POLICY
COOKIES POLICY
Website: www.FizjoterapiaKKozle.com
1. General Provisions
This Cookies Policy sets out the rules for storing and accessing information on the User’s end device using cookies in connection with the use of the website.
Website Administrator:
Dariusz Król Gabinet Masażu
Mostowa 1, 47-223 Kędzierzyn-Koźle, Poland
NIP: 7492109337
E-mail: fizjoterapiakkozle@gmail.com
Tel.: +48 799 717 603
2. Definition of Cookies
Cookies are IT data, in particular small text files, stored on the User’s end device and intended for use of the website.
3. Types of Cookies Used
a) Essential (technical) cookies – necessary for the proper functioning of the website and do not require the User’s consent.
b) Analytical cookies – used to analyze how Users interact with the website (e.g., Google Analytics). These are installed only after obtaining prior User consent.
4. Legal Basis
- Article 6(1)(a) GDPR – consent (analytical cookies)
- Article 6(1)(f) GDPR – legitimate interest of the Administrator (essential cookies)
- Article 173 of the Polish Telecommunications Law
5. Storage Period
Cookies may be session cookies (deleted after closing the browser) or persistent cookies (stored for a specified period).
6. Managing Cookies
The User may change cookie settings at any time in their browser settings or withdraw consent via the cookie banner mechanism. Restricting cookies may affect the functionality of the website.
7. Transfers Outside the EEA
If analytical tools are used, data may be transferred outside the European Economic Area with appropriate legal safeguards, in particular Standard Contractual Clauses (SCCs).
PRIVACY POLICY – GDPR COMPLIANT STRUCTURE
Website: www.FizjoterapiaKKozle.com
1. Data Controller
Dariusz Król Gabinet Masażu
Mostowa 1, 47-223 Kędzierzyn-Koźle, Poland
NIP: 7492109337
E-mail: fizjoterapiakkozle@gmail.com
Tel.: +48 799 717 603
2. Principles of Data Processing (Art. 5 GDPR)
Personal data is processed in accordance with the following principles:
- lawfulness, fairness and transparency,
- purpose limitation,
- data minimization,
- accuracy,
- storage limitation,
- integrity and confidentiality.
3. Purposes and Legal Bases for Processing
3.1 Handling inquiries submitted via contact form:
- Article 6(1)(b) GDPR – pre-contractual actions,
- Article 6(1)(f) GDPR – legitimate interest of the Controller.
3.2 Compliance with legal obligations:
- Article 6(1)(c) GDPR.
3.3 Establishment, exercise or defense of legal claims:
- Article 6(1)(f) GDPR.
4. Data Recipients and Processors
Personal data may be transferred to entities processing data on behalf of the Controller under data processing agreements, in particular hosting providers, analytics service providers, and accounting service providers.
5. Transfers Outside the EEA
In the event of transfers outside the European Economic Area, the Controller applies appropriate safeguards, in particular Standard Contractual Clauses or adequacy decisions.
6. Data Retention Period
Personal data is stored for the duration of communication or service provision, for the period required by tax and accounting regulations, and until the limitation period for legal claims expires.
7. Data Subject Rights
Data subjects have the right to:
- access their data (Art. 15 GDPR),
- rectification (Art. 16 GDPR),
- erasure (Art. 17 GDPR),
- restriction of processing (Art. 18 GDPR),
- data portability (Art. 20 GDPR),
- object to processing (Art. 21 GDPR),
- withdraw consent at any time.
8. Obligation to Provide Data
Providing personal data is voluntary, but necessary to respond to inquiries or provide services.
9. Automated Decision-Making
The Controller does not use profiling or automated decision-making within the meaning of Article 22 GDPR.
10. Right to Lodge a Complaint
Data subjects have the right to lodge a complaint with the President of the Personal Data Protection Office (UODO), ul. Stawki 2, 00-193 Warsaw, Poland.