PRIVACY POLICY

For the sake of preserving the right to privacy of the users of our services and to meet the requirements of the law, we publish this Privacy Policy, in which we explain and inform how we process and secure personal data obtained during the use of the Website or the use of other services.

We pay special attention to respecting the privacy of users visiting our website (hereinafter: "the Service"), and therefore we take the utmost care to ensure the security of the personal data processed and the compliance of the processing with the provisions of the applicable law, in particular with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (hereinafter: "GDPR").

We also use cookies and similar technologies on our Service. You can find out how they work on our Cookies Policy website.

  1. Personal data controller

    The controller of personal data is SalesTube sp. z o.o. with its registered seat in Warsaw, 134 Jerozolimskie Avenue, 02-305 Warsaw, registered in the Register of Entrepreneurs of the National Court Register under the number 0000342741, NIP: 5213546872, Regon: 14211277200000, hereinafter referred to as the " Controller".

    In matters concerning the processing of personal data, including the exercise of rights, you can contact the Data Protection Officer at iod@salestube.pl.

  2. Categories of personal data processed

    We process data that you submit or leave by using the Website, e.g. through forms, cookies (including ID numbers, browser "user agent" data).

  3. Purposes and legal basis for processing personal data

    1. We collect your personal data and use it for purposes related to the operation of the Website, including managing and improving its operation, for analytical and statistical purposes - the legal basis for processing is our legitimate interest (Article 6(1)(f) GDPR). Provision of this data is voluntary. We keep the data for the period of our legitimate interest or until an objection is successful. 

    2. Where the processing of your personal data is related to the provision of electronic services, we collect and process personal data for the purpose of offering content or services (e.g., functionality on our website) - the legal basis for the processing is the necessity of the processing for the performance of the contract (Article 6(1)(b) GDPR, Article 6(1)(c) GDPR in connection with the Act of 18 July 2002 on the provision of electronic services). Provision of data is voluntary, but necessary in order to use the services. We keep the data for the period necessary to conclude and perform the contract.

    3. We may process personal data for the purpose of establishing, pursuing or defending against claims - the legal basis for processing is our legitimate interest (Article 6(1)(f) GDPR). We keep the data until the statute of limitations for claims or the end of the proceedings.

    4. In the case of consent to receive newsletters - the legal basis for processing personal data is our legitimate interest (Article 6(1)(f) GDPR). Provision of data is voluntary, but necessary in order to receive the newsletter. We keep the data for the period of our legitimate interest or until an objection is granted.

    5. If you direct a message to us (e.g., by completing a form, sending an email), we process your personal data in order to respond to your inquiry or take other actions requested by the sender of the message - the legal basis for processing is our legitimate interest (Article 6(1)(f) GDPR). Providing data is voluntary, but necessary in order for us to respond or take other (requested) actions. We keep the data for the duration of our legitimate interest or until an objection is successful.

    6. We also process personal data to ensure the security of the IT system and the management of this system, for analytical and statistical purposes - the legal basis for processing is our legitimate interest (Article 6(1)(f) GDPR). We keep the data for the period of our legitimate interest or until an objection is granted.

  4. Advertising and marketing

    We may process your personal data in order to carry out marketing activities. Providing data for marketing purposes is voluntary; however, failure to do so will result in the Controller or its partners being unable to provide you with marketing content.

    Advertising and marketing activities may consist of:

    Contextual advertising: displaying marketing content to the user that is not tailored to the user's preferences. The legal basis for the processing is our legitimate interest of the Controller or its partners (Article 6(1)(f) GDPR). We keep the data for the duration of our legitimate interest or until an objection is successful.

    Behavioral advertising: displaying marketing content to users that matches their interests. Users' personal data, including personal data collected through cookies and other similar technologies, is processed by the administrator and trusted partners for marketing purposes in connection with targeting users with behavioral advertising (i.e., advertising that is tailored to the user's preferences). The processing of personal data then includes profiling of users. The legal basis for processing personal data is the user's consent (Article 6(1)(a) of the GDPR). We store the data until the consent is withdrawn.

