Privacy Policy

1. General Provisions
1.1. This Privacy Policy defines the rules for collecting, processing, and using personal data of users (hereinafter: “User”) of the website https://sportgildia.com/ (hereinafter: “Service”).
1.2. The data controller is Sport Gildia, located at Opłotek 27a, 43-346 Bielsko-Biała, NIP: 8172039995, email: kontakt@sportgildia.com (hereinafter: “Administrator”).
1.3. Contact for data protection matters: Data Protection Officer

2. Scope of Personal Data Collection
2.1. The Administrator may collect the following personal data from Users:

• first and last name,
• email address,
• IP address, browser and operating system data,
• other data voluntarily provided in contact or registration forms.

2.2. Data is collected:

• through forms on the Service (e.g., contact form, registration form, newsletter),
• automatically while using the Service (e.g., cookies, server logs).

3. Purpose and Legal Basis for Processing
3.1. Users’ personal data will be processed for the following purposes:

• handling inquiries submitted via the contact form (Art. 6(1)(a) and (b) GDPR),
• performance of a contract or provision of a service (Art. 6(1)(b) GDPR),
• sending newsletters with explicit User consent (Art. 6(1)(a) GDPR),
• direct marketing of own products or services (Art. 6(1)(f) GDPR),
• statistical purposes (website traffic analysis) (Art. 6(1)(f) GDPR),
• fulfilling legal obligations of the Administrator (e.g., document archiving) (Art. 6(1)(c) GDPR).

4. Data Retention Period
4.1. Personal data will be retained:

• for the period necessary to perform a contract or service, and thereafter in accordance with document archiving regulations (e.g., 5 years for invoices),
• for newsletter subscriptions – until withdrawal of consent,
• for marketing purposes – until objection is raised,
• for statistical purposes – until cookies are deleted or consent is withdrawn.

5. Data Recipients
5.1. Recipients of Users’ personal data may include:

• IT service providers (hosting, server maintenance, emailing, backup),
• accounting offices (for invoicing purposes),
• payment service providers (if the Service offers online payments),
• courier companies (in case of physical product sales),
• entities authorized by law (e.g., government authorities).

5.2. The Administrator does not transfer data to third countries or international organizations outside the EU/EEA.

6. User Rights
6.1. Users have the following rights regarding their personal data:

• right of access (Art. 15 GDPR),
• right to rectification (Art. 16 GDPR),
• right to erasure (“right to be forgotten”) (Art. 17 GDPR),
• right to restriction of processing (Art. 18 GDPR),
• right to object to processing (Art. 21 GDPR),
• right to data portability (Art. 20 GDPR),
• right to withdraw consent at any time if processing is based on consent (Art. 7(3) GDPR).

6.2. To exercise the above rights, contact the Administrator at email: kontakt@sportgildia.com or in writing at the registered address.

6.3. Users have the right to lodge a complaint with the supervisory authority (President of the Personal Data Protection Office) if they consider that the processing of personal data violates the GDPR.

7. Transfer of Data to Third Countries
7.1. The Administrator does not transfer data outside the European Economic Area.

8. Profiling and Automated Decision-Making
8.1. The Administrator does not perform profiling or automated decision-making within the meaning of Art. 22 GDPR.

9. Security Measures
9.1. The Administrator implements appropriate technical and organizational measures to secure data against unauthorized access, loss, modification, or destruction.

10. Changes to the Privacy Policy
10.1. The Administrator reserves the right to make changes to the Privacy Policy. Users will be informed of any changes by posting the new Policy on the Service, along with the date of the last update.

---

Cookies Policy

1. Definitions
1.1. “Cookies” – IT data, in particular text files, stored on the User’s device.

2. Types and Purposes of Cookies
2.1. Cookies used are classified as:

• necessary (technical) – enabling the use of services available on the Service (e.g., authentication, sessions),
• functional – remembering User preferences (e.g., language, region),
• analytical – collecting information about how the Service is used (e.g., Google Analytics),
• marketing – used to display advertisements matching User interests,
• social media – enabling integration of the Service with social networks (e.g., Facebook, Twitter).

3. Managing Cookies
3.1. Users can change cookie settings in their web browser at any time.
3.2. Instructions for changing cookie settings are available on the support pages of popular browsers:

• Google Chrome: https://support.google.com/chrome/answer/95647
• Mozilla Firefox: https://support.mozilla.org/pl/kb/ciasteczka
• Microsoft Edge: https://support.microsoft.com/pl-pl/help/4468242/microsoft-edge-browsing-data-and-privacy
• Safari: https://support.apple.com/pl-pl/guide/safari/sfri11471/mac

3.3. Deleting cookies may affect some functionalities of the Service and require re-entering preferences.

4. Consent
4.1. Using the Service without changing cookie settings constitutes consent to their use.
4.2. Users may withdraw consent at any time by changing browser settings or clicking the relevant option on the cookie banner (if available).

5. Use of Cookies by Third Parties
5.1. The Service may use external services, including Google Analytics. Google may transfer personal data to the USA – more information: https://support.google.com/analytics/answer/6004245.

6. Cookie Retention Period
6.1. Session cookies are deleted at the end of the session (browser closure).
6.2. Persistent cookies are stored until their expiration date (set in the file parameters) or deletion by the User.

7. Contact Regarding Cookies
7.1. For questions about cookies, please contact the Administrator at: sport.gildia@yahoo.com

---

GDPR Information (in accordance with EU Regulation 2016/679)

1. Data Controller
1.1. The data controller is SportGildia, located at Opłotek 27a, 43-346 Bielsko-Biała, NIP: 8172039995, email: kontakt@sportgildia.com

2. Purposes and Legal Bases for Processing
2.1. Legal bases for processing:

• consent given (Art. 6(1)(a) GDPR),
• performance of a contract or pre-contractual actions (Art. 6(1)(b) GDPR),
• compliance with a legal obligation (Art. 6(1)(c) GDPR),
• legitimate interest of the Administrator (Art. 6(1)(f) GDPR), unless the interests or fundamental rights and freedoms of the data subject prevail.

2.2. Specific purposes are described in the Privacy Policy, Section 3.

3. Data Retention Period
3.1. Data will be stored as long as necessary for the purposes specified in Section 2 and in accordance with applicable law (e.g., tax, accounting).

4. Data Recipients
4.1. The Administrator may entrust data processing to cooperating entities providing IT, accounting, marketing, payment processing, etc. services.
4.2. Recipients may also include government authorities authorized by law to obtain such data.

5. Rights of Data Subjects
5.1. Data subjects have the rights described in Section 6 of the Privacy Policy (access, rectification, erasure, restriction, data portability, objection, withdrawal of consent).

6. Right to Lodge a Complaint
6.1. If a data subject considers that data processing violates the GDPR, they have the right to lodge a complaint with the President of the Personal Data Protection Office.

7. Voluntariness of Providing Data
7.1. Providing personal data is voluntary; however, some data are necessary to perform a contract or provide a service.