Privacy Policy

The following Privacy Policy sets out the rules for storing and accessing data on Users’ Devices using the Service for the purpose of providing electronic services by the Administrator, and the principles of collecting and processing personal data of Users, which have been provided by them personally and voluntarily through the tools available in the Service.

§1 Definitions

• Service – the internet service “optimaizer.pl” operating at https://optimaizer.pl
• External Service – internet services of partners, service providers or clients cooperating with the Administrator
• Service/Data Administrator – “Hype Warsaw sp. z o.o.”, with its registered office at Chmielna 73, 00-801 Warsaw, Tax ID (NIP): 5272911927, KRS: 0000684205, providing electronic services via the Service
• User – a natural person for whom the Administrator provides electronic services via the Service
• Device – any electronic device along with software through which the User accesses the Service
• Cookies – text data collected as files placed on the User’s Device
• GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to processing of personal data and on the free movement of such data
• Personal Data – information relating to an identified or identifiable natural person; an identifiable person can be identified, directly or indirectly, by reference to identifiers such as name, ID number, location data, online identifier, or one or more factors specific to physical, physiological, genetic, mental, economic, cultural or social identity
• Processing – any operation or set of operations performed on personal data, such as collection, recording, organization, storage, adaptation, retrieval, consultation, use, disclosure, alignment, restriction, erasure or destruction
• Restriction of Processing – marking stored personal data with the aim of limiting their future processing
• Profiling – any form of automated processing of personal data to evaluate personal aspects relating to a natural person, in particular to analyze or predict work performance, economic situation, health, preferences, interests, reliability, behavior, location or movements
• Consent – any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which they signify agreement to processing of personal data relating to them
• Personal Data Breach – a security breach leading to accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data
• Pseudonymization – processing of personal data so that it can no longer be attributed to a specific person without additional information, provided that such additional information is kept separately and secured
• Anonymization – irreversible process of data operations destroying or overwriting personal data to prevent identification or linkage to a specific person

§2 Data Protection Officer

Pursuant to Art. 37 GDPR, the Administrator has not appointed a Data Protection Officer. For matters relating to data processing, including personal data, please contact the Administrator directly.

§3 Types of Cookies

• First‐party Cookies – cookies placed and read by the Service’s system on the User’s Device
• Third‐party Cookies – cookies placed and read by external services; these scripts are embedded in the Service by the Administrator
• Session Cookies – cookies active only for the duration of the session and deleted when the session ends
• Persistent Cookies – cookies that remain until manually deleted or until the Device’s settings remove them

§4 Data Storage Security

• Browser Mechanisms – storage, reading and exchange of cookie data use built-in browser mechanisms, preventing access to other data on the User’s Device or other websites visited
• First‐party Cookies – safe for User Devices and do not contain scripts or content that could threaten personal data or device security
• Third‐party Cookies – the Administrator selects reputable global partners but cannot fully control their cookies; the Administrator is not liable beyond what the law allows
• Cookie Control – Users can change cookie settings at any time via browser or Device settings; instructions for major browsers are available at:
  • How to disable cookies
  • Chrome
  • Opera
  • Firefox
  • Edge
  • Safari
  • Internet Explorer 11
• Users may delete all cookies via their Device tools at any time
• User‐side Risks – despite technical measures, security also depends on Users; the Administrator is not liable for user-side malware or actions; Users should follow safe internet practices
• Personal Data Storage – the Administrator ensures personal data is stored securely, access is limited and data loss is prevented by physical and organizational measures
• Password Storage – passwords are stored encrypted using current standards; decryption is practically impossible

§5 Purposes of Cookie Use

• Improving and facilitating access to the Service
• Personalization of the Service
• Enabling user login
• Marketing and remarketing on external services
• Advertising services
• Affiliate services
• Collecting statistics (users, visits, devices, connection, etc.)
• Serving multimedia content
• Providing social features

§6 Purposes of Personal Data Processing

Personal data voluntarily provided by Users is processed for:

• Provision of electronic services:
  • Registration and maintenance of User accounts and related features
  • Newsletter services (including advertising with consent)
  • Commenting/liking posts without registration
  • Sharing Service content on social networks or other sites
• Administrator–User communication regarding the Service and data protection
• Legitimate interests of the Administrator

Anonymized, automatically collected data is processed for:

• Statistics
• Remarketing
• Tailored advertising
• Affiliate program support
• Administrator’s legitimate interests

§7 Third‐party Cookies

The Administrator uses third-party scripts and web components that may place cookies. You can manage cookies in your browser. Below is a list of partners:

• Multimedia services:
  • YouTube
• Social services:
  • Twitter
  • Facebook
  • Google+
• Newsletter services:
  • MailChimp
• Advertising/affiliate networks:
  • MyLead
• Analytics:
  • Google Analytics

Third-party services are beyond the Administrator’s control and may change their policies at any time.

§8 Types of Collected Data

The Service collects User data: some automatically and anonymously, some personally provided. Anonymous data collected automatically:

• IP address
• Browser type
• Screen resolution
• Approximate location
• Visited pages
• Time spent on pages
• Operating system
• Referrer URL
• Language settings
• Connection speed
• Internet service provider

Data collected during registration:

• Name/nickname
• Username
• Email address
• IP address (automatically)

Data collected for Newsletter:

• Name/nickname
• Email address
• IP address (automatically)

Data collected when commenting:

• Name/nickname
• Email address
• Website URL
• IP address (automatically)

Some non-identifying data may be stored in cookies or shared with analytics providers.

§9 Third‐party Access to Personal Data

By default, the only recipient of Users’ personal data is the Administrator. Data is not sold or transferred to third parties, except:

• Hosting providers and related infrastructure services
• Newsletter service providers

Newsletter processing: MailChimp processes newsletter data under its own policy. Hosting/VPS processing: OVH sp. z o.o. stores and processes data in Poland; access is regulated by contract.

§10 How Personal Data Is Processed

Voluntarily provided personal data:

• Will not be transferred outside the EU unless made public by the User (e.g., comments)
• Will not be used for automated decision-making (profiling)
• Will not be sold to third parties

Anonymous data:

• May be transferred outside the EU
• Will not be used for profiling
• Will not be sold to third parties

§11 Legal Bases for Processing

Data is processed on the basis of:

• GDPR Art. 6(1)(a) – consent
• GDPR Art. 6(1)(b) – contract performance or pre-contractual measures
• GDPR Art. 6(1)(f) – legitimate interests
• Polish Data Protection Act (10 May 2018)
• Telecommunications Law (16 July 2004)
• Copyright Act (4 February 1994)

§12 Retention Period

Voluntary personal data: stored only during service provision, then deleted or anonymized within 30 days; exception: up to 3 years if required for legal claims after a breach Anonymous data: stored indefinitely for statistics

§13 Users’ Rights

• Right of access – to request access to personal data
• Right of rectification – to correct or complete data
• Right to erasure – to request deletion (or anonymization) of data; may be delayed for legitimate interests or contract violations; newsletter users can unsubscribe via link
• Right to restriction – to limit processing under Art. 18 GDPR
• Right to data portability – to receive data in machine-readable format
• Right to object – to object under Art. 21 GDPR
• Right to lodge a complaint – with supervisory authority

§14 Administrator Contact

• Postal address: Hype Warsaw sp. z o.o., Chmielna 73, 00-801 Warsaw
• Email: info@optimaizer.pl
• Phone: +48 695 381 796
• Contact form: available at /kontakt

§15 Service Requirements

• Disabling or restricting cookies may impair some Service functions
• The Administrator is not liable for malfunctions caused by cookie restrictions

§16 External Links

The Service may contain links to external sites not controlled by the Administrator. These may be unsafe. The Administrator is not responsible for content outside the Service.

§17 Changes to the Privacy Policy

• The Administrator may change this Policy regarding cookies and anonymous data without notice
• Changes to personal data processing will be communicated by email within 7 days to account and newsletter users; continued use implies acceptance; to dissent, delete your account or unsubscribe
• Changes will be published on this page and take effect upon publication