    If the user does not consent to the use of behavioral advertising, they will receive marketing content that may not be tailored to their interests and needs.

    Other forms:  Direct marketing of goods and services (sending commercial information electronically and telemarketing activities). Personal data is used to direct marketing content to the user, e.g. SMS/MMS, by phone. Such activities will be undertaken only if the user's consent to receive commercial content is obtained, or if the user provides his/her data for this purpose. The user may withdraw consent to receive commercial content at any time, which will not affect the legality of data processing until the withdrawal of consent. The lawful processing of personal data is the legitimate interest of the Controller or its partners (Article 6(1)(f) GDPR). We keep the data for the period of existence of our legitimate interest or until an objection is successful.

    Profiling 

    Collected personal data may be subject to profiling in order to carry out marketing activities (behavioral advertising). This means that thanks to automatic data processing, an evaluation of selected user factors (e.g. pages visited, content clicked, information viewed) is carried out in order to analyze their behavior or create a forecast for the future. On this basis, marketing content is delivered to the user, tailored to their needs, interests.

    Social networks

    The Controller processes personal data of users visiting the Controller's profiles maintained on social media (e.g. Facebook, YouTube, Instagram, Twitter, ICT TOK, LinkedIn). The data is processed solely in connection with the operation of the profile, including for the purpose of reporting on the Controller's activities and promoting events, services and products. The legal basis for the processing of personal data is the legitimate interest of the Controller (Article 6(1)(f) GDPR). We keep the data for the duration of our legitimate interest or until an objection is successful.

  5. Data sharing

    The Controller does not transfer personal data to international organizations.

    Personal data may be transferred outside the European Economic Area (EEA for short). Since the level of protection of personal data in countries outside the European Economic Area may differ from that provided by European law, the transfer of personal data is carried out with an adequate degree of protection, including the safeguards described in Chapter V of the GDPR. In particular, standard contractual clauses approved by the European Commission are used.

    When necessary, the Controller will, to the extent necessary, make personal data available to entities providing services to the Controller, e.g. ICT service of the Service, legal advice.

    Personal data may be transferred to our Trusted Partners.

    Data may be shared with partners, in particular Group One companies, for the purpose of providing offers.

  6. User rights

    The user has the following rights:

    1. Right of access to data

      The Controller of the user's request will provide the user with personal data concerning him and answer questions about its processing.

    2. The right to request rectification of personal data

      If the personal data processed by the Controller is incomplete, outdated or untrue, then the user may address a request to the Controller for rectification of the personal data pertaining to the user.

    3. The right to object to the processing of personal data

      You may object to the processing of your personal data. If the user's rights, interests and freedoms outweigh the rights and obligations and interests of the Controller in the use of personal data, the scope of personal data processing will be limited or personal data will be deleted.

    4. Right to request restriction of processing

      Right to request restriction of processingskutecznie zgłosił sprzeciw ogólny (opisany powyżej); 

      1. successfully raised a general objection (described above);

      2. you question the accuracy of the personal data we maintain;

      3. we have used your personal data unlawfully, but you do not want us to delete it.

    5. The right to request deletion of data

      There are situations in which you may request deletion of personal data concerning you, which includes (but is not limited to) cases where:

      1. there is no longer a need for us to process personal data; 

      2. successfully raised a general objection (described above); 

      3. we processed personal data unlawfully. 

    6. Right to data portability

      The right to data portability allows the transfer of personal data between organizations. It applies to data you have provided to us. It will be exercised if the processing is carried out by automated means and on the basis of consent or contract.

    7. The right to lodge a complaint with the data protection supervisory authority 

      The user has the right to lodge a complaint to the supervisory authority, i.e. the authority in charge of personal data protection - the President of the Data Protection Authority (at the address: 2 Stawki Street, 00-193 Warsaw).

    8. The right to withdraw consent to the processing of personal data

      The user has the right to withdraw consent to the processing of personal data, at any time. Withdrawal of consent will not affect the lawfulness of processing that was carried out on the basis of consent before its withdrawal.