Privacy policy

1. General Information

This policy applies to the website www, available at the URL: gradi.pl The operator of the website and the data controller is Gradi Invest Sp. z o.o., ul. Paprotna 3A, 51-114 Wrocław. The operator’s contact email address: biuro@gradiinvest.pl. The operator is the data controller of your personal data with respect to the data voluntarily provided on the website. The website uses personal data for the following purposes:

Running a newsletter
Presenting offers or information

The website collects information about users and their behavior in the following ways:

Through voluntarily entered data in forms, which are stored in the operator’s systems.
By saving cookies (so-called “cookies”) on the user’s devices.

2. Selected Data Protection Methods Used by the Operator

The login and personal data entry areas are protected during transmission (SSL certificate). This ensures that personal data and login credentials entered on the website are encrypted on the user’s computer and can only be read on the destination server. Personal data stored in the database is encrypted in such a way that only the operator, who possesses the key, can read it. This ensures protection in the event of database theft from the server. User passwords are stored in a hashed form. The hashing function works in a one-way manner, meaning it is impossible to reverse the process, which is a modern standard for storing user passwords. A key element of data protection is the regular updating of all software used by the operator for processing personal data, which specifically means regular updates of the software components.

3. Hosting

The website is hosted (technically maintained) on the operator’s server: home.pl

4. Your Rights and Additional Information About the Use of Data

In certain situations, the data controller has the right to pass your personal data to other recipients if necessary to perform the contract concluded with you or to fulfill obligations imposed on the data controller. This includes the following groups of recipients:

Authorized employees and collaborators who use the data to perform the website’s purpose.
Companies providing marketing services on behalf of the data controller.

Your personal data will not be processed by the data controller longer than necessary to carry out activities defined by separate regulations (e.g., accounting). With regard to marketing data, the data will not be processed for longer than 3 years. You have the right to request from the data controller:

Access to your personal data,
Correction of data,
Deletion of data,
Limitation of data processing,
Data portability.

You have the right to object to the processing referred to in point 3.3 (c) regarding the processing of personal data for the purpose of legitimate interests pursued by the data controller, including profiling, provided that the right of objection cannot be exercised if there are important legally justified grounds for processing, overriding your interests, rights, and freedoms, in particular, the establishment, exercise, or defense of legal claims. You have the right to file a complaint with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw. Providing personal data is voluntary, but necessary for the service to function. Automated decision-making, including profiling, may take place in relation to you for the provision of services under the concluded agreement and for the purposes of direct marketing by the data controller. Personal data is not transferred from third countries within the meaning of personal data protection regulations. This means that it is not sent outside the European Union.

5. Data Collection

The website collects personal data voluntarily provided by users, including contact information, such as email address, if users choose to contact the data controller via email or in other cases where users voluntarily provide their personal data.

The website may also save connection parameters, such as the IP address and timestamp, which may be used for statistical and administrative purposes.

6. Administrator Logs

Information about user behavior on the website may be logged. These data are used for statistical and administrative purposes.

7. Important Marketing Techniques

The operator uses statistical analysis of website traffic through Google Analytics (Google Inc., USA). The operator does not transmit personal data to the service provider but only anonymized information. The service relies on the use of cookies on the user’s device. Regarding the user’s preferences collected by the Google ad network, users can view and edit information resulting from cookies using the tool: https://www.google.com/ads/preferences/. The operator uses remarketing techniques, allowing for the customization of advertising messages based on user behavior on the website, which might give the illusion that personal data is being used to track users. However, no personal data is actually shared with advertising service providers. The technological condition for such actions is that cookies are enabled. The operator uses the Facebook Pixel. This technology causes Facebook (Facebook Inc., USA) to know that a registered person has visited the website. This is based on data for which Facebook is the administrator. The operator does not transfer any additional personal data to Facebook. The service relies on the use of cookies on the user’s device.

8. Information About Cookies

The website uses cookies. Cookies are IT data, particularly text files, which are stored on the user’s device and are intended for use on the website. Cookies typically contain the name of the website from which they come, the time they are stored on the device, and a unique number. The operator of the website is the entity placing cookies on the user’s device and accessing them. Cookies are used for the following purposes:

Maintaining the user’s session (after logging in), so the user does not have to re-enter the login and password on every page of the website.
For the purposes described above under “Important Marketing Techniques”.

The website uses two main types of cookies: “session” (temporary) cookies and “persistent” cookies. “Session” cookies are temporary files stored on the user’s device until they log out, leave the website, or close the software (web browser). “Persistent” cookies are stored on the user’s device for the period specified in the cookie parameters or until they are deleted by the user.

9. Managing Cookies – How to Express and Withdraw Consent?

If the user does not want to receive cookies, they can change the browser settings. Please note that disabling cookies essential for authentication, security, and maintaining user preferences may make it difficult or, in extreme cases, impossible to use the website. To manage cookie settings, select your browser from the list below and follow the instructions:

Mobile Devices: