Privacy policy:

This website ("Website") is the property of Greenrivers Jakub Duszka with registration data indicated below (hereinafter the "Administrator").

The privacy policy defines the rules for obtaining, processing and sharing personal data for the implementation of services provided electronically by the Administrator

Using the Website is tantamount to reading the User with the content of this document and expressing consent to the provisions contained therein.

Acceptance of the Privacy Policy does not exclude or replace consent to the processing of data personal data necessary for the correct implementation of contracts concluded via the Website.

Should you have any questions, comments or requests regarding this privacy policy, please contact us at the address given below.

Designation of the responsible entity

The entity responsible for the implementation of the tasks indicated in the Privacy Policy and the data controller personal is Greenrivers Jakub Duszka based at ul. Domaniówka 6/10, 25-413 Kielce, NIP 6762586177, REGON 387186281, entered into the Central Register and Information on Economic Activity.

DEFINITIONS

1. Administrator - Greenrivers Jakub Duszka based at ul. Domaniówka 6/10, 25-413 Kielce, NIP 6762586177, REGON 387186281, entered into the Central Register and Information on Economic Activity.
2. Personal data - all information about an identified or identifiable natural person through one or more specific physical, physiological, genetic factors, mental, economic, cultural or social identity, including device IP, location data, Internet identifier and information collected through cookies and other similar technology.
3. Policy - this Privacy Policy.
4. GDPR - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on free movement such data and repealing Directive 95/46 / EC.
5. Website - a website run by the Administrator at https://greenrivers.pl
6. User - a natural or legal person or an organizational unit without legal personality, having at least limited legal capacity, visiting the Website or using one or more services or functionalities described in the Policy.

DATA PROCESSING IN CONNECTION WITH THE USE OF THE WEBSITE

In connection with the User's use of the Website, the Administrator acquires, stores and processes data to the extent necessary to provide individual services offered. The administrator also acquires information about the User's activity on the Website. Acquisition, processing and storage of data personal data is carried out in accordance with the purposes set out below.

PURPOSES AND LEGAL BASIS FOR PROCESSING DATA ON THE WEBSITE USING THE WEBSITE

1. Personal data of the Website Users (including the IP address or other identifiers and information collected through via cookies or other similar technologies), and not being registered Users (i.e. people who do not have a profile on the Website) are processed by the Administrator:
   1. For the purpose of providing electronic services in the scope of making content available to Users collected on the Website, providing a contact form and a form to express consent to receive commercial information by electronic means, in accordance with art. 6 sec. 1 lit. b GDPR - data processing is necessary to perform the contract;
   2. The purpose of handling inquiries and orders on the Website, in accordance with art. 6 sec. 1 lit. b GDPR - the necessity of processing to perform the contract;
   3. The purpose of handling complaints, in accordance with art. 6 sec. 1 letter b of GDPR - processing is necessary to performance of the contract;
   4. For analytical, statistical and optimization purposes, consisting in conducting analyzes Users' activity, as well as their preferences in order to improve the functionalities used and provided services in accordance with Art. 6 sec. 1 letter f of GDPR - legitimate interest of the Administrator;
   5. In order to possibly establish and pursue claims or defend against them, pursuant to Art. 6 paragraph 1 letter f of GDPR - legitimate interest of the Administrator in the protection of his rights.

The User's activity in connection with the use of the Website, including their personal data, is recorded in logs a system monitoring and illustrating the activity of users on the Website (internal or external a computer program used to store a chronological record containing information about events and activities on the Website). Data collected in logs, information processed in connection with The Administrator also processes the provision of services for technical purposes, including for the purpose of providing security and proper functioning of IT systems, e.g. in connection with making copies security, tests of changes in IT systems, detection of irregularities or protection against abuse and attacks.

CONTACT FORMS

1. As part of the Website's functionality, the Administrator provides the opportunity to contact him at the use of electronic contact forms. Using the form by the User requires providing personal data necessary for return contact and reply to the sent inquiry. The User is also entitled to provide other data to facilitate contact or handling the query. Providing mandatory data (appropriately marked in the form) is required in for the purpose of accepting and handling the inquiry. Refusal to provide them results in the inability to answer on the sent inquiry. Providing other data is optional (optional).
2. Purposes of personal data processing:
   1. In order to identify the sender and handle the inquiry sent, in accordance with art. 6 sec. 1 lit. b GDPR - the necessity of processing to perform the contract for the provision of the service;
   2. For analytical, statistical and optimization purposes by keeping query statistics reported by Users via the Website and in order to improve it functionality and improvement of the customer service process, in accordance with art. 6 sec. 1 lit. f GDPR - legitimate interest of the Administrator.

