This Privacy Policy ("Privacy Policy") defines the rules and conditions under which Flagman Spółka z ograniczoną odpowiedzialnością processes and protects the personal data of users of the service (the “Service”).
Who is the controller of your personal data?The controller of the personal data of service users is Flagman sp. z o.o., with its registered office in Wrocław, Dokerska 17/2, 54-142 Wrocław, entered into the Register of Entrepreneurs kept by the District Court for Wrocław-Fabryczna, 6th Commercial Division of the National Court Register under number KRS 0000935444, NIP: 8943177124 (the "Controller" or the "Company").
You can contact the Controller in the following ways:(i) in writing to the Company’s registered address;(ii) by email to the dedicated email address: sulp.namgalf%40pleh
What personal data does the Controller collect and process?In connection with the use of our Service and the creation of an account, the Controller collects and processes your personal data to the following extent: email address and phone number. After creating an account, you will be able to register and conclude an agreement with Flagman Sp. z o.o.
To whom is your personal data disclosed?Your personal data may be disclosed to authorized public authorities and entities providing services on behalf of the Controller, based on agreements and following the Company's instructions, including in particular the IT service provider for the Application, namely EVOBOT 2 Spółka z ograniczoną odpowiedzialnością, with its registered office in Łomża, ul. Gen. Władysława Sikorskiego 166/3.07, 18-400 Łomża.
What is the purpose and legal basis for processing your personal data?The Controller processes your personal data for the following purposes:a) enabling use of the Service, i.e. account creation, account management within the Service, technical support, and enabling the registration of your data with a selected service provider (legal basis: performance of the electronic services agreement – Art. 6(1)(b) GDPR),b) handling complaints – legal basis: the legitimate interest of the Controller, i.e. the possibility of pursuing claims (Art. 6(1)(f) GDPR). Data will be processed for the period necessary to consider the complaint and then for the period of pursuing or defending claims,c) communication – responding to inquiries sent via chatbot (legal basis: the legitimate interest of the Controller in being able to respond to user inquiries – Art. 6(1)(f) GDPR),d) monitoring Service traffic (legal basis: the legitimate interest of the Controller in ensuring access to the Service, its functionality, optimization, and adequate user security – Art. 6(1)(f) GDPR),d) asserting or defending legal claims related to the functioning of the Application, preventing crime, and conducting related investigations (legal basis: the legitimate interest of the Controller – Art. 6(1)(f) GDPR).
How long does the Controller store personal data?Your personal data will be processed until the legal basis for processing ceases to exist or the purpose of processing is achieved or ceases for another reason, namely:a) until the expiration of the electronic services agreement,b) if the legal basis is the legitimate interest of the Company – until the interest is fulfilled or you object to the processing.The above processing periods may be extended if necessary for the establishment, pursuit, or defense of claims, and after that time only where required by law.
Cookie:We may collect your data using technologies such as cookies, which allow us to identify your browser or device.Cookies are IT data, particularly text files, that are stored on the user’s end device (computer, tablet, etc.) and are intended for use on the Service’s web pages. Cookies usually contain the name of the website they come from, the time they are stored on the device, and a unique number. Cookies identify the device and browser used to view web pages – for example, they can determine whether a given device has visited the site before. Data obtained from cookies is not linked to personal data, does not affect device operation, and does not alter configuration settings on the user’s device.The following types of cookies are used on our website:
Necessary cookies:Required for the operation of our website and cannot be disabled. They are triggered in response to user actions equivalent to a service request, such as setting privacy preferences or filling out a form. These cookies do not store any personally identifiable information.Cookie retention periods:Google Analytics• Name: _ga — 2 years• Name: _gid — 24 hours• Name: _gat — 1 minute• Name: IDE — 13 months• Name: test_cookie — 15 minutes• Name: dc_gtm<property> — 1 minute• Name: gac<property> — 90 days
We may collect the following information through these cookies:1. the identifier of cookies installed on the user’s device and their retention period,2. information about the use of our website, i.e. browsing time, user location, device type, IP address, operating system and its version, and the browser used.
The above cookies are stored on your device for the period specified in their parameters or until you delete them as described below.Instructions on how to delete cookies or change cookie settings are available in your browser settings. Web browsers (software used to view websites) typically allow cookies to be stored by default. Information on disabling cookies can be found here:• Opera browser: https://help.opera.com/pl/latest/web-preferences/#cookies• Firefox browser: https://support.mozilla.org/pl/kb/wzmocniona-ochrona-przed-sledzeniem-firefox-desktop?redirectlocale=pl&redirectslug=W%C5%82%C4%85czanie+i+wy%C5%82%C4%85czanie+obs%C5%82ugi+ciasteczek• Google Chrome browser: Clear cache and cookies –> Computer –> Google Account –> Help• Internet Explorer 10 browser: https://support.microsoft.com/pl-pl/hub/4338813/windows-help?os=windows-10• Microsoft Edge browser: edge://settings/content/cookies• Safari browser: https://support.apple.com/pl-pl/HT201265You can change your cookie settings at any time. These settings can be modified in particular to block the automatic handling of cookies or to notify you when cookies are placed on your device.
How does the Controller protect your personal data?The Controller takes all reasonable steps to ensure that your personal data is processed in accordance with applicable law and the principles set out in the GDPR. The core principles and standards of data processing are defined in the Controller’s adopted Personal Data Protection Policy, which sets out technical and organizational procedures for protecting user data.These measures ensure that all persons involved in our operations understand the importance of secure personal data processing. We continue to improve our measures in line with changes in technology and legal requirements.
What rights do you have regarding your personal data?You have the right to:a) Access your data – You have the right to access your personal data and receive a copy. You are also entitled to information about, among others, the purpose of processing, categories of data, recipients, the intended storage period, and your rights.b) Delete your data – You may request the deletion of your personal data in full or in part if it is no longer necessary, if you object to the processing, or if you believe we are processing it unlawfully. This does not apply to data we are legally required to retain.c) Restrict processing – If you believe the data is inaccurate, is being processed unlawfully, or you need it to establish or defend legal claims, you may request that we only store your data. Even with this restriction, we may continue processing for the purpose of claims.d) Data portability – You have the right to receive your personal data in a structured, commonly used, machine-readable format and request that it be transferred to another controller, if the processing is based on your consent or a contract and done by automated means.e) Object to processing – For reasons related to your particular situation, you may object to our processing of your data when based on our legitimate interest. In that case, we will stop processing unless we can demonstrate compelling legitimate grounds that override your interests or are necessary for legal claims.f) Lodge a complaint with a supervisory authority – If you believe we are processing your personal data unlawfully, you may file a complaint with the national supervisory authority, which in Poland is the President of the Personal Data Protection Office in Warsaw.
To exercise these rights, please send a request to sulp.namgalf%40pleh or by post to the Company’s registered address. Please note that these rights are not absolute and may not apply in every case.
We also inform you that before fulfilling such requests, we are obliged to verify the identity of the person submitting the request as the data subject concerned.
Changes to the Privacy PolicyWe reserve the right to amend this Privacy Policy. Any changes will be promptly published on this page. If you have questions regarding this document or the website in general, feel free to contact us.
Last updated: 01.08.2025