Definitions

User - entity using the Service and its functionalities

Service - a given service under a domain https://bluesbrackets.com

Contact Form - a form placed on the Website of Blues Brackets sp. z o.o. enabling Users to contact the company

Administrator - Blues Brackets sp. z o.o. with its registered office in Świdnica, address: ul. Mieszka I 17A/1, 58-100 Świdnica; KRS: 0001086713, NIP: 8842824071, REGON: 52768103500000

GDPR - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC

Agreement/Agreements - an agreement concluded between the Client and Blues Brackets sp. z o.o.

Client - an entity that has concluded or intends to conclude an agreement with Blues Brackets sp. z o.o.

Identity of the data administrator

The administrator of your personal data is Blues Brackets sp. z o.o. with its registered office in Świdnica, address: ul. Mieszka I 17A/1, 58-100 Świdnica; KRS: 0001086713, NIP: 8842824071, REGON: 52768103500000.

Contact details of the data administrator

The User may contact the Administrator:

• in writing - correspondence address: ul. Mieszka I 17A/1, 58-100 Świdnica
• by electronic correspondence - e-mail address: hello@bluesbrackets.com

Purposes and legal basis of data processing

The basis for the processing of your personal data is to enable the User to use the Service, including for the purpose of completing the Contact Form, proper implementation of the provisions of a possible Agreement, and for marketing purposes.

Data from the Contact Form is processed for the purpose of:

• enabling the Administrator to contact the User after the User has submitted such a request together with the consent to the processing of personal data provided in the Contact Form - the basis for the processing of personal data is Article 6, paragraph 1, letter a of the GDPR, i.e. the consent to the processing of personal data. Providing personal data is voluntary, but necessary to contact the User at their request
• archiving documents and conducting analytical and statistical activities, which constitutes the legitimate interest of the Administrator - pursuant to Article 6 paragraph 1 letter f of the GDPR

The processing of personal data necessary to conclude the Agreement takes place for the purpose of:

• conclusion and proper performance of the Agreement with the Administrator - the legal basis for the processing of personal data is art. 6 sec. 1 letter b of the GDPR, i.e. the necessity of processing for the performance of agreements. Providing these personal data is voluntary, but necessary for the performance of the Agreement. In the scope of personal data of persons who are employees or collaborators of the Client, the legal basis for the processing is the legitimate interest of the Administrator, i.e. ensuring the possibility of performing the Agreement - based on art. 6 sec. 1 letter f of the GDPR
• fulfilling the statutory obligations incumbent on the Administrator, resulting in particular from tax regulations and accounting regulations - pursuant to art. 6 sec. 1 letter c of the GDPR, i.e. the legal obligation incumbent on the Administrator. Providing personal data is mandatory in accordance with the provisions of law. Failure to provide this data will prevent the conclusion of the contract
• possible determination and pursuit of claims or defense against claims - the legal basis for processing is the legitimate interest of the Administrator consisting in the protection of its rights, in accordance with Article 6 paragraph 1 letter f of the GDPR

The processing of personal data necessary for conducting marketing activities by the Administrator and obtained from sources other than directly from data subjects (pursuant to Art. 14 of the GDPR) takes place for the purpose of:

• conducting direct marketing, including creating databases of potential Clients and sending commercial offers, which constitutes the legitimate interest of the Administrator - pursuant to Article 6 paragraph 1 letter f of the GDPR. In cases where consent is required, processing takes place on the basis of Article 6 paragraph 1 letter a of the GDPR - consent of the data subject

Where applicable, the categories of personal data concerned include:

1. Identification data: Name, surname
2. Contact details: Email address
3. Employment data: Position

Personal data of potential Clients come from publicly available sources, such as public registers, websites, social media platforms.

Data storage time

The User's personal data will be processed for the period necessary to achieve the purposes for which the data is processed or until an objection is filed, if the basis for processing is the legitimate interest of the Administrator or the withdrawal of consent, if the basis for processing is expressed consent. Later, the Administrator will be able to store them until the limitation period for any claims or until the obligation to store data resulting from the law expires.

The User has the right:

• access to your personal data and the right to request their rectification, deletion or restriction of their processing
• to transfer personal data
• to withdraw consent to the processing of personal data - to the extent that the basis for the processing of the User's personal data is consent (withdrawal of consent does not affect the lawfulness of the processing that was carried out on the basis of consent before its withdrawal)
• object to the processing of the User's personal data - to the extent that the basis for the processing of the User's personal data is the legitimate interest of the Administrator
• User has the right to object at any time to the processing of his/her personal data for direct marketing purposes, including profiling to the extent that it is related to such marketing
• file a complaint with the supervisory authority responsible for personal data protection (the President of the Personal Data Protection Office) if, in the User's opinion, the processing of data violates the GDPR

To exercise your rights, contact the Administrator.

Automation of personal data

User's personal data, together with other data originating from for example cookies, may be processed in an automated manner in order to analyze User activity and optimize Services. The legal basis for such processing is the legitimate interest of the Administrator, consisting in improving the quality of Services provided and better adapting content to the needs of Users (Article 6, paragraph 1, letter f of the GDPR). Users have the right to obtain information about the logic used in automated processing. If you have any questions regarding automation, contact the Administrator.

Transfer of personal data outside the EEA

Personal data, especially from cookies, may be made available to entities outside the European Economic Area (EEA). However, we will only transfer your personal data if an appropriate level of protection of your personal data is ensured, as required by the provisions of the GDPR.

What are cookies:

Cookies are small text files installed on the device of the User browsing the Service. Cookies collect information that facilitates the use of the Service - e.g. by remembering the User's visits to the Service and the actions they take. A cookie is a file consisting of a sequence of letters and numbers that is placed in the web browser, on the hard drive of the computer or the User's mobile device.

The basic types of cookies are:

• session cookies: specific to a specific visit, limited to sending a so-called session identifier (a random string of numbers generated by the server). Session cookies are not permanently stored on the device and are deleted when the browser is closed
• persistent cookies: files that save information about the User's preferences, are stored in the cache of the browser or mobile device
• third party cookies: placed by third parties to collect data from multiple websites or sessions

We use the following cookies:

1. Strictly necessary and functional cookies, i.e. cookies that enable the use of the Service and its individual functions, and cookies that enable the selections made to be remembered, such as the selected language, saving appropriate consents and cookie preferences:

   We do not currently use cookies from this category.

2. Analytical cookies, i.e. cookies that collect information about how Users use the Service, e.g. which pages they visit most often, whether they receive error messages and how they found our website. Information collected by this type of cookie is used solely to improve the comfort of the website User. Sometimes, files of this type are placed by external entities providing network traffic and analytical services (e.g. Google Analytics):

   Cookie name: _ga
   Purpose: Used by Google Analytics to distinguish users and track their interactions with the website
   Validity period: 2 years

   Cookie name: _ga_NVB32Y0ZDP
   Purpose: Used by Google Analytics (GA4) to maintain session state and track user behavior for analytical purposes
   Validity period: 2 years

3. Advertising cookies, i.e. files that record a visit to the Service. This information allows us to measure the effectiveness of marketing or information activities:

   Cookie name: _gcl_au
   Purpose: Used by Google AdSense/Ads to track advertising campaign effectiveness and user conversions
   Validity period: 3 months

Information collected from the User's browser, within cookies:

When using the Service, the following data is automatically collected via cookies: IP address, approximate location data, traffic on the Service, domain name, browser type and operating system type. This data may be collected by cookies, Google Analytics or other similar analytical systems.

Information retrieved from the server level (server logs):

Using the Service involves sending queries to the server where this website is stored. Each query directed to the server is saved in the server logs. The logs include, among others, the IP address, server date and time, information about the Internet browser and the User's operating system. The logs are saved and stored on the server. The data saved in the server logs are not associated with specific people using the website and are not used for identification purposes. The server logs are only auxiliary material used to administer the website.

In the case of identification of Users, the basis for processing personal data contained in server logs is the legitimate interest of the Administrator (Article 6, paragraph 1, letter f of the GDPR), which is to ensure the security of the server and website, diagnose problems and analyze performance.

How to manage cookie preferences:

The User's consent is not required for cookies whose use is necessary for the provision of a telecommunications service (data transmission in order to display content). This applies to necessary and functional cookies as well as information contained in server logs.

Other cookies require the User's consent. The default settings of most browsers assume that consent to cookies has been expressed. This consent can be withdrawn at any time, from the User's browser level (how to manage cookies in the most popular browsers: Microsoft Windows Explorer, Google Chrome, Mozilla Firefox, Apple Safari, Opera).

Changes to Privacy Policy

The Privacy Policy may be changed on an ongoing basis and adapted to the current legal and factual situation.

This version of the Privacy Policy is effective from 2024.