Hello!
If you ended up here, it’s a sure sign that you value your privacy. We understand this perfectly, which is why we have prepared this document for you, where you will find the rules for processing personal data and the use of cookies in connection with the use of the website https://www.kursycontrolbyte.pl
Formal information at the beginning – the administrators of the site are companies:
CONTROLBYTE SPÓŁKA Z O. O. NIP: 5361948674
CONTROLBYTE EDUCATION SPÓŁKA Z O. O. NIP: 5223171623
ESMATIC LIMITED LIABILITY COMPANY NIP: 5361955958
e-mail: kontakt@controlbyte.pl
If you have any doubts related to the privacy policy, you can contact us at any time by sending a message to kontakt@controlbyte.pl.
Short version – the most important information
We care about your privacy, but also about your time. That’s why we have prepared a shortened version of the most important privacy protection rules for you.
- By creating a user account through the website, placing an order, subscribing to the newsletter, making a complaint, withdrawing from the contract or simply contacting us, you provide us with your personal data, and we guarantee that your data will remain confidential, safe and will not be shared with any third parties without your explicit consent.
- We entrust the processing of personal data only to trusted and reliable entities providing services related to the processing of personal data.
- We use Google Analytics analytical tools, which collect information about your visits to the site, such as the subpages you have displayed, the time you spent on the site, or the transitions between individual subpages. For this purpose, Google LLC’s Google Analytics cookies are used. As part of the cookie settings management mechanism, you have the option to decide whether we will also be able to use marketing functions as part of the Google Analytics service or not.
- We provide the possibility of using social functions, such as sharing content on social networking sites and subscribing to a social profile. Using these functions involves the use of cookies from social network administrators such as Facebook, Instagram, YouTube, Twitter, Google+, LinkedIN.
If the above information is not enough for you, you will find further details below.
Personal data
The administrator of your personal data within the meaning of personal data protection regulations is
CONTROLBYTE SPÓŁKA Z O. O.
NIP: 5361948674, REGON: 386642200
The purposes, legal basis and period of processing of personal data are indicated separately for each purpose of data processing (see: description of individual purposes of processing personal data below).
Rights. The GDPR grants you the following potential rights related to the processing of your personal data:
- the right of access to personal data,
- the right to rectify personal data,
- the right to delete personal data,
- the right to limit the processing of personal data,
- the right to object to the processing of personal data,
- the right to data portability,
- the right to lodge a complaint with the supervisory authority,
- the right to withdraw consent to the processing of personal data, if you have given such consent.
The principles related to the implementation of the indicated rights have been described in detail in Art. 16 – 21 GDPR. We encourage you to familiarize yourself with these regulations. For our part, we find it necessary to explain to you that the above rights are not absolute and will not be available to you in relation to all activities of processing your personal data. For your convenience, we have made every effort to indicate the rights you have in relation to individual data processing operations.
We emphasize that one of the rights indicated above is always available to you – if you believe that we have violated the regulations on the protection of personal data during the processing of your personal data, you have the possibility to lodge a complaint with the supervisory authority (President of the Office for Personal Data Protection).
You can also always ask us to provide you with information about what data we have about you and for what purposes we process it. All you have to do is send a message to kontakt@controlbyte.pl. However, we have made every effort to ensure that the information you are interested in is comprehensively presented in this privacy policy. You can also use the above e-mail address if you have any questions related to the processing of your personal data.
Security. We guarantee the confidentiality of all personal data provided to us. We ensure that all security and personal data protection measures required by personal data protection regulations are taken. Personal data is collected with due diligence and properly protected against access by unauthorized persons.
List of entrustments. We entrust the processing of personal data to the following entities:
Bluehost based in Częstochowa, address: 5335 Gate Pkwy, Jacksonville, FL32256 – for the purpose of storing personal data on the server,
GetResponse S.A., with its registered office in Gdańsk (80-309) at Grunwaldzka Avenue 413, entered into the register of entrepreneurs of the National Court Register kept by the Gdańsk-North District Court in Gdańsk, VII Commercial Department of the National Court Register under the KRS number: 0000942075, NIP (Tax Identification Number): 9581468984. – for the purpose of using the mailing system in which your data is processed if you have subscribed to the newsletter.
