1. General Information

  1. This Policy applies to the Website, which can be accessed at the following URL:
  2. The web service operator and personal data Controller is: Hotel na Skarpie 1 Maja 15 F, 57-200, Ząbkowice Śląskie
  3. Contact e-mail address of the operator:
  4. The Operator is the Controller of your personal data with respect to the data voluntarily provided on the Website.
  5. The Web Service uses personal data for the following purposes:
    • Newsletter hosting
    • Handling inquiries via a form
    • Provision of ordered services
    • Offer or information presentation
  6. The Website performs functions to obtain information about users and their behaviour in the following ways:
    • Through voluntary data entered in the forms and into the Operator’s systems.
    • By storing cookies on terminal devices.

2. Selected Data Protection Methods Used By The Operator

  1. The login and personal data entry fields are protected in the transmission layer (SSL certificate). This ensures that the personal and login data entered on the website are encrypted on a User’s computer and can only be read on the upload server.
  2. User passwords are stored in hashed form. The hash feature works one-way – it is not possible to reverse its operation, which is now the modern standard for storing user passwords.
  3. The Operator changes its administrative passwords periodically.
  4. In order to protect the data, the Operator regularly makes backup copies.
  5. A crucial element of data protection is the regular updating of any software used by the Operator to process personal data, including, in particular, regular updates of programming components.

3. Hosting

  1. The Website is hosted (technically supported) on the servers of the operator:

4. Your Rights And Additional Information On How We Use Data

  1. In certain situations, the Controller has the right to transfer your personal data to other parties if this is necessary for the performance of the contract concluded with you or for the fulfilment of obligations incumbent on the Controller. This includes such audience groups as:
    • entrusted hosting company
    • law firms and debt collectors
    • payment operators
    • authorized employees and associates who use the data to fulfil the purpose of the site
    • companies that provide marketing services to the Controller
  2. Your personal data processed by the Controller for no longer than it is necessary to perform the related operations defined by separate provisions (e.g., on accounting). With regard to marketing data, the data shall not be processed for more than 3 years.
  3. You are entitled to request the following from the Controller:
    • access to personal information about you,
    • their rectification,
    • deletion,
    • processing restrictions, and
    • data transfer.
  4. You are entitled to object, with regard to the processing indicated in item 3.3 c), to the processing of personal data for the purposes of exercising the legitimate interests pursued by the Controller, including profiling, whereby the right to object shall not be exercisable where there are valid legitimate grounds for the processing which override your interests, rights and freedoms, in particular, the establishment, assertion or defence of claims.
  5. The Controller’s actions may be claimed before the Polish Data Protection Commissioner, ul. Stawki 2, 00-193 Warszawa.
  6. Providing personal data is voluntary, but necessary to support the Website.
  7. Actions involving automated decision-making, including profiling, may be undertaken with respect to you for the purpose of providing services under the concluded contract and for the purpose of direct marketing by the Controller.
  8. Personal data is not transferred from third countries as defined by the privacy law. This means that we do not send them outside the European Union.

5. Information On The Forms

  1. The Website collects information provided voluntarily by a User, including personal information, if provided.
  2. The Website can save information about the connection parameters (time stamp, IP address).
  3. The Website, in some cases, may save information to help associate the data on the form with the e-mail address of the User filling out the form. In this case, the User’s email address appears inside the URL of the page hosting the form.
  4. The data provided in the form are processed for the purpose arising from the function of the specific form, e.g., to complete the process of service request or business contact, service registration, etc. Each time the context and description of the form informs in a straightforward way for which it is used.

6. Controller Logs

  1. User behaviour information on the Website may be subject to logging. This data is used to administer the Website.

7. Relevant Marketing Techniques

  1. The Operator uses statistical analysis of the website traffic via Google Analytics (Google Inc. based in the USA). The Operator does not transmit personal data to the operator of this service, only anonymized information. The service is based on the use of cookies on the user’s terminal device. With regard to the information on user preferences collected by the Google advertising network, a User can view and edit the information derived from the cookies using the following tool:
  2. The Operator uses the Facebook pixel. This technology ensures that Facebook (Facebook Inc., based in the USA) automatically recognizes that a person registered with it is using the Website. In this case, the operator does not pass on any additional personal data to Facebook. The service is based on the use of cookies on a User’s terminal device.

8. Information On Cookies

  1. The Website uses cookies.
  2. Cookies are IT data, in particular, text files that are stored in the Website User’s terminal device and are intended for use on the Website. Cookies usually contain the name of the website they originate from, the time they are stored on the terminal device and a unique number.
  3. The entity placing cookies on the Website User’s terminal device and accessing them is the Website operator.
  4. Cookies are used for the following purposes:
    1. maintenance of the Website User session (after logging in), which prevents the User from having to re-enter login and password on each subpage of the Website;
    2. to accomplish the objectives set forth above under ” Relevant Marketing Techniques.”
  5. There are two main types of cookies used within the Website: “session cookies” and “persistent cookies.” The “session” cookies are temporary files that are stored in a User’s terminal device until logging out, leaving the website, or deactivating the software (web browser). “Persistent” cookies are stored in a User’s terminal device for the time specified in the parameters of cookies or until they are deleted by a User.
  6. Web browsing software (web browser) usually allows the storage of cookies on a User’s terminal device by default. Users of the Website may change their settings in this regard. The web browser allows deleting cookies. It is also possible to automatically block cookies. For details, please refer to your browser’s Help section or documentation.
  7. Restrictions on the use of cookies may affect some of the features available on the Website.
  8. Cookies placed in the Website User’s terminal device can also be used by entities cooperating with the Website Operator, in particular, this concerns the following companies Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).

9. Managing Cookies – How To Grant And Withdraw Consent In Practice?

  1. If Users do not wish to receive cookies, they can change their browser settings. We reserve the right to disable cookies, necessary for authentication processes, security, maintenance of user preferences, may hinder, and in extreme cases may prevent the use of websites.
  2. To manage your cookie settings, select the web browser you are using from the list below and follow the instructions:

    Mobile devices: