Privacy Policy

Privacy Policy

I. General Provisions

  1. The Privacy Policy specifies how the personal data of Users, necessary for providing services electronically through the www.nexelero.pl website (hereinafter: the Service), is collected, processed, and stored.
  2. The Service collects only the personal data necessary for the provision and development of the services offered therein.
  3. Personal data collected through the Service is processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter GDPR) and the Personal Data Protection Act of 10 May 2018.

II. Data Controller

The controller of personal data collected through the Service is Nexelero Company, address: str. bp. Józefa Sebastiana Pelczara 2/66A, 35-312 Rzeszów, NIP: 5170210377, REGON:180896229, email address: [email protected] (hereinafter: the Controller).

III. Purpose of Personal Data Collection

  1. Personal data is used for:
  • account registration and User identity verification,
  • enabling login to the Service,
  • contract execution concerning services and e-services,
  • communication with the User (live chat, contact form, etc.)
  • sending a newsletter (after the User has agreed to receive it),
  • managing the comment system,
  • providing social services,
  • promoting the Controller's offer,
  • marketing, remarketing, affiliation,
  • personalizing the Service for Users,
  • analytical and statistical activities,
  • debt collection,
  • establishing, pursuing, or defending claims.
  • sending a newsletter containing information about promotions, news, and services offered by the Service Administrator (after the User has consented),
  • managing a comment system that allows expressing opinions and remarks about the Service’s operations,
  • providing social services, such as the ability to share content from the page on social media platforms,
  1. Providing data is voluntary but necessary for concluding a contract or using other functionalities of the Service.

IV. Type of Processed Personal Data

The Controller may process the User's personal data: first name and last name, date of birth, residential address, email address, phone number, Tax Identification Number (NIP).

V. Personal Data Processing Period

Users' personal data will be processed for the period:

  • when the basis for data processing is contract execution – until the expiration of claims after its execution,
  • when the basis for data processing is consent – until its withdrawal, and after withdrawing consent until the expiration of claims. In both cases, the limitation period is 6 years, and for claims for periodic benefits and claims related to business operations – 3 years (unless a specific provision provides otherwise).

VI. Disclosing Personal Data

  1. Users' personal data may be transferred to: entities affiliated with the Controller, its subcontractors, entities cooperating with the Controller e.g., companies handling e-payments, courier/postal service companies, law firms.
  2. Users' personal data will not be transferred outside the European Economic Area (EEA).

VII. Users' Rights

  1. The Service User has the right to: access their personal data, rectify it, delete it, limit its processing, transfer it, object to its processing, and withdraw consent at any time (which does not affect the legality of the processing carried out on the basis of consent before its withdrawal).
  2. A notification regarding the User exercising the rights arising from the aforementioned should be sent to [email protected].
  3. The Controller complies with or refuses to comply with the request immediately – at the latest within a month of its receipt.
  4. The User has the right to lodge a complaint with the President of the Personal Data Protection Office if they believe that the processing violates their rights and freedoms (GDPR).

VIII. Cookies

  1. The Service collects information using cookies – session, permanent, and from third parties.
  2. Collecting cookies supports the proper provision of services in the Service and serves statistical purposes.
  3. The User can specify the range of cookie access to their device in the browser settings.

IX. Automated Decision Making and Profiling

  1. User data cannot be processed in an automated manner so that any decisions could be made against them as a result.
  2. User data may be profiled to adjust content and personalize the offer after they have consented.

X. Final Provisions

  1. The Controller has the right to make changes to the Privacy Policy, without limiting the rights of Users.
  2. Information about the introduced changes will appear in the form of a message available in the Service.
  3. In matters not regulated in this Privacy Policy, the GDPR and Polish law shall apply.