Privacy Policy
Last updated: 2026-07-14
This Privacy Policy explains how we process the personal data of users of trustbyteit.pl and what rights they have under the GDPR (EU Regulation 2016/679).
1. Data controller
The controller of your personal data is TRUSTBYTE IT - KACPER WEŁNIŃSKI (Tax ID/NIP 5833549020, REGON 542826230), e-mail kacper.welninski@trustbyteit.pl, phone +48 536 158 309. For any matters concerning personal data, you can contact the controller at the e-mail address above.
2. What data we process
We process data you provide yourself and data collected automatically while you use the site:
- Contact form: full name, e-mail address, optionally phone number, and the message content.
- Client account: full name, e-mail address, and password (stored only as an encrypted hash).
- Service requests: device and case description, status, and change history.
- Technical data and cookies: IP address, browser type, and cookie identifiers (see the cookies section).
3. Purposes and legal bases
- Handling a contact-form enquiry — based on your consent and pre-contract steps taken at your request (Art. 6(1)(a) and (b) GDPR).
- Running a client account and delivering services — performance of a contract (Art. 6(1)(b) GDPR).
- Compliance with legal obligations, including accounting and tax — Art. 6(1)(c) GDPR.
- Establishing, pursuing or defending claims and ensuring site security — the controller's legitimate interest (Art. 6(1)(f) GDPR).
- Statistics and analytics after cookie consent — Art. 6(1)(a) GDPR.
4. Retention period
- Contact-form enquiries — up to 12 months from the last contact or until a contract is concluded.
- Account and request data — for as long as the account exists, and after deletion until claims become time-barred.
- Accounting documents — for the period required by law (generally 5 years).
5. Data recipients
Data may be entrusted to trusted providers supporting the site, only to the extent necessary to deliver the services:
- The server infrastructure (hosting) provider on which the site runs.
- Usercentrics Consent (Cybot A/S, Cookiebot) — cookie-consent management.
- Accounting service providers and, where needed, legal advisers.
Data is not transferred outside the European Economic Area unless appropriate safeguards required by the GDPR are in place.
6. Your rights
In connection with the processing of your data you have the right to:
- access your data and receive a copy,
- rectify (correct) your data,
- erase your data (the “right to be forgotten”),
- restrict processing,
- data portability,
- object to processing based on legitimate interest,
- withdraw consent at any time (without affecting the lawfulness of processing before withdrawal),
- lodge a complaint with the President of the Personal Data Protection Office (UODO, Stawki 2, 00-193 Warsaw, Poland).
To exercise these rights, including erasing your data, write to kacper.welninski@trustbyteit.pl. We will act on your request without undue delay, no later than within one month.
7. Voluntary provision of data
Providing data is voluntary but necessary to handle your enquiry, create an account, and deliver services. Not providing data will prevent the use of these features.
8. Cookies
The site uses cookies. Necessary cookies ensure basic operation (e.g. language and theme choice, and the login session) and do not require consent. Analytics and marketing cookies are only activated after you give consent in the consent banner (Cookiebot).
You can change or withdraw your consent at any time using the consent settings window available on the site, as well as by changing your browser settings.