MARKETING

1. The Administrator processes Users' personal data in order to carry out marketing activities, consisting of:
   1. Directing to Users, with their express, prior and revoked consent at any time e-mail notifications about current events on the Website, changes in the offer and planned promotional campaigns, which in some cases contain commercial information;
   2. Carrying out other types of activities related to direct marketing of goods and services (sending commercial information by electronic means and telemarketing activities).
2. Marketing activities are carried out with the prior, express and direct consent of the User by checking the appropriate form field. The consent granted may be withdrawn by the User or modified at any time. Upon the withdrawal of the consent granted, the Administrator ceases use the User's personal data for marketing purposes.

PERIOD OF PROCESSING OF PERSONAL DATA

1. The period of personal data processing by the Administrator depends on the type of service provided and the purpose of the processing. Personal data is processed for the duration of the service or performance orders. The cessation of the processing of personal data takes place when the consent is withdrawn their processing or the User's effective objection to data processing personal data in cases where the legal basis for data processing is a legitimate interest Administrator. The cessation of the processing of personal data also occurs automatically, in the event of achieving the purpose for which they were collected and processed.
2. The data processing period may be extended due to the fulfillment of legal obligations incumbent on Administrator, as well as in the case of processing personal data for the purpose of establishing and investigating possible claims or defense against them. After the expiry of the processing period, the data is subject to irreversible removal or anonymization.

USER PERMISSIONS

1. Entities to whom the transferred and processed personal data relates have the following rights:
   1. The right to information about the processing of personal data - the administrator of personal data via submitting a request to the Administrator receives information about its processing personal data, about the purposes and legal grounds for processing, the scope of data held by the Administrator and about entities to which the personal data of the administrator are disclosed. information it also includes the planned date of deletion of the data held by the Administrator;
   2. The right to obtain a copy of the data - the administrator of personal data by submitting a directed request receives a copy of the processed data relating to the person submitting the request to the Administrator;
   3. Right to rectification - the administrator of personal data by submitting a request to The administrator may request removal of any inconsistencies or errors regarding processed personal data, and supplements or updates them if such data are available incomplete or changed;
   4. The right to delete data - the administrator of personal data by submitting a request to The administrator may request the deletion of data the processing of which is no longer necessary for carrying out any of the purposes for which they were collected;
   5. The right to limit processing - the administrator of personal data by submitting a request addressed to the Administrator, may request the cessation of operations on personal data, with the exception of the operations for which the administrator has consented and their storage, in accordance with adopted retention rules, or until the reasons for limiting data processing cease to exist (e.g. until the relevant decision of the supervisory authority is issued, allowing further data processing);
   6. The right to transfer data - the administrator of personal data by submitting a directed request may request the Administrator to release the processed personal data in a enabling format their reading by a computer to the administrator or to a third party indicated by the administrator, o if there are technical possibilities in this regard, both on the part of the Administrator and the entity indicated by the administrator to whom the data is to be transferred;
   7. The right to object to data processing for marketing purposes - the administrator of personal data by submitting a request to the Administrator, he may object at any time processing his personal data for marketing purposes. The objection does not need to be justified;
   8. The right to object to other purposes of data processing - the administrator of personal data via submitting a request to the Administrator may object at any time processing of his personal data on the basis of the Controller's legitimate interest (e.g. for analytical or statistical purposes or for reasons related to the protection of property). Objection requires justification and is subject to consideration by the Administrator;
   9. The right to withdraw consent - the administrator of personal data by submitting a request to The administrator may at any time withdraw the consent granted to process his data personal. Withdrawal of consent does not affect the lawfulness of the processing carried out before the consent has been withdrawn by the administrator;
   10. Right to complaint - if it is found that the processing of personal data violates the provisions of the GDPR or other provisions on the protection of personal data, the administrator of the personal data whose data concern, is entitled to bring a complaint to the President of the Office for Personal Data Protection.
2. An application for the exercise of the rights of personal data holders may be submitted:
   1. in writing to the following address: Greenrivers Jakub Duszka with its seat at ul. Domaniówka 6/10, 25-413 Kielce;
   2. by e-mail to the following address: kontakt@greenrivers.pl
3. The application should include the designation of the personal data administrator and indicate what the request concerns, in in particular:
   1. Indicate which permission the applicant wants to use;
   2. Indicate what processing the request concerns;
   3. Specify the purposes of processing the request relates to;
4. In the event that the Administrator is unable to determine the content of the request or identify it based on the application submitted, the applicant will ask the applicant for additional information.
5. The administrator replies within 30 days from the date of receipt of the request. In case of emergency extension of the application examination period, the Administrator will inform the applicant about the reasons for this extensions.
6. The administrator replies in the form in which the administrator submitted the application to the administrator, if the request does not specify the form that the answer should have.

