1. General information.
The website legwan.com.pl is administered by LEGWAN Sp. z o.o., ul. 28 Pułku Strzelców Kaniowskich 69, 90-558 Łódź, POLAND, NIP 7272864712, REGON 523801910, KRS: 0001005761.
The website acquires information on its users and their behaviour as follows:
From information voluntarily entered in forms.
From cookie files saved on data terminal equipment.
From website server logs saved by the administrator Agave.pl operating at agave.pl.
2. Information in forms.
The Website gathers information provided by users voluntarily.
The Website can also save information on connection parameters (time stamps, IP address).
The data entered in forms is not accessible by third parties without the user’s consent.
The data entered in forms may constitute a list of potential clients registered by the Website Administrator in the register operated by the Inspector General for Personal Data Protection.
The data entered in forms is processed for purposes resulting from the functions of the specific form, e.g. for purposes of handling maintenance notifications or commercial contacts.
The data entered in forms can be transferred to entities providing certain technical services – this specifically concerns transfer of information on the holder of the registered domain to entities operating internet domains (primarily the NASK Scientific and Academic Computer Network research and development unit), payment operators, or other entities cooperating with the Website Administrator in this scope.
3. Cookies information.
Cookies are computer data, specifically text files, which are saved on the Website User’s data terminal equipment and used for use of the Website’s pages. Cookies usually include the name of the website of origin, time of storage on the data terminal equipment, and a unique number.
Cookies are saved on the User’s data terminal equipment and accessed by the Website administrator.
Cookies are used for the following purposes:
creation of statistics providing understanding of how Website Users use the web pages, which allows for improving their structure and content;
maintaining the session of the Website User (after signing in), which means that the User does not have to re-enter the login and password on every Website page;
establish the user profile in order to display customised materials in advertising networks, specifically Google.
The Website uses two types of cookies: session cookies and persistent cookies. Session cookies are temporary files saved on the User’s data terminal equipment until the User signs out, leaves the web page, or turns off the software (web browser). Persistent cookies are saved on the User’s data terminal device for the time specified in cookie parameters or until deleted by the User.
The software used to browse web pages (internet browser) is usually set by default to permit saving of cookies on the User’s data terminal equipment. The Website’s Users can change their settings. The internet browser offers the option of deleting cookies and automatically blocking cookies. For more information, please see the help file or documentation of your internet browser.
Restriction of cookies may affect certain functions available on the Website’s pages.
Cookies saved on the Website User’s data terminal equipment may also be used by the advertisers and partners cooperating with the Website administrator.
Cookies may be used by advertising networks, specifically Google, to display advertisements customised to the way the user uses the Website. For this purpose, they may save information on the user’s navigation path or time spent on a given website.
In scope of information on user preferences gathered by by Google, the user may browse and edit the information resulting from cookies with the tool available at https://www.google.com/ads/preferences/
4. Server logs.
The information on certain user behaviours is logged in the server layer. This data is used only for purposes of website administration and to ensure the best possible quality of the provided hosting services.
The browsed resources are identified by URL addresses. Furthermore, the following may be subject to registration:
time of request,
time of response,
client’s station number – identified with HTTP protocol,
information on errors created in the HTTP transaction,
URL address of the previous website visited by the user (referrer link) – if the user uses a referrer to go to the Website,
information on the user’s browser,
information on the IP address.
The aforementioned data is not associated with specific individuals browsing web pages.
The aforementioned data is used only for server administration purposes.
5. Data access.
The data is subject to third-party access only within legally permitted limits.
The data allowing for identification of a natural person is accessed only under the consent of said person.
The administrator may be obliged to provide the information collected by the Website to appropriate authorities under lawful requests in scope resulting from the given request.
6. Cookies management – how to express and withdraw consent in practice?
If you do not wish to receive cookies, please change the settings of your browser. Please note that if you decide to turn off cookies required for purposes of authentication, security, and saving user preferences, you may experience problems in using the website or, in extreme instances, be prevented from doing so.
To configure your cookie settings, choose your internet browser/system from the list below and follow the instructions:
GDPR information obligation
In light of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter “GDPR”) taking effect on 25 May 2018, we hereby inform you of the following:
1. The Controller of your personal data discussed below is Cezary Syta, who operates the business activity registered under the name Legwan Cezary Syta, ul. 28 Pułku Strzelców Kaniowskich 69, 90-558 Łódź, REGON (national business register): 366289847, NIP (taxpayer identification number): 948-243-16-76.
2. The Controller has not appointed a Personal Data Protection Inspector. In matters concerning personal data protection, please contact us by e-mail at [email protected]
3. Your personal data is processed for the following purposes:
a. actions taken upon your request associated with presentation of the offer and conclusion of the agreement with the Controller (pursuant to GDPR art. 6 section 1 point b))
b. performance of the agreement concluded with the Controller (pursuant to GDPR art. 6 section 1 point b))
c. marketing and promotion of the services provided by the Controller (pursuant to GDPR art. 6 section 1 point f)).
d. pursuing claims (pursuant to GDPR art. 6 section 1 point f))
e. internal administrative objectives of the Controller, including statistical objectives (pursuant to GDPR art. 6 section 1 point f))
4. Your personal data may be accessed to entities processing personal data on behalf of the Controller under personal data entrustment agreements.
5. Transferring personal data to third countries:
a. The Controller has the right to transfer your personal data required for performance of the service agreement to a third country or international organisation (Google, Facebook, etc.). Google and Facebook have entered the EU-U.S. Privacy Shield, and, pursuant to the decision of the European Commission of 12 July 2016 IP/16/2016, transferring personal data to entities seated in the United States, which have entered the aforementioned agreement, ensures appropriate protection of personal data in accordance with GDPR art. 45.
6. Your personal data will be processed in scope as follows:
a. offer preparation, conclusion and performance of the agreement concluded between you and the Administrator – for the time required for completion of the agreement, for the time and in scope required by provisions of the law or for purposes of securing potential claims and required by the tax law following completion of the agreement, and for 5 years counted from the end of the calendar year, in which a tax liability was created; if consent for data processing following expiration of the agreement is granted, until withdrawal of said consent.
b. direct marketing offered by the Administrator – until you file an objection towards processing for this purpose.
c. internal administrative purposes until fulfilment of the legitimate interests of the Administrator, which constitute grounds for said processing, or until you file an objection towards processing for this purpose.
7. You have the following rights: the right to access the content of your data, the right to request rectification of your data, the right to request deletion of your data, the right to restrict the processing of your data, the right to object to the processing of your data, the right to request transfer of your data, and the right to file a complaint to the supervisory authority.
8. If your data is processed based on your consent, you can withdraw said consent at any time. Please note that this has no effect on the legality of the data processed prior to the withdrawal of your consent.
9. Providing your personal data for purposes of processing associated with conclusion and performance of the agreement with the Administrator is strictly voluntary, but the agreement cannot be concluded and performed without this data.