Privacy policy

1. General information

The present policy applies to the Website, available under the following url address:

UNIQUE APARTMENTS WARSZAWA SP. Z O.O., ul. Prosta 32, 00-838 Warsaw, NIP: 5272831485 is the controller of personal data.

Operator’s contact e-mail address:

The Operator is the Controller of your personal data with regard to the data you voluntarily provide on the Website.

The Website uses personal data for the following purposes:

Newsletter subscriptions

Online chat type conversations

Responding to queries submitted via the form

Performance of ordered services

Marketing or information

The website obtains information about users and their behaviour in the following ways:

Through the data voluntarily entered in forms, which are entered into the Operator’s systems.

By storing cookie files on end user devices.

2. data protection methods selected the Operator

Logins and personal data entry areas are protected in the transmission layer (SSL certificate). This ensures that the personal and login data entered on the website is encrypted on the user’s computer and can only be read by the target server.

The personal data stored in the database are encrypted in such a way that only those holding the Operator key can have access to them. This protects the data even if a database is stolen from the server.

User passwords are stored in hashed form. The hash function works unidirectionally – it is not possible to reverse its operation, which is now the contemporary standard for storing user passwords.

The operator periodically changes its administrative passwords.

The Operator makes regular backups in order to protect the data.

Regular updates of all software used by the Operator to process personal data, which in particular means regular updates of software components are an important element of data protection.

3. Hosting

The website is hosted (technically maintained) on servers of the OVH operator.

4. Your rights and additional information on how your data will be used

In certain situations, the Controller has the right to transfer your personal data to other recipients if this is necessary for the performance of a contract concluded with you or for the fulfilment of obligations incumbent on the Controller. This applies to recipient groups such as:

a hosting company on a delegated basis

authorised employees and associates who use the data in order to fulfil the purpose of the website

companies providing marketing services to the Controller

Your personal data are processed by the Controller for no longer than is necessary for the performance of related activities defined by separate regulations (e.g., accounting). Marketing data will not be processed for longer than 3 years.

You have the right to request the following from the Controller:

access personal data

rectify data,

delete data,

restrict processing of data,

and transfer data.

You have the right to object to the processing indicated in 3.3 c) to the processing of your personal data for the purposes of the legitimate interests pursued by the Controller, including profiling, with the right to object not being exercisable where there are valid legitimate grounds for the processing which override your interests, rights and freedoms, in particular the establishment, assertion or defence of claims.

You also have the right to submit a complaint regarding the Controller to the President of the Data Protection Office (PUODO), ul. Stawki 2, 00-193 Warsaw

Provision of personal data is voluntary but necessary to use the Website.

Automated decision-making, including profiling, may be undertaken in relation to you for the purpose of providing services under the contract concluded and for the purpose of direct marketing by the Administrator.

Personal data is not transferred to third countries in the sense of data protection legislation This means that we do not send your data outside the European Union.

5. Information in forms

The website collects information voluntarily provided by the user, including personal data if such are provided.

The website may save information about connection parameters (time stamp, IP address).

In some cases, the website may record information to help link the data in the form with the e-mail address of the user completing the form. In this case, the user’s e-mail address appears inside the url of the page containing the form.

The data provided in a form is processed for the purpose resulting from the function of the specific form, e.g., to process a service request or business contact, registration of services, etc. The context and description of the form clearly communicates what it is for.

6. Administrator’s Logs

User behaviour information on the website may be subject to logging. This data is used to manage the website.

7. Significant marketing techniques

The operator uses statistical analysis of website traffic via Google Analytics (Google Inc., based in the USA). The operator does not transmit personal data to the provider of this service, only anonymised information. The service is based on the use of cookies on the user’s terminal device. With regard to the information on user preferences collected by the Google advertising network, the user can view and edit the information resulting from cookies using the following tool:

The Operator uses remarketing techniques to match advertising messages to the user’s behaviour on the website, which may result in an illusion that the user’s personal data are being used to track the user, but in practice no personal data are transferred from the Operator to advertising companies. A technological prerequisite for this is that cookies are enabled.

The operator uses the Facebook pixel. This technology means that Facebook (Facebook Inc., based in the USA) knows that a person registered with it is using the Website. The operator does not pass on any additional personal data to Facebook and In this case, it relies on data which it is the controller of. The service is based on the use of cookies on the user’s terminal device.

The operator uses a tool that examines user behaviour through heat maps and recording behaviour on the site. This information is anonymised before it is sent to the service provider so that they do not know which whom it pertains to. In particular, passwords and other personal data are not recorded.

The Operator uses a tool that automates the operation of the Website in relation to users, e.g., it may send an e-mail to a user after visiting a specific page, provided that the user has agreed to receive commercial correspondence from the Operator.

8. Cookie information

This website uses cookies.

Cookie files (“cookies”) constitute information data, and in particular text files which are stored on the Website User’s end device and are used for browsing pages of this Website. Usually cookies contain the name of the website which generated them, storage time on the end device and a unique number.

The entity saving cookie files on the Website User’s end device and obtaining access thereto is the Website operator.

Cookie files are used to:

maintain the Website User’s session (once logged in), thanks to which there is no need for the User to re-enter their login and password on every page of the Website;

to achieve the objectives set out above under ‘Significant marketing techniques’;

The Website uses two primary types of cookies: session cookies and persistent cookies. Session cookies are temporary files which are stored on the user’s device until the user logs out, leaves the website or closes the software (internet browser). Persistent cookie files are stored on the user’s device for a time as specified in cookie files options or until the user deletes them.

In many cases software used to browse internet sites (web browsers) has the option to store cookie files on the User’s end device by enabled default. Website users can change their settings in this respect. Cookies can be deleted in your web browser. It is also possible to automatically reject cookies, For details, please refer to the help section or documentation of your Internet browser.

Restricting the use of cookie files may impact the usability of some functions on the Website

Cookie files stored on the Website user’s end device and may also be used by partners of the Website, and this in particular applies to Google (Google Inc. with its head office in the USA), Facebook (Facebook Inc. with its head office in the USA), Twitter (Twitter Inc. with its head office in the USA).

9. Managing cookies – providing and withdrawing consent in practice

If a user does not wish to receive cookies then browser settings have to be changed. Please note that disabling cookies that are essential for authentication processes, security and maintaining user preferences may make it difficult, and in extreme cases may make it impossible, to use the website

To manage your cookie settings, select the web browser you are using from the list below and follow the instructions:


Internet Explorer





Mobile devices:


Safari (iOS)

Windows Phone This policy has been generated free of charge, for information purposes, based on our knowledge, industry practices and legislation in force as of 2018-08-14. We recommend checking the policy before using it on a website. The template is based on the most common situations on websites but may not fully and accurately reflect the specific nature of your website. Read the generated document carefully and adapt it to your situation. Seek legal advice if necessary. We shall not be held liable for the consequences of using this document, as only you have the power to ensure that all the information contained therein is correct. Note also that a Privacy Policy, even the best one, is only one part of your concern for the personal data and privacy of website users.