Cookie policy

I. General provisions

  1. This Privacy Policy sets out the manner in which personal data necessary for the provision of electronic services through the website (hereinafter: the Service) is collected, processed, and stored.
  2. The Administrator of Users' personal data is Silk Software House Sp. z o. o. with its registered office in Warsaw at str. Gen. Zajączka 30/1, 01-510 Warsaw (hereinafter: the Administrator).
  3. Personal data is processed in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter: GDPR).
  4. The data collected by the Administrator will be:
    1. processed lawfully,
    2. processed for explicitly specified purposes and not subjected to further processing incompatible with those purposes,
    3. factually correct and adequate in relation to the purposes for which they are processed,
    4. stored no longer than necessary to achieve the purpose of processing.

II. Purpose and legal basis for data processing

  1. The Administrator processes personal data necessary for the provision and development of the services offered through the Service and its individual functionalities.
  2. Personal data will be processed for the following purposes:
    1. Communication with the User in order to respond to a message sent via the contact form and provide them with necessary information, as well as to build positive and reliable relationships with them, which constitutes the Administrator's legitimate interest (Article 6(1)(f) of the GDPR).
    2. Conclusion and performance of a service agreement, as well as taking actions aimed at its conclusion (e.g. preparing a quote/offering). The processing is necessary for the performance of a contract with the person to whom the data relates or for taking steps at the request of the person prior to entering into a contract (Article 6(1)(b) of the GDPR).
    3. Analytical and statistical purposes based on the Administrator's legitimate interest, which involves verifying Users' activities and preferences for the optimization of services, products, and functionalities of the Service (Article 6(1)(f) of the GDPR).
    4. Potential establishment, investigation, and defense of claims based on the Administrator's legitimate interest in protecting its rights (Article 6(1)(f) of the GDPR).
    5. Employee recruitment, where the processing is necessary for the fulfillment of a legal obligation incumbent on the Administrator, in this case, obligations related to the recruitment of employees specified in Article 22(1) § 1 of the Labor Code, and the processing of personal data is based on the consent given (Article 6(1)(a) of the GDPR).
  3. In each of the cases mentioned above (paragraph 2), providing data is voluntary but necessary for entering into a contract or using other functionalities of the Service.

III. Period of personal data processing

  1. Personal data will be processed for the period in which the person remains an active User of the Service (has a User account), and after that time for the period necessary to comply with legal regulations, pursue or defend against any claims, but no longer than 3 years from the date of termination of the electronic service agreement.
  2. Data processed based on consent will be processed until the consent is withdrawn, with the reservation that the withdrawal of this consent does not affect the compliance of the processing of data that was carried out before such withdrawal.

IV. Information about processing

  1. Personal data, depending on the purpose of processing, may be disclosed to:
    1. entities affiliated with the Administrator,
    2. entities cooperating with the Administrator,
    3. subcontractors, in particular entities providing and servicing selected
    4. IT systems and solutions,
    5. entities providing internet payment services,
    6. entities providing courier and postal services,
    7. law firms.
  2. Personal data processed by the Administrator will not be transferred outside the European Economic Area or to international organizations.

V. Rights of data subjects

  1. The Service User has the right to:
    1. Access the content of their personal data
    2. Rectify data
    3. Erase data
    4. Restrict the processing of data
    5. Data portability
    6. Object to processing based on the legitimate interests of the data controller
    7. Withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal
  2. The User has the right to lodge a complaint with the President of the Office for Personal Data Protection if they believe that the processing of their data infringes their rights and freedoms.
  3. In the data processing process, there is no automated decision-making, including profiling.

VI. Final provisions

  1. The Administrator reserves the right to make changes to this Privacy Policy while ensuring that the rights of Users arising from this document will not be limited.
  2. The User will be informed about any changes to the Privacy Policy through a notification available on the Service.
To provide services at the highest level, we use cookies as described in our cookie policy. By using our website, cookies will be placed on your device. You can change your browser settings at any time. Check our cookie policy.