Privacy policy of the website and cookies

    1. The data controller for personal data collected through the website is the Foundation for Entrepreneurship Development “Your Startup,” with its registered office in Warsaw, at ul. Żurawia 6/12 lok. 766, 00-503 Warsaw, entered into the National Court Register kept by the District Court for the capital city of Warsaw, XII Economic Department of the National Court Register, under the registration number KRS 0000442857, tax identification number (NIP): 5213641211, statistical identification number (REGON): 14643346700000, represented by Michał Jeziorski – President of the Management Board, on behalf of whom Seweryn Pietrucha (tel. 693 676 324, email [email protected]), acting under appropriate authorization, operates as the “Controller.”
    2. Personal data collected by the Controller through the website is processed in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the GDPR, and the Act on the Protection of Personal Data of 10 May 2018.
    1. PURPOSE OF PROCESSING AND LEGAL BASIS. The Administrator processes personal data through the website in the following cases::
      1. When a user utilizes the contact form. Personal data is processed based on Article 6(1)(f) of the GDPR as the legitimate interest of the Administrator.
    2. TYPES OF PROCESSED PERSONAL DATA. The Administrator processes the following categories of user’s personal data: First and last name, email address, phone number.
    3. PERIOD OF PERSONAL DATA STORAGE. The Administrator retains the personal data of users for the following period:
      1. In case the basis for data processing is the performance of a contract, the data will be retained for as long as necessary to fulfill the contract, and thereafter for a period corresponding to the limitation period for claims. Unless otherwise provided by specific regulations, the limitation period is six years, and for claims regarding periodic benefits and claims related to business activities, the period is three years.
      2. In case the basis for data processing is consent, the data will be retained until the consent is revoked, and after the revocation of consent, for a period corresponding to the limitation period for claims that can be raised against the Administrator or by the Administrator. Unless otherwise provided by specific regulations, the limitation period is six years, and for claims regarding periodic benefits and claims related to business activities, the period is three years.
    4. When using the website, additional information may be collected, including the IP address assigned to the user’s computer or the external IP address of the Internet service provider, domain name, browser type, access time, and operating system type.
    5. After giving consent and while using the website, the user’s personal data may be processed by Google. Detailed information regarding data processing by Google is available on the Google Privacy and Services page.
    6. User navigation data may also be collected, including information about the links and references they choose to click on or other actions taken on the website. The legal basis for such actions is the legitimate interest of the Administrator (Art. 6(1)(f) of the GDPR), which aims to facilitate the use of electronically provided services and improve their functionality.
    7. Providing personal data by the user is voluntary.
    8. Personal data will also be processed in an automated manner in the form of profiling, provided that the user gives consent for this based on Art. 6(1)(a) of the GDPR. The consequence of profiling will be the assignment of a profile to an individual for the purpose of making decisions, analyzing or predicting their preferences, behaviors, and attitudes.
    9. The Administrator takes special care to protect the interests of the individuals whose data is processed, ensuring that the data collected:
      1. is processed in accordance with the law,
      2. is collected for specified, lawful purposes and not subjected to further processing incompatible with those purposes,
      3. is factually correct and adequate for the purposes for which it is processed.
      4. is stored in a form that allows the identification of the individuals concerned, for no longer than is necessary to achieve the purpose of processing.
    1. The personal data of users are transferred to service providers used by the Administrator for the operation of the website. Depending on the contractual agreements and circumstances, the service providers to whom personal data are transferred either follow the instructions of the Administrator regarding the purposes and methods of processing this data (data processors) or independently determine the purposes and methods of their processing (controllers).
    2. The personal data of users may be transferred outside the European Union – to the United States of America – exclusively to entities participating in the Privacy Shield program, approved by the European Commission.
    1. The person whose data is being processed has the right to access the content of their personal data and the right to rectify, erase, restrict processing, the right to data portability, the right to object, and the right to withdraw consent at any time without affecting the lawfulness of the processing based on consent before its withdrawal.
    2. Legal basis for user requests:
      1. Access to data – Art. 15 of the GDPR.
      2. Rectification of data – Art. 16 of the GDPR.
      3. Erasure of data (right to be forgotten) – Art. 17 of the GDPR.
      4. Restriction of processing – Art. 18 of the GDPR.
      5. Data portability – Art. 20 of the GDPR.
      6. Objection – Art. 21 of the GDPR.
      7. Withdrawal of consent – Art. 7(3) of the GDPR.
    3. To exercise the rights mentioned in point 2, a relevant email message can be sent to the following address: [email protected].
    4. In the event that the user exercises a right arising from the aforementioned rights, the Administrator fulfills the request or refuses to fulfill it immediately but no later than within one month after receiving it. However, if due to the complex nature of the request or the number of requests, the Administrator is unable to fulfill the request within one month, it will be fulfilled within the next two months, informing the user in advance within one month from receiving the request about the intended extension of the deadline and its reasons.
    5. If it is determined that the processing of personal data violates the provisions of the GDPR, the person whose data is being processed has the right to lodge a complaint with the President of the Office for Personal Data Protection.
    1. The Administrator’s website uses “cookies” files.
    2. The installation of “cookies” files is necessary for the proper provision of services on the website. The “cookies” files contain information necessary for the proper functioning of the website and also allow for the development of general statistics on website visits.
    3. The following types of “cookies” files are used on the website: session cookies and persistent cookies.
      1. “Session cookies” are temporary files that are stored on the user’s end device until they log out (leave the website).
      2. “Persistent” cookies files are stored on the user’s end device for the time specified in the cookie parameters or until they are deleted by the user.
    4. The administrator uses their own cookies to better understand the user’s interaction with the content of the website. These cookies gather information about the user’s usage of the website, the type of page from which the user was redirected, as well as the number of visits and duration of the user’s visit to the website. This information does not record specific personal data of the user, but is used for generating usage statistics of the website.
    5. The user has the right to decide on the access of cookies to their computer by making a prior selection in their browser’s window. Detailed information about the possibilities and methods of managing cookies is available in the software settings (web browser).
    1. The Administrator implements technical and organizational measures to ensure the protection of processed personal data appropriate to the risks and categories of data covered by the protection. In particular, it safeguards the data against unauthorized disclosure, unauthorized acquisition by an unauthorized person, processing in violation of applicable regulations, as well as alteration, loss, damage, or destruction.
    2. The Administrator provides appropriate technical measures to prevent unauthorized individuals from acquiring and modifying personal data transmitted electronically.
    3. In matters not regulated by this Privacy Policy, the provisions of the GDPR and other relevant Polish laws shall apply.


Call Now Button