Privacy Policy describes the principles of processing your information by us, including personal data and cookies.


1. General Information

This policy applies to the website, operated by Grafiduo Sp.zo.o. at Strzelców Bytomskich 87B, 41-914 Bytom. The operator of the website and the data controller is Grafiduo Sp.zo.o. with a registered address at Strzelców Bytomskich 87B, 41-914 Bytom. The operator’s email contact address is The operator is the data controller of your personal data provided voluntarily on the website. The website uses personal data for the following purposes:

  • Conducting online chat conversations
  • Handling inquiries through the form
  • Fulfilling ordered services
  • Debt collection
  • Presenting offers or information
  • The website collects information about users and their behavior in the following ways:
    a) By voluntarily entering data into the forms, which are then entered into the Operator’s systems.
    b) By storing cookies on end devices (so-called “cookies”).

2) Selected Data Protection Methods Used by the Operator

Login and personal data entry areas are protected by a transmission layer (SSL certificate). This encrypts personal data and login information entered on the website, making them readable only on the target server.

Personal data stored in the database are encrypted in such a way that only the Operator, who possesses the key, can read them. This ensures the protection of data in the event of a database breach.
User passwords are stored in a hashed form. The hashing function works in a one-way manner, making it impossible to reverse, which is the current standard for storing user passwords.
The Operator periodically changes its administrative passwords. To protect the data, the Operator regularly performs backup copies.
Regularly updating all software used by the Operator to process personal data is an important element of data protection, including regular updates to programming components.

3) Hosting

The website is hosted (technically maintained) on the servers of the operator:


4) Your Rights and Additional Information on Data Use

In certain situations, the Administrator has the right to disclose your personal data to other recipients if it is necessary to perform the agreement concluded with you or to fulfill the obligations incumbent on the Administrator. This applies to the following groups of recipients:

  • Hosting company on the basis of an entrustment agreement
  • Payment operators
  • Online chat solution operators
  • Authorized employees and associates who use the data to achieve the purpose of the website’s operation

Your personal data processed by the Administrator will not be retained longer than necessary to perform the activities related to them, as specified in separate regulations (e.g., accounting regulations). Regarding marketing data, they will not be processed for longer than 3 years.
You have the right to request from the Administrator:

  • Access to your personal data
  • Rectification of your personal data
  • Erasure of your personal data
  • Restriction of processing
  • Data portability

You have the right to object to the processing referred to in point 3.3 c) concerning the processing of personal data for the purpose of the legitimate interests pursued by the Administrator, including profiling. However, the right to object cannot be exercised if there are compelling legitimate grounds for the processing that override your interests, rights, and freedoms, in particular the establishment, exercise, or defense of legal claims.
You have the right to lodge a complaint with the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw.
Providing personal data is voluntary but necessary to use the Service.

Actions involving automated decision-making, including profiling, may be taken in relation to you to provide services under the concluded agreement and for the purpose of direct marketing conducted by the Administrator.
Personal data is not transferred to third countries within the meaning of personal data protection regulations. This means that we do not transfer them outside the European Union.


5) Information in forms

The Service collects information provided voluntarily by the user, including personal data if they are provided.
The Service may save information about connection parameters (timestamp, IP address).
In some cases, the Service may store information facilitating the association of data in the form with the user’s email address filling out the form. In such a case, the user’s email address appears within the URL of the page containing the form.
Data provided in the form is processed for the purpose resulting from the specific form’s function, e.g., to process a service request or commercial contact, service registration, etc. Each time, the context and description of the form clearly inform what it is used for.


6) Administrator’s logs

Information about users’ behavior on the website may be subject to logging. This data is used to administer the website


7) Significant marketing techniques

The Operator uses statistical analysis of website traffic through Google Analytics (Google Inc. based in the USA). The Operator does not transfer any personal data to the operator of this service, only anonymized information. The service is based on the use of cookies on the user’s end device. Regarding information about user preferences collected by the Google advertising network, users can view and edit the information resulting from cookies using the tool: The Operator uses remarketing techniques, allowing for the customization of advertising messages to user behavior on the website, which may create the impression that the user’s personal data is being used to track them. However, in practice, no personal data is transferred from the Operator to advertising operators. The technological condition for such actions is the enabled support of cookies. The Operator uses the Facebook pixel. This technology allows Facebook (Facebook Inc. based in the USA) to know that a person registered with Facebook is using the Service. In this case, it is based on data for which the Operator is the administrator, and no additional personal data is provided by the Operator to Facebook. The service is based on the use of cookies on the user’s end device. The Operator uses a solution automating the operation of the Service in relation to users, e.g., sending an email to the user after visiting a specific subpage if the user has consented to receiving commercial correspondence from the Operator.


8) Information about cookies

The Service uses cookies. Cookies (also known as “cookies”) are computer data, especially text files, that are stored on the end device of the Service User and are intended for using the Service’s websites. Cookies usually contain the name of the website they come from, the time they are stored on the end device, and a unique number. The entity that places cookies on the end device of the Service User and has access to them is the operator of the Service. Cookies are used for the following purposes:

  • maintaining the user’s session on the Service (after logging in), so that the user does not have to re-enter their login and password on each subpage of the Service;
  • achieving the goals defined above in the “Significant marketing techniques” section; Within the Service, two main types of cookies are used: “session cookies” and “persistent cookies.” “Session cookies” are temporary files that are stored on the user’s end device until logging out, leaving the website, or closing the software (web browser). “Persistent” cookies are stored on the user’s end device for the time specified in the parameters of the cookies or until they are deleted by the user. Web browsing software (web browser) usually allows cookies to be stored on the user’s end device by default. Service users can change these settings. The web browser allows you to delete cookies. It is also possible to automatically block cookies. Detailed information on this subject is provided in the help or documentation of the web browser. Limiting the use of cookies may affect some of the functionalities available on the Service’s websites. Cookies placed on the end device of the Service User may also be used by entities cooperating with the operator of the Service, in particular, the following companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).


9) Managing cookies – how to express and withdraw consent in practice?

If the user does not want to receive cookies, they can change their browser settings. Please note that disabling cookies necessary for authentication processes, security, and maintaining user preferences may make it difficult, and in extreme cases, may prevent the use of websites.
To manage cookie settings, select the web browser you are using from the list below and follow the instructions:

Internet Explorer

Mobile devices:

Safari (iOS)
Windows Phone