Privacy and personal data protection policy

Identification and contact data During the registration process, we collect basic information such as name, surname, email address, phone number, and date of birth. Age verification is an absolute legal requirement in Poland – access to the platform is allowed only for individuals who are 18 years of age or older. This data allows us to create a unique user profile and ensure secure access to services.

Technical and system logs During each interaction with the platform, our servers automatically record technical data such as IP address, device type, browser version, and operating system. This information is necessary to monitor platform stability and detect potential hacking attempts.

Activity and usage data We process information about which features you use most often and what actions you take within a session. If you use services requiring billing, we also process data on transaction status, with detailed payment data handled by certified external operators.

Data processing on our platform is carried out in accordance with Article 6 of the GDPR and is based on the following foundations:

• Contract performance: When data is necessary for the provision of services.
• Legal obligation: When Polish regulations require us to verify identity or age.
• Legitimate interest: To ensure network security and prevent fraud.
• User consent: For voluntary additional services, such as marketing.

Collected data is used exclusively for:

• Proper account management and verification of access rights.
• Providing efficient technical support and troubleshooting.
• Analyzing service performance to implement ergonomic improvements.
• Protection against cyber threats and actions violating the regulations.
• Fulfilling regulatory requirements regarding transparency in Poland.

We store personal data only for the period necessary to achieve the purposes for which it was collected, or for the time required by Polish law. After the retention period, data is permanently and securely deleted from our servers or anonymized.

We never sell our users' data to commercial entities. Information may only be transferred to trusted technical service providers (e.g., server operators) who act on our behalf based on data processing agreements. In situations provided by law, we may be obliged to provide data to Polish law enforcement authorities.

Most processing operations take place within the European Economic Area. In exceptional cases of data transfer outside the EEA, we always apply standard contractual clauses approved by the European Commission to guarantee a level of data protection equivalent to GDPR standards.

We apply advanced technical measures to protect data against accidental destruction or access by third parties. These include:

• Encryption of connections using SSL/TLS certificates.
• Intrusion detection systems and firewalls.
• Strict access control for personnel, based on the principle of least privilege.

In accordance with the GDPR, every user has the right to access their data, rectify it, erase it ("right to be forgotten"), restrict processing, and data portability. The user also has the right to object to processing based on legitimate interest.

To exercise your rights or clarify doubts regarding data processing, please contact us by email at: [email protected].

Our approach to data protection evolves with the development of the platform. Any changes to this policy will be published on this page. We recommend regularly reviewing the content of the document.