1. General information
The present policy applies to the Website, available under the following url address: unique-hotels.pl
UNIQUE APARTMENTS WARSZAWA SP. Z O.O., ul. Prosta 32, 00-838 Warsaw, NIP: 5272831485 is the controller of personal data.
Operator’s contact e-mail address: email@example.com
The Operator is the Controller of your personal data with regard to the data you voluntarily provide on the Website.
The Website uses personal data for the following purposes:
Online chat type conversations
Responding to queries submitted via the form
Performance of ordered services
Marketing or information
The website obtains information about users and their behaviour in the following ways:
Through the data voluntarily entered in forms, which are entered into the Operator’s systems.
By storing cookie files on end user devices.
2. data protection methods selected the Operator
Logins and personal data entry areas are protected in the transmission layer (SSL certificate). This ensures that the personal and login data entered on the website is encrypted on the user’s computer and can only be read by the target server.
The personal data stored in the database are encrypted in such a way that only those holding the Operator key can have access to them. This protects the data even if a database is stolen from the server.
User passwords are stored in hashed form. The hash function works unidirectionally – it is not possible to reverse its operation, which is now the contemporary standard for storing user passwords.
The operator periodically changes its administrative passwords.
The Operator makes regular backups in order to protect the data.
Regular updates of all software used by the Operator to process personal data, which in particular means regular updates of software components are an important element of data protection.
The website is hosted (technically maintained) on servers of the OVH operator.
4. Your rights and additional information on how your data will be used
In certain situations, the Controller has the right to transfer your personal data to other recipients if this is necessary for the performance of a contract concluded with you or for the fulfilment of obligations incumbent on the Controller. This applies to recipient groups such as:
a hosting company on a delegated basis
authorised employees and associates who use the data in order to fulfil the purpose of the website
companies providing marketing services to the Controller
Your personal data are processed by the Controller for no longer than is necessary for the performance of related activities defined by separate regulations (e.g., accounting). Marketing data will not be processed for longer than 3 years.
You have the right to request the following from the Controller:
access personal data
restrict processing of data,
and transfer data.
You have the right to object to the processing indicated in 3.3 c) to the processing of your personal data for the purposes of the legitimate interests pursued by the Controller, including profiling, with the right to object not being exercisable where there are valid legitimate grounds for the processing which override your interests, rights and freedoms, in particular the establishment, assertion or defence of claims.
You also have the right to submit a complaint regarding the Controller to the President of the Data Protection Office (PUODO), ul. Stawki 2, 00-193 Warsaw
Provision of personal data is voluntary but necessary to use the Website.
Automated decision-making, including profiling, may be undertaken in relation to you for the purpose of providing services under the contract concluded and for the purpose of direct marketing by the Administrator.
Personal data is not transferred to third countries in the sense of data protection legislation This means that we do not send your data outside the European Union.
5. Information in forms
The website collects information voluntarily provided by the user, including personal data if such are provided.
The website may save information about connection parameters (time stamp, IP address).
In some cases, the website may record information to help link the data in the form with the e-mail address of the user completing the form. In this case, the user’s e-mail address appears inside the url of the page containing the form.
The data provided in a form is processed for the purpose resulting from the function of the specific form, e.g., to process a service request or business contact, registration of services, etc. The context and description of the form clearly communicates what it is for.
6. Administrator’s Logs
User behaviour information on the website may be subject to logging. This data is used to manage the website.
7. Significant marketing techniques
The Operator uses remarketing techniques to match advertising messages to the user’s behaviour on the website, which may result in an illusion that the user’s personal data are being used to track the user, but in practice no personal data are transferred from the Operator to advertising companies. A technological prerequisite for this is that cookies are enabled.
The operator uses a tool that examines user behaviour through heat maps and recording behaviour on the site. This information is anonymised before it is sent to the service provider so that they do not know which whom it pertains to. In particular, passwords and other personal data are not recorded.
The Operator uses a tool that automates the operation of the Website in relation to users, e.g., it may send an e-mail to a user after visiting a specific page, provided that the user has agreed to receive commercial correspondence from the Operator.
8. Cookie information
Cookie files (“cookies”) constitute information data, and in particular text files which are stored on the Website User’s end device and are used for browsing pages of this Website. Usually cookies contain the name of the website which generated them, storage time on the end device and a unique number.
The entity saving cookie files on the Website User’s end device and obtaining access thereto is the Website operator.
Cookie files are used to:
maintain the Website User’s session (once logged in), thanks to which there is no need for the User to re-enter their login and password on every page of the Website;
to achieve the objectives set out above under ‘Significant marketing techniques’;
The Website uses two primary types of cookies: session cookies and persistent cookies. Session cookies are temporary files which are stored on the user’s device until the user logs out, leaves the website or closes the software (internet browser). Persistent cookie files are stored on the user’s device for a time as specified in cookie files options or until the user deletes them.
In many cases software used to browse internet sites (web browsers) has the option to store cookie files on the User’s end device by enabled default. Website users can change their settings in this respect. Cookies can be deleted in your web browser. It is also possible to automatically reject cookies, For details, please refer to the help section or documentation of your Internet browser.
Restricting the use of cookie files may impact the usability of some functions on the Website
Cookie files stored on the Website user’s end device and may also be used by partners of the Website, and this in particular applies to Google (Google Inc. with its head office in the USA), Facebook (Facebook Inc. with its head office in the USA), Twitter (Twitter Inc. with its head office in the USA).
9. Managing cookies – providing and withdrawing consent in practice
If a user does not wish to receive cookies then browser settings have to be changed. Please note that disabling cookies that are essential for authentication processes, security and maintaining user preferences may make it difficult, and in extreme cases may make it impossible, to use the website
To manage your cookie settings, select the web browser you are using from the list below and follow the instructions: