Privacy Policy

§ 1 [General Provisions]

  1. The website ac-home.pl (hereinafter referred to as the “Website”) shall be operated by AC Group Spółka z ograniczoną odpowiedzialnością with its registered office in Krakow, address: 10A/10 Opatkowicka Street, 30-499 Kraków, entered in the Register of Entrepreneurs of the National Court Register kept by the District Court for Kraków – Śródmieście in Kraków, 11th Commercial Division of the National Court Register, under National Court Register (KRS) number: 0000518195, Tax Identification Number (NIP): 9442246553, share capital PLN 7,000.
  2. Within the scope of the Website’s activities, data of Website users (hereinafter referred to as “Users”) may be collected, processed and used.
  3. User Data may be collected through: voluntary provision by Users (e.g. when using the contact form or subscribing to the newsletter), the use of cookies – both our own and those from external entities – and the use of tools such as Google Analytics.
  4. Furthermore, information about the User’s IP address, location, time of request and response, website address from which the User was redirected to the Website and the type of software used by the User may also be collected. This information shall be used for the purposes of administering the Website and compiling statistics and analyses.

 

§ 2 [Personal Details]

  1. The Controller of Users’ personal data shall be AC Group Spółka z ograniczoną odpowiedzialnością with its registered office in Krakow, 10A/10 Opatkowicka Street, 30-499 Kraków, entered in the Register of Entrepreneurs of the National Court Register kept by the District Court for Kraków – Śródmieście in Kraków, 11th Commercial Division of the National Court Register, under National Court Register (KRS) number: 0000518195, Tax Identification Number (NIP): 9442246553, share capital: PLN 7,000.
  2. The processing of personal data shall be governed by the provisions of generally applicable law, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 (“GDPR”).
  3. The Controller may collect and process personal data via the Website (including, in particular, via contact forms) for purposes such as:
    1. contacting the User if they have filled in the contact form, which is the legitimate interest of the Controller (Article 6(1)(f) of the GDPR);
    2. direct marketing of the Controller’s own products or services – sending newsletters, which is a legitimate interest of the Controller (Article 6(1)(f) of the GDPR);
    3. statistics and analysis of User behaviour on the websites, which is the legitimate interest of the Controller (Article 6(1)(f) of the GDPR).
  4. The Controller may disclose personal data to entities providing marketing services on its behalf.
  5. The Controller may use IT service providers who have their registered office in the USA, i.e. outside the European Union. Therefore, the User’s data may be transferred there. The Controller shall use the services of entities that process personal data on the basis of Standard Contractual Clauses adopted by the European Commission, referred to in Article 46 of the GDPR, concluded between the Controller and that entity.
  6. The data shall be processed for the following purposes:
    1. contacting the User – the Controller processes the data for a period of 3 years from the date of collection;
    2. statistics and analyses of User behaviour on websites – the Controller processes data for a period of 3 years from the date of collection;
    3. direct marketing of the Controller’s own products or services – sending newsletters – the Controller processes the data until the User objects or withdraws consent to receiving commercial information.
  7. The Controller may disclose User data to its subcontractors (entities whose services it uses for processing), such as IT service, solution and marketing providers.
  8. The data subject shall have the following rights:
    1. the right to access personal data and to receive copies thereof;
    2. the right to rectify personal data;
    3. the right to erase personal data;
    4. the right to request restriction of personal data processing;
    5. the right to transfer personal data;
    6. the right to object to the processing of personal data;
    7. the right to lodge a complaint with a supervisory authority.
  9. In order to exercise any of the above rights, the User whose data is being processed may send a request to the Controller by email or by post.
  10. Providing personal data shall be voluntary, however, without providing such data, it shall not be possible to use the contact form or receive the newsletter.
  11. The Controller shall ensure the protection̨ of the personal data it processes. Specifically, the Controller shall implement appropriate technical and organisational security measures to ensure the protection of personal data being processed, commensurate with the risks and categories of data being processed. In particular, it protects data against unauthorised access, removal by unauthorised persons, processing in violation of regulations, and alteration, loss, damage or destruction.

 

§ 3 [Cookies and Tools Used on Websites]

  1. As part of the Website’s operation, small files called cookies are used. These files are stored by the server on the User’s computer. The use of cookies should be understood as their storage and access by the Controller or entities cooperating with it.
  2. Cookies may be:
    1. session files, which means that they are used until the User leaves the Website or closes their web browser;
    2. permanent files, which means that they remain on the User’s device for the time specified in their parameters or until they are deleted by the User.
  3. Cookies may be used for the following purposes:
    1. enabling the use of services available on the Website;
    2. collecting information regarding the manner in which Users use the Website and subsequently creating statistics analysing the use of the Website;
    3. remembering the Website settings selected by Users.
  4. The use of cookies does not cause any configuration changes to the User’s end device or the software installed on that device.
  5. The default settings of web browsers usually allow cookies to be stored on the end devices of Website Users. However, these settings can be adjusted by the User.
  6. The User may specify the conditions for the use of cookies through the settings of the software (web browser) installed on their end device. The change may consist in a partial or complete restriction of the ability to save cookies on the User’s end device.
  7. The Controller shall inform that, pursuant to the provisions of the Telecommunications Law, the end user’s consent to the storage of information or access to information already stored in the end user’s telecommunications terminal equipment may also be expressed by the user through the settings of the software installed in the terminal equipment used by the user. Therefore, should the user not wish to provide such consent, they should change their web browser settings.
  8. Detailed information on changing the browser settings for cookies and deleting them is available on the official website of the specific browser. More specifically, the above information is available at the following web addresses:
    1. Firefox browser;
    2. Chrome browser;
    3. Internet Explorer browser;
    4. Microsoft Edge browser;
    5. Opera browser;
    6. Safari browser.
  9. The Controller uses Google Analytics, a tool for analysing website statistics.
  10. The Controller uses so-called social plugins, in particular through integration with Facebook, LinkedIn and Instagram (hereinafter: “Services”). The Controller may place buttons linked to the Services on the Website. For this purpose, a code referring to the Services shall be placed in the relevant sections and pages. By using the appropriate button, the User logs in to the selected Services, where the privacy policies of the companies operating these Services apply.