This Privacy Policy has been adopted in connection with the entry into force of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (Official Journal of the European Union L 119/1 of 4.5.2016; hereinafter referred to as: GDPR). The purpose of this Policy is, in particular, to fulfill the information obligation referred to in Articles 13 and 14 of the GDPR.

1. The controller of the personal data processed within the website is www.violaserafin.com (hereinafter referred to as the “Website”) is MODOSO Wioletta Serafin, with its registered office in Kraśnik at 3-Maja Street 27, 23-200 Kraśnik, NIP (Tax ID): 7151685867 (hereinafter referred to as the “Controller”).

2. The Controller may process certain data, including personal data of the Website users, in connection with the provision of specific services (such as a newsletter or contact form), as well as the user’s activity on the Website.

3. The legal basis for processing your personal data is:
1. consent (Article 6(1)(a) of the GDPR) or the necessity of processing for the performance of a service agreement (Article 6(1)(b) of the GDPR) — in the case of using the newsletter service or contact form,
2. the legitimate interest of the Controller (Article 6(1)(f) of the GDPR) — in the case of collecting data for analytical and statistical purposes, i.e., to study user activity and preferences on the Website and to improve the functionality of the Website and the services provided (in particular through the use of cookies).

4. Cookies are IT data, in particular text files, that are stored on the user’s end device and are intended for use with websites. Cookies typically contain the name of the website they come from, the duration of their storage on the end device, and a unique identifier.
The Website uses cookies, which can be categorized as follows:

1. “Essential” – these enable the use of services available through the Website, such as maintaining a user session after logging in.
2. “Functional” – cookies that allow the Website to “remember” selected settings and contribute to the personalization of the user interface.
3. “Security” – cookies that help enhance the security of the Website.
4. “Performance” – cookies that enable the collection of information about how the Website is used.

The user can change how cookies are used at any time. Most browsers offer the option to accept or reject all cookies, accept only certain types, or notify the user each time a website attempts to save them. Users can also easily delete cookies that have already been saved on their device by the browser. The options for managing and deleting cookies vary depending on the browser used. All necessary information can be found by using the Help function in the browser or by visiting the website: http://www.aboutcookies.org/which explains how to control and delete cookies in the most popular browsers. Please note that blocking all cookies may result in difficulties in the functioning of the website or even prevent the use of certain features altogether.

For the purpose of analyzing and using cookies, the Controller uses the Google Analytics tool. If the user does not wish to share data that may be used by Google, a dedicated browser add-on can be downloaded – https://tools.google.com/dlpage/gaoptout?hl=pl).

5. Your data will be stored no longer than necessary – that is, no longer than the duration of your use of the Website or the continuation of communication. In the case of consent, your data will be processed no longer than for the duration of the service or other activities to which the consent applies.

6. The recipients of your personal data may include entities to whom we are legally obligated to disclose data under applicable laws (e.g. judicial authorities, tax office), as well as entities providing support services on our behalf related to the operation of the Website or the provision of services or other benefits (where consent has been given). These may include, in particular, providers of hosting, IT, marketing, and similar services. We have appropriate agreements in place with such entities to ensure adequate security and legal compliance.

7. Please remember that you have the right to access your data, including the right to obtain a copy of it, the right to request rectification, the right to request deletion (in certain situations), the right to lodge a complaint with the data protection supervisory authority, and the right to restrict data processing. Where your data is processed based on consent, you also have the right to withdraw that consent to the extent the processing is based on it (withdrawing consent does not affect the lawfulness of processing carried out before the withdrawal) and the right to data portability – meaning the right to receive your personal data from the controller in a structured, commonly used, machine-readable format. You also have the right to object to the processing of your data for marketing purposes if such processing is based on the legitimate interests of the Controller, and – for reasons related to your particular situation – in other cases where the legal basis for processing is the Controller’s legitimate interest (e.g. in connection with analytical or statistical purposes).

8. The Controller will not make any automated decisions concerning you based on your personal data, including decisions resulting from profiling.

9. Your data is not transferred outside the European Economic Area (EEA).