Privacy Policy
This Privacy Policy describes how Jixijo collects, uses, and protects personal data when you visit jixijo.info or interact with our services. It is prepared in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council (General Data Protection Regulation, GDPR) and the Polish Act of 10 May 2018 on the Protection of Personal Data (Dz.U. 2018 poz. 1000).
1. Controller Identity
The controller of your personal data is Jixijo, with its registered address at Marii Skłodowskiej Curie 10, Bydgoszcz, Poland. You can contact the controller at [email protected] or by telephone at +48 52 340 04 16.
As controller, Jixijo determines the purposes and means of processing personal data collected through this website and related services.
2. Legal Basis for Processing
We process personal data on the following legal bases as defined in Article 6 of the GDPR:
Consent (Art. 6(1)(a) GDPR): Where you have provided explicit consent, for example by subscribing to our newsletter or by ticking the consent checkbox on our contact form. You may withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.
Legitimate interests (Art. 6(1)(f) GDPR): For the purpose of ensuring the security and proper functioning of the website, and for responding to inquiries sent through the contact form where no contract exists.
Legal obligation (Art. 6(1)(c) GDPR): Where processing is necessary to comply with a legal obligation to which Jixijo is subject under Polish or European Union law.
3. Data We Collect
We collect personal data in the following ways:
Contact form: When you submit the contact form on our website, we collect your name, email address, and the content of your message. This data is transmitted via your email client to [email protected].
Newsletter subscription: If you subscribe to our newsletter, we collect your email address for the purpose of sending you periodic communications about our course and related topics.
Cookies and technical data: When you visit our website, we may collect technical data including your IP address, browser type, operating system, pages visited, and time of visit. This is described in detail in our Cookie Policy.
We do not collect sensitive personal data (special categories of data as defined in Article 9 GDPR) through any of our services.
4. Purposes of Processing
Your data is processed for the following purposes only:
Responding to inquiries: Data submitted through the contact form is used solely to respond to your inquiry. It is not used for any other purpose without your additional consent.
Newsletter distribution: Email addresses collected through the newsletter form are used to send periodic informational communications. Each communication includes an unsubscribe link.
Website operation and security: Technical data is used to maintain the security and proper operation of the website, and to understand how visitors interact with our content.
Legal compliance: We may process data where required to comply with applicable Polish or EU law.
5. Data Retention
We retain personal data only for as long as necessary for the purpose for which it was collected:
Contact form data is retained for up to 12 months from the date of the last communication, unless a longer retention period is required by law or unless you request earlier deletion.
Newsletter subscriber data is retained until you unsubscribe or request deletion.
Technical and cookie data is retained for periods specified in our Cookie Policy, which vary by cookie type.
After the applicable retention period, data is securely deleted or anonymised.
6. Your Rights
Under the GDPR, you have the following rights with respect to your personal data:
Right of access (Art. 15 GDPR): You may request confirmation of whether we process your personal data and, if so, access to that data and information about how it is processed.
Right to rectification (Art. 16 GDPR): You may request correction of inaccurate personal data or completion of incomplete data.
Right to erasure (Art. 17 GDPR): You may request deletion of your personal data where the data is no longer necessary for the purpose for which it was collected, where you withdraw consent, or where processing is unlawful.
Right to restriction (Art. 18 GDPR): You may request restriction of processing in certain circumstances.
Right to data portability (Art. 20 GDPR): Where processing is based on consent or contract and carried out by automated means, you may request your data in a structured, commonly used, machine-readable format.
Right to object (Art. 21 GDPR): You may object to processing based on legitimate interests at any time.
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days of receiving your request.
7. Third Parties and Data Sharing
We do not sell, rent, or trade your personal data to third parties. We may share data with the following categories of recipients only where necessary:
Service providers: Technical service providers who assist in operating the website (such as hosting providers) may have access to data in the course of providing their services. Such providers are bound by data processing agreements in accordance with Article 28 GDPR.
Legal authorities: We may disclose personal data to law enforcement or regulatory authorities where required to do so by applicable Polish or EU law.
We do not transfer personal data to third parties for marketing purposes without your explicit consent.
8. International Data Transfers
Where personal data is transferred outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place in accordance with Chapter V of the GDPR. This may include:
Transfers to countries recognised by the European Commission as providing an adequate level of protection under Article 45 GDPR.
Transfers subject to Standard Contractual Clauses approved by the European Commission under Article 46(2)(c) GDPR.
You may request information about the specific safeguards applicable to any international transfer by contacting us at [email protected].
9. Security Measures
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction, in accordance with Article 32 GDPR. These measures are reviewed and updated regularly.
Our website is served over HTTPS to protect data in transit. Access to any stored personal data is restricted to authorised personnel only.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and, where required, notify you directly.
10. Supervisory Authority
You have the right to lodge a complaint with the Polish supervisory authority for personal data protection:
Urząd Ochrony Danych Osobowych (UODO)
ul. Stawki 2
00-193 Warsaw, Poland
Website: uodo.gov.pl
Email: [email protected]
We encourage you to contact us first at [email protected] so that we can address your concerns directly.
11. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. The date of the most recent revision is shown at the top of this document.
Where changes are material, we will take reasonable steps to notify you, which may include posting a notice on our website. We encourage you to review this policy periodically.
Your continued use of the website after any changes constitutes acceptance of the updated policy.
12. Contact
For any questions, concerns, or requests relating to this Privacy Policy or the processing of your personal data, please contact us:
Jixijo
Marii Skłodowskiej Curie 10
Bydgoszcz, Poland
Email: [email protected]
Phone: +48 52 340 04 16