All entities to whom we entrust the processing of personal data guarantee the use of appropriate measures for the protection and security of personal data required by law.
Purposes and activities of processing
User account. When creating a user account, you must provide your email address and define a password for the account. Providing data is voluntary, but necessary to create an account. As part of editing the user profile, you can provide further data about yourself, i.e. name and surname, billing address and shipping address. Providing these data is completely voluntary. You can have an account without providing these further data. In such a situation, when placing an order, you will have to enter these data manually.
The data you enter as part of your user account is processed solely for the purpose of maintaining the account and providing you with the ability to use it. The purpose of providing data in the user account is to facilitate you placing orders in the store by automatically substituting data into the order form.
The legal basis for processing your personal data within the user account is the implementation of the account maintenance contract, which you conclude based on the store’s regulations – art. 6 sec. 1 lit. b GDPR.
Data collected in the user account is processed within the WordPress system and stored on a server provided by zenbox sp. z o.o.
Your data will be processed within the account as long as you have a user account. After deleting the account, your data will be deleted from the database, except for data on placed orders.
At any time, you can access your personal data processed within the account by logging into your user account. After logging into the account, you can modify your data at any time, as well as delete it, except for data on placed orders. At any time, you can also decide to delete your account.
In relation to the data collected in the user account, you also have the right to data portability referred to in Art. 20 GDPR.
Orders. When placing an order, you must provide the data necessary to complete the order, i.e. name and surname, billing address, email address. Providing data is voluntary, but necessary to place an order.
The data provided to us in connection with the order is processed for the purpose of completing the order (Article 6 (1) (b) of the GDPR), issuing an invoice (Article 6 (1) (c) of the GDPR), including the invoice in our accounting documentation (Article 6 (1) (c) of the GDPR) and for archival and statistical purposes (Article 6 (1) (f) of the GDPR).
Each order is documented by an invoice. The invoice data is processed for the purpose of fulfilling the legal obligation to issue and store invoices, as well as for archival and statistical purposes.
Orders are processed within the WordPress system and stored on a server provided by Bluehost
Order data will be processed for the time necessary to complete the order, and then until the expiry of the limitation period for claims under the contract. In addition, after this deadline, the data may still be processed by us for statistical purposes. Also, invoices, debit notes and other accounting documents are archived by us for the period required by law.
In relation to the data on orders, you cannot rectify these data after the order has been completed. You also cannot object to the processing of data and demand the deletion of data until the expiry of the limitation period for claims under the contract. Similarly, you cannot object to the processing of data and demand the deletion of invoices, debit notes and other accounting documents until the expiry of the obligation to store them resulting from the law. After the expiry of the limitation period for claims under the contract, you can, however, object to the processing of your data for statistical purposes, as well as demand the deletion of your data from our database.
In relation to the data on orders, you also have the right to data portability referred to in Art. 20 GDPR.
Complaints and withdrawal from the contract. If you make a complaint or withdraw from the contract, you provide us with the personal data contained in the complaint or the statement of withdrawal from the contract, which includes your name, address, telephone number, email address, bank account number. Providing data is voluntary, but necessary to submit a complaint or withdraw from the contract.
The data provided to us in connection with the submission of a complaint or withdrawal from the contract are used to implement the complaint procedure or the procedure for withdrawing from the contract (Article 6 (1) (c) of the GDPR).
The data will be processed for the time necessary to implement the complaint procedure or the withdrawal procedure. Complaints and statements of withdrawal from the contract may also be archived for statistical purposes.
In relation to the data provided in complaints and declarations of withdrawal from the contract, you cannot rectify these data. You also cannot object to the processing of data and demand the deletion of data until the expiry of the limitation period for claims under the contract. After the expiry of the limitation period for claims under the contract, you can, however, object to the processing of your data for statistical purposes, as well as demand the deletion of your data from our database.
E-mails. By contacting us via e-mail, including sending an inquiry via the contact form, you naturally provide us with your e-mail address as the sender’s address. In addition, you can also include other personal data in the message.
In this case, your data is processed in order to contact you, and the basis for processing is art. 6 sec. 1 lit. a GDPR, i.e. your consent resulting from initiating contact with us. The legal basis for post-contact processing is the legitimate purpose of archiving correspondence for internal purposes (Article 6 (1) (c) of the GDPR).
