Privacy Policy
Contact details of the Personal Data Controller (hereinafter the “Controller”):
Mageads Sp. z o.o., with its registered office in Warsaw, ul. Czerska 12, 00-732 Warszawa, entered in the Register of Business Operators of the National Court Register under KRS No. 0001164675.
Data protection officer:
Grzegorz Dobromiński
E-mail: iod@mageads.com
Applicable Data Protection Laws
This Privacy Policy refers in particular to:
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (OJ L 119, p. 1) – commonly referred to as the “GDPR” (applicable as of 25 May 2018, together with the relevant national provisions).
Users’ Rights
You have the right to:
- withdraw your consent to the processing of your personal data at any time;
- obtain confirmation from the Controller as to whether your personal data are being processed by the Controller and, if so, how;
- rectify outdated or inaccurate personal data, as well as to have incomplete data completed;
- object to the processing of your personal data;
- request the erasure of your personal data by the Controller (the “right to be forgotten”);
- request the restriction of the processing of your personal data;
- request the portability (transmission) of your personal data;
- lodge a complaint with the supervisory authority – the President of the Personal Data Protection Office (Prezes Urzędu Ochrony Danych Osobowych).
All requests concerning the processing of your personal data, including the exercise of your rights, may be submitted by email to: iod@mageads.com, or in writing to: MageAds sp. o.o., ul. Czerska 12, 00-732 Warsaw.
Requests will be handled without undue delay, and no later than within 30 days of receipt. This period may be extended by a further 60 days if necessary, taking into account the complexity or number of requests, in which case you will be informed. Until your request is fulfilled, the personal data to which it relates may continue to be processed.
Purposes of Processing of Personal Data
We process your personal data:
- on the basis of your prior consent, to the extent and for the purposes specified in that consent (Article 6(1)(a) GDPR);
- for the purpose of concluding contracts and maintaining ongoing contact (Article 6(1)(b) GDPR);
- in order to comply with the legal obligations to which the Controller is subject (Article 6(1)(c) GDPR);
- for purposes arising from the legitimate interests pursued by the Controller (Article 6(1)(f) GDPR), including, but not limited to: maintaining and managing social media profiles, defending against claims and liabilities, and compiling statistics.
Categories of Personal Data Processed
Personal data may include identification data (e.g. first name, surname), contact details (e.g. telephone number, email address), location data, data concerning your activity, and other data necessary for communication. In each case, we will determine and process only the minimum scope of data necessary.
The Controller may collect various types of personal data, the provision of which is voluntary, but often necessary for the performance of a service or for communication. Providing consent to the processing of personal data is voluntary.
Consent – Withdrawal of Consent
We may ask for your consent to the processing of your personal data for marketing purposes, including electronic marketing, where consent constitutes the appropriate legal basis for such processing. The Controller will not require consent where it is not necessary in a given case (although the obligation to obtain consent may arise from other provisions of law, e.g. for marketing purposes).
You have the right to withdraw your consent at any time by contacting the Controller.
Withdrawal of consent does not entail any negative consequences. However, it may result in the inability to use certain services, such as saving website settings or receiving information.
Withdrawal of consent does not affect the lawfulness of processing carried out on the basis of consent before its withdrawal.
Data Retention
The Controller stores personal data for the period necessary to achieve the purposes for which you have been informed, e.g. until the processing purpose has been fulfilled, cookies have been deleted, or until you have effectively objected. The retention period for personal data is determined in strict compliance with applicable laws and may also result from other legal acts and regulations.
Sharing of Personal Data with Other Entities
Depending on the purpose of processing or the content of your consent, your personal data may be shared with the entities indicated in the relevant consents or policies.
We may share personal data with processors – companies providing services on our behalf, to whom we entrust activities involving the processing of data, such as subcontractors, IT service providers, or other entities under an agreement with the Controller.
The Controller may also share your personal data with entities entitled to receive them under applicable law (e.g. the police, the Social Insurance Institution, enforcement authorities, tax offices).
Cookies
The website uses the following types of cookies:
- persistent cookies – which remain in your device’s web browser until you delete them or until the period specified by us expires;
- session (temporary) cookies – which remain in your device’s web browser until it is closed or until you leave the website on which they were placed.
Cookies are further divided into the following categories:
- necessary – required for the proper functioning of the website, ensuring basic features and security;
- marketing – used to analyse your activity and display relevant advertisements and marketing campaigns;
- statistical – supporting the collection of statistical and analytical data;
- preference – helping to enable functions such as integration with social media platforms.
Cookies, and the information stored in them or accessed through them, do not change the configuration of your device or the software installed on it.
Information obtained through cookies is not assigned to a specific individual and does not enable identification.
The Personal Data Controller does not process personal data in PII cookies. This means that the cookies it processes do not contain information that identifies a person. When serving advertisements, the Controller does not process personal data such as names, surnames, email addresses, or phone numbers, which would constitute PII cookies.
You can change the way cookies are used in your browser, including blocking or deleting those originating from this website,by adjusting your browser settings.
Most browsers offer the option to accept or reject all cookies, accept only certain types, or notify you each time a website attempts to save them. You can also delete cookies that have already been saved on your device by your browser. The management and deletion of cookies varies depending on the browser used.
The website uses the following cookies:
| Name | Przeznaczenie | Function |
| e-1PAPISID | Marketing / Analytics | User identification, profiling for Google advertising. |
| __Secure-1PSID | Marketing / Analytics | A secure version of the session ID, used for ad personalization. |
| __Secure-1PSIDCC | Marketing / Analytics | Session control and protection, ad targeting. |
| __Secure-3PAPISID | Marketing / Analytics | Long-term advertising profiling. |
| __Secure-3PSID | Marketing / Analytics | Ad targeting based on user activity. |
| __Secure-3PSIDCC | Marketing / Analytics | Personalized advertising and session security. |
| __Secure-ENID | Marketing / Analytics | Ad personalization, login security. |
| _dd_s | Analytics | Session-based, possibly used for traffic tracking. |
| _ga | Analytics | Google Analytics – user identifier. |
| _ga_7W5MB2XRDK | Analytics | Google Analytics – session tracking within the service. |
| APISID | Marketing / Analytics | Google ads, activity tracking. |
| HSID | Marketing / Analytics | Account security + ads. |
| pll_language | Funkcjonalne | Remembers language preferences. |
| SAPISID | Marketing / Analytics | Ad profiling and tracking. |
| SID | Marketing / Analytics | Login + ads. |
| SIDCC | Marketing / Analytics | Session security and ads. |
| SSID | Marketing / Analytics | Login, ad targeting. |
Profiling
As part of processing Users’ personal data, we may carry out profiling:
1) based on consent – for the purpose of tailoring offers of products and services to your needs (including through the use of automated processes, consisting in combining data covered by your consent, originating from various sources – including data collected by the Controller and from websites – and assigning a profile on this basis, the result of which is the selection and presentation of advertisements or offers corresponding to that profile);
2) without consent, on the basis of our legitimate interest in processing cookies, for the purpose of adapting the content and marketing messages displayed on the Controller’s websites and on other websites you visit, based on such data as: visits to websites and clicks on individual functionalities of the service pages, login and registration dates, and data on the use of particular services on the Controller’s websites.
For profiling purposes, the Personal Data Controller uses a Cookie ID – a unique random string of characters assigned to a user, enabling user identification, saving settings, personalizing ads, and analytics. A detailed list of cookies used, along with their purposes and functions, can be found above.
The Controller delivers personalized advertising based on user behavior (remarketing) using Cookie IDs or device identifiers.
Transfers of Personal Data outside the European Economic Area (EEA)
Your personal data may be transferred outside the EEA as a result of our use of services provided by companies such as Google (Google Analytics). Such data are transferred in compliance with applicable law, and we implement appropriate safeguards, including standard contractual clauses approved by the European Commission or adequacy decisions of the European Commission.
Amendments to the Privacy Policy
The Controller reserves the right to amend this Privacy Policy, which may be necessary, for example, to reflect changes in the law or in applicable privacy standards.