Privacy Policy

The privacy policy describes how we process information about you, including personal data and cookies.

 

1. General Information

  1. This policy applies to the Website, operating under the URL: sapport.me
  2. The Service Operator and Personal Data Controller is: Sapport Spółka z Ograniczoną Odpowiedzialnością ul. Kołacińska 10B/16
  3. The Operator’s contact email address is: office@sapport.me
  4. The Operator is the Controller of your personal data with respect to data provided voluntarily on the Website.
  5. The Website uses personal data for the following purposes:

    • Running a newsletter

    • Conducting online chat conversations

    • Handling inquiries via a form

    • Execution of ordered services

    • Presentation of an offer or information

  6. The Website performs functions of acquiring information about users and their behaviour in the following way:
    1. Through data voluntarily entered in forms, which are then entered into the Operator’s systems.
    2. By storing cookie files on end-user devices.

2. Selected Data Protection Methods Used by the Operator

  1. The login and personal data entry areas are protected in the transmission layer (SSL certificate). Thanks to this, personal data and login details entered on the site are encrypted on the user’s computer and can only be read on the target server.
  2. Personal data stored in the database is encrypted in such a way that only the Operator possessing the key can read it. This protects the data in case the database is stolen from the server.
  3. User passwords are stored in hashed form. The hashing function works one-way – it is not possible to reverse its operation, which is the current modern standard for storing user passwords.
  4. The Operator periodically changes their administrative passwords.

  5. To protect the data, the Operator regularly performs backup copies.

  6. An important element of data protection is the regular updating of all software used by the Operator to process personal data, which in particular means regular updates of programming components.

3. Hosting

  1. The Website is hosted (technically maintained) on the servers of the operator: www.home.pl
  2. The hosting company maintains server-level logs to ensure technical reliability. The following may be recorded:

    • Resources specified by a URL identifier (addresses of requested resources – pages, files),

    • Time of the request arrival,

    • Time of sending the response,

    • Name of the client station – identification carried out by the HTTP protocol,

    • Information about errors that occurred during the execution of the HTTP transaction,

    • The URL address of the page previously visited by the user (referer link) – in case the transition to the Website occurred via a link,

    • Information about the user’s browser,

    • Information about the IP address,

    • Diagnostic information related to the process of self-ordering services through on-site recorders,

    • Information related to the handling of electronic mail addressed to and sent by the Operator.

4. Your Rights and Additional Information on Data Usage

  1. In some situations, the Controller has the right to transfer your personal data to other recipients, if this is necessary for the performance of a contract concluded with you or to fulfil the Controller’s obligations. This applies to the following groups of recipients:

    • Hosting company under a data processing agreement

    • Postal operators

    • Payment operators

    • Online chat solution operators

    • Authorised employees and associates who use the data to fulfil the purpose of the website operation

    • Companies providing marketing services on behalf of the Controller

  2. Your personal data is processed by the Controller for no longer than is necessary to carry out the related activities specified by separate regulations (e.g., concerning accounting). With regard to marketing data, the data will not be processed for longer than 3 years.
  3. You have the right to request from the Controller:

    • Access to your personal data,

    • Rectification (correction) thereof,

    • Erasure,

    • Restriction of processing,

    • And data portability.

  4. You have the right to object to the processing indicated in point 3.2 concerning the processing of personal data for the purpose of carrying out the legitimate interests pursued by the Controller, including profiling, however, the right to object may not be exercised in the event of the existence of valid, legally justified grounds for processing, overriding your interests, rights and freedoms, in particular the establishment, exercise or defence of legal claims.
  5. You have the right to lodge a complaint against the Controller’s actions with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
  6. Providing personal data is voluntary, but necessary for the operation of the Website.
  7. Actions consisting of automated decision-making, including profiling, may be taken against you for the purpose of providing services under the concluded agreement and for the purpose of the Controller conducting direct marketing.
  8. Personal data is not transferred to third countries within the meaning of personal data protection regulations. This means that we do not send it outside the European Union.