The content of the correspondence may be archived and we are not able to clearly determine when it will be deleted. You have the right to request a history of correspondence with us (if it was subject to archiving), as well as request its removal, unless its archiving is justified due to our overriding interests, e.g. defense against potential claims on your part.
Cookies and other tracking technologies
Our website, like almost all other websites, uses cookies to provide the best user experience.
Cookies are small text information stored on your end device (e.g. computer, tablet, smartphone) that can be read by our ICT system.
Cookies allow us to:
- ensure the proper functioning of the website you expect,
- improve the speed and safety of using the website,
- improve the functions available to you on the website,
- use analytical tools,
- use marketing tools,
- provide social functions.
More details can be found below.
Consent to cookies. During your first visit to the website, you are shown information about the use of cookies. Thanks to a special tool, you can manage cookies from the website level. In addition, you can always change cookie settings from your browser or delete cookies altogether. Browsers manage cookie settings in various ways. In the auxiliary menu of the web browser, you will find explanations on how to change cookie settings.
Remember that disabling or limiting the use of cookies can cause difficulties in using our website, as well as from many other websites that use cookies.
Own cookies. We use cookies to ensure the highest standard of convenience of our website, and the provided cookies are safe for your devices. We use “session” cookies, which are temporary files that are stored on the user’s end device until logging out, leaving the website or turning off the software (web browser). We also use “persistent” cookies, which are stored on the user’s end device for the time specified in the cookie file parameters or until they are deleted by the user.
Third-party cookies. Our website, like most of today’s websites, uses functions provided by third parties, which involves the use of cookies from third parties. The use of such cookies is described below.
Analysis and statistics. We use cookies to track website statistics, such as the number of visitors, the type of operating system and web browser used to browse the website, time spent on the website, visited subpages, etc. For this purpose, we use Google Analytics. In this regard, collected cookies are processed by Google LLC. You can decide whether we will also be able to use marketing functions as part of the Google Analytics service as part of the cookie settings management mechanism.
Marketing. We use marketing tools such as Facebook Pixel to target ads to you. This involves the use of Facebook cookies. In this regard, cookies are collected by Facebook Inc.
Social tools. We provide the possibility of using social functions, such as sharing content on social networks and subscribing to a social profile. The use of these functions involves the use of cookies from administrators of social networks such as Facebook, Instagram, YouTube, Twitter, Google+, LinkedIN.
Server logs
Using the website involves sending queries to the server on which the website is stored. Each query directed to the server is saved in the server logs.
Logs include Your IP address, server date and time, information about the web browser and operating system you use. Logs are saved and stored on the server.
The data stored in the server logs are not associated with specific people using the website and are not used by us to identify you.
The server logs are only auxiliary material used to administer the website, and their content is not disclosed to anyone except those authorized to administer the server.
Information on some of your behaviors is subject to logging in the server layer. These data are used only to administer the website and to ensure the most efficient service of the hosting services provided.
Browsed resources are identified by URL addresses. In addition, the following may be saved:
- inquiry receipt time
- response sending time
- name of the client station – identification carried out by the HTTP protocol
- information about errors that occurred during the execution of the HTTP transaction
- URL address of the page previously visited by the user (referrer link) – in the case when the transition to the website was made via a link
- information about your browser
- Information about the IP address
The above data is not associated with specific people browsing the website.
The above data is used only for server administration purposes.
Providing data
The data is provided to external entities only within legally permitted limits.
The data that allows to identify you is provided only with your consent. We can only entrust the processing of your data to reliable entities providing services related to the processing of personal data.
Data that allows to identify you is, as a rule, provided only to entities providing us with services related to the current operation of the website (e.g. the company hosting the website on its servers).
Your data will be processed within the European Economic Area, but can also be transferred to a country outside the EEA, provided that the appropriate level of protection is ensured, including in particular through:
- cooperation with entities processing personal data in countries for which an appropriate decision has been issued by the European Commission,
- the use of standard contractual clauses issued by the European Commission,
- application of binding corporate rules approved by the competent supervisory authority,
- in the case of data transfer to the USA – cooperation with entities participating in the Privacy Shield program, approved by the European Commission.
Changes of the privacy policy
We constantly review our privacy policy and make sure that it is up-to-date. The current version of the privacy policy has been adopted and is effective from 01/01/2023.