated manner. However, they will not be used for decision-making based solely on automated processing, including profiling.
  9. Changes to the Policy
    The Controller reserves the right to modify and update this policy.

II. Cookie Policy

“Cookies” are small text files containing IT data stored on users’ devices, designed to be used on websites. Cookies allow websites to display content tailored to individual preferences and typically contain the website address, the duration of storage on the user’s device, and a unique identifier.

We use session (temporary) cookies and persistent cookies. Session cookies are stored on the user’s device until they log out or close the browser. Persistent cookies are stored for a defined period, specified in the cookie file.

The information contained in cookies is used, among other things, to provide various tools and functionalities on the website, as well as to collect general statistical data. This allows us to identify how users navigate the website and provides us with opportunities to improve its structure and content. It is emphasized that personal data collected via cookies are encrypted, preventing unauthorized access and personal identification of users.

You can change your browser settings to manage cookies and manually delete them. Information on how to handle cookies and available configuration options can be found in your browser settings, depending on the type of browser used.

Documents:

Data Protection Regulations

Personal Data Protection Security Policy