Privacy Policy

1. General Information

This Privacy Policy applies to the website operating at: bcschool.pl.

The website operator and the Data Controller is:
BC PRIMARY SCHOOL SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ
ul. Pana Tadeusza 4, 30-727 Kraków, Poland
NIP: 6793244911
REGON: 522719158
KRS: 0000985295

The operator’s contact email address is: sekretariat@bcschool.pl

The Operator is the Controller of your personal data with regard to the data provided voluntarily on the website.

The website uses personal data for the following purposes:

  • Managing the newsletter
  • Operating the comment system
  • Providing online chat communication
  • Handling enquiries submitted via forms
  • Presenting offers or information

The website collects information about users and their behaviour in the following ways:

  • Through data voluntarily entered into forms, which are then stored in the Operator’s systems
  • By storing cookies on users’ devices (so-called “cookies”)

2. Selected Data Protection Measures Used by the Operator

Login areas and places where personal data are entered are protected at the transmission layer (SSL certificate). This ensures that personal data and login details entered on the website are encrypted on the user’s device and can only be read by the destination server.

Personal data stored in the database are encrypted in such a way that only the Operator possessing the encryption key can read them. This protects the data in the event that the database is stolen from the server.

User passwords are stored in a hashed form. The hashing function operates in a one-way manner, meaning it cannot be reversed. This is the current industry standard for storing user passwords.

An important element of data protection is the regular updating of all software used by the Operator to process personal data, which in particular includes regular updates of software components.

To ensure data security, the Operator performs regular backups.

3. Hosting

The website is hosted (technically maintained) on servers operated by seohost.

The hosting provider maintains server logs to ensure technical reliability. The following information may be recorded:

  • resources identified by URL (addresses of requested pages or files)
  • time of request
  • time of response
  • client station name – identification performed via the HTTP protocol
  • information about errors occurring during HTTP transactions
  • URL of the previously visited page (referrer link) if the user accessed the website via a link
  • information about the user’s browser
  • information about the IP address
  • diagnostic information related to the process of ordering services via the website
  • information related to email communication sent to or by the Operator

4. Your Rights and Additional Information on the Use of Data

In certain situations, the Data Controller has the right to transfer your personal data to other recipients if it is necessary to perform a contract concluded with you or to fulfil obligations imposed on the Controller. This applies to the following groups of recipients:

  • the hosting provider under a data processing agreement
  • authorised employees and collaborators who use the data to perform website-related tasks

Your personal data will be processed by the Controller no longer than necessary to perform activities specified by separate regulations (e.g. accounting regulations). In relation to marketing data, they will not be processed for longer than 3 years.

You have the right to request from the Controller:

  • access to your personal data
  • rectification of your data
  • erasure of your data
  • restriction of processing
  • data portability

You also have the right to object to the processing indicated in point 3.3(c) concerning the processing of personal data for the purposes of legitimate interests pursued by the Controller, including profiling. However, the right to object cannot be exercised if there are compelling legitimate grounds for processing that override your interests, rights and freedoms, in particular the establishment, exercise or defence of legal claims.

You have the right to lodge a complaint with the President of the Personal Data Protection Office (Urząd Ochrony Danych Osobowych), ul. Stawki 2, 00-193 Warsaw, Poland.

Providing personal data is voluntary, but necessary for the use of the website’s services.

Automated decision-making processes, including profiling, may be carried out in relation to you for the purposes of providing services under a concluded contract and for the Controller’s direct marketing activities.

Personal data may be transferred to third countries within the meaning of data protection regulations. This means that the data may be transferred outside the European Union.

5. Information in Forms

The website collects information voluntarily provided by the user, including personal data if such data are entered.

The website may record information about connection parameters (timestamp and IP address).

In some cases, the website may store information that facilitates linking data entered in a form with the email address of the user completing the form. In such cases, the user’s email address may appear within the URL of the page containing the form.

Data provided in forms are processed for purposes resulting from the function of the specific form, for example to process service requests, business enquiries, service registrations, etc. Each form clearly indicates its purpose and context.

6. Administrator Logs

Information about users’ behaviour on the website may be logged. These data are used for the purpose of website administration.

7. Key Marketing Techniques

The Operator uses statistical analysis of website traffic through Google Analytics (Google Inc., based in the USA). The Operator does not provide personal data to the service provider, only anonymised information. The service relies on cookies stored on the user’s device. Information about user preferences collected by the Google advertising network can be viewed and edited using the following tool:
https://www.google.com/ads/preferences/

The Operator also uses the Facebook Pixel. This technology enables the Facebook service (Facebook Inc., based in the USA) to know that a registered Facebook user has visited the website. In this case, Facebook relies on data for which it acts as the controller, and the Operator does not provide any additional personal data to Facebook. The service relies on cookies stored on the user’s device.

The Operator uses remarketing techniques that allow advertising messages to be tailored to the user’s behaviour on the website. This may give the impression that personal data are used to track the user, but in practice no personal data are transferred by the Operator to advertising providers. A technical requirement for such activities is that cookies are enabled.

8. Information About Cookies

The website uses cookies.

Cookies are IT data, in particular text files, stored on the user’s device and intended for use with the website. Cookies typically contain the name of the website they originate from, their storage duration on the device, and a unique identifier.

The entity placing cookies on the user’s device and accessing them is the website Operator.

Cookies are used for the following purposes:

  • maintaining a user session (after logging in), so that the user does not need to re-enter their login and password on each page
  • achieving the purposes described above in the section “Key Marketing Techniques”

Two main types of cookies are used within the website: session cookies and persistent cookies.

Session cookies are temporary files stored on the user’s device until they log out, leave the website or close the browser. Persistent cookies are stored on the user’s device for the time specified in their parameters or until they are deleted by the user.

Web browsers usually allow cookies to be stored on the user’s device by default. Website users may change these settings. The browser allows cookies to be deleted and also enables automatic blocking of cookies. Detailed information can be found in the browser’s help or documentation.

Restrictions on the use of cookies may affect some functionalities available on the website.

Cookies placed on the user’s device may also be used by entities cooperating with the website operator, in particular companies such as:

  • Google (Google Inc., USA)
  • Facebook (Facebook Inc., USA)
  • Twitter (Twitter Inc., USA)

If the user does not wish to receive cookies, they may change their browser settings. Please note that disabling cookies necessary for authentication processes, security or maintaining user preferences may make it difficult, and in extreme cases impossible, to use the website.

To manage cookie settings, select your browser from the list below and follow the instructions:

  • Edge
  • Internet Explorer
  • Chrome
  • Safari
  • Firefox
  • Opera

Mobile devices:

  • Android
  • Safari (iOS)
  • Windows Phone

This website uses cookies to enhance your browsing experience and ensure the site functions properly. By continuing to use this site, you acknowledge and accept our use of cookies.

Accept All Accept Required Only