Privacy Policy

Your trust is our top priority, which is why we make every effort to ensure that the rules for using our website are clear and transparent.

§1 General information

The administrator of personal data is the law firm Kancelaria Adwokacka Adwokat Rafał Matyasik, with its registered office at Sławkowska 26A/2, 31-014 Kraków, Poland, NIP (Tax ID): 8681893775. You can contact the law firm in writing at the address indicated above or via email at: biuro@kancelariamatyasik.pl.

Kancelaria Adwokacka Adwokat Rafał Matyasik has not appointed a Data Protection Officer. For matters related to the processing of personal data, please contact the law firm directly using the contact details provided in the “Contact” section.

By using the services offered by the law firm, you entrust us with your information. This document is intended to help you understand what data we collect, for what purposes, and how it is used. This data is very important to us, which is why we ask you to read this document carefully, as it defines the principles and methods for processing and protecting personal data. It also outlines the rules regarding the use of “Cookies.”

We inform you that we comply with the principles of personal data protection and all legal regulations provided by the Polish Personal Data Protection Act and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR).

Upon request from the data subject, we provide comprehensive information about how we use their personal data. We always strive to communicate clearly which data we collect, how we use it, the purposes it serves, to whom it is disclosed, how we protect it when shared with other entities, and which institutions to contact in case of any concerns.

§2 Rules of privacy

We value the trust you place in us when you share your personal data for the purpose of receiving our services. We always use personal data only to the extent necessary to provide those services.

As a User, you have the right to receive full and clear information about how your personal data is used and for what purposes it is necessary. We always inform you transparently about what data we collect, how and with whom it is shared, and provide information on the entities you can contact if you have any concerns.

If you have doubts about how we use your personal data, we will take prompt steps to clarify and resolve the matter. We respond thoroughly to all related questions.

We take all reasonable measures to protect your data from improper or uncontrolled use.

The legal basis for processing your personal data is:

Article 6(1)(a) – the data subject has given consent to the processing of their personal data for one or more specific purposes,
Article 6(1)(b) – processing is necessary for the performance of a contract to which the data subject is a party, or to take steps at the request of the data subject prior to entering into a contract,
Article 6(1)(c) – processing is necessary for compliance with a legal obligation to which the controller is subject,
Article 6(1)(d) – processing is necessary in order to protect the vital interests of the data subject or of another natural person,
Article 6(1)(e) – processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller,
Article 6(1)(f) – processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party.

Your personal data related to the conclusion and performance of a contract will be processed for the duration of that contract, and no longer than required by law, including the provisions of the Civil Code and the Accounting Act — i.e., no longer than 10 years from the end of the calendar year in which the last contract was completed.

You have the right to:

access your personal data and obtain a copy of the data being processed,
correct any inaccurate personal data,
request the deletion of data (“right to be forgotten”) in cases specified under Article 17 of the GDPR,
request restriction of processing in cases specified under Article 18 of the GDPR,
object to the processing of data in cases specified under Article 21 of the GDPR,
request data portability of information provided by you and processed by automated means.

If you believe that your personal data is being processed unlawfully, you may file a complaint with the supervisory authority: President of the Personal Data Protection Office (UODO), ul. Stawki 2, Warsaw, Poland.

We comply with all applicable data protection laws and regulations and cooperate with data protection authorities and law enforcement agencies where appropriate. In the absence of specific data protection regulations, we follow generally accepted data protection principles, social norms, and established customs.

If you have any questions, we encourage you to contact us. To help us respond effectively, please include your name and surname.

§3 Scope and purpose of data collection

We process only the personal data necessary to provide our services and for accounting purposes – and for those purposes only.

We collect, process, and store the following user data:

full name,
residential address,
correspondence address (if different from the residential address),
tax identification number (NIP),
email address,
telephone number (mobile or landline),
information about the web browser used,
any other personal data voluntarily provided to us.

Providing the above data is entirely voluntary but also essential for the full execution of our services.

We may transfer personal data to servers located outside your country of residence or to affiliated entities or third parties based in other countries, including countries within the European Economic Area (EEA), for the purpose of processing personal data on our behalf in accordance with this Privacy Policy and applicable legal provisions, customs, and data protection regulations.

Access to your personal data may be granted to service providers necessary for the operation of our website, including:

hosting companies that provide hosting or related services to the Controller,
IT support and maintenance companies responsible for servicing or maintaining the IT infrastructure,
accounting firms responsible for maintaining the Controller’s financial records.

§4 Cookies

We use cookies or similar technologies (hereinafter collectively referred to as “cookies”), meaning IT data – especially text files – intended for use on our website and stored on the end devices of Users browsing the site.

