Request a quote

Privacy policy

PRIVACY AND COOKIES POLICY

Use of the website www.ddprojekt.pl implies acceptance of the following terms of the Privacy Policy and the Cookies Policy.

 

§1 GENERAL PROVISIONS

The Privacy and Cookies Policy sets out the rules for the collection, processing and protection of personal data provided by Users, as well as for the use of cookies and other similar technologies used on the website www.ddprojekt.pl

The administrator of the website and the administrator of personal data processed through it is DD Projekt sp. z o.o. with its registered office in Kraków, at ul. Krakusa 11, 30-535 Kraków, entered into the register of entrepreneurs of the National Court Register kept by the District Court for Kraków-Śródmieście in Kraków, XI Economic Department of the National Court Register, under KRS number: 0000892375, NIP: 6793215200, REGON: 388598117, with initial capital of PLN 5,000.00.

If you have any questions or concerns regarding the content of this Privacy Policy and the Cookies Policy, please contact the Administrator via the email address: biuro@ddprojekt.pl 

The Administrator reserves the right to update the content of this Policy. Each User is obliged to become familiar with its current version. Amendments may result in particular from technological progress, modifications of generally applicable laws or development of the website's functionality, including implementation of new tools by the Administrator. Information on the effective date of the current Privacy Policy is provided at the bottom of the website.

 

§2 DEFINITIONS

  1. Administrator - DD Projekt sp. z o.o., with its registered office in Kraków, ul. Krakusa 11, 30-535 Kraków, entered into the Register of Entrepreneurs of the National Court Register kept by the District Court in Kraków, XI Economic Department of the National Court Register under KRS number: 0000892375, NIP: 6793215200, REGON: 388598117, share capital: PLN 5,000.00,
  2. User - any entity residing on and using the Site,
  3. Form or Forms - the areas on the Website which allow the User to enter personal data, for the purposes indicated therein, e.g. to arrange a consultation with the User, to establish the scope of the User's needs and the services sought, to establish the scope of a potential service to the User, to establish additional information and comments on the scope of the User's needs, the services sought or to establish the scope and specifications of a potential service to the User, to place an order for services, to contact the User, to conclude an agreement for the provision of services by electronic means, to perform the agreement for the provision of services by electronic means,
  4. RODO - means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (OJ EU. L. 2016 No. 119, p. 1 as amended),
  5. Electronic Communications Law - Act of 12 July 2024 (Official Gazette of 2024, item 1221),
  6. Personal Data Protection Act - Act of 10 May 2018 on the protection of personal data (i.e. Journal of Laws 2019, item 1781),
  7. Act on Provision of Electronic Services - Act of 18 July 2002 on the provision of services by electronic means (i.e. Journal of Laws 2024, item 1513).

 

§3 PERSONAL DATA AND PRINCIPLES OF THEIR PROCESSING

WHO IS THE CONTROLLER OF YOUR PERSONAL DATA?

The Administrator of the User's personal data is DD Projekt sp. z o.o., with its registered seat in Kraków, ul. Krakusa 11, 30-535 Kraków, entered into the Register of Entrepreneurs of the National Court Register kept by the District Court in Kraków, XI Economic Department of the National Court Register under KRS number: 0000892375, NIP: 6793215200, REGON: 388598117, initial capital: PLN 5,000.00.

IS THE PROVISION OF DATA VOLUNTARY? WHAT ARE THE CONSEQUENCES OF NOT PROVIDING THE DATA?

The provision of personal data by the User is voluntary. However, it should be borne in mind that failure to provide certain information - marked on the Administrator's website as necessary - may result in the impossibility of providing a given service, achieving a given purpose or taking the indicated actions.

In the event that the User provides data that is not required by the Administrator or that is excessive in relation to the purpose of the processing, this action occurs solely on the User's initiative. In this case, the basis for processing is the premise of Article 6(1)(a) RODO (consent). By providing such data, the User consents both to its processing and to the possibility of its anonymisation by the Administrator, if the data are not necessary and are not included in the scope of processing required by the Administrator.

FOR WHAT PURPOSES AND ON WHAT LEGAL BASIS DO WE PROCESS THE PERSONAL DATA YOU PROVIDE IN CONNECTION WITH YOUR USE OF THE WEBSITE?

The User's personal data on the Administrator's Site may be processed for the following purposes and on the following legal bases:

  1. to provide a service or perform a concluded contract, to send an offer (e.g. an advertisement) at the user's request - on the basis of Article 6(1)(b) of the RODO (necessary for the conclusion and/or performance of the contract or to take action on request);
  2. to issue an invoice, an invoice and to comply with other obligations under tax law - on the basis of Article 6(1)(c) of the RODO (legal obligation);
  3. provide a discount or information about promotions and interesting offers from the Administrator or entities recommended by the Administrator - on the basis of Article 6(1)(a) of the RODO (consent);
  4. handling complaints or claims related to the contract - on the basis of Article 6(1)(b) of the DPA (necessity for the conclusion and/or performance of the contract) and on the basis of Article 6(1)(c) of the DPA (legal obligation);
  5. in order to establish, investigate or defend the legitimate interests pursued by the Administrator, in particular the defence of claims - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller);
  6. telephone contact for matters relating to the provision of the service - on the basis of Article 6(1)(b) of the RODO (necessity for the conclusion and/or performance of the contract);
  7. telephone contact for the purposes of providing an offer and direct marketing - on the basis of Article 6(1)(a) of the RODO (consent) and on the basis of Article 6(1)(f) of the RODO (legitimate interest of the controller) if you are already my customer;
  8. creation of records relating to RODO and other legislation - on the basis of Article 6(1)(c) RODO (legal obligation) and Article 6(1)(f) RODO (legitimate interest of the controller);
  9. archives and evidence, for the purpose of safeguarding information which may serve to prove facts - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller);
  10. analytical, involving, inter alia, the analysis of data collected automatically when using the website, including cookies, e.g. Google Analytics cookies, Facebook Pixel - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller);
  11. the use of cookies on the Site and its sub-sites - on the basis of Article 6(1)(a) of the RODO (consent);
  12. the management of the website and the Administrator's pages on other platforms - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller);
  13. satisfaction surveys of services offered - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller),
  14. the posting by the user of an opinion about services provided by Administrator- on the basis of Article 6(1)(a) of the RODO (consent),
  15. for internal administrative purposes of the Administrator relating to the management of contacts with the User, which is a legitimate interest of the Data Controller on the basis of Article 6(1)(f) RODO (legitimate interest of the Controller),
  16. for sending the newsletter - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller to process data for direct marketing purposes) and on the basis of the Act on the provision of electronic services (consent),
  17. to adapt the content displayed on the Administrator's websites to individual needs and to continuously improve the quality of the services offered - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller),
  18. for direct marketing to you of their own products or services or of recommended products of third parties - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller),
  19. to create their own user databases - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller),
  20. to operate the fanpage under the name DD Projekt , https://www.facebook.com/DDPROJEKT. on Facebook and interact with users - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller). 
  21. to operate a profile under the name DD Project https://www.instagram.com/ddprojekt/on Instagram and interacting with users - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller). 
  22. to operate a You Tube channel under the name DD Projekt at URL https://www.youtube.com/@ddprojekt This privacy policy has been developed to clarify what information is collected when operating the YouTube channel under the name DD Projekt at URL https://www.youtube.com/@ddprojekt for the purpose of interacting with users. These activities are carried out in accordance with Article 6(1)(f) of the DPA (legitimate interest of the controller). Thank you for reading our privacy policy. and interacting with users - on the basis of Article 6(1)(f) RODO (legitimate interest of the controller). 
  23. to target advertising on social media and websites, such as Facebook Leads Ads or Facebook Custom Audience, You Tube and remarketing targeting - on the basis of Article 6(1)(a) of the RODO (consent) and on the basis of Article 6(1)(f) of the RODO (legitimate interest of the Administrator), consisting of the promotion and advertising of the Administrator's services by means of remarketing targeted at persons subscribed to the mailing or visitors to the website concerned),
  24. for storing comments on the Website, Fanpage, Instagram and Youtube. on the basis of Article 6(1)(a) of the RODO (consent).

The provision by the User of data not required by the Administrator or the provision of information beyond what is necessary for the fulfilment of the specified purposes occurs on the sole initiative of the User. In this case, the basis for processing is the premise provided for in Article 6(1)(a) of the RODO, i.e. the User's consent. By providing such information, the User consents both to its processing and to the possibility of its anonymisation by the Administrator in a situation where the data is neither needed nor covered by the scope of processing required by the Administrator.

WHAT DATA ARE COLLECTED?

By completing and submitting the Form, the User provides and the Administrator obtains and processes personal data such as:

        1. User's name,
        2. the correspondence e-mail address of the User, 
        3. contact telephone number,
        4. information about the scope of the needs and services sought by the User, 
        5. additional information to determine the scope of needs, comments, specifications of the service sought by the User.

HOW ARE DATA COLLECTED?

The Administrator collects and processes only the personal data that the User provides voluntarily, with the exception of situations where certain information is collected automatically by means of cookies and login data (see further details in the Policy).

