Last updated: 28.07.2020
On this page, you will find all the information about how Sodoma Atelier processes your personal data and ensures their security.
The administrator of your personal data within the meaning of the provisions on the protection of personal data is Mariusz Krużycki, ul. 1 Maja 7, 83-330 Żukowo, Poland.
Personal data and the purposes of their processing
Your personal data collected by the website https://sodomaatelier.eu are stored in order to deliver you with services provided by this website. By using this site, you agree to the collection of your personal data in the ways listed below.
All the purposes, legal bases and the period of processing your personal data can be found below, depending on the purpose of their collection.
The provisions of the GDPR being in force in Europe grant you the following potential rights related to the processing of your personal data:
- the right to access personal data,
- the right to rectify personal data,
- the right to delete personal data,
- the right to limit the processing of personal data,
- the right to object to the processing of personal data,
- the right to transfer data,
- the right to lodge a complaint with a supervisory authority,
- the right to cancel consent to the processing of personal data if you have given such consent.
The rules related to the implementation of the indicated rights are described in detail in art. 16 – 21 GDPR. However, these rights are not absolute and you will not be entitled to them in every situation. However, in the following descriptions of individual purposes of data processing, we will show you what rights you have in situations related to these purposes.
After all, you always have one right – if you consider that we have violated the provisions on the protection of personal data when processing your personal data, you have the opportunity to lodge a complaint with the relevant supervisory authority.
Also, you can always contact us with a request to provide you with information about what data about you we have and for what purposes we process it. All you have to do is send an email to firstname.lastname@example.org.
Recipients of personal data
Your personal data may also be processed by my subcontractors. Most often these are entities whose services I use while processing your personal data, and which allow me to provide services for you.
- Thecamels – to store personal data on the server, including the mailbox server
- WordPress – to process personal data by the website, including to post comments
- Google Ireland Limited – to use Google services, including e-mail based on Google servers
- UAB “MailerLite” – to use the Mailerlite system in which your personal data is processed, if you subscribe to the newsletter
- Cognito Forms – to collect the information about your project via an online form in other to make a quote for you
- persons who can potentially access your personal data when providing services related to technical support for the website
- subcontractors who can participate in the provision of legal services to you and respond to your emails
All entities entrusted with the processing of personal data guarantee the application of appropriate measures for the protection and security of personal data required by law.
Due to the use of Google and Cognito Forms services, your data may be transferred to the United States of America (USA) in connection with their storage on American servers.
The purposes of processing personal data
If you want to subscribe to our newsletter, you must provide us at least your name and email address via the appropriate subscription form. Providing this data is voluntary, but necessary to subscribe to the newsletter.
The data you provide when you sign up for the newsletter is used to send you the newsletter. The legal basis for processing this data is your consent (art.6 par.1 let.a RODO), expressed when subscribing to the newsletter.
The data will be processed for the duration of the newsletter, unless you opt out of receiving it. Opting out of receiving the newsletter, however, does not delete your data from the database. The data you provide will still be stored in the mailing system to defend against any claims related to sending the newsletter, in particular for the purposes of demonstrating your consent to receive the newsletter, as referred to in art. 6 clause 1. let. f GDPR.
You can, however, correct your data saved in the newsletter database at any time. You also have the right to transfer data referred to in art. 20 GDPR.
If you contact us via e-mail, you obviously give us your e-mail address as the sender’s address. Also, remember that you can provide us with your other personal data in the message. Providing all these data is voluntary, but necessary to make contact.
In this case, your data is processed in order to contact you, and the basis for their processing is art. 6 clause 1 let. a GDPR, i.e. your consent resulting from voluntary initiation of contact. The legal basis for data processing in this case is the justified purpose in the form of archiving correspondence for the purposes of demonstrating its course in the future (Article 6 clause 1 let. f of the GDPR).
The content of correspondence may be archived for an indefinite period. You have the right to request the history of your correspondence with us (if it has been archived). You can also request its removal unless its archiving is justified by our overriding interest, e.g. defense against potential claims on your part.
If you provide us with the information about your project via our online project guidelines form, you voluntarily provide us your name, e-mail address, company name, and the basic information about your project (including the files mentioned in the guidelines). This information is necessary for us to make a quote for your order.
If you want to add a comment on my blog, you must complete the form and provide your email address and name. Providing data is voluntary, but necessary to add a comment. The comment system is operated by WordPress, used to manage content on the blog.
The data provided when adding a comment are used to publish a comment on the blog, and the legal basis for their processing is your consent (Article 6 clause 1 let. a of the GDPR) resulting from the addition of a comment.
The data will be processed for the duration of comments on the blog, unless you request removal of the comment in advance, which will delete your data from the database.
Cookies and other tracking technologies
Cookies are small text information that is stored on your end device (on your smartphone, tablet, or computer). They can be read by our ICT system (own cookies) or third-party systems (third-party cookies).
Some of the cookies we use are deleted as soon as the web browser session ends, so immediately after it closes. Other cookies are saved by your end device and allow our website to recognize your browser the next time you visit the site (these are so-called persistent cookies).
Consent to cookies
The first time you visit our site, you’ll be notified about cookies. In your browser settings, you can also change cookie settings or delete them completely.
We use our own cookies to ensure that the website and its forms work properly.
Third party cookies
Google Analytics: This tool is provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. We use it as part of our legitimate interest, which is to create statistics and analyze them to optimize our website.
Google Analytics automatically collects information about your activities on our website. The information collected in this way is usually transmitted to servers in the United States and stored there.
If you do not want the information collected by cookies about your use of our website to be processed by Google, you can install the plugin located here: https://tools.google.com/dlpage/gaoptout.
If you are interested in details related to data processing within Google Analytics, we encourage you to read the explanations written by Google itself: https://support.google.com/analytics/answer/6004245.
Social tools: On our website, we use plugins and other social tools shared by social networking sites such as Facebook, Instagram, Google, Youtube, LinkedIn.
By browsing our site containing such a plugin, your browser will establish a direct connection to the servers of the administrators of these social networks (service providers). The content of the plugin is transmitted by the given service provider directly to your browser and integrated with the website. Thanks to this integration, the service providers receive information that your browser has viewed our website, even if you do not have a profile on the given social media or are not currently logged in to it. This information (along with your IP address) is sent by your browser directly to the server of the given service provider (some servers are located in the USA) and stored there.
If you are currently logged in to any of the integrated social networking sites, then the respective service provider will be able to assign your visit to our website to your profile in the given social networking site.
If you use a given plugin, e.g. by clicking the “Like” or “Share” buttons, this information will also be sent to the service provider and integrated with your profile on the given social network.
- Facebook – https://www.facebook.com/legal/FB_Work_Privacy,
- Instagram – https://help.instagram.com/519522125107875?helpref=page_content,
- Google – https://policies.google.com/privacy?hl=pl,
- LinkedIn – https://www.linkedin.com/legal/privacy-policy.
If you play video, Google receives information about it, even if you are not logged in to the site. This information (together with your IP address) is transmitted by your browser directly to the Google server (which may be located in the USA).
Every time you browse our site, queries are sent to the server where it is stored. Each such query is saved in server logs.
They include Your IP address, server date and time, information about your web browser and your operating system. Logs are saved and stored on the server.
Data saved in server logs are not used to identify specific people because they are not associated in this way.
Server logs are only an auxiliary material used to administer the site, and their content is not disclosed to anyone except those authorized to administer the server.