Information collected through cookies allows us to tailor services and content to individual needs and user preferences, as well as to develop general statistics on how users interact with the website. Data collected through cookies is used solely to perform specific functions for the benefit of Users and is encrypted in a way that prevents access by unauthorized persons.

On our website, we use the following types of cookies:

Internal cookies – files placed and read from the User’s device by the IT system of our Website.
External cookies – files placed and read from the User’s device by the IT systems of third-party services. Scripts from external services that may place cookies on the User’s device have been intentionally included on our Website via embedded scripts and services.
Session cookies – files placed and read from the User’s device during one session. These are deleted once the session ends.
Persistent cookies – files placed and read from the User’s device until manually deleted. These are not deleted automatically after the session ends unless the User’s browser is configured to delete cookies automatically.

On our website, we use the following types of cookies based on their necessity for providing services:

Essential cookies – enable the use of services available through the website, especially authentication-related cookies required for accessing secured areas.
Security cookies – used to ensure safety and detect authentication abuses.
Performance cookies – collect information on how users use the website.
Functional cookies – store user preferences and settings to personalize the user interface.
Advertising cookies – enable delivery of content and advertisements tailored to user interests.

Web browsers typically allow cookies to be stored on a user’s device by default. Users may independently and at any time change their cookie settings, including how cookies are stored or accessed on their device.

Users can adjust these settings using their web browser settings. These may include blocking the automatic handling of cookies or notifying the user whenever cookies are being stored on their device.

Detailed information on cookie management is available in the browser settings of each user. Continued use of the website without changing your cookie settings means that you consent to the use and storage of cookies. You may withdraw your consent at any time by changing your browser settings.

Instructions on how to manage cookie settings in popular web browsers can be found here:

§5 Social media plugins

So-called social media plug-ins may be present on our website. The plug-in only transmits information to its provider about which of our web pages you accessed and when.

If a user is logged into their account on, for example, Facebook or LinkedIn while viewing or staying on our website, the provider can link your interests, content preferences, and other data obtained, for instance, by clicking the Like button, leaving a comment, or typing a profile name into a search.

This information will also be transmitted by the browser directly to the provider. To prevent a plug-in on our website from recording your visit on your user account, you must log out of your account before you begin browsing our website.

§6 Analytical and Marketing Tools

On our website, we use analytical and marketing tools that may collect users’ personal data to analyze traffic, personalize content and advertisements, and improve the quality of our services. The processing of this data is based on the user’s consent (Article 6(1)(a) of the GDPR), which can be given or withdrawn using the consent management mechanism on the website or by changing the settings in the web browser.

Google Tag Manager (GTM)

We may use Google Tag Manager on the website – a tool by Google LLC used to manage so-called tags (snippets of code) embedded on the site, such as Google Analytics, the Facebook Pixel, or other marketing tools. GTM itself does not process users’ personal data but enables the triggering of scripts that may do so. Detailed information on how GTM works can be found in Google’s privacy policy:
https://policies.google.com/privacy?hl=en

Google Analytics

We use the Google Analytics service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. This service uses cookies to analyze how users interact with the website. The collected data (e.g., truncated IP address, device type, browser, location, time spent on the site) is processed in an anonymized form and used solely for statistical purposes. Data may be transferred to and processed in the USA in accordance with the EU Standard Contractual Clauses. Users can opt out of Google Analytics data processing by installing a browser add-on:
https://tools.google.com/dlpage/gaoptout?hl=en

Google Ads and Remarketing

We may use Google Ads advertising tools (including remarketing), which allow us to display personalized ads to users who have previously visited our website. Information collected through cookies may include data about user activity on the site. This data is processed by Google in accordance with its privacy policy. Users can manage their ad settings or opt out of personalized advertising at:
https://adssettings.google.com/?hl=enPiksel Facebooka

Facebook Pixel

We may use the Facebook Pixel on our website, which enables us to run advertising and remarketing campaigns on the Facebook platform. Data is processed by Meta Platforms Inc., 1601 Willow Road, Menlo Park, CA 94025, USA, in accordance with its own policies. The website operator does not transmit any additional personal data to Facebook. Users can manage their ad preferences in their Facebook account settings.

Heatmaps and Behavior Analysis

To improve website usability, we may use tools such as heatmaps and user session recordings (e.g., Hotjar). The data collected (mouse movement, clicks, scrolling) is anonymized and does not allow user identification. Passwords and personal data are not recorded.

Marketing Automation

We may also use tools that automate marketing activities, such as sending emails after visiting specific subpages. Such communication takes place only if prior consent has been given to receive marketing correspondence.