When using the website, technical data related to the User's visit such as IP address, domain name, browser type, operating system type and other technical parameters (so-called login data) are automatically recorded. This data may be used in particular to analyse how the website is used, to create aggregate demographic statistics or to personalise content in order to optimise the functioning of the website. However, this information is only used for administrative purposes, maintenance of the website and marketing activities and is not linked to specific users.

In addition, data may be collected in connection with the completion of forms available on the website - detailed rules in this regard are described later in this Privacy Policy.

Information society services 

The controller does not collect the personal data of minors. Self-consent to the processing of data for purposes related to the provision of information society services, including in particular                      for marketing purposes, is only possible if you are over the age of 18. For younger persons, the consent of a legal representative, e.g. a parent or legal guardian, is required.

Persons under the age of 18 should not use the service or the website www.ddprojekt.pl 

The Administrator shall have the right to take appropriate measures to verify whether the User meets the age of majority criterion referred to above, or whether consent to the processing of personal data has been given or approved by the person with parental authority or legal custody over the User.

WHAT ARE THE USER RIGHTS?

The user is entitled to the rights contained in Articles 15- 21 of the RODO at any time, i.e.: 

  1. The right of access to the content of his/her data, 
  2. the right to data portability, 
  3. the right to rectify data,
  4. the right to rectification of data, 
  5. the right to erasure of the data if there is no longer any basis for the processing,
  6. the right to restrict processing if it has been carried out incorrectly or without a legal basis, 
  7. The right to object to the processing on the basis of a legitimate interest of the controller, 
  8. the right to lodge a complaint with the supervisory authority, the President of the Office for Personal Data Protection (under the terms of the Personal Data Protection Act), if he/she considers that the processing of his/her data is incompatible with current data protection legislation. 
  9. the right to be forgotten, if further processing is not provided for by current legislation.

The Administrator emphasises that not all the User's rights under data protection legislation are absolute and can be exercised in every case. These limitations concern, among other things, the right to obtain a copy of the data - the exercise of this right must not infringe the rights and freedoms of third parties, such as copyrights or the obligation of professional secrecy. The detailed scope of the limitations is set out in the provisions of the RODO.

Notwithstanding the above, the User shall always have the right to lodge a complaint with the competent supervisory authority.

In order to exercise his or her rights, the User may contact the Administrator by e-mail at: biuro@ddprojekt.pl or by mail, directing correspondence to the Administrator's registered office address indicated in this Policy. The notification should precisely indicate the scope of the requests made. The Administrator shall respond no later than 30 days from the date of receipt of the request, together with a justification, unless there are grounds for extending the deadline in accordance with the provisions of the RODO.

CAN A USER WITHDRAW HIS/HER CONSENT?

If the User has given his/her consent to certain activities of the Administrator, he/she may revoke it at any time. The effect of revoking the consent will be the removal of the User's e-mail address from the Administrator's mailing list and the discontinuation of the activities for which the consent was granted (e.g. sending commercial information). However, the withdrawal of consent does not affect the legality of data processing carried out before its withdrawal.

Please note that in some situations data will not be completely deleted - it may be retained for a period of time under the Civil Code in order to defend against potential claims or in connection with a legal obligation imposed on the Administrator.

In each case, the Administrator shall consider the User's request and inform him/her of the action taken, providing the relevant justification under the applicable legislation.

DO WE TRANSFER YOUR DATA TO THIRD COUNTRIES?

Users' personal data may be transferred outside the European Economic Area (EEA), i.e. to so-called third countries.

Due to the Administrator's use of third-party entities, such as Facebook and its affiliates, Google, Microsoft or others, Users' data may be transferred to the United States of America (USA) in connection with storage on servers located in the territory of the USA - either in whole or in part. These entities use solutions to ensure compliance with the requirements of the RODO, including but not limited to compliance certificates or standard contractual clauses adopted by the European Commission.

Transfers of data outside the EEA shall only take place to entities that guarantee an adequate level of protection of personal data, in particular by:

  1. cooperation with data processors operating in countries for which the European Commission has issued an adequacy decision,
  2. use of standard contractual clauses adopted by the European Commission (e.g. in Google services),
  3. implementation of binding corporate rules approved by the competent supervisory authority,
  4. or on the basis of the User's express consent to such a transfer.

Detailed information on the data processing rules of the designated providers is available in their privacy policies published on their websites.

Currently, the services provided by Google and Facebook are predominantly carried out by entities based in the European Union. However, it is recommended that you always consult the current privacy policies of these providers for the latest information on data protection rules.In the case of MailerLite, some data may be stored in the United States or processed with entities in that country, but the main data processing operations take place within the European Union.

HOW LONG DO WE KEEP YOUR DATA?

