OnlineIdea | Privacy policy
Privacy policy

I. INTRODUCTION


1. The administrator of the personal data collected specifically through the https://onlineidea.com/ webpage (the Website/the Service) is OnlineIdea Ltd. (Administrator). Contact with the Administrator: OnlineIdea Sp. z o.o. 61-871 Poznań, 43 Królowej Jadwigi Street, e-mail: kontakt@onlineidea.com. The Administrator shall be responsible for the security of the personal data provided and their processing in accordance with the law.

2. The Administrator has appointed a Data Protection Inspector (DPO), who can be contacted in matters related to the processing of personal data and the exercise of users' rights under data protection legislation: kontakt@onlineidea.com.

3. Personal data shall be processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (RODO) and other currently applicable data protection laws.

4. In the course of a visit to the Service, there is a collection of:

a) personal data provided by the user,

b) data obtained and recorded automatically.

5. The purpose and scope of data used by the Administrator is indicated in detail in the following section of the privacy policy.


II. DATA COLLECTED - BASIC INFORMATION


1. The following information applies to all uses of personal data provided by users by the Administrator as indicated in Chapter III and IV.

2. Data shall not be used for decision-making based solely on automated processing of personal data, including profiling within the meaning of Article 22 of the RODO.

3. With all guarantees of data security, personal data processed through the Service may be transferred - in addition to persons authorized by the Administrator - to other entities, including:

a) entities authorized to receive them in accordance with the law,

b) entities that process them on behalf of the Administrator (e.g. technical service providers and consulting service providers),

c) other data controllers to the extent necessary for the performance of services and legal requirements (e.g., notary or legal offices).

4. The Administrator informs that in connection with the processing of personal data obtained through the Service, each data subject has the right to submit a request for:

a) access to the data (information about the processing of personal data or a copy of the data),

b) rectification of data (when it is incorrect),

c) erasure of personal data (right to be forgotten),

d) restriction of processing of personal data,

e) transfer of data to another Administrator,

f) withdrawal of consent where the Administrator will process the customer's personal data on the basis of consent, at any time and in any manner, without affecting the legality of the processing performed on the basis of consent before its withdrawal,

g) to object to the processing, where the basis for processing is the legitimate interest of the Administrator.

5. Any data subject has the right to lodge a complaint with the supervisory authority (President of the Office for Personal Data Protection, https://uodo.gov.pl/en/680/1402) if he/she believes that the processing of personal data is carried out in violation of the law.

6. The data was obtained by the Administrator directly from the user. The Administrator may also process personal data of other persons provided by the user when using the services described in the privacy policy.


III. PERSONAL DATA PROVIDED BY THE USER


NEWSLETTER


1. The Administrator shall process the personal data of users using the newsletter dispatch service - the legal basis is the necessity of the processing for the performance of the contract (Article 6(1)(b) RODO).

2. Provision of data is voluntary, but necessary to receive the newsletter, and failure to do so will result in the impossibility of dispatch.

3. The user using the newsletter may opt out of receiving it at any time, in particular by clicking on the deactivation link located in each email sent to the user or by sending correspondence to: kontakt@onlineidea.com.

4. The Administrator has the right to process personal data for the time necessary for the above purposes. This will be:

a) the time necessary for the performance of the contract;

b) the time after which claims are barred;

c) the time until you object.


FACEBOOK


1. The Administrator processes personal data of users visiting the Administrator's social media accounts.

2. OnlineIdea is the controller of personal data of users of products and services offered by Facebook who visit the Administrator's page, available at: https://www.facebook.com/onlineidea/ (hereinafter referred to as the Fanpage). As the Administrator, it is responsible for the security of the personal data provided and the processing of such data in accordance with the law.

3. The Administrator shall process personal data of users who, using Facebook products and services, visit Fanpage. This data is processed:

a) in connection with the operation of the Fanpage, including for the purpose of promoting one's own brand (legal basis - Article 6(1)(f) RODO) - "legitimate interest";

b) in order to answer questions asked via Messenger or other services offered by Facebook (legal basis - Article 6(1)(f) RODO) - "legitimate interest"; if you provide special categories of data (e.g., health information), you declare that you consent to their use in order to properly handle your request and fulfill your inquiry, including conducting communication and providing answers (legal basis - Article 9(2)(a) RODO) - "consent".

4. The administrator shall have the right to process:

a) publicly available personal data (such as username, profile picture, activity status on Facebook or Messenger), content of comments and other information publicly provided by a user using Facebook products and services,

b) personal data provided by a user visiting the Fanpage, including the collection of information shared in the user's profile and other content, comments, messages and communications (such as photos, contact information, place of residence, information on interests or worldview beliefs),

c) other personal data provided by users in the content of messages via Messenger or other Facebook services (including contact and health data) in order to respond to an inquiry sent or to fulfill a contact request.

5. The scope of the processing of personal data, the specific purposes, and the rights and obligations of the user using Facebook products and services, are directly derived from the Facebook Terms and Conditions (document is available at: https://www.facebook.com/legal/terms) and the "Data Rules" (document is available at: https://www.facebook.com/policy) or the law, and are further specified as a result of the user's actions on the Facebook social network.

6. The Administrator shall have the right to process personal data for the period necessary for the purposes indicated above. Depending on the legal basis, this will be respectively:

a) the time until you object (or delete your Facebook user account),

b) the time until you withdraw your consent (or delete your Facebook user account). Withdrawal of consent does not affect the lawfulness of data processing during the period when consent was in effect;

c) the period of time necessary to handle the inquiry sent by the user via Messenger or other Facebook services.

7. The catalog of recipients of personal data processed by the Administrator is primarily determined by the range of products and services used by the Facebook user, but also by the user's consent or by law. With all guarantees of data security, the Administrator may provide personal data of the user visiting the Fanpage - in addition to persons authorized by the Administrator - to other entities, including entities processing data on behalf of the Administrator, e.g. technical service providers and entities providing consulting services (including law firms) and contractors providing services to the Administrator on the basis of concluded agreements.

8. The administrator will not transfer personal data of a user using Facebook products and services to countries outside the European Economic Area (to countries other than countries of the European Union and Iceland, Norway and Liechtenstein).

9. In the case of personal data processed for the purpose of keeping statistics on the actions taken by the user on the Fanpage (including watching or stopping watching the page, recommending the page in a post or comment, liking the page or post, canceling a liking), the Administrator and Meta Platforms Ireland Limited (Block J, Serpentine Avenue, Dublin 4, Ireland) are joint controllers of the users' personal data. The types of data and the scope of their processing, as well as the principles of privacy protection and users' rights, are indicated in detail:

a) in this document,

b) in the document "Data Principles," published on Facebook's website at: https://www.facebook.com/policy.

10. It is Facebook's responsibility to notify users who use Facebook products and services of the processing of data for the purposes of site statistics and to enable them to exercise their rights under the RODO (information about the data used to create site statistics has been made available on Facebook's website at: https://www.facebook.com/legal/terms/information_about_page_insights_data).

11. The Facebook Data Protection Officer can be contacted via the form provided on the Facebook page at: https://www.facebook.com/help/contact/540977946302970.


LINKEDIN


1. The Administrator processes personal data of users visiting the Administrator's social media accounts.

2. OnlineIdea is the controller of personal data of users using products and services offered by LinkedIn who visit the Administrator's website, available at: https://pl.linkedin.com/company/onlineidea (hereinafter referred to as the Page). As the Administrator, it is responsible for the security of the personal data provided and for processing them in accordance with the law.

3. The Administrator processes personal data of users who, using LinkedIn products and services, visit the Page. This data is processed:

a) in connection with the operation of the Page, including the promotion of its own brand (legal basis - Article 6(1)(f) of the RODO) - "legitimate interest";

b) in order to respond to questions asked via messages or other services offered by LinkedIn (legal basis - Article 6(1)(f) RODO) - "legitimate interest"; if you provide specific categories of data (e.g., health information), you state that you consent to its use for the proper handling of your request and fulfillment of your inquiry, including the conduct of communication and response (legal basis - Article 9(2)(a) RODO) - "consent".

4. The administrator has the right to process:

a) publicly available personal data (such as username, profile picture), content of comments and other information publicly provided by a user using LinkedIn products and services,

b) personal data provided by a user visiting the Page, including the collection of information shared in the user's profile and other content, comments, messages and communications (such as photos, contact information, place of residence or work experience),

c) other personal information provided by users in the content of messages or other LinkedIn services (including contact information) in order to respond to a submitted inquiry or to fulfill a contact request.

5. The scope of the processing of personal data, the specific purposes, and the rights and obligations of the user using LinkedIn's products and services are set forth directly in LinkedIn's Terms and Conditions (the document is available at: https://www.linkedin.com/legal/user-agreement) and "Privacy Policy" (document is available at: https://www.linkedin.com/legal/privacy-policy) or the law, and are further specified as a result of the user's actions on the LinkedIn social network.

6. The Administrator shall have the right to process personal data for the period necessary for the purposes indicated above. Depending on the legal basis, this will be respectively:

a) the time until you object (or delete your LinkedIn user account),

b) the time until you withdraw your consent (or delete your LinkedIn user account). The withdrawal of consent does not affect the lawfulness of data processing during the period when the consent was in force;

c) the period of time necessary to handle an inquiry sent by the user via messages or other LinkedIn services.

7. The catalog of recipients of personal data processed by the Administrator is primarily determined by the range of products and services used by the LinkedIn user, but also by the user's consent or by law. With all guarantees of data security, the Administrator may transfer the personal data of the user visiting the Page - in addition to persons authorized by the Administrator - to other entities, including entities processing data on behalf of the Administrator, e.g. technical service providers and consulting service providers (including law firms) and contractors performing services for the Administrator on the basis of concluded agreements.

8. The Administrator shall not transfer personal data of a user using LinkedIn products and services to countries outside the European Economic Area (to countries other than countries of the European Union and Iceland, Norway and Liechtenstein).

9. In the case of personal data processed for the purpose of keeping statistics on the actions taken by the user on the Page (including observing or stopping observing the Page, recommending the Page in a post or comment, liking a post, canceling a like), the Administrator and LinkedIn Ireland Unlimited Company (Wilton Place, Dublin 2, Ireland) are joint controllers of the users' personal data. The types of data and the scope of their processing, as well as the principles of privacy protection and users' rights, are indicated in detail:

a) in this document,

b) in the "Privacy Policy" document published on LinkedIn at: https://www.linkedin.com/legal/privacy-policy.

10. It is LinkedIn's responsibility to notify users using LinkedIn's products and services of the processing of data for the purposes of site statistics and to enable them to exercise their rights in accordance with the RODO (information about the data used to create site statistics has been made available on LinkedIn's website at: https://www.linkedin.com/legal/privacy-policy#data).


IV. DATA COLLECTED AUTOMATICALLY


1. Use of the Service involves sending requests to the server, which are automatically recorded in event logs.

2. Event logs record data on user sessions. In particular, these are: IP address, type and name of the device, date and time of visiting our Service, information about the Internet browser and operating system.

3. The data indicated in paragraph 2 above are not associated with specific individuals.

4. Access to the contents of the event logs is provided to persons authorized by the Administrator to administer the Service.

5. Chronological recording of information about events is only auxiliary material, used for administrative purposes. The analysis of event logs makes it possible, in particular, to detect threats, to ensure adequate security of the Service and to perform statistics in order to better understand how the Service is used by users.

6. The data indicated in paragraph 2 above are used to diagnose problems related to the functioning of the Service and analyze possible security violations, to manage the Service and to perform statistics (legal basis - Article 6 (1)(f) RODO) - "legitimate interest".

7. The Service uses cookies for its operation. For more information, see "COOKIES - INFORMATION".


V. COOKIES - INFORMATION


1. The Administrator, pursuant to the provisions of telecommunications law, informs that this website (Service) uses cookies.

2. By means of cookies and other technologies, only anonymous statistical data about users are collected. Information obtained through the indicated technologies is not attributed to a specific person and does not allow to identify him/her.

3.The placement and use of cookies and other technologies is not harmful to the user's device (e.g. computer, smartphone, tablet), it does not cause any changes both in the configuration of his device and in the installed software and applications.

4. The purpose of the Service's use of the above-mentioned technologies is:

a) to create analysis, reports and statistics on how users use the Website's pages;

b) adjustment of the Website's content to the User's preferences, optimization of the use of the Website, e.g. remembering products added to a shopping cart, maintaining a logged-in user's session so that the User does not have to re-enter his/her login and password on each sub-page of the Website;

c) presentation of advertisements.


COOKIES - IN GENERAL


1. During the use of the Service, small text files are placed on the user's device. By default, these files contain the following information:

a) the name of the Service from which the cookie was sent;

b) the unique number generated;

c) the storage time of the file.

2. These files can be divided by the source of origin and by the time they are kept on the user's device. The following types of files are used on the Website:

a) With regard to the source of origin, we distinguish the following cookies:

i) so-called first-party cookies (own) - originating from the Website, the file records the name indicating the domain, which belongs to the Administrator; These files are used for: authentication and maintenance of the website session; optimization and improvement of the efficiency of the services provided - so-called performance cookies that enable collection of data about the way the website is used; enhancement of the functionality and reliability of the website and access to its full functionality, as well as correct configuration of selected functions - so-called "cookies". functional cookies that allow remembering the selected settings and personalizing the interface, e.g. with regard to the selected language, font size, appearance of the website, etc.; ensuring the security of the website, e.g. detecting abuses in the authentication process within the website; recording the fact of reading the highlighted information - the so-called session cookie named INFO;

ii) so-called third-party cookies - placed through the Service by external companies whose services are used by the Administrator; These files are used to display tailored materials in advertising networks; to study the activity of anonymous users and, on this basis, generate statistics that help to learn about the ways of using the Service; to enable the use of technologies of external companies placed on the Service, such as Google Maps plug-ins, Google Analytics - privacy policy: https://policies.google.com/?hl=en.

b) With regard to the length of time cookies will be placed on the user's device, we distinguish:

i) session cookies, which are created each time you enter the website and deleted when you close the browsing window;

ii) files stored for much longer, deleted automatically by the browser after a certain period of time or manually by the user.


EXTERNAL SUBSIDIARIES - plug-ins of social networks and others


1. The Administrator uses in particular, but not exclusively, the services of the following external companies:

a) Google LLC;

b) Hotjar Ltd.

2. These entities have their own privacy policies and practices regarding the use of Internet technologies, so in order to better understand these policies, please read the privacy and cookie policies of each entity.

3. In addition, the Service contains embedded buttons, tools or content directing to third-party services, including but not limited to: social network plug-ins (e.g. Facebook, YouTube, Instagram, LinkedIn), Google Maps, applications (e.g. App Store, Google Play). The use of these applications may result in the transmission of information to the mentioned third parties via Internet technologies. In the case of a social network, it is the co-controllers of such acquired data. However, the data is processed in connection with the Administrator's profile, including the promotion of its brand. Legal basis: Article 6(1)(f) RODO, i.e. "legitimate interest". The scope of the processing of personal data, the specific purposes and the rights and obligations of visitors to the social network (i.e. the co-administrator) result directly from the rules and regulations of the social network in question, so it is worth familiarizing yourself with their content.


ANALYTICAL TOOLS


1. The Service uses the following analytical tools:

a) Google Analytics

Google Analytics are files used by Google to analyze the use of the website. They are used to create statistics and reports on the operation of the website. Google does not use the collected data to identify you, nor does it combine this information to enable you to be identified. Detailed information can be found at the following link: https://policies.google.com/technologies/partner-sites?hl=en

b) Google Ads

Google Ads is a tool that makes it possible to measure the effectiveness of advertising campaigns implemented by the Administrator, allowing analytics such as keywords. Google Ads allows us to display our ads to people who have visited our website in the past. Detailed information can be found at the following link: https://policies.google.com/technologies/ads?hl=en

c) Facebook Pixels

Facebook Pixels is a tool that allows measuring the effectiveness of advertising campaigns implemented by the Administrator on Facebook. The tool allows advanced data analytics to optimize the Administrator's activities also using other tools offered by Facebook. Detailed information can be found at the following link: https://pl-pl.facebook.com/help/443357099140264?locale=en_US&helpref=about_content&cms_id=443357099140264


HOW TO DEAL WITH COOKIES AND OTHER TECHNOLOGIES?


1. You may at any time in your browser change the settings or disable the use of cookies and other technologies, but this may cause the Service to function incorrectly.

2. Changes made in the settings of cookies in your browser also apply to the use of other Internet technologies.

3. If the user does not change the default settings of the web browser regarding cookies, the data-collecting files will be placed on the end device and will be used in accordance with the rules set by the web browser provider.

4. information on how to manage cookies in individual browsers - including particular instructions for blocking the receipt of cookies - can be found on the pages dedicated to individual browsers:

a) Chrome: https://support.google.com/chrome/answer/95647?hl=en

b) Firefox: https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer

c) Microsoft Edge: https://support.microsoft.com/en-us/windows/microsoft-edge-browsing-data-and-privacy-bb8174ba-9d73-dcf2-9b4a-c582b4e640dd

d) Opera: https://help.opera.com/en/latest/web-preferences/#cookies

e) Safari: https://support.apple.com/en-us/HT201265

Users who, after reviewing the information available on the Website, do not want cookies to remain stored on the device's web browser, should remove them from their browser after their visit to the Website.


VI. FINAL TERMS


1. This privacy policy is informative and applies specifically to https://onlineidea.com/.

2. The Website may contain links to other websites (including those of partners and other third parties cooperating with the Administrator). The Administrator suggests that each user, after navigating to other sites, read the privacy policies in effect there.

3. The Administrator reserves the right to make changes to the current privacy policy, in particular in case of:

a) development of technology,

b) changes in generally applicable laws, including in the area of personal data protection or information security,

c) development of the Service.

4. The Administrator will notify users of relevant changes in the content of the privacy policy by posting a notice on the Website.