Privacy Policy

§ 1 General provisions

1. This privacy policy applies to the rules of processing personal data processed as part of the use of the collection of websites located in the domain https://automaticblue.pl “Service”).

2. The administrator of your personal data is AutomaticBlue Mateusz Młynarczyk
46-320 Kowale, 1 Kiczmachów Street, Poland.
TIN/NIP: PL 5761599059
REGON: 541329681.

3. The Administrator can be contacted in writing at the address of the registered office indicated above or at the e-mail address: kontakt@automaticblue.pl

4. The Administrator shall comply with the principles of the application of appropriate technical and organizational measures set forth in the Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free flow of such data and repealing Directive 95/46/EC (“RODO”), including in particular those concerning the adequate protection of personal data against unlawful access, modification or destruction of data by unauthorized persons.

5. In matters not covered by this Privacy Policy, the relevant provisions of the Terms of Service available at: https://automaticblue.pl. Any terms capitalized and not defined in the Privacy Policy shall have the meaning given to them in the Terms of Service.

6. The Administrator reserves the right to change this Privacy Policy at any time, in particular due to a change in the functionality of the Service or a change in applicable laws.

§ 2 Categories, purposes and grounds for processing

1. The Administrator shall process the following categories of data of users using the Website (“Users”):
a) data related to contracts concluded and reservations made, such as first name, last name, contact details, travel data, payment and transaction information;
b) data related to your account on the Service first name, last name, contact details, login details;
c) information about Users use of the Service, such as IP address, terminal devices, website traffic data.
2. The personal data provided by Users will be processed for the following purposes and on the following grounds:
a) for purposes related to the conclusion and performance of contracts concluded through the Service and making reservations, or to take action at the request of the User prior to concluding a contract (Article 6(b) of the RODO);
b) for the purpose of communicating with Users and responding to messages received from Users, e.g. from contact forms available on the Service, which constitutes the Administrator’s legitimate interest (Art. 6(f) RODO),
c) for purposes related to the User’s use of the Service, operation of his/her account on the Service, provision of technical support, i.e. for the purpose of executing the agreement on the use of the Service or to take action at the User’s request before concluding the agreement (Article 6.1.b RODO),
d) in order to fulfill the Administrator’s legal obligations, in particular for accounting and tax purposes, in connection with possible inspections or inquiries, legal proceedings, etc. (Article 6(1)(c) of the DPA);
e) in the case of receipt of data from another User, which may be the case if the data is processed for the purpose of fulfilling a reservation made by a User (more than one person on a single reservation), which constitutes a legitimate interest of the Administrator (Article 6(1)(f) RODO),
f) for the purpose of possible establishment, investigation or defense against claims, as well as for the purpose of ensuring the safety of traffic and services, and preventing abuse and fraud, which constitutes the legitimate interest of the Administrator (Article 6(1)(f) RODO),
g) for the purpose of offering the Administrator’s products and services, which constitutes the Administrator’s legitimate interest in the form of direct marketing opportunities (Article 6(1)(f) RODO),
h) for archival and evidentiary purposes to secure information in the event of a legal need to prove facts, including fulfillment of accountability obligations under the RODO, which is the Administrator’s legitimate interest (Article 6(1)(f) RODO),
i) in other cases, where provision is made for consent to process personal data, the data will be processed to the extent and for the purpose expressed in the content of the consent (Article 6(1)(a) of the RODO). If the User has consented to receive marketing communications to his/her e-mail address and telephone number, the legal basis will also be Article 10 of the Act of July 18, 2002 on the provision of electronic services and Article 172 of the Act of July 16, 2004. – Telecommunications Law.
3. Provision of personal data is voluntary, but refusal to provide such data will make it impossible to make a reservation, use the functionalities of the Website or receive a response to an inquiry sent.

§ 3 Users rights

1. Each User shall have the right to:
a) access to his/her data and to receive a copy thereof,
b) to rectify (amend) his/her data,
c) to delete the data, if permitted under the RODO,
d) to restrict the processing of your data, to the extent permitted under the RODO,
e) object to the processing of data processed for the purposes of the legitimate interests of the Administrator or a third party, including direct marketing, and when the processing is necessary for the Administrator to perform a task carried out in the public interest or for the exercise of public authority entrusted to the Administrator,
f) data portability under the terms of the RODO,
g) lodge a complaint to a supervisory authority – if the User believes that the Administrator processes his/her data unlawfully, he/she may lodge a complaint to the President of the Office for Personal Data Protection,
h) withdrawal of consent for the processing of personal data – at any time the User has the right to withdraw consent for the processing of such personal data that the Administrator processes on the basis of his/her consent; withdrawal of consent will not affect the legality of the processing that was performed on the basis of consent before its withdrawal.