The User's data will be stored by the Administrator for the duration of the individual services/objectives and:

  1. for the duration of the service and the cooperation, as well as for the period of limitation of claims under the law - with regard to data provided by contractors and customers or Users,
  2. for the duration of discussions and negotiations prior to the conclusion of a contract or the performance of a service - in relation to the data provided in the request for proposal,
  3. for the period required by law, including tax law, in relation to personal data involving compliance with obligations under applicable legislation,
  4. until such time as an effective objection is lodged on the basis of Article 21 RODO - in relation to personal data processed on the basis of a legitimate interest of the controller, including for direct marketing purposes,
  5. until the withdrawal of consent or the achievement of the purpose of the processing, the business purpose - with regard to personal data processed on the basis of consent. After the withdrawal of consent, the data may still be processed for the purpose of defending against possible claims in accordance with the limitation period for such claims or the (shorter) period indicated to the User,
  6. until it becomes obsolete or no longer relevant - with regard to personal data processed mainly for analytical and statistical purposes, the use of cookies and the administration of the Administrator's Sites,
  7. for a maximum period of 3 years in the case of persons who have unsubscribed from the newsletter in order to defend themselves against possible claims (e.g. information about the date of subscription and the date of unsubscribing from the newsletter, the number of newsletters received, actions taken and activity relating to the messages received), or after a period of 1 year of inactivity by the subscriber in question, e.g. failure to open any message from the Administrator.

Data retention periods indicated in years are calculated at the end of each year in which data processing began. Mato aims to streamline data processing and management.

The specific processing periods of personal data, relating to each processing activity, can be found in the Controller's register of processing activities. 

LINKS TO OTHER SITES

Links to other websites may appear on the Site. These will open in a new browser window or in the same window. The Administrator is not responsible for the content provided by these websites. It is the User's responsibility to read the privacy policy or terms and conditions of these websites.

SOCIAL MEDIA ACTIVITIES - FACEBOOK/ INSTAGRAM

The administrator of the User's personal data on the fanpage under the name https://www.facebook.com/DDPROJEKT on Facebook on Facebook (hereinafter Fanpage) is the Administrator.  

The personal data provided by Users on the Fanpage is used in particular to run and operate the Fanpage, maintain communication with Users, enable interaction, target marketing content and build a community around the Fanpage.

The legal basis for data processing is the User's consent, as well as the Administrator's legitimate interest in remaining in contact with Users and Fanpage Observers. The User decides independently and voluntarily to like or observe Fanpage.

The rules of Fanpage operation are set by the Administrator, while the use of Facebook takes place in accordance with the regulations in force on this platform.

The User may unsubscribe from the Fanpage at any time. In this case, the Administrator will no longer provide the User with the content published on Fanpage.

The Administrator has access to the User's personal data to the extent publicly disclosed on the profile, such as name, surname or other general information. The processing of other data is carried out directly by Facebook under the terms of its regulations.

The User's personal data will be stored for the period of operation of the Fanpage, based on the consent given by clicking „Like”, „Observe”, or through the User's activity, e.g. posting a comment, sending a message or undertaking other interaction. In addition, the basis for processing is the Administrator's legitimate interest in carrying out marketing activities concerning its own products or services, as well as the possibility of defending against possible claims.

Personal data may be disclosed to other recipients, including Facebook, advertising agencies cooperating with the Administrator, entities providing technical support to the Fanpage (e.g. IT services, virtual assistants) or online course providers if the contact goes beyond Facebook itself.

The user retains all the rights set out in this Privacy Policy. Data may also be transferred to third countries in accordance with Facebook's regulations.

This data may be subject to profiling in order to better tailor the marketing message to the User's needs. However, they will not be used for automated decision-making within the meaning of the RODO, which could have an adverse effect on the User's rights and freedoms.

The above rules also apply to Instagram - https://www.instagram.com/ddprojekt/.

DATA SECURITY 

Users' personal data are stored and protected with due care, in accordance with the internal security procedures adopted by the Administrator. The Administrator shall apply adequate technical and organisational measures, corresponding to the requirements of the applicable legislation, including regulations concerning the protection of personal data. Their purpose is, in particular, to ensure an adequate level of security and to protect data against unauthorised access.

Users' personal data can only be accessed by persons authorised to process them who have been obliged to maintain confidentiality, or by external entities entrusted with the data on the basis of a separate processing contract.

At the same time, the user is obliged to take due care to protect his or her data transmitted over the Internet, in particular by not providing access data to third parties, using anti-virus software and keeping the systems used up to date.

WHO MAY BE THE RECIPIENTS OF PERSONAL DATA?

 

The controller indicates that in the course of its activities it uses the services of external entities. Entities entrusted with the processing of personal data - such as, inter alia, courier service operators, electronic payment providers, accounting offices or entities handling the sending of newsletters - ensure the application of appropriate technical and organisational measures to guarantee the security and protection of personal data, in accordance with the applicable legislation, including the provisions of the RODO.

