Ismael Website Privacy Policy Good morning! Formal information at the beginning – the website administrator is Michał Czechowski ul. Klonowa 14/23, 61-468 Poznań. In case of any doubts related to the privacy policy, you can contact us at any time by sending a message to michal@ismael.pl
§ 1: Who is the administrator of your personal data? The administrator of your personal data is Michał Czechowski ul. Klonowa 14/23, 61-468 Poznań.
§ 2: Who can you contact regarding the processing of your personal data? In matters related to the protection of personal data and broadly understood privacy, you can contact us at the e-mail address michal@ismael.pl
§ 3: What information do we have about you? Depending on the purpose, we may process the following information about you:
- name,
- e-mail adress,
- data contained in correspondence addressed to us,
- IP address,
- activity in relation to messages sent as part of the newsletter,
- information about the operating system and the web browser you use,
- bystanders viewed,
- time spent on the site,
- transitions between individual subpages,
- clicks on individual links,
- the source from which you go to our site,
- the age range you are in,
- Your gender
- Your approximate location limited to the city,
- Your interests based on your online activity.
We have described the scope of the processed data precisely in relation to each processing purpose. Information in this regard can be found in the further part of this policy.
§ 4: Where do we get your personal data from? In most cases, you pass them on to us yourself. This happens when:
- you subscribe to the newsletter,
- you add a comment,
- you contact us.
In addition, some information about you may be automatically collected by the tools we use:
- the newsletter system mechanism collects your IP address,
- the newsletter system mechanism collects information about your activity in relation to the content sent to you as part of the newsletter, such as opening messages, clicking on links, etc.,
- Google Analytics collects a lot of information about how you use our website.
§ 5: Is your data safe? We care about the security of your personal data. We have analyzed the risks associated with individual data processing processes, and then implemented appropriate security and personal data protection measures. We monitor the condition of our technical infrastructure on an ongoing basis, train our staff, observe the procedures applied, and introduce necessary improvements. If you have any questions regarding your personal data, we are at your disposal at michal@ismael.pl § 6: For what purposes do we process your personal data? There are more than one of these cells. Below is a list of them, followed by a more detailed discussion. We have also assigned the appropriate legal bases for processing to the individual purposes.
- sending the newsletter – art. 6 sec. 1 lit. a GDPR,
- comment handling – art. 6 sec. 1 lit. a GDPR,
- correspondence handling – art. 6 sec. 1 lit. f GDPR,
- own marketing – art. 6 sec. 1 lit. f GDPR,
- analysis, statistics and optimization – Art. 6 sec. 1 lit. f GDPR.
Newsletter – details By subscribing to the newsletter, you provide us with your name and e-mail address. Providing data is voluntary, but necessary to subscribe to the newsletter. In addition, our system used to handle the newsletter, saves your IP number that you used when subscribing to the newsletter, determines your approximate location, the e-mail client you use to handle e-mail and tracks your actions taken in connection with sent to You with the news. Therefore, we also know which messages you have opened, in which messages you clicked on links, etc. The data provided to us in connection with the subscription to the newsletter is used to send you the newsletter, and the legal basis for their processing is your consent (Article 6 (1) (a) of the GDPR) expressed when subscribing to the newsletter. As far as the processing of information that does not come from you, and was collected automatically by our mailing system, we rely in this respect on our legitimate interest (Article 6 (1) (f) of the GDPR) consisting in analyzing the behavior of newsletter subscribers in in order to optimize mailing activities. You can unsubscribe from the newsletter at any time by clicking on the dedicated link in each message sent as part of the newsletter or by simply contacting us. Despite unsubscribing from the newsletter, your data will still be stored in our database in order to identify the returning subscriber and possibly defend claims related to sending you the newsletter, in particular for in order to demonstrate the fact that you have given your consent to receive the newsletter and the moment of its withdrawal, which is our legitimate interest referred to in art. 6 sec. 1 lit. f GDPR. You can modify your data provided for the purposes of receiving the newsletter at any time by clicking on the appropriate link visible in each message sent as part of the newsletter or by simply contacting us.
Comments – details When adding a comment, you must provide at least the username that will be assigned to the comment (the name may contain personal data, such as your first or last name) and an e-mail address. Providing this data is voluntary, but necessary to add a comment or opinion. You can also add your avatar (it may contain your image, e.g. a photo) and provide the address of your website, but it is not obligatory. The data provided in connection with adding a comment will be processed in order to publish the comment. The basis for processing is your consent (Article 6 (1) (a)) resulting from sending the form used to publish a comment. You can withdraw your consent at any time by requesting the removal of your comment or opinion. Your comment or opinion will be publicly available on the website as long as it is available on the Internet, unless you request removal of the comment or opinion in advance. You can also modify the content of the comment at any time, as well as modify the data assigned to it as the person who added the comment or opinion.
Correspondence handling – details By contacting us, you naturally provide us with your personal data contained in the correspondence, in particular your e-mail address and name and surname. Providing data is voluntary, but necessary to make contact. In this case, your data is processed in order to contact you, and the basis for processing is art. 6 sec. 1 lit. f GDPR, i.e. our legitimate interest. The legal basis for processing after the end of contact is also our legitimate purpose in the form of archiving correspondence for the purpose of ensuring the possibility of proving certain facts in the future (Article 6 (1) (f) of the GDPR). The content of the correspondence may be archived and we are not able to clearly determine when it will be deleted. You have the right to request a history of correspondence with us (if it was subject to archiving), as well as request its removal, unless its archiving is justified due to our overriding interests, e.g. defense against potential claims on your part.
Archive – details As part of the description of the individual purposes of personal data processing, which are above, we have indicated the time limits for the storage of personal data. These terms are often related to the archiving of certain data by us for the purpose of ensuring the possibility of proving certain facts in the future, reconstructing the course of cooperation with the client, exchanged correspondence, defense, establishing or pursuing claims. In this regard, we rely on our legitimate interest, referred to in art. 6 sec. 1 lit. f GDPR.
Analysis, statistics, optimization – details We collect statistical information about user behavior when browsing our websites, such as clicks on links, transitions between subpages, time spent on individual pages, etc. We analyze this information in order to optimize our pages in terms of user experience, effectiveness and conversion. In most cases, the information processed in this way is not personal data. We carry out the activities described above based on our legitimate interest, referred to in art. 6 sec. 1 lit. f GDPR, consisting in the optimization of our websites.
§ 7: How long will we keep your personal data? The data storage periods have been indicated separately for each purpose of processing. You will find this information under the details for each separate processing purpose.
§ 8: Who are the recipients of your personal data? External service providers who are involved in the processing of your personal data are:
- the hosting provider that stores the data on the server,
- loud computing service provider in which backups that may contain your personal data are stored,
- provider of the mailing system in which your data is stored, if you are a subscriber to the newsletter,
- other subcontractors who gain access to data, if the scope of their activities requires such access.
In addition, if necessary, your personal data may be made available to entities, bodies or institutions authorized to obtain access to data on the basis of legal provisions, such as the police, security services, courts, prosecutor’s offices. What’s more, we use tools that collect a lot of information about you related to the use of our website. It concerns, in particular, the following information:
- information about the operating system and the web browser you use,
- bystanders viewed,
- time spent on the site,
- transitions between individual subpages,
- clicks on individual links,
- the source from which you go to our site,
- the age range you are in,
- Your gender
- Your approximate location limited to the town.
- Your interests based on your online activity.
This information is not, in our opinion, personal data in itself. Since this information is collected by external tools that we use, this information is also processed by tool providers on the terms resulting from their regulations and privacy policies. Basically, this information is used to provide and improve services, manage them, develop new services, measure the effectiveness of advertisements, protect against fraud and abuse, as well as personalize the content and advertisements displayed on individual websites, sites and applications.
§ 9: Do we transfer your data to third countries or international organizations? Yes, part of the processing of your personal data may involve their transfer to third countries. We transfer your personal data to third countries in connection with the use of tools that store personal data on servers located in third countries, in particular in the USA. The suppliers of these tools guarantee an adequate level of personal data protection through appropriate compliance mechanisms provided for by the GDPR, in particular by joining the Privacy Shield program or using standard contractual clauses. Personal data is stored on servers located in third countries using the following tools: Mailerlite mailing system – in terms of your name, e-mail address, IP address and statistical information related to your reactions to the messages we send, Google services provided by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland – in the scope of all data processed as part of Google services, including data contained in files synchronized with Google Drive . We also remind you here that we use external tools that may collect anonymous information about you. We have mentioned this on several occasions under this policy, including in response to a previous question. The providers of these tools often use servers located around the world, in particular in the United States of America (USA), to store the collected information. § 10: Do we use profiling? Do we make automated decisions based on your personal data? We do not make decisions for you based solely on automated processing, including profiling, which would have legal effects on you or similarly significantly affect you. Yes, we use tools that can take specific actions depending on the information collected as part of the tracking mechanisms, but we believe that these actions do not have a significant impact on you, because they do not differentiate your situation as a customer, they do not affect the terms of the contract, which you can to conclude with us, etc. By using certain tools, we may, for example, target personalized advertising to you based on your previous actions on our website. I am talking about the so-called behavioral advertising. We encourage you to learn more about behavioral advertising, in particular regarding privacy issues. We emphasize that as part of the tools we use, we do not have access to information that would allow your identification. The information we are talking about here is, in particular:
- information about the operating system and the web browser you use,
- bystanders viewed,
- time spent on the site,
- transitions between individual subpages,
- the source from which you go to our site,
- the age range you are in,
- Your gender
- Your approximate location limited to the city,
- Your interests based on your online activity.
We do not combine the information indicated above with your personal data, which is in our databases. This information is anonymous and does not allow us to identify you. This information is stored on the servers of the suppliers of individual tools, and these servers can most often be located all over the world.
§ 11: What rights do you have in relation to the processing of your personal data? The GDPR grants you the following potential rights related to the processing of your personal data:
- the right to access your data and receive a copy thereof,
- the right to rectify (correct) your data,
- the right to delete data (if in your opinion there are no grounds for us to process your data, you can request that we delete it),
- the right to limit data processing (you can request that we limit the processing of data only to their storage or performance of activities agreed with you, if, in your opinion, we have incorrect data or we process it unjustifiably), the right to object to the processing of data (you have the right to object to the processing of data on the basis of a legitimate interest; you should indicate a specific situation that, in your opinion, justifies the termination of the processing covered by the objection; we will stop processing your data for these purposes, unless we prove that the grounds for data processing by us override your rights or that your data is necessary for us to establish, assert or defend claims),
- the right to transfer data (you have the right to receive from us, in a structured, commonly used, machine-readable format, personal data that you provided to us on the basis of a contract or your consent; you can commission us to send this data directly to another entity),
- the right to withdraw consent to the processing of personal data, if you have previously given such consent,
- the right to lodge a complaint with the supervisory body (if you find that we are processing data unlawfully, you can file a complaint with the President of the Personal Data Protection Office or another competent supervisory authority).
The rules related to the implementation of the above-mentioned rights are described in detail in Art. 16 – 21 GDPR. We encourage you to familiarize yourself with these regulations. For our part, we consider it necessary to explain to you that the above-mentioned rights are not absolute and you will not be entitled to all activities related to the processing of your personal data. We emphasize that you always have one of the rights indicated above – if you believe that we have violated the provisions on the protection of personal data while processing your personal data, you have the option to lodge a complaint with the supervisory body (the President of the Office for Personal Data Protection). You can also always ask us to provide you with information about what data we have about you and for what purposes we process it. All you need to do is send a message to michal@ismael.pl. However, we have made every effort to ensure that the information you are interested in is comprehensively presented in this privacy policy. You can also use the e-mail address provided above if you have any questions related to the processing of your personal data.
§ 12: Do we use cookies and what are they exactly? Our website, like almost all other websites, uses cookies. Cookies are small text information stored on your end device (e.g. computer, tablet, smartphone) that can be read by our ICT system (own cookies) or ICT systems of third parties (third party cookies). In cookies, specific information can be saved and stored, to which ICT systems can then access for specific purposes. Some of the cookies we use are deleted after the end of the web browser session, i.e. after closing it (so-called session cookies). Other cookies are stored on your end device and allow us to recognize your browser the next time you visit the website (persistent cookies).
§ 13: On what basis do we use cookies? We use cookies on the basis of your consent, except when cookies are necessary for the proper provision of electronic services to you. As far as your consent to cookies is concerned, we accept the variant according to which you express such consent through the settings of your web browser or additional software supporting the management of cookies. We assume that you agree to all cookies used by us that are not blocked by your browser or any additional software you use. Remember that disabling or limiting the use of cookies may prevent you from using some of the functions available on our website, as well as from many other websites that use cookies. For example, if you block cookies from social plug-ins, buttons, widgets and social functions implemented on our website may not be available to you.
§ 14: Can you disable cookies? Yes, you can manage cookie settings within your web browser. You can block all or selected cookies. You can also block cookies from specific websites. You can also delete previously saved cookies and other website and plug-in data at any time. Web browsers also offer the option of using incognito mode. You can use it if you do not want information about visited pages and downloaded files to be saved in your browsing and download history. Cookies created in Incognito mode are deleted when all Incognito windows are closed. In addition, there are tools available on the Internet that allow you to control certain types of cookies, in particular for collective management of behavioral advertising settings.
§ 15: For what purposes do we use our own cookies? Own cookies are used to ensure the proper functioning of individual website mechanisms. Own cookies also store information about the cookie settings defined by you, made from the level of the cookie management mechanism.
§ 16: What third party cookies are used? The following third party cookies are used on our website:
- Google Analytics,
- Google Tag Manager,
- Google AdWords,
- Facebook Custom Audiences,
- Facebook, (social tools cookies).
Details on individual third party cookies are described below. Google Analytics – details We use the Google Analytics tool provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. We carry out activities in this area based on our legitimate interest, consisting in the creation of statistics and their analysis in order to optimize our websites. In order to use Google Analytics, we have implemented a special Google Analytics tracking code in the code of our website. The tracking code uses Google LLC cookies for the Google Analytics service. You can block the Google Analytics tracking code at any time by installing the browser add-on provided by Google: https://tools.google.com/dlpage/gaoptout. Google Analytics automatically collects information about your use of our website. The information collected in this way is most often transferred to Google servers, which can be located all over the world and stored there. Due to the IP anonymization activated by us, your IP address is shortened before forwarding. Only in exceptional cases is the full IP address sent to Google servers and shortened there. The anonymized IP address provided by your browser as part of Google Analytics is, as a rule, not combined with other Google data. We emphasize that as part of Google Analytics we do not collect any data that would allow your identification. Therefore, the data collected as part of Google Analytics is not personal data for us. The information we have access to as part of Google Analytics is, in particular:
- information about the operating system and the web browser you use,
- subpages that you browse on our website,
- time spent on our website and its subpages,
- transitions between individual subpages,
- the source from which you come to our site.
In addition, as part of Google Analytics, we use the following Advertising Functions:
- demographic and interest reports,
- remarketing,
- advertising reporting functions, user-ID.
As part of the Advertising Functions, we also do not collect personal data. The information we have access to is, in particular:
- the age range you are in,
- Your gender
- Your approximate location limited to the city,
- Your interests based on your online activity.
Google Analytics and Google Analytics 360 services have been certified by the independent security standard ISO 27001. ISO 27001 is one of the most recognized standards in the world and certifies compliance with the relevant requirements by systems that support Google Analytics and Google Analytics 360. If you are interested in details related to Google’s use of data from websites and applications that use Google services, we encourage you to read this information: https://policies.google.com/technologies/partner-sites.
Google Tag Manager – details
We use the Google Tag Manager tool provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA and enabling tag management, i.e. small code fragments, thanks to which we are able to control traffic and user behavior, collect information on the effectiveness of advertisements and undertake activities aimed at improving our website. Google Tag Manager does not collect any information that allows your identification, however, this tool triggers other tags, which in turn may collect data.
Google AdWords – details
We use remarketing functions available as part of the Google AdWords system operated by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. We carry out activities in this area based on our legitimate interest, consisting in the marketing of our own products or services. When visiting our website, a Google cookie remarketing file is automatically left on your device, which collects information about your activity on our website. Thanks to the information collected in this way, we are able to display advertisements to you within the Google network depending on your behavior on our website. We emphasize that when using Google Ads, we do not collect any data that would allow your identification. Any compilation of data in such a way that they acquire the nature of personal data may be made on the part of Google, but in this respect we are no longer responsible for it, because Google carries out these activities on the basis of a contract concluded with you as a user of Google services. By using Google AdWords, we are only able to define the target groups we would like our ads to reach. On this basis, Google decides when and how to present our advertisement to you. Further processing of the information takes place only if you have consented to Google to link your browsing history with your account and to use the information from your Google account to personalize the advertisements displayed on websites. In this case, Google will use your data to create and define lists of target groups for remarketing purposes on various devices. To this end, Google combines the temporarily collected information with other data it holds to form target groups. If you do not want to receive personalized ads, you can manage your ad settings directly on the Google side: https://adssettings.google.com/. If you are interested in details related to Google’s use of data from websites and applications that use Google services, we encourage you to read this information: https://policies.google.com/technologies/partner-sites.
Facebook Custom Audiences – details
As part of the Facebook Ads advertising system provided by Facebook Inc., 1601 S. California Ave., Palo Alto, CA 94304, USA, we use Custom Audience Groups to target targeted advertising messages to specific groups of users. We carry out activities in this area based on our legitimate interest, consisting in the marketing of our own products or services. In order to send you personalized ads in terms of your behavior on our website, we have implemented Pixel Facebook as part of our website, which automatically collects information about your use of our website. The information collected in this way is most often transferred to Facebook servers, which may be located all over the world, in particular in the United States of America (USA). The information collected as part of Facebook’s Pixel is anonymous, i.e. it does not allow us to identify you. Depending on your activity on our websites, you may reach a specific group of recipients, but we do not identify individual people belonging to these groups in any way. However, we would like to inform you that Facebook may combine the collected information with other information collected about you as part of your use of Facebook and use it for its own purposes, including marketing. Such Facebook activities are no longer dependent on us, and you can search for information about them directly in Facebook’s privacy policy: https://www.facebook.com/privacy/explanation. You can also manage your privacy settings from your Facebook account. Here you will find useful information in this regard: https://www.facebook.com/ads/settings.
Social tools – details
Our website uses plugins, buttons and other social tools, hereinafter collectively referred to as “plugins”, provided by social networking sites such as Facebook, Instagram, LinkedIN, Twitter, Pinterest. When displaying our website containing a plug-in of a given social network, your browser sends information about the visit to the administrator of this social network. Since the plug-in is a part of the social networking site embedded in our website, the browser sends information about the request to download the content of the social networking site to our site. The plugins collect certain information about you, such as user ID, website visited, date and time, and other information about your web browser. Social network administrators use some of this information to personalize the viewing conditions of our website. For example, when you visit a page with a “Like” button, the administrator of the social networking site needs to know who you are to show you which of your friends also like our page. The information collected by plugins may also be used by the administrators of social networking sites for their own purposes, such as e.g. improving their own products, creating user profiles, analyzing and optimizing their own activities, advertising targeting. We have no real influence on how the information collected by the plugins is then used by the administrators of social networks. You can look for details in this regard in the regulations and privacy policies of individual social networking sites. Social network plugins collect and transmit information to the administrators of these websites even when you browse our website without being logged in to your social account. If you have logged in to one of the social networking sites, the website administrator will be able to directly assign a visit to our site to your profile on a given social networking site. If you do not want social networking sites to assign the data collected during your visit to our website directly to your profile on a given website, you must log out of this website before visiting our website. You can also completely prevent loading of plugins on the website by using appropriate extensions for your browser, e.g. blocking scripts. In addition, the use of some plugins may involve the publication of certain information as part of your social profiles. For example, information about clicking the “Like” button may be available on your Facebook timeline. Of course, if you share some content on your social media using plugins embedded on our website, this sharing will naturally be visible in your profile. As for the details related to the processing of information collected by plugins by social network administrators, in particular about the purpose and scope of data collection and their further processing and use by administrators, as well as the possibility of contact and your rights in this regard and the possibility of making settings to protect your privacy, you can find everything in the privacy policies of individual service providers:
- Facebook – https://www.facebook.com/privacy/explanation.
§ 17: Do we track your behavior on our site? Yes, we use Google Analytics, Google AdWords and Facebook Custom Audiences, which collect information about your activity on our website. These tools are described in detail in the third party cookie question.
§ 18: Do we target targeted advertising at you? Yes, we use Facebook Ads and Google Ads, in which we can target specific target groups defined on the basis of various criteria such as age, gender, interests, profession, job, activities previously undertaken on our website. These tools are described in detail in the third party cookie question, so we will not repeat this information here as well.
§ 19: How can you manage your privacy? The answer to this question can be found in many places in this privacy policy when describing individual tools, behavioral advertising, cookie consent, etc. However, for your convenience, we have collected this information once again in one place. Below you will find a list of options for managing your privacy.
- cookie settings in the web browser,
- browser plugins supporting the management of cookies, e.g. Ghostery,
- additional cookie management software,
- incognito mode in a web browser,
- behavioral advertising settings, e.g. youronlinechoices.com,
- Google Analytics Opt-out: https://tools.google.com/dlpage/gaoptout,
- Google Ads Settings: https://adssettings.google.com/,
- Facebook Ads Settings: https://www.facebook.com/ads/settings.
§ 20: What are server logs? Using the website involves sending queries to the server on which the website is stored. Each query directed to the server is saved in the server logs. Logs include Your IP address, server date and time, information about the web browser and operating system you use. Logs are saved and stored on the server. The data stored in the server logs are not associated with specific people using the website and are not used by us to identify you. The server logs are only auxiliary material used to administer the website, and their content is not disclosed to anyone except those authorized to administer the server.
§ 21: Is there anything else you should know? As you can see, the subject of personal data processing, the use of cookies and generally understood privacy management is quite complicated. We have made every effort to ensure that this document provides you with as much knowledge as possible on issues important to you. If anything is unclear to you, you want to know more or just talk about your privacy, write to us at michal@ismael.pl.