§ 4 Data retention period

1. Personal data will be kept for the period necessary to fulfill the purposes for which they were collected, i.e.:
a) in the case of the performance of contracts and reservations for a period of time in accordance with the law (until the expiration of the time limits for the assertion of claims and until the expiration of the periods prescribed by law for the storage of accounting documents),
b) in the case of use of the Service, as well as after the User’s termination of use of the Service for a period of time in accordance with the law (until the expiration of the time limits for the assertion of claims and until the expiration of the periods prescribed by law for the retention of accounting documents),
c) in the case of data processed on the basis of the User’s consent – until the withdrawal of the consent, with the proviso that if the User withdraws the consent or deletes the data in the Service, the Administrator may continue to process those data which are necessary for the performance of previously concluded agreements,
d) where personal data will be processed for the purpose of pursuing the legitimate interests of the Administrator or of a third party, as referred to in
of this Privacy Policy, for a period of time until such interests are fulfilled or an objection to such processing is raised, unless a situation arises in which the RODO permits further processing,
e) with regard to the fulfillment of a legal obligation incumbent on the Administrator for the period and to the extent required by law, and thereafter for the period required by law or for the fulfillment of the Administrator’s legitimate interests, including the safeguarding and assertion of potential claims.

§ 5 Data recipients

1. Users personal data may be accessed by:
a) insurance companies, airlines, hotels, tour operators and other entities cooperating in the implementation of contracts concluded with Users, which may be separate data controllers in this regard,
b) entities in the implementation of payment processes available on the Site – payment operators, which may be separate data controllers in this regard,
c) service providers supplying the Administrator with technical and organizational solutions, in particular, entities providing services in the area of IT, hosting, marketing, analytics,
d) accounting offices, tax advisors, legal aid providers,
e) competent state authorities, based on applicable laws.
2) The Administrator shall not transfer or authorize the transfer of personal data outside the European Economic Area except to entities for which the necessary measures will be taken to ensure that the transfer is in compliance with the RODO. The measures in question may include, in particular, the transfer of personal data to a recipient in a country that, in accordance with a decision of the European Commission, provides adequate protection of personal data, or the transfer of personal data will take place subject to the appropriate safeguards referred to in Article 46 of the RODO.

§ 6 Cookies Policy

1. The Website may use cookies (so-called “cookies”), which include computer data, in particular text files that are stored on the User’s terminal equipment. Cookies may be used by the Administrator as well as third parties who may be separate administrators in this regard.

2. The Website uses basically two types of cookies, i.e. “session” cookies, which are temporary files that are stored in the User’s terminal equipment until they log off, leave the Website or turn off the software (proper web browser), and “permanent” cookies – which are files stored in the User’s terminal equipment for the time specified in the parameters of cookies or until they are deleted by the User.

3. The following types of cookies may be used on the Website:
a) “necessary” cookies to enable the use of services available on the Website, e.g. authentication cookies used for services requiring authentication on the Website;
b) cookies used to ensure security, e.g. used to detect abuse of authentication within the Service;
c) “functional” cookies, which enable “remembering” the User’s selected settings and personalizing the User’s interface, e.g. with regard to the User’s selected language or region of origin, font size, web page layout, etc;
d) “advertising” cookies, allowing to provide Users with advertising content more tailored to their interests;
e) “performance” cookies, enabling the collection of information about the use of the Website’s pages.

4. Users may change their cookie settings at any time by changing their web browser settings. These settings can be changed, in particular, in such a way as to block the automatic handling of cookies or inform about their placement on the User’s device each time. Detailed information on the possibility and methods of handling cookies is available in software settings (web browser), e.g. on the following sites:
a) Firefox: http://support.mozilla.org/pl/kb/ciasteczka,
b) Internet Explorer: https://support.microsoft.com/pl-pl/topic/usuwanie-plik%C3%B3w-cookie-i-zarz%C4%85dzanie-nimi-168dab11-0753-043d-7c16-ede5947fc64d,
c) Chrome: http://support.google.com/chrome/bin/answer.py?hl=pl&answer=95647,
d) Opera: http://help.opera.com/Linux/12.10/pl/cookies.html,
e) Safari: http://support.apple.com/kb/HT1677?viewlocale=pl_PL&locale=pl_PL

§ 7 Final provisions

1. This privacy policy is effective as of 01-05-2025