The Administrator informs the User that he entrusts the processing of personal data to, among others, the following entities:

  1. Home.co.uk - to store personal data on the server,
  2. ddprojekt.co.uk - to create landing pages and collect leads,
  3. biuro@ddprojekt.pl, ddprojekt@ddprojekt.pl - for the use of Google and Meta services, including email,
  4. Home.pl - to operate the domain and mail server,
  5. other contractors or subcontractors engaged to provide technical, IT, administrative or legal assistance to the Administrator and its clients, e.g. accounting, IT, graphic design, copywriting, debt collection companies, lawyers, etc.
  6. to authorities, e.g. the tax authorities, in order to comply with legal and tax obligations in connection with accounts and bookkeeping.

 

HAVE WE APPOINTED A DATA PROTECTION OFFICER?

The Data Controller informs you that a Data Protection Officer (DPO) has not been appointed and all duties related to the processing of personal data are carried out directly by the Controller.

The User acknowledges that his/her personal data may be made available to the competent state authorities in the framework of their investigations - only upon their request and upon the demonstration of the legal grounds justifying the necessity of obtaining them from the Administrator.

DO WE PROFILE YOUR DATA?

Users' personal data will not be used in automated decision-making processes that could in any way affect their rights, obligations or freedoms within the meaning of the RODO.

As part of the operation of the website and the tracking technologies used, it is possible to profile Users' data. The purpose of such measures is to better adapt the Administrator's offer to the User's preferences, primarily through the use of behavioural advertising. However, this profiling does not affect the User's legal situation or the terms and conditions of existing or planned contracts. Its only effect is to enable the content and advertising to be tailored more precisely to the User's interests.

The data used in this regard are anonymous and are not combined with personal data provided for other purposes, such as when making a purchase. They are based on statistical information such as age, gender, interests, approximate location or activity on the website.

Each User has the right to object to profiling if it could adversely affect their rights or obligations.

 

§4 FORMS

The Administrator uses the following types of forms within the Site:

  1. Newsletter subscription form - In order to use the newsletter service, it is necessary to enter your name and e-mail address in the form. These fields are mandatory. The user then confirms their wish to subscribe and the data provided is added to the Administrator's subscriber database and used to send the newsletter.

By subscribing to the newsletter, the User accepts the provisions of this Privacy Policy and agrees to receive commercial and marketing information by means of electronic communication (e.g. e-mail, SMS messages), in accordance with Article 398 of the Electronic Communications Act of 12 July 2024 (i.e. Journal of Laws of 2024, item 1221).

By signing up, the User also consents to the use of his/her terminal equipment (e.g. phone, tablet, computer) for direct marketing purposes, including the presentation of commercial information concerning the Administrator's services and products, in accordance with Article 398 of the Electronic Communications Act of 12 July 2024 (i.e. Journal of Laws of 2024, item 1221).

Giving the above consents is voluntary, but necessary for the newsletter service, which includes sending information about services, blog articles, promotions, discounts or recommended third party products. Consent may be withdrawn at any time, which will result in the discontinuation of the sending of the newsletter in accordance with this Privacy Policy.

The newsletter is sent for an indefinite period of time, starting from the activation of the subscription until the withdrawal of consent. After withdrawal, the data may be stored in the newsletter database for up to 2 years in order to demonstrate the fact of consent, the User's activity (e.g. opening of messages) and the date of withdrawal, as well as in connection with possible claims. The legal basis for this is the Administrator's legitimate interest (Article 6(1)(f) RODO).

The Administrator may discontinue the newsletter service also in the situation of inactivity of the User for at least 12 months (e.g. no opening of the message). In such a case, the data will be deleted from the mailing system and the User will not receive any further communications unless he/she subscribes to the newsletter again or contacts the Administrator to resume the service.

The mailing system used by the Administrator records the activity of Users, including dates and times of opening messages, clicking on links, unsubscribing, etc.

The administrator may also carry out remarketing activities on the basis of Article 6(1)(f) RODO, i.e. on the basis of its legitimate interest in promoting services. In this case, subscribers' email addresses may be sent to the advertising tools of Facebook Inc. (the so-called advertising manager) in order to target personalised advertisements to newsletter subscribers who also have an account on the Facebook platform. The data is deleted each time the advertising campaign ends, and an updated subscriber database is uploaded on subsequent campaigns. Please refer to Facebook's privacy policy for details on the rules for creating customised audience groups, data hashing and further processing: https://www.facebook.com/legal/terms/customaudience# 

and https://www.facebook.com/legal/terms/dataprocessing. 

The administrator recommends that each subscriber reads these aforementioned documents.

  1. Contact form - allows direct contact with the Administrator. The form processes personal data in the form of name, surname, email address and any information provided in the body of the message. This data is used in accordance with the principles set out in this Privacy Policy.

Once the contact has ended, the data may be archived as a legitimate interest of the Administrator. It is not possible to indicate the exact period of archiving, but the data will not be kept longer than the period resulting from the statute of limitations for claims.

 

§5 DISCLAIMER AND COPYRIGHT

  1. The material published on the Website, Fanpage, Instagram profile and YouTube channel is for general information purposes only and does not constitute advice or recommendations of a specialist nature (including educational). They do not refer to individual factual situations. In case of the need to obtain advice on a specific issue, the User should contact the entity authorised to provide such advice or contact the Administrator using the contact details indicated on the Site. The Administrator shall not be held liable for the use of the posted content, nor for any actions or omissions undertaken on the basis of such content.
  2. All materials published on the Website, including, in particular, texts, photographs, graphics, recordings or other elements, are copyrighted works and are the property of the Administrator or third parties who hold the relevant rights. Copying, duplication or further distribution of such content, in whole or in part, requires each time the prior and explicit consent of the Administrator.
  3. The Administrator hereby informs that unauthorised dissemination of the content posted by the Administrator constitutes an infringement of the law and may result in civil or criminal liability on the part of the perpetrator. In the event of copyright infringement, the Administrator reserves the right to claim appropriate compensation or damages for material and non-property damage sustained, in accordance with the applicable laws.
  4. The Administrator shall not be held liable for the use by Users of content available on the Site in a manner contrary to the law.
  5. The content on the Site is current as of the date of publication, unless otherwise expressly stated.

 

§6 TECHNOLOGIES

In order to use the Administrator's Fanpage, Instagram and Youtube pages, it is necessary to have:

  1. Internet-enabled devices,
  2. An active e-mail inbox receiving e-mails,
  3. A web browser capable of displaying web pages,
  4. Software capable of reading content in the presented formats, e.g. pdf., video, mp3, mp4.

 

§7 COOKIE POLICY

  1. Like most websites, the Administrator's Website uses tracking technologies, including cookies („cookies”), which enable it to tailor its functionality to the needs of its visitors and improve the quality of its services.
  2. The website does not automatically collect any data, except for the information contained in cookies.
  3. Cookies are small text files containing IT data that are stored on the User's terminal device (e.g. computer, tablet, smartphone) when using the Website. By default, a cookie contains the name of the originating website, the time it is stored on the end device and a unique identifier. The Administrator uses cookies, among other things, in order to adapt the operation of the Website to the expectations of Users (usability features), as well as for analytical, statistical and marketing purposes. Detailed information on cookies is available on the website: www.aboutcookies.org (in English) and http://wszystkoociasteczkach.pl (in Polish).
  4. The Site may use both its own cookies (originating directly from the Administrator's domain) and cookies from third parties (linked to other websites).
  5. The use of cookies makes it possible, among other things, to personalise the content presented on the Website, create statistics showing how the Website is used by Users and improve navigation. This allows the Administrator to continuously improve the content, structure and appearance of the website. Cookies identify the User's browser and facilitate repeated use of the Website by saving preferences. The Administrator declares that he does not use cookies to obtain personal data of the Users, but only to the extent specified in this Policy.
  6. When the Administrator's social media profile is visited, the User is redirected to an external service where the personal data processing rules set by the operator of that service apply. These entities, as separate data controllers, may use the information collected for other purposes in accordance with their own rules and regulations.
  7. The Administrator may use cookies provided by third parties on the Site, including but not limited to analytical and advertising tools.
  8. The Administrator uses the following third-party cookies on the Site:
  1. Facebook conversion pixel and ads created via Facebook Facebook Ads (Facebook Custom Audiences) - are used to manage advertising campaigns on Facebook and to conduct remarketing activities, which is the Administrator's legitimate interest. With these tools, the Administrator can also target personalised advertising content to Users within the framework of so-called contact advertising.

Facebook Pixel is provided by Facebook Inc. and its affiliates. It is an analytical tool for evaluating the effectiveness of advertising campaigns, analysing the activities undertaken by Users on the Site and reaching specific audiences (Facebook Ads, Facebook Insights).

On the basis of Article 6(1)(f) RODO (legitimate interest of the Administrator to promote its own services), the Administrator may also conduct remarketing to persons who have agreed to receive offers, as well as to groups of similar recipients or Fanpage followers. In this case, email addresses are sent to the advertising tool offered by Facebook Inc. - ad manager. The relevant advertisements created by the Administrator or authorised persons are then displayed via this tool. It is a condition that subscribers are also Facebook users (have an active account there). This data is deleted each time an advertising campaign ends, while in the case of subsequent campaigns, an updated contact database is uploaded to the system.