DATA RECIPIENTS/p>

1. In connection with the provision of services, Users' personal data will be disclosed to external entities, including in particular, suppliers responsible for the operation of IT systems, entities such as banks and payment operators, entities providing accounting, legal, auditing, consulting services, couriers (incl in connection with the execution of the contract).
2. The Administrator reserves the right to disclose selected information about the User to the appropriate authorities or third parties that submit a request for such information, relying on appropriate legal basis and in accordance with the provisions of applicable law.

SECURITY OF PERSONAL DATA

1. The Administrator conducts a risk analysis on an ongoing basis to ensure that Users' personal data are processed by him in a safe manner - ensuring, above all, access to data have only authorized persons and only to the extent that it is necessary to perform it through no tasks.
2. The administrator takes all necessary steps to ensure the proper level security of personal data provided and processed at the request of the Administrator by third parties.

COOKIES POLICY

1. Automatic data collection: Automatic collection covers data transmitted by the user's device used for communication with the Administrator's servers. The data indicated in the preceding paragraph include, among others:
   1. IP address;
   2. Geolocation data;
   3. Information about the system and web browser used;
   4. Other data used to create and display internet traffic statistics in websites.
2. The data specified in the preceding paragraph are collected and processed for the purpose of analyzing the scope and attendance and optimization of the structure and content of the Website.
3. Types of cookies used:
   1. The cookies used by the Administrator are safe for the User's device.
   2. It is not possible to get into the devices through the files indicated in the preceding paragraph Users of viruses or other unwanted software or malware.
   3. Administrator's cookies allow to identify the software used by The User on the devices used by him and adapt the Website individually to the hardware and software configuration used by the User.
   4. The cookies used contain the name of the domain they come from and the storage time for User's device and the assigned value.
4. The administrator uses the following types of cookies:
   1. Session cookies - stored on the User's device, remaining on it until ending the browser session. Closing the browser permanently deletes from the device memory of saved files;
   2. Persistent cookies - stored on the User's device and remain there until they are made deleted by the proper functionality of the browser. End of the browser session or turning off the device does not delete them.
5. The mechanism of cookies specified in the preceding paragraph does not allow the collection of any personal data or any confidential information from the User's device. The user has the option limit or disable the access of cookies to your device by appropriate configuration of the browser used. Disabling or limiting the use of cookies may result in partial or complete unavailability of the Website.
6. The administrator uses cookies for the following purposes:
   1. Website configuration, understood as adapting the content of the Website pages to User preferences and optimization of the use of the Website pages;
   2. Analysis and research as well as audience audit, by collecting general and anonymous data static, creating anonymous statistics via analytical tools, which help to understand how the Website Users use the Website's pages, which allows improving their structure and content;
   3. Provision of advertising services by presenting advertising messages tailored to User preferences.
   4. Defining the conditions for storing or accessing cookies:
7. The user may independently and at any time change the settings for cookies, specifying the conditions for their storage and access to the User's Device by Cookies.
8. Changes to the settings referred to in the preceding paragraph may be made by the User using the appropriate web browser settings or by configuring the service used.
9. The user can change the settings used, in particular in a way that allows blocking the automatic handling of cookies or informing the User about each time placing cookies on the device used by him.
10. Detailed information on the possibilities and methods of handling cookies is available in the settings software (web browser), as well as in technical support files.
11. The user has the right to delete cookies at any time using the available functions in web browser.

CHANGE OF PRIVACY POLICY

1. The Administrator reserves the right to modify this document in accordance with the current one Privacy policy. The modified document is valid from the date of its publication on the website.
2. The Privacy Policy comes into force on the day of its announcement.