privacy policy

See our privacy policy.

We are Sylwester Budzelewski and Rafał Fajbuś and we run a company under a civil partnership under the name WHITE ANCHOR Spółka Cywilna Sylwester Budzelewski Rafał Fajbuś with its registered office in Gdańsk (address: Jana Heweliusza 11, 80-890 Gdańsk; NIP: 5833251556; “WHITE ANCHOR” ). We are the controllers of your personal data, regardless of your nationality, citizenship or current location – as long as you are a living natural person. If you want to contact us regarding your privacy, and strictly our processing of your personal data, you can use this email address: – we have not appointed a data protection officer as our main activity does not require regular and systematic monitoring of data subjects on a large scale, nor does it consist in large-scale processing of special categories of personal data and data relating to criminal convictions or offenses; we are also not a public body or entity.

As a processor of your personal data in connection with our business, we are subject to the provisions governing the protection of privacy, including the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016. on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC (general regulation on data protection; “GDPR”). In this privacy policy (“Privacy Policy”), we will tell you what personal data, for what purposes and on what basis we process it, to whom we share it, and we will draw your attention to the rights that the GDPR grants to personal data subjects, such as you . We will also fulfill our information obligation elsewhere, especially on our website ( , and relevant subpages; collectively, “Website”) by giving you specific and appropriate messages.

Before we move on to the rest of the Privacy Policy, we should introduce you to two basic definitions that will help us all navigate in the GDPR area; namely, personal data means information about an identified or identifiable natural person, such as, for example: name and surname, identification number, location data, internet identifier. On the other hand, the processing of personal data is basically any activity on personal data, regardless of whether it is performed in an automated manner or not, for example: collecting, storing, recording, ordering, modifying, browsing, using, sharing, limiting, deleting or destroy. By the way, we ask you not to provide us at all, and through the Website in detail, information from special categories of personal data, such as information about race or ethnic origin, political views, religious or philosophical beliefