Never Gravel Enough

Privacy Policy

GENERAL INFORMATION

This policy applies to the website operating at the URL: nevergravelenough.cc. REGON 5231750

  1. The contact email address of the operator: info@nevergravelenough.cc.
  2. The operator is the Administrator of your personal data with respect to the data provided voluntarily on the website.
  3. The website uses personal data for the following purposes:
  • Conducting a newsletter
  • Fulfilling ordered services
  1. The website collects information about users and their behavior in the following ways:
  • Through data voluntarily entered in forms, which are then stored in the operator's systems.
  • By saving cookies on the user's device.

SELECTED DATA PROTECTION METHODS USED BY THE OPERATOR

  1. Login and data entry fields are secured at the transmission level (SSL certificate).
  2. This ensures that personal data and login information entered on the site are encrypted on the user's computer and can only be read on the target server.
  3. User passwords are stored in a hashed format. The hashing function operates unidirectionally – it is not possible to reverse the process, which is the modern standard for storing user passwords.
  4. The operator periodically changes its administrative passwords. An important element of data protection is the regular update of all software used by the operator to process personal data, which particularly means regular updates of software components.

HOSTING

  1. The website is hosted (technically maintained) on the operator's servers: another company.
  2. The hosting company, in order to ensure technical reliability, maintains logs at the server level. The following information may be logged:
  • resources identified by a URL (requested resources – pages, files),
  • request arrival time,
  • response sending time,
  • client station name – identification performed by the HTTP protocol,
  • error information occurring during the execution of the HTTP transaction,
  • the URL of the page previously visited by the user (referer link) – if the user accessed the website via a link,
  • browser information,
  • IP address information,
  • diagnostic information related to the process of self-ordering services via registration forms on the site,
  • information related to email communication sent to and by the operator.

YOUR RIGHTS AND ADDITIONAL INFORMATION ABOUT THE USE OF DATA

  1. In some situations, the Administrator has the right to share your personal data with other recipients if necessary to perform the contract with you or to fulfill the obligations of the Administrator. This applies to the following groups of recipients:
  • hosting company under the data processing agreement,
  • insurers,
  • authorized employees and collaborators who use the data to achieve the goal of the website's operation.
  1. Your personal data processed by the Administrator will not be stored longer than necessary to perform the activities specified by separate regulations (e.g., accounting). Regarding marketing data, it will not be processed longer than for 3 years.
  2. You have the right to request from the Administrator: access to your personal data,
  • correction of the data,
  • deletion,
  • limitation of processing,
  • and data portability.
  1. You have the right to object to the processing indicated in point 3.2 regarding the processing of personal data for the purposes of legitimate interests pursued by the Administrator, including profiling. However, the right to object may not be exercised in cases where there are important legally justified grounds for processing, overriding your interests, rights, and freedoms, particularly in establishing, pursuing, or defending claims.
  2. You have the right to file a complaint regarding the Administrator's actions to the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
  3. Providing personal data is voluntary but necessary for the website's operation.
  4. Automated decision-making, including profiling, may take place in your case for the purpose of providing services under the contract and for direct marketing by the Administrator.
  5. Personal data is not transferred from third countries as defined by personal data protection regulations. This means that the data is not sent outside the European Union.

INFORMATION IN FORMS

  1. The website collects information voluntarily provided by the user, including personal data, if provided.
  2. The website may record information about connection parameters (time stamps, IP address).
  3. In some cases, the website may save information that links the data in the form to the user's email address. In this case, the user's email address appears inside the URL of the page containing the form.
  4. Data provided in the form is processed for the purposes resulting from the specific form's function, e.g., to process a service request, establish contact, register services, etc. Each form's context and description clearly inform about its purpose.

ADMINISTRATOR'S LOGS

  1. Information about users' behavior on the website may be logged. These data are used to administer the website.

IMPORTANT MARKETING TECHNIQUES

  1. The operator uses statistical analysis of website traffic through Google Analytics (Google Inc., USA). The operator does not send personal data to the service provider, only anonymized information. The service uses cookies on the user's device. Regarding information about user preferences collected by the Google ad network, users can view and edit information collected from cookies using the tool: https://www.google.com/ads/preferences/

  2. The operator uses Facebook Pixel. This technology allows Facebook (Facebook Inc., USA) to know that a registered user has used the website. It relies on data for which Facebook is the administrator. The operator does not send any additional personal data to Facebook. The service uses cookies on the user's device.

INFORMATION ABOUT COOKIES

  1. The website uses cookies.
  2. Cookies are data files, particularly text files, stored on the user's device and intended for use on the website. Cookies usually contain the website's name, the time they are stored on the device, and a unique number.
  3. The operator is the entity placing cookies on the user's device and gaining access to them.
  4. Cookies are used for the following purposes:
  • maintaining the user's session (after logging in), so the user does not have to re-enter their login and password on each page of the website;
  • for the purposes described above under "Important Marketing Techniques."
  1. The website uses two main types of cookies: "session" (session cookies) and "persistent" (persistent cookies). Session cookies are temporary files stored on the user's device until they log out, leave the website, or close the browser. Persistent cookies are stored on the user's device for a specified period or until deleted by the user.
  2. Browser software typically allows cookies to be stored on the user's device by default. Users can change their settings in this regard. Browsers also allow for the deletion of cookies. Automatic blocking of cookies is also possible. Detailed information on this is available in the browser's help or documentation.
  3. Restricting cookie use may affect some functionalities available on the website.
  4. Cookies placed on the user's device may also be used by entities cooperating with the website operator, including companies such as Google (Google Inc., USA), Facebook (Facebook Inc., USA), Twitter (Twitter Inc., USA).

MANAGING COOKIES – HOW TO CONSENT AND WITHDRAW CONSENT?

  1. If the user does not wish to receive cookies, they can change their browser settings. Please note that disabling cookies necessary for authentication, security, and maintaining user preferences may make it difficult or, in extreme cases, impossible to use the website.