Personal data protection policy in Ku Dolinie, ul. Groń 1, 34-511 Kościelisko hereinafter referred to as the facility.

  1. Who is the Controller of your personal data?
    1. The Controller of your personal data is CYDE Sp. z o.o. with its registered office at ul. Groń 1, 34-511 Kościelisko; NIP:7010924436, REGON: 383334187, the Facility’s owner.
    2. All inquiries, comments, and reservations regarding our Privacy Policy should be addressed to or: ul. Groń 1, 34-511 Kościelisko.
  2. Which data do we refer to? How do we obtain it?
    1. We only process personal data that you voluntarily provide to us.
    2. We receive your personal data in connection with the process of booking / concluding a contract/application for the provision of a service at the Facility or as a result of you entering this data using the contact form available on our website, Internet portals with which we cooperate or using other direct communication channels.
  3. For what purpose do we process your data, and on what basis?
    1. The processing of your personal data is necessary for the performance of the contract/processing of the reservation/processing of your inquiries.
    2. The law requires us to process your data for tax and accounting purposes.
    3. We also process your personal data based on the legitimate interest of the Facility, which is:
      • Ensuring the delivery, security, and settlement of services/reservations/transactions related to the services we provide to you, including enforcing compliance with the internal terms and conditions of the Facility;
      • Handling your inquiries forwarded to the Facility when they are not directly related to the performance of the contract;
      • conducting research and statistical analyses of the Facility’s website, among others, in terms of its functionality, improvement of the operation of services, or estimation of the visitors’ main interests and needs;
      • conducting research and analysis of Internet portals mediating the conclusion of a contract/notification with the Facility for the service booked by you, including in terms of its functionality, improvement of the operation of services, or estimation of the visitors’ main interests and needs;
      • debt collection; conducting legal proceedings, arbitration, and mediation proceedings;
      • storing data for archival purposes and demonstrating our compliance with legal obligations;
      • Processing of your data as part of direct marketing of the Facility’s products and services, including sending commercial information based on your consent.
    4. The legal basis for our processing of your data is Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
  4. What data can we ask for?
    1. Depending on the purpose for which and how we collect data, we may ask you for such data as:
      • First name, surname
      • Address
      • ID number/passport No.
      • Vehicle registration number
      • Phone number, e-mail address
      • Company name, address, NIP
      • Payment card number, bank account number
  1. Do you need to provide us with your data?
    1. Providing personal data is voluntary but necessary to perform the services that we are to provide to you, i.e., to process your reservation or to perform other services covered by the contract.
    2. Consent to receive information about special offers, promotions, discounts, and other marketing campaigns is also voluntary. We need it to send you our newsletter. If you do not agree to receive these materials, we will simply not send them to you. You can change the given consent at any time.
  2. How long do we store your personal data?
    1. First of all, we store data until we complete the implementation of your reservation or other services that we perform for you and until the time related to the possible pursuit of claims in connection with these services expires.
    2. In addition, the data may be stored by us to prevent misuse and fraud for statistical and archiving purposes for a period of 10 years from the date of termination of the contract /stay.
    3. For the purpose of accountability, we will store data for the period in which the Facility is obliged to retain data or documents containing it in order to document compliance with legal requirements, including enabling control of their compliance by public authorities.
  3. What rights do you have with regard to the processed data?
    1. You may:
      • Have access to the content of your data and its rectification,
      • In justified cases, ask us to delete or limit the processing of your personal data or object to specific ways in which we use your personal data,
      • Ask us to send your personal data to third parties in justified and properly documented cases.
  4. Who has access to your personal data? Who will we not share it with?
    1. We only share your personal data with those employees and co-workers who need to have access to it so that we can guarantee a high quality of service, both in terms of the implementation of your reservation/contract/notification or processing of your inquiry.
    2. If a third party processes the data you provide us with, it is only on our behalf and on the basis of an agreement concluded with this entity. We do not share your data with any third parties for their own use – only for the performance of our services. All entities that process your personal data ensure their security and fulfill all obligations in the field of personal data protection.
    3. In addition to our authorized employees, data may be accessed, among others, by the event organizers included in our offer and contractors providing us with management, accounting, marketing, IT, and legal services.
    4. We may transfer your personal data to public authorities fighting fraud and abuse if necessary.

Do we transfer your data to countries outside the European Economic Area?

Your personal data will be transferred outside the European Economic Area only if such transfer is necessary to implement the contract/application concluded by you.

Do we process your personal data automatically (including profiling) in a way that affects your rights?

    1. Your personal data will be processed in an automated manner (including profiling). However, this will not have any legal effects on you or significantly affect your situation in a similar way.
    2. Profiling of personal data by the Facility consists of processing your data (also in an automated manner) by using it in particular to analyze or predict personal preferences and interests.

Do we use cookies and plugins for other websites?

    1. Through cookies, which are files saved by your web browser on your computer’s hard drive, the Facility collects data related to how you use the websites to improve our services offered to visitors and users of the company’s websites. The process involves the use of cookies. Users can block cookies at any time by adjusting their browser settings or indicating that cookies can only be set if the user accepts them.
    2. Cookies do not allow the identification of your identity. The data stored in cookies contain information about which websites you visit, the date and time of your visit, and other information about your website activity.
    3. Aggregated and anonymous statistical data are captured to carry out the above analysis. During the collection and processing of data, a shortened IP address of the website visitor may also be viewed.
    4. The data is analyzed in particular for the following purposes:
      • calculating the number of visitors to the website,
      • tracking particularly attractive areas of the website to a particular visitor to the site,
      • analyzing where visitors come from in order to optimize the services provided,
      • adapting the offer to individual target groups.
  1. Plugins for other portals
    1. Our website uses “plugins” for social networks and for other service providers’ portals.
    2. While visiting our website containing such a plugin, your browser will establish a direct connection to Facebook, Google, or TripAdvisor servers.
    3. The content of the plugin is transferred by the given service provider directly to your browser and integrated with the website. Thanks to this integration, the service providers receive information that your browser has displayed our website, even if you do not have a profile set up at a given service provider or when you are not logged in.
    4. This information (along with your IP address) is sent by your browser directly to the server of a given service provider and stored there.
    5. The purpose and scope of data collection and its further processing and use by service providers, as well as the possibility of contact and your rights in this regard and the possibility of making settings to protect your privacy, are described in the service providers’ privacy policy.