5. Information in Forms

  1. The Website collects information voluntarily provided by the user, including personal data, if it is provided.
  2. The Website may save information about connection parameters (time stamp, IP address).
  3. In some cases, the Website may save information facilitating the linking of data in the form with the email address of the user filling out the form. In this case, the user’s email address appears inside the URL address of the page containing the form.
  4. The data provided in the form is processed for the purpose resulting from the function of the specific form, e.g., for the purpose of handling a service request or commercial contact, service registration, etc. In each case, the context and description of the form clearly inform about its purpose.

6. Controller Logs

  1. Information about user behaviour on the website may be logged. This data is used for the purpose of administering the website.

7. Important Marketing Techniques

  1. The Operator uses statistical traffic analysis on the website through Google Analytics (Google Inc. based in the USA). The Operator does not transfer personal data to the operator of this service, but only anonymized information. The service is based on the use of cookies on the user’s end device. Regarding information about user preferences collected by the Google advertising network, the user can view and edit information resulting from cookie files using the tool: https://www.google.com/ads/preferences.
  2. The Operator uses form protection on the website using the Google reCAPTCHA service (Google LLC based in the USA). The Operator does not transfer personal data to the operator of this service, but only data necessary to detect automated, unauthorized use of the form, such as the IP address or information about the user’s end device. The reCAPTCHA service is based on user behaviour analysis and the use of cookie files on the end device. Regarding data collected by Google, the user can view and manage their preferences using the tool available at: https://policies.google.com/privacy.

  3. The Operator uses remarketing techniques, allowing for the tailoring of advertising messages to the user’s behaviour on the site, which may give the illusion that the user’s personal data is being used for tracking, however, in practice, no personal data is transferred from the Operator to the ad operators. A technological prerequisite for such activities is the enabled handling of cookie files.

  4. The Operator uses the Facebook pixel. This technology means that the Facebook service (Facebook Inc. based in the USA) knows that a registered person uses the Website. In this case, it relies on data for which it is the controller itself; the Operator does not transfer any additional personal data to the Facebook service. The service is based on the use of cookies on the user’s end device.

  5. The Operator uses a solution that examines user behaviour by creating heat maps and recording behaviour on the page. This information is anonymized before being sent to the service operator so that they do not know which physical person they relate to. In particular, passwords and other personal data entered are not recorded.
  6. The Operator uses a solution that automates the operation of the Website in relation to users, e.g., it can send an email to a user after visiting a specific subpage, provided that the user has consented to receive commercial correspondence from the Operator.

8.Information on Cookie Files

  1. The Website uses cookie files.

  2. Cookie files (also known as “cookies”) are IT data, in particular text files, which are stored on the Website User’s end device and are intended for using the Website’s pages. Cookies usually contain the name of the website they come from, the time they are stored on the end device, and a unique number.
  3. The entity placing cookie files on the Website User’s end device and accessing them is the Website operator.
  4. Cookie files are used for the following purposes:
    1. Maintaining the Website User’s session (after logging in), thanks to which the user does not have to re-enter their login and password on every subpage of the Website;
    2. Implementing the purposes specified above in the “Important Marketing Techniques” section;
  5. Within the Website, two basic types of cookie files are used: “session” cookies and “persistent” cookies. “Session” cookies are temporary files that are stored on the User’s end device until logging out, leaving the website, or turning off the software (web browser). “Persistent” cookies are stored on the User’s end device for the time specified in the cookie parameters or until they are deleted by the User.
  6. Software for browsing websites (web browser) usually allows the storage of cookie files on the User’s end device by default. Website Users can change these settings. The web browser allows the deletion of cookie files. It is also possible to automatically block cookie files. Detailed information on this subject is available in the help or documentation of the web browser.
  7. Restrictions on the use of cookie files may affect some functionalities available on the Website’s pages.
  8. Cookie files placed on the Website User’s end device may also be used by entities cooperating with the Website operator, in particular, this applies to the companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).

9. Managing Cookie Files – How to Express and Withdraw Consent in Practice?

  1. If the user does not want to receive cookie files, they can change the browser settings. We reserve that disabling the handling of cookie files necessary for authentication processes, security, and maintaining user preferences may make it difficult, and in extreme cases, impossible to use the websites.

  2. To manage cookie settings, select the web browser you use from the list below and follow the instructions:

    • Edge

    • Internet Explorer

    • Chrome

    • Safari

    • Firefox

    • Opera

  3. Mobile devices:

    • Android

    • Safari (iOS)

    • Windows Phone