Privacy Policy

This Privacy Policy describes the principles of processing information about you, including personal data and cookies.

1. General Information

This policy applies to the website operating at the URL: starbienino-village.pl.
The website operator and the Data Controller is: DK PRIME, 50-570 Wrocław, ul. Kukuczki 19/21.
The operator’s contact email address: biuro@dkprime.pl.
The operator is the Data Controller of your personal data provided voluntarily through the website.

The website uses personal data for the following purposes:

  • Managing the newsletter
  • Managing the comment system
  • Conducting online chat conversations
  • Handling inquiries via the contact form
  • Preparing, packaging, and shipping goods
  • Presenting offers or information

The website gathers information about users and their behavior in the following ways:

  • Through data voluntarily entered in forms, which are entered into the operator’s systems.
  • By storing cookies on user devices (so-called “cookies”).

2. Selected Data Protection Methods Used by the Operator

  • Login areas and areas where personal data is entered are protected at the transmission layer (SSL certificate). This ensures that personal data and login details entered on the site are encrypted on the user’s device and can only be read on the target server.
  • User passwords are stored in a hashed form. Hashing is a one-way function—reversing it is impossible, which is a current standard for storing user passwords.
  • The operator periodically changes its administrative passwords.
  • An essential part of data protection is the regular updating of all software used by the operator for processing personal data, particularly regular updates of software components.

3. Hosting

The website is hosted (technically maintained) on the servers of home.pl. The hosting company, to ensure technical reliability, logs data at the server level. The following information may be logged:

  • Resources specified by URL identifiers (addresses of requested resources—pages, files)
  • Time of request arrival
  • Time of response sent
  • Name of the client station—identified via the HTTP protocol
  • Information on errors that occurred during HTTP transactions
  • URL of the previously visited page (referer link)—if the transition to the site occurred via a link
  • User’s browser information
  • IP address information
  • Diagnostic information related to the self-ordering process via site recorders
  • Information related to the handling of email correspondence directed to and from the operator.

4. Your Rights and Additional Information on Data Usage

In certain situations, the Data Controller has the right to share your personal data with other recipients if necessary for the performance of a contract with you or to fulfill legal obligations. This applies to the following groups of recipients:

  • Hosting company on an entrustment basis
  • Online chat operators
  • Authorized employees and collaborators who use the data to achieve the website’s objectives
  • Companies providing marketing services on behalf of the Data Controller

Your personal data will be processed by the Data Controller no longer than necessary to perform related activities specified by separate regulations (e.g., accounting regulations). Regarding marketing data, the data will not be processed for more than 3 years.

You have the right to:

  • Access your personal data
  • Correct your personal data
  • Delete your personal data
  • Restrict the processing of your personal data
  • Transfer your personal data

You also have the right to object to processing under point 3.2 concerning the processing of personal data for the legitimate interests pursued by the Data Controller, including profiling. However, the right to object cannot be exercised if there are compelling legitimate grounds for the processing, overriding your interests, rights, and freedoms, particularly for establishing, exercising, or defending legal claims.

Complaints regarding the actions of the Data Controller may be filed with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.

Providing personal data is voluntary but necessary to operate the website.

Automated decision-making, including profiling, may be conducted regarding you to provide services under a contract and for the Data Controller’s direct marketing.

Personal data may be transferred to third countries under data protection regulations, meaning they are transmitted outside the European Union.

5. Information in Forms

The website collects information voluntarily provided by the user, including personal data, if given. The website may record information about connection parameters (timestamp, IP address). In some cases, the website may save information to link form data with the user’s email address. In such cases, the user’s email address appears within the URL of the page containing the form. Data provided in the form is processed for the purpose resulting from the function of a specific form, e.g., to process a service request or business contact. Each form’s context and description clearly indicate its purpose.

6. Administrator Logs

User behavior information within the website may be logged. This data is used to administer the website only.

7. Important Marketing Techniques

  • The operator uses statistical traffic analysis on the website via Google Analytics (Google Inc., based in the USA). The operator does not transfer personal data to the service operator, only anonymized information. This service uses cookies on the user’s device. Users can view and edit their Google ad preferences here: https://www.google.com/ads/preferences/
  • The operator uses remarketing techniques to tailor advertising messages to user behavior on the website. However, no personal data is transferred to ad operators. The technological condition for such actions is the enabled cookie support.
  • The operator uses the Facebook Pixel. This technology informs Facebook (Facebook Inc., based in the USA) that a registered user is using the website. Facebook acts as the independent data controller, and the operator does not provide additional personal data. This service also uses cookies.
  • The operator uses automated solutions for website operation, such as sending emails to users after visiting specific subpages if the user consents to receiving commercial correspondence.

8. Cookie Information

The website uses cookies, which are data, particularly text files, stored on the user’s device and intended for website use. Cookies typically contain the website’s name, storage duration on the device, and a unique number. Cookies are used for:

  • Maintaining user session (after logging in) to prevent repeated login and password entry on each subpage.
  • Achieving the goals mentioned in “Important Marketing Techniques.”

Two primary types of cookies are used on the website: “session” cookies (temporary, stored until logout, leaving the site, or closing the browser) and “persistent” cookies (stored for a specified period or until deleted by the user).

Web browsers usually allow storing cookies by default. Users can change these settings in their browser. Disabling cookies necessary for authentication, security, and user preference maintenance may hinder website use.

Cookies may also be used by third-party partners such as Google (Google Inc., based in the USA), Facebook (Facebook Inc., based in the USA), and Twitter (Twitter Inc., based in the USA).

9. Managing Cookies – How to Express and Withdraw Consent?

Users can change cookie settings through their browser. Disabling cookies necessary for authentication and security may impair website functionality.

Instructions for managing cookie settings are available for major browsers:

  • Edge
  • Internet Explorer
  • Chrome
  • Safari
  • Firefox
  • Opera

For mobile devices:

  • Android
  • Safari (iOS)
  • Windows Phone