Privacy Policy

1. General information

This Privacy Policy sets out the rules for the processing of personal data and the use of cookies in connection with the use of the website https://gabinetdobregosnu.pl/.

The controller of personal data is Gabinet Dobrego Snu Aleksy Kowalski, with its registered address at: Wyspowa 8, 03-687 Warsaw, Mazowieckie Voivodeship, NIP: 1251773786, REGON: 529566829.

For matters related to personal data processing, you can contact the Controller at the e-mail address: info@gabinetdobregosnu.pl.

The Controller has not appointed a Data Protection Officer.

2. Scope of the Privacy Policy

This Privacy Policy applies to personal data processed in connection with:

  • use of the website,
  • sending messages via the contact form,
  • contact via e-mail or telephone,
  • use of the Controller’s social media profiles,
  • use of analytical, marketing and technical tools implemented on the website.

 

3. What data may be processed

The Controller may process in particular the following data:

  • first and last name,
  • e-mail address,
  • phone number,
  • content of the message sent via the contact form or e-mail,
  • IP address,
  • data concerning the device, browser and operating system,
  • data concerning activity on the website,
  • data stored in cookies or similar technologies,
  • other data voluntarily provided by the user.

The website is intended solely for sending questions or contact messages. The Controller does not expect the submission of health-related data via the form and does not maintain medical records through it. Therefore, users should not provide excessive health-related information in the contact form.

If the user voluntarily provides special category data, including health data, the Controller will process it only to the extent necessary to handle the message and for the time required to resolve the matter.

 

4. Purposes and legal bases for data processing

Personal data may be processed for the following purposes:

4.1. Handling the contact form and correspondence

The data provided by the user is processed in order to respond to the message, handle the inquiry and maintain further contact.

The legal basis for processing is:

  • Article 6(1)(f) GDPR – the legitimate interest of the Controller consisting in handling correspondence and inquiries,
  • Article 6(1)(b) GDPR – if the contact concerns taking steps prior to entering into a contract or performing a service.

4.2. Telephone or e-mail contact

In the case of telephone or e-mail contact, data is processed in order to respond, provide information about the offer or conduct ongoing communication.

The legal basis is Article 6(1)(f) GDPR or Article 6(1)(b) GDPR – depending on the nature of the contact.

4.3. Analytics, statistics and online marketing

Data may be processed to analyze website traffic, improve website performance, measure the effectiveness of advertising activities and conduct online marketing.

The legal basis is:

  • Article 6(1)(a) GDPR – the user’s consent expressed via the cookies banner for analytical and marketing cookies,
  • Article 6(1)(f) GDPR – the legitimate interest of the Controller in ensuring website security and proper functioning.

4.4. Ensuring website security

Data may be processed to protect the website against abuse, spam, unauthorized access and automated activities.

The legal basis is Article 6(1)(f) GDPR – the legitimate interest of the Controller in ensuring the security of the service.

4.5. Establishing, pursuing or defending claims

Data may also be processed to protect the Controller’s interests and to establish, pursue or defend potential claims.

The legal basis is Article 6(1)(f) GDPR.

 

5. Is providing data mandatory

Providing data is voluntary, but necessary to send a message via the contact form and to receive a response.

Failure to provide data may prevent the handling of the inquiry.

 

6. Data recipients

Personal data may be transferred to entities cooperating with the Controller only to the extent necessary to achieve the purposes of processing, in particular:

  • hosting providers,
  • e-mail service providers,
  • entity managing the website, technical support and maintenance – MU,
  • providers of Google tools,
  • providers of Meta tools,
  • entities ensuring the security of forms and the website,
  • law firms, accounting offices or advisors – if necessary,
  • authorized public authorities when the obligation to provide data results from legal provisions.

The Controller currently does not transfer user data to Mediraty, as this service has been discontinued.

 

7. Transfer of data outside the European Economic Area

Due to the use of tools from providers such as Google, Meta or Instagram, user data may be transferred outside the European Economic Area.

In such cases, data is transferred only with appropriate safeguards required by GDPR.

 

8. Data retention period

Personal data will be stored for no longer than necessary to achieve the purpose for which it was collected, and then for the period required by law or necessary to secure claims.

As a rule:

  • data from the contact form and correspondence – for the time necessary to handle the matter and then for the limitation period of claims,
  • data processed on the basis of consent – until the consent is withdrawn,
  • data related to analytics and marketing – in accordance with the lifespan of cookies or until they are deleted by the user.

 

9. User rights

The data subject has the right to:

  • access their data,
  • rectify data,
  • erase data,
  • restrict processing,
  • data portability – in cases provided by law,
  • object to processing based on legitimate interest,
  • withdraw consent at any time,
  • lodge a complaint with the supervisory authority.

To exercise these rights, the user may contact the Controller at: [enter e-mail address].

 

10. Cookies and similar technologies

The website uses cookies and similar technologies to ensure its proper functioning, analyze traffic, conduct marketing activities and secure forms.

The following types of cookies and tools may be used on the website:

10.1. Necessary cookies

These are cookies necessary for the proper functioning of the website, its basic functions and ensuring security.

10.2. Analytical cookies

Google tools may be used to analyze website traffic, user behavior and the effectiveness of marketing activities.

10.3. Marketing cookies

The website may use Meta Pixel and other advertising tools that allow measuring the effectiveness of advertising campaigns and tailoring marketing messages.

10.4. Security tools

The website uses Google reCAPTCHA, which helps protect forms against spam and abuse. Its operation may involve the processing of technical user data by Google.

10.5. Embedded content

The website may include embedded content from third parties, in particular:

  • Google Maps,
  • embedded Instagram.

Providers of these services may store their own cookies or collect user data in accordance with their own privacy policies.

 

11. Managing cookies

The user can manage cookies via their web browser settings and through the cookie consent mechanism available on the website.

Disabling certain cookies may affect the operation of the website or limit the availability of some features.

 

12. Social media

The Controller may operate social media profiles, in particular on Facebook and Instagram. In connection with the use of these profiles, user data may be processed for communication, responding to messages, conducting informational and promotional activities and building a community around the brand.

The legal basis for processing is Article 6(1)(f) GDPR – the legitimate interest of the Controller.

 

13. Automated decision-making

Users’ personal data is not used to make decisions producing legal effects solely by automated means.

The Controller may use advertising and analytical tools that help tailor ads to specific target groups, however this does not result in decisions being made about the user solely by automated means within the meaning of GDPR.

 

14. Data security

The Controller applies appropriate technical and organizational measures to protect personal data against loss, destruction, disclosure to unauthorized persons or unauthorized access.

 

15. Links to other websites

The website may contain links to external websites. The Controller is not responsible for the privacy practices of those websites. Users should review the privacy policy of each external website separately.

 

16. Changes to the Privacy Policy

The Controller reserves the right to introduce changes to this Privacy Policy, in particular in the case of technological, organizational or legal changes.

The current version of the Privacy Policy is published on the website.

Date of last update: 10.04.2026

  • ul. Wyspowa 8, 03-687 Warszawa

Nasze usługi

Szybkie linki

Facebook-f Instagram

© 2024 All rights Reserved.

To book an appointment or consultation, call:

570 909 962
Facebook-f