Privacy Policy

When using the SURVEYBRAND service (hereinafter: the "Service"), you may be asked to provide your personal data. Providing data is voluntary, but in certain situations, it may be necessary. For example, without providing an email address, you will not receive our newsletter, we will not register your account, or respond to an email query submitted via the contact form.

Certain data is collected automatically via cookies during your visit to the Service (e.g., IP address, browser type, operating system type, etc.). These are used for website administration, providing hosting services, and creating appropriate marketing content. However, you can freely block and restrict the installation of cookies using your browser settings or other (free) solutions.

The administrator of your personal data is ITFIN, based in Warsaw, NIP: 5782936792.

If you have questions or concerns, you can contact us electronically at the following email address: support@survey-brand.com.

We process your personal data for the purpose of:

In certain situations, if it proves necessary to achieve the processing purposes, we use the support and assistance of external entities. Before transferring personal data, we require its recipients to guarantee adequate protection and confidentiality.

Recipients of your personal data may include:

• Entities participating in the performance of contracts with us, e.g., accounting office, IT service providers, hosting service providers, payment systems suppliers.
• Entities whose help and services we use in our business activity based on separate agreements, e.g., suppliers of tools for analyzing Service activity and direct marketing, suppliers of tools for creating landing pages and collecting leads, office system suppliers, project management software suppliers, communication software suppliers.
• Authorized state authorities under applicable laws.
• Other entities whose request regarding data transfer is justified by the applicable laws.

As a rule, we do not transfer personal data to countries outside the European Union and the European Economic Area (EEA). However, if in connection with the provision of services such a necessity arises, we will assess the circumstances and ensure an adequate level of data security so that processing is in accordance with applicable legal regulations.

While operating the Service, we use services and technologies offered by entities like Facebook, Microsoft, Google, which are based in the United States and may partially process personal data using servers located outside the EEA. According to GDPR, these are so-called third-country entities for which it is necessary to demonstrate an appropriate level of protection or mention appropriate safeguards.

We ensure that these entities apply compliance mechanisms provided by GDPR (e.g., certifications) or standard contractual clauses adopted by the European Commission (art. 46(2)(c) GDPR). More information on the data processing rules of these entities can be found on the respective service providers' websites.

Within the Service and applied technologies, we may perform profiling. It involves using user data (i.e., gender, age, interests, approximate location, behavior in the Service) to assess their activity and potential interest in services.

Profiling allows personalizing the offers and ads directed to users but does not affect the terms and conditions of contracts for services. The processed information is anonymous and is not associated with the user ordering services. We do not therefore make any automated decisions that could have legal effects on individuals or affect them similarly significantly.

Based on the terms of service and any other separate agreements, we also act as a processor processing personal data. This data is collected and then recorded in the SURVEYBRAND system directly by the data administrator, which is HOSTINGER and SURVEYBRAND.

As a processor, we process data only on the documented instructions of the data administrator (based on a data processing agreement), committing to adequately secure them by applying appropriate technical and organizational measures and ensuring an appropriate level of security corresponding to the risk related to personal data processing (in accordance with art. 32 GDPR). We also ensure that persons authorized by us to process data have committed to keeping them confidential. After completing services related to the processing of the personal data entrusted to us, we will return them all to the data administrator (client) and delete existing copies unless the prevailing law obliges us to store personal data.

In the Service, we use so-called cookies, i.e., short text information recorded on the user's computer, phone, tablet, or other device that can be read by our system, as well as by systems belonging to other entities whose services we use: Facebook, Google.

Thanks to cookies, we collect anonymous data about user visits to the Service that we may use to improve the functionality of the Service, identify errors, or for marketing activities.

Typically, web browsers by default allow cookies to be used on the end device. However, users can block and restrict the installation of cookies according to their preferences using their browser settings or other solutions (free). During your first visit to the Service, we will show you information about the use of cookies. If you do not change your browser settings, you consent to their use. More information on how to change cookie settings can be found on your web browser provider's website.

We inform you that disabling or restricting cookies may cause difficulties in using the website, e.g., it may result in longer page loading times or limitations in using functionalities or liking the page on Facebook.

Individuals whose data we process have the right to:

• ✓ Access their personal data
• ✓ Rectify personal data
• ✓ Erase personal data
• ✓ Restrict processing of personal data
• ✓ Object to the processing of personal data
• ✓ Transfer personal data
• ✓ Withdraw consent to data processing (if the basis for processing is consent)

The aforementioned rights are not absolute, and in some situations, following an analysis, we may lawfully refuse to fulfill them.

We also inform you that withdrawing consent to data processing will not affect the legality of processing based on the consent prior to its withdrawal.

If you submit a request to exercise any of the above rights, we will respond without undue delay, but no later than within a month from receipt. If, due to the complex nature of the request or the number of requests, we cannot fulfill your request within a month, we will fulfill it within the next two months. We will inform you in advance about the intended extension of the deadline.

Using the Service involves sending requests to the server on which the site is maintained. Each request addressed to the server is recorded in server logs and stored on the server. Logs include, among others, the IP address, server date and time, information about the browser and operating system.

Data recorded in server logs is not associated with specific individuals using the website and is not used by us to identify you.

Server logs constitute only an auxiliary material serving to administer the site, and their content is not disclosed to anyone except persons authorized to administer the server.