+ 48 88 66 78 955

Privacy Policy

This Privacy Policy sets out the rules for the processing and protection of personal data of Users using the website https://viakosmo.pl/.

The controller of personal data is ViaKosmo Sp. z o.o., with its registered office at Rzemieślnicza 40/U10, 15-773 Białystok, Poland, NIP: 5423442541, REGON: 520693578, e-mail: sales@viakosmo.pl.

1. Definitions

Controller means ViaKosmo Sp. z o.o., which determines the purposes and means of processing Users’ personal data.

Website means the website available at https://viakosmo.pl/.

User means any natural person visiting the Website or using its functionalities.

Personal data means any information relating to an identified or identifiable natural person.

GDPR / RODO means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of personal data.

Cookies means small text files stored on the User’s device when using the Website.

2. Scope of the Policy

This Policy applies to personal data processed in connection with Users’ use of the Website.

In particular, this Policy specifies:

  1. what data may be processed by the Controller
  2. for what purposes the data is processed
  3. the legal bases for data processing
  4. to whom the data may be disclosed
  5. how long the data is stored
  6. what rights Users have

3. What personal data may be processed

The Controller may process personal data voluntarily provided by the User, in particular through a contact form, e-mail, telephone contact, or other forms of communication available on the Website.

This may include in particular:

  1. first and last name
  2. company name
  3. e-mail address
  4. telephone number
  5. content of the message sent to the Controller
  6. data related to inquiries, orders, or cooperation
  7. other data voluntarily provided by the User

When using the Website, technical data may also be collected automatically, such as:

  1. IP address
  2. browser type and version
  3. device type
  4. operating system
  5. data concerning activity on the Website
  6. cookies and similar technologies

The Controller does not require the provision of special categories of data, such as data concerning health, political opinions, religious beliefs, or other sensitive data.

4. Purposes of personal data processing

Users’ personal data may be processed for the following purposes:

  1. responding to an inquiry submitted by the User
  2. conducting correspondence with the User
  3. preparing an offer or carrying out cooperation
  4. handling orders, inquiries, or requests
  5. ensuring the proper operation of the Website
  6. improving the functionality, security, and quality of the Website
  7. analyzing traffic on the Website, if the User has consented to analytical cookies
  8. conducting marketing activities, if the User has given the appropriate consent
  9. pursuing claims or defending against claims
  10. fulfilling legal obligations imposed on the Controller

5. Legal bases for data processing

Personal data is processed in accordance with applicable law, in particular the GDPR.

The legal basis for data processing may be:

  1. the User’s consent
  2. the necessity to take action at the User’s request before entering into a contract or to perform a contract
  3. a legal obligation imposed on the Controller
  4. the Controller’s legitimate interest, such as conducting correspondence, ensuring Website security, analyzing requests, pursuing claims, or defending against claims

6. Voluntary provision of data

Providing personal data is voluntary, but it may be necessary to use certain functionalities of the Website, for example to submit an inquiry via a contact form or receive a response from the Controller.

Failure to provide data may make it impossible to achieve a specific purpose, for example responding to an inquiry.

7. Cookies

The Website uses cookies to ensure its proper operation, improve functionality, analyze traffic, and conduct marketing activities, provided that the User has given consent where required.

The Website may use the following types of cookies:

  1. necessary cookies — required for the proper operation of the Website
  2. analytical cookies — used to analyze how the Website is used
  3. marketing cookies — used for advertising and remarketing activities
  4. functional cookies — used to remember selected User settings

The User can manage cookie settings through the cookie banner, consent management panel, or their web browser settings.

Detailed information about cookies is provided in a separate Cookie Policy available on the Website.

8. Recipients of personal data

Personal data may be transferred to entities supporting the Controller in operating the Website and conducting business activities, in particular:

  1. hosting service providers
  2. e-mail service providers
  3. analytics tool providers
  4. marketing tool providers
  5. IT service providers
  6. accounting, legal, or administrative service providers
  7. public authorities, where the obligation to disclose data results from applicable law

Data is transferred only to the extent necessary to achieve specific processing purposes.

9. Transfer of data outside the European Economic Area

In connection with the use of certain external tools, personal data may be transferred outside the European Economic Area.

In such cases, the Controller applies appropriate safeguards provided for under the GDPR, in particular standard contractual clauses or other mechanisms ensuring an adequate level of data protection.

10. Data retention period

Personal data is stored for the period necessary to achieve the purpose for which it was collected.

In particular:

  1. data processed for the purpose of responding to an inquiry is stored for the period necessary to handle the correspondence
  2. data related to the performance of a contract or cooperation is stored for the duration of the cooperation and for the period required by law
  3. data processed on the basis of consent is stored until the consent is withdrawn
  4. data processed for the purpose of pursuing claims or defending against claims is stored for the limitation period of such claims

11. User rights

The User has the following rights:

  1. the right to access their personal data
  2. the right to rectify data
  3. the right to erase data
  4. the right to restrict data processing
  5. the right to data portability
  6. the right to object to data processing
  7. the right to withdraw consent at any time, if the data is processed on the basis of consent
  8. the right to lodge a complaint with a supervisory authority

Withdrawal of consent does not affect the lawfulness of processing carried out before the consent was withdrawn.

12. Complaint to the supervisory authority

The User has the right to lodge a complaint with the supervisory authority competent for personal data protection.

In Poland, the supervisory authority is the President of the Personal Data Protection Office.

13. Contact regarding personal data

For matters related to the processing of personal data, the User may contact the Controller by e-mail:

sales@viakosmo.pl

14. Data security

The Controller applies appropriate technical and organizational measures to protect personal data against unauthorized access, loss, destruction, alteration, or disclosure.

The Controller makes every effort to ensure that data processing is carried out in accordance with applicable law.

15. Access by minors

The Website is not intended for persons under the age of 16.

If the Controller becomes aware that personal data has been provided by a person under the age of 16 without the required consent, the Controller will take appropriate steps to delete such data or restrict its processing.

16. Changes to the Privacy Policy

The Controller may periodically update this Privacy Policy, in particular in the event of changes in legal regulations, technologies used on the Website, or the scope of processed data.

The current version of the Privacy Policy is always available on the Website.

Effective date: 10 June 2026.