For detailed information on the so-called custom recipient groups, the data hashing rules and how they are processed, please refer to Facebook's privacy policy, available at:

https://www.facebook.com/legal/terms/customaudience#

https://www.facebook.com/legal/terms/dataprocessing

The Administrator recommends that each User reads the contents of these documents.

The information collected in connection with the operation of the Facebook Pixel is anonymous and does not allow direct identification of the User. This data includes, but is not limited to, location, age, gender or interests. Please note, however, that the Facebook provider may combine this information with the data provided by the User as part of his/her profile on the portal and use it according to its own purposes.

Detailed privacy policies, including information on how to manage your settings, can be found at: https://www.facebook.com/privacy/explanation. The user also has the possibility to opt-out of cookies for remarketing advertisements by using the tool available at the link: https://www.facebook.com/help/1075880512458213/.

By using the Site, the User agrees to the installation of the above cookie on his/her terminal device.

  1. Google Analytics embedded code - is used to carry out statistical analyses on the functioning of the Site. This tool uses its own cookies, which make it possible to study the activity and behaviour of Users. Thanks to them, it is possible, among other things, to determine from which website the User was redirected to the Site, which allows the Administrator to improve the content and structure of the site.

Google Analytics is a tool provided by Google LLC. The legal basis for the processing of data in this regard is the Administrator's legitimate interest in compiling visitor statistics and analysing traffic on the Website in order to improve the services provided and optimise its operation.

The Administrator does not process data within the scope of Google Analytics which allows direct identification of Users. The information collected is aggregated and used for analytical purposes only.

The user can read detailed information on how Google Analytics works, how to disable tracking and additional privacy options using the help provided by the tool provider at: https://support.google.com/analytics#topic=3544906 

  1. Web push notifications, from the browser - In order to improve communication with the User and to provide him/her with relevant content and offers more quickly, the Administrator allows consent to receive notifications of the type web push directly in the user's web browser.

This function is activated by accepting the message displayed by the respective browser - the User should select the „display notifications” option or equivalent, the wording of which may vary depending on the software provider.

Consent to receive notifications web push may be revoked at any time by changing the settings of the Internet browser. The Administrator does not collect or process any personal data of Users in connection with this functionality. Identification of the recipients of notifications takes place solely on the basis of information stored by the browser itself, to which the Administrator does not have access.

  1. Social media referral plug-ins e.g. Facebook, Instagram, Pinterest, LinkedIn.

When the User clicks on the icon of a specific plug-in, they are redirected to the website of an external provider - in this case, the owner of the respective social network, e.g. Facebook. The User can then use the functions of the website, such as clicking the „Like” or „Share” button or liking the Administrator's fanpage, as well as directly sharing published content (e.g. posts, articles, videos).

The Administrator recommends that the User reads the privacy policy of a given service, e.g. Facebook, before registering an account with a social network. The Administrator has no influence on the scope and manner of processing of personal data by the social network operator. As soon as the User clicks on the plug-in button, the personal data is transferred to the respective portal, which at this point becomes the administrator and decides itself on the purposes and scope of the processing.

You should be aware that cookies installed by the Facebook plug-in (or other third parties) may already be placed on your device when you visit the Site and may then be combined with data collected on the relevant social network. By using the Website, the User accepts this fact. The Administrator is not in a position to control such data processing by third parties.

The above principles should also be applied mutatis mutandis to plug-ins and integrations with other social networks.

Facebook - the fanpage located at the URL:  https://www.facebook.com/DDPROJEKT

Profile on the social network Instagram, located at URL: https://www.instagram.com/ddprojekt/

Channel on You Tube located at the URL: https://www.youtube.com/@ddprojekt

 

  1. Tools for evaluating the effectiveness of Google Ads campaigns - The data collected through the use of Google's advertising tools is used for promotional campaigns and remarketing activities, which is a legitimate interest of the Administrator.

The Administrator does not obtain any information allowing for the direct identification of the User's identity. In order to obtain detailed information on the functioning of the indicated tools, as well as on the ways of disabling them in the settings of the Internet browser, the Administrator recommends reading Google's privacy policy.

  1. Content from portals and websites of external providers - The Administrator may place on the Website material originating from external portals, services, blogs or other websites belonging to third parties.

As such, these entities may collect certain information regarding your activity, in particular related to the reproduction of content posted on the Site.

If the User does not agree with such actions, he/she should log out of the respective portal.  (if you have an account with them) before visiting the Administrator's Site or refrain from playing content from the source. 

Alternatively, the User may change his/her browser settings to block the display of content from certain sites.

  1. You Tube - The YouTube service, which is operated by Google LLC, enables the playback of videos posted on the Administrator's Website. In connection with the use of this functionality, YouTube may store cookies on the User's terminal device relating to the playback of the videos and then, if the User is logged into his/her account, assign this information directly to his/her YouTube profile.

The use of embedded material from YouTube simultaneously constitutes use of services provided electronically by Google LLC. Detailed information on the principles of personal data processing and the terms of use of YouTube services is available in the privacy policy and terms of use of this website:

https://policies.google.com/privacy 

https://www.youtube.com/t/terms 

  1. Affiliate links and affiliate programmes, including Google AdSense - Affiliate links leading to products or services offered by third parties may be placed on the Administrator's Site. They constitute a form of monetisation of content made available to Users free of charge. Clicking on an affiliate link does not generate any costs on the part of the User. However, if the User makes a purchase after navigating to an external entity's website via such a link, the Administrator may receive a commission on the transaction made. By using the Website, the User consents to the use of cookies in this regard.

In addition, advertisements of third parties within the Google AdSense system may appear on the Website. The Administrator informs that he has no influence neither on the content nor on the form of the displayed advertisements - they are selected automatically by the algorithms of the provider, i.e. Google LLC.

The user can adjust the settings and personalisation of the adverts themselves through the tools provided by Google at: https://adssettings.google.com/authenticated 

  1. The Administrator again recommends that the User reads the privacy policy of each of the service providers described in this document, in order to understand the configuration options and settings available to protect his/her rights.
  2. The Site uses two basic types of cookies:
  1. session cookies - which are automatically deleted when you close your browser, log out or leave the Site,
  2. permanent cookies - are stored on the User's terminal equipment so that the browser can recognise them when they return to the Website. The duration of their storage is specified in the technical parameters of the cookies or lasts until they are deleted by the User.
  1. Many web browsers allow cookies to be stored on terminal devices by default. However, you have the possibility to change your settings in this respect at any time - in particular in such a way as to block cookies completely or to be informed each time they are installed on your device. Detailed rules on how to change the cookie settings are available in the help menu of the respective web browser.
  2. The Administrator informs that limiting or completely disabling the use of cookies may adversely affect the functionality of the Website, and in some cases prevent the proper use of its services.
  3. Additional information on cookies is available at: http://wszystkoociasteczkach.pl/ or in the „Help” section of your web browser menu.
  4. The Administrator uses the following categories of cookies on the Site:
    a)essential - to enable you to use the basic functions and services of the Site,
    b)security - to support the security of Users and the Site itself,
    c)performance - to collect information about the use of the Site,
    d)functional - to remember your preferences and personalise the interface,
    e)advertising - collecting information about users' preferences in order to display tailored marketing content,
    f)inclusive - associated with third party services used on the Site.

 

§8 CONSENT TO COOKIES

When visiting the Site for the first time, the User is required to agree to the use of cookies or to take other actions indicated in the message displayed by the Site in order to continue using the content of the Site. Your continued use of the Site is tantamount to your acceptance of cookies

If you do not agree to the use of cookies, you should cease using the Website. It is also possible to change the settings of your browser yourself in order to restrict, block or delete cookies. Please refer to the „Help” section of your browser for detailed instructions on how to do this.

 

§9 SERVER LOGS

  1. Use of the Site involves sending requests to the server on which it is hosted.
  2. Each such request is recorded in so-called server logs, which include in particular: the IP address of the User's device, the date and time of the request, information regarding the Internet browser and the operating system used by the User.
  3. The data recorded in the logs is stored on the server.
  4. Server logs are used for administrative purposes only and can only be accessed by persons or entities authorised to operate the server.
  5. The Administrator does not use the data contained in server logs to identify Users.
  6. The Administrator reserves the right to amend this Privacy Policy in the event that it is required by applicable law or modification of the functioning of the Site. Users shall be informed of any changes, including the date of their entry into force, in particular through an appropriate announcement on the Site.

 

§10 PROCEDURE FOR REPORTING VIOLATIONS AND CONTACTING DSA

The user can report infringing content (e.g. opinions, comments) via e-mail: biuro@ddprojekt.pl 

Each report should include: indication of the infringing content, reasons for the infringement, contact details of the reporter. 

The Administrator will consider the application within a reasonable time and inform the applicant of the decision. The user has the right to appeal the decision within 14 days of receipt.

 

For matters relating to the Digital Services Act (DSA), please contact us at: biuro@ddprojekt.pl 

Date of publication of the Privacy Policy: 01.08.2025

Date of last update: 01.08.2025

Request a quote