Privacy Policy

§ 1. PERSONAL DATA

1. The administrator of personal data is Digitree Group SA, with its registered office in Rybnik, ul. Raciborska 35a, 44 - 200, TAX ID.: 642-28-84-378, KRS: 0000369700, REGON: which processes personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on protection of individuals in relation to the processing of personal data and on free movement of data, and repealing of Directive 95/46/EC (GDPR), the Act on Protection of Personal Data of 10 May 2018 and the Act of 18 July 2002 on provision of electronic services.
2. Digitree Group S.A. has appointed a data protection officer who can be contacted via the email address: iod@digitree.pl. You can contact the data protection officer in all matters regarding the processing of personal data by Digitree Group SA and exercise the rights related to this data processing.
3. Digitree Group SA processes personal data for technical purposes (i.e. to administer the website) and for marketing purposes, including presentations of the offer and sending the newsletter with information about new products, promotions and discounts.
4. Digitree Group SA provides all persons whose data it processes in any scope with the possibility to exercise the rights arising from Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on protection of individuals in relation to the processing of personal data and on free flow of such data, and repeal Directive 95/46/EC (GDPR) and other rights arising from the provisions of the generally applicable law on personal data protection.
5. Digitree Group SA does not transfer any data to unauthorized entities. Digitree Group SA provides user data only to entities authorized under generally applicable law and under concluded contracts, in a manner that does not exceed the scope of consents expressed by the user.
6. If processing for marketing purposes takes place, the data is processed until the User's consent is withdrawn. The basis for data processing is Art. 6, item 1 a) of the GDPR. The collected logs are stored for an indefinite period as an auxiliary material used to administer the site.
7. The person whose data is processed has:
   
   • The right to access the content of data - i.e. The person can get confirmation if its personal data is processed, and if so, the person can: get access to personal data and obtain information about the purposes of processing, categories of personal data processed, about recipients or categories of recipients of the data, the planned period of data storage or the criteria for determining this period, about rights under the GDPR, and the right to file a complaint to the supervisory authority, about the source of the data, about automated decision making, including profiling, and about the protection used in connection with transfers of the data outside the European Union. What is more, the person whose data is processed may obtain copies of its personal data.
   • The right to rectify data - i.e. the person may request to rectify its personal data when it is inconsistent with the actual state and complete it.
   • The right to delete data - i.e. The person may request Digitree Group SA to delete all or some of its personal data if that personal data is no longer necessary for the purposes for which it had been collected or otherwise processed, the data subject had withdrawn consent on which the processing is based, and there is no other legal basis for processing, the data subject raises an objection pursuant to Art. 21, item 1 of the GDPR towards processing and there are no superior legitimate grounds for processing or the data subject raises an objection pursuant to Art. 21, item 2 of the GDPR towards processing, the personal data has been processed unlawfully, the personal data must be deleted in order to comply with a legal obligation provided for in the Union law or the law of the Member State to which the administrator is subject, the personal data has been collected in connection with the provision of information society services, referred to in Art. 8, item 1 of the GDPR.
   • The right to limit processing - i.e. the person may demand to restrict the processing of its personal data due to a special situation. If a request is submitted, until investigated, Digitree Group SA shall be able to prevent the use of specific functionalities or services the use of which will involve the processing of the data covered by the request.
   • The right to transfer data - i.e. The person can receive its personal data it had provided itself, and then send it to another personal data administrator of its choice. The person may also request that personal data to be sent directly to another administrator. The request shall be processed when it is technically possible.
   • The right to object to processing - i.e. The person can object to the processing of its personal data at any time, if the processing is based on a legitimate interest.
   • The right to withdraw the consent at any time without affecting the processing law that was carried out on the basis of consent before its withdrawal.
   • The right to file a complaint to the President of the Office for Personal Data Protection.
8. The provision of personal data for marketing purposes is voluntary but necessary to provide marketing materials and commercial information.
9. User data is not subject to automated decision making, including profiling referred to in Art. 4 of the GDPR.

§ 2. COOKIES POLICY

1. Digitree Group SA, with its registered office in Rybnik, Raciborska 35a, entered into the National Court Register, kept by the District Court in Gliwice, 10th Commercial Department of the National Court Register, under number: 0000369700, with share capital of PLN 248.557.10, TAX ID.: 6422884378, as the owner and administrator of the Digitree.pl website (hereinafter: Website) presents information on the use of cookies on the Website.
2. Additionally, apart from the information contained in Cookies, the website automatically collects the following information:
   
   1. time and date of entering the site
   2. user location
   3. source of entry to the website
   4. duration of session
   5. source of entry (what type - mailing, direct, paid etc.)
   6. browser and screen resolution the user is using.
3. Cookies are IT data, in particular text files, which are stored on the Website User's end device and are intended for using the Website's pages. Cookies usually contain the name of the website from which they originate, their storage time on the end device and a unique number.
4. The entity placing Cookies on the Website User's end device and accessing them is the Website administrator.
5. Cookies are used to:
   
   1. adapt the Website’s content to the User's preferences and optimize the use of websites; in particular, these files allow recognizing the Website User's device and properly display the website that is adapted to its individual needs;
   2. creating statistics that help to understand how Website Users use them, which allows improving their structure and content;
   3. maintaining the Website User's session (after logging in), thanks to which the User does not have to re-enter the login and password on each subpage of the Website; analysing the ways in which users use the service, interact with content and view ads. Authorized third parties may use cookies and similar technologies for such purposes.
6. The Website uses the following types of cookies:
   
   1. "Session" cookies are temporary files that are stored on the User's end devices until logging out, leaving the website or turning off the software (web browser);
   2. "Persistent" cookies. "are stored on the User's end device for the time specified in the cookie file parameters or until they are deleted by the User;
   3. Third-party cookies (Information on third-party cookies is available on the company's website):
      
      • Google Analytics - administrator: Google Inc. based in the USA;
      • Facebook.com - administrator: Facebook Inc. based in the USA and Facebook Ireland, based in Ireland;
      • Adform - administrator: Adform ApS based in Denmark;
      • SAREhub - administrator of Digitree Group SA based in Rybnik, Poland.
7. Additionally, the Website uses the following types of cookies:
   
   1. "Necessary" cookies that enable the use of services available on the Website, e.g. authentication cookies used for services that require authentication on the Website;
   2. "Performance" cookies that enable the collection of information on how to use the Website's pages;
   3. cookies used to ensure protection, e.g. used to detect fraud in the field of authentication on the Website;
   4. "Functional" cookies that allow "remembering" the settings selected by the User and personalizing the User's interface, e.g. in terms of language or region of the User's origin, font size, appearance of the website, etc.;
   5. "Advertising" cookies that allow the users to provide advertising content that is adapted to their interests - it is also possible to use cookies from entities and third parties.
8. In many cases, the software used for browsing websites (web browser) by default allows storing cookies on the User's end device. Website Users can change cookie settings, at any time. These settings can be changed, in particular, in such a way as to block the automatic handling of cookies in the web browser settings or to inform about them every time they are placed on the Website User's device. Detailed information about the possibilities and ways of handling cookies is available in the software (web browser) settings.
9. The Website Administrator informs that restrictions on the use of Cookies may affect some of the functionalities available on the Website.
10. Cookies placed on the Website User's end device may also be used by advertisers and partners cooperating with the Website administrator.

§ 3.FINAL PROVISIONS

Digitree Group S.A. informs that it may introduce changes to the Privacy Policy and Cookies Policy in the future, in particular, if there are changes in the provisions of generally applicable law in the field of personal data protection.