The Privacy Policy of the website is addressed to persons using it, hereinafter referred to as Users. It presents the scope of data concerning the personal identification of the User gathered by the website owner and the mechanisms ensuring their privacy (resulting from legal regulations). The Privacy Policy also constitutes the fulfillment of the information obligation towards the person the data concerns (the User).

1. Data collected by the website owner
   • Strictly necessary cookies
   • User IP addresses
   • Technical data of the device and browser (e.g., browser type and version, operating system), session parameters, approximate location, and unique consent identifiers saved within the Real Cookie Banner mechanism.
2. Method of data collectionUser data may be collected automatically by the server upon entering the website or, in the case of cookies, requires the User’s consent.
3. Method of data useUser data is used for the purposes of administering the website, website visit statistics, managing website content, and maintaining contact with Users. In the case of consent to collect additional cookies, they will enable us to track the number and sources of visits, allowing us to measure and improve the performance of our website and personalize the content displayed to you, as well as be used in our advertising campaigns conducted on third-party websites.
4. Contact with the UserThe website owner anticipates contact with Users to inform about changes in the website and its services. In case of questions and doubts regarding the privacy policy, please direct questions to the address: biuro@arsma.pl.
5. Making changes to User personal dataEach User may submit a change in their personal data to the website owner in writing or via email or make these changes independently within the website.
6. Information obligationIn accordance with Art. 13 of the General Data Protection Regulation of 27 April 2016 (Official Journal of the EU L 119 of 04.05.2016), hereinafter referred to as GDPR, I inform that: 1) The Administrator of your personal data is Agencja Rozwoju Mazowsza S.A., ul. Świętojerska 9, 00-236 Warsaw. Contact details of the Data Protection Officer – iod@armsa.pl 2) Your personal data will be processed for the purposes of administering the website, website visit statistics, managing website content, and maintaining contact with Users – based on Art. 6(1)(f) of the GDPR,

   Your personal data will be processed for analytical and marketing purposes in the case of consent to collect additional cookies – based on Art. 6(1)(a) of the GDPR,

   The recipients of your personal data will be exclusively entities authorized to obtain personal data based on legal regulations and entities participating in the implementation of services based on appropriate agreements,

   Your personal data will be stored for the period necessary to ensure the proper use of the website, but in the case of contact with us regarding correspondence or complaints for a period of 2 years, and in the case of consent for analytical and marketing purposes until the withdrawal of previously expressed consent or until the time specified in the Cookie Policy available on the website,

   You have the right to request from the administrator access to personal data, the right to their rectification, erasure, or restriction of processing, as well as the right to object to processing,

   You have the right to lodge a complaint with a supervisory authority, i.e., the Personal Data Protection Office (UODO),

   Providing personal data is voluntary, however, refusal to provide data may result in a refusal to provide services.

7. Links to other sites placed on the websiteThe website owner informs that the service contains links to other websites. The website owner recommends familiarizing oneself with the privacy policies in force there, as they bear no responsibility for them.
8. Security of User data on the WebsiteA description of the technical and organizational measures securing data is contained in the Security Policy (personal data protection) of the website owner. In particular, the following security measures are applied: a) Data collected automatically by the server is secured through a mechanism for authenticating access to the website. b) Data collected from users during the registration process is secured via the SSL protocol and through a mechanism for authenticating access to the website.

   c) Access to website administration takes place using an authentication mechanism.

9. Information regarding changes to the privacy policyIn the event of a change to the current privacy policy, appropriate modifications will be introduced to the content of the privacy policy.