Privacy Policy of Sybilla Technologies website and WebPlan platform

We would like to inform you that if you visit our website, available at www.sybillatechnologies.pl, you use our WebPlan services or you contact us in connection with our business cooperation, we may process your personal data.

We care about the security of your data and make best efforts to respect your rights. We process your personal data in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter: Regulation).

Who is the Data Controller of your personal data?

The Data Controller of your personal data is Sybilla Technologies spółka z ograniczoną odpowiedzialnością with its registered office in Bydgoszcz, address: Toruńska 59, 85-023 Bydgoszcz entered into the Register of Entrepreneurs of the National Court Register by the District Court in Bydgoszcz, XIII Commercial Department of the National Court Register under KRS number: 0000397835, NIP: 9532632892, REGON: 341190982, share capital: PLN 100.000 (hereinafter: the Data Controller, us).

How can you contact the Data Controller?

Contact with the Data Controller is possible in the following way:

What are the basis and purposes of processing your personal data?

In connection with the operation of our website, cooperating with us or using services we provide, we process personal data for various purposes, depending on which functionalities of the website you use and what kind of interactions you have with us. We indicate these various processing activities below.

• Visiting our website

If you visit our website, we process some of your personal data in connection with our use of cookies on the website and the storage of data about your access to the website (logs). In this connection, we process data such as your IP address and data about the device you are using, data about your operating system, data about your Internet access provider or statistical data about your activities on the website.

To the extent described above, the basis for processing your data is the provision of Article 6(1)(f) of the Regulation. Our legitimate interest is related to the need to control traffic on our website, to prevent errors and technical failures, to ensure website security, to collect statistical data or to prevent abuse and infringements within the website.

• Using contact details published on the website

If you use the contact form on our website and send us a message or contact us by phone or e-mail, using the contact details provided on the website, we process your personal data (included in the content of the form, e-mail message or provided during a phone call) in order to answer your question and to contact you.

The necessity of processing data in order to answer your question and contact you constitutes our legitimate interest, and the legal basis for processing data in this regard is the provision of Article 6(1)(f) of the Regulation.

• Using our online services

We may process your personal data if you use our online services, especially our WebPlan app. In this case, processing of your personal data is necessary to allow you to create and use your account within the app, use its functionalities, purchase subscriptions or other paid content as well as provide on-going support, according to the Terms and Conditions of our app. Such activities are based on the Article 6(1)(b) of the Regulation, which allows us to process personal data if it’s necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.

• Concluding an agreement with us

We process your personal data if:

• we provide services for you or you use our software (you are our client)
• we use your services or support
• we have any other kind of business cooperation.

In such case, the processing is conducted in order to conclude and perform an agreement between us and you, and the legal basis for processing of personal data is the article 6(1)(b) of the Regulation.

Additionally, your personal data may be processed in order to fulfill legal obligations imposed on us, especially in the field of tax law – in such a case, the basis for the processing of your data is Art. 6(1)(c) of the Regulation.

However, if you act as our client’s or contractor’s representative, e.g. as a employee or a contact person, we may process your personal data in order to conclude and perform an agreement between us and the organization that you represent. Such situation consists of our legitimate interests and the processing of personal data is based on the article 6(1)(f) of the Regulation, which states that processing of personal data is allowed when it is necessary for the purposes of the legitimate interests pursued by the controller.

• Visiting our Facebook fanpage

We have a fanpage on Facebook platform. If you visit our profile within this platform, we may also process your personal data. This also occurs in connection with, for example, leaving likes or comments on our posts or writing private messages to us. In this regard, we process your personal data as a controller, and the legal basis for data processing is our legitimate interest, i.e. the need to process your data in connection with our social media profile. Thus, the basis for data processing is the provision of Article 6 (1) (f) of the Regulation.

Notwithstanding the above, your personal data is also processed by Facebook Ireland Limited. They act as a separate controller of your personal data in this respect. If you wish to exercise your rights under the provisions of the Regulation, you can contact us in this regard or directly Facebook – if you contact us, we will inform you of this information to which we have access, and we can additionally support you in forwarding your question directly to Facebook.

Who can your personal data be shared with?

In order to properly provide our services, we use the services of certain third parties. Therefore, your personal data provided be transferred to the entity providing website hosting services and e-mail hosting to us – home.pl spółka akcyjna with its registered office in Szczecin, Poland. Hosting services related to our platform WebPlan are provided by Microsoft Ireland Operations Limited with its registered office in Dublin, Ireland.

Additionally, in connection with your use of our website or our services, we may provide your personal information to:

• Stripe Payments Europe Ltd, Ireland – an entity that provides us services related to processing of payments for subscription or other services,
• Cryptlex, LLC – an entity which provides us with services related to managing subscriptions and license keys, used in connection with our products and services,
• Facebook Ireland Limited – this entity processes personal data in connection with visiting our fanpage on Facebook or contacting us via Messenger. This entity is a subsidiary of Facebook Inc with headquarters in California, USA. Any transfer of personal data to the USA may take place on the basis of the Data Privacy Framework, a programme of data transfers, approved by the European Commission,
• entities which provide us with an accounting, advisory or legal services.

Duration of storage of personal data

We try to keep your personal data only for as long as we actually need it – after that time we delete it. Therefore, we can inform you that:

• if you are a visitor to our website, we process your personal data for as long as you use the website and for up to one year after your last visit,
• if you are the user of our WebPlan app (online services), we process your personal data as long as you have an account within our app and up to three years after the end of using our services,
• if you are our client, contractor, or representative of an organization that we cooperate with (we have concluded an agreement), we process your personal data as long as we conduct business cooperation with our client or contractor and up to three years after end of such cooperation,
• if you are a person who has written to us using the contact form on our website, contacted us by telephone or by e-mail – we process your personal data for as long as the contact between you and us lasts. After it ends and 3 months have passed, we delete the personal data we have collected in this way,
• if you are a person who has visited our social media profile, liked or commented on a social media post or written to us via the Messenger application, we will process your data for as long as our profile exists on such a social media site, however, no longer than for the time that you are a user of such site.

What rights do you have in relation to the processing of your personal data?

In relation to the processing of your personal data, you have the right to:

• request access to your personal data,
• request the rectification of your personal data,
• request the deletion of your personal data,
• request the restriction of the processing of your personal data,
• the portability of your personal data, to the extent that the processing is based on an agreement,
• object to the processing of your personal data, to the extent that the processing is based on the legitimate interest of the controller,
• lodge a complaint to the supervisory authority – the President of the Office for Personal Data Protection.

We do not process your personal data for automated decision-making based on profiling.

Cookies

As you visit our website, the cookies we use may be stored on your device. Cookies are small files that enable or facilitate the use of certain website functions. They may be stored on your device directly by us or by third parties with whom we cooperate. As part of the use of cookies, we may process your personal data, in particular such as your IP address, the history of your use of the application or website, or information about the device or software you are using. On our website, we also use other technologies similar to cookies to optimize their operation, in connection with which personal data may be processed. Where in this policy we refer to cookies, this also means technologies similar to cookies. Cookies are used to control traffic on our website, to compile statistics on the use of the website by its users, to undertake marketing activities, to prevent errors and technical faults, to ensure the security of the website or to prevent abuse and infringement of the law.

Cookie files may be divided into two groups:

Session cookies: these are stored on your device for the time that you use our website (they are deleted when you close your browser). Session cookies enable the correct use of our website. Blocking them may result in errors or prevent you from using our website or application.

Persistent cookies: these are stored on your device until you delete them. They are used to analyse the traffic on our website and to associate your presence on the website with the social networks you use. We endeavour to use only service providers that guarantee the security of your device, your software and your data. This also applies to the cookies used by them.

You have the ability to restrict or disable cookies within your device. The settings concerning the use of cookies can be found in the settings of your web browser. Web browsers allow you to disable all cookies or parts of cookies (e.g. from third parties). If some cookies are disabled, cookies generated by our website may be stored on your device to enable the website to function properly. In this case, however, cookies of entities with which we cooperate will not be saved.

Please note that if you restrict the use of cookies, the use of particular services provided by us may be limited, and in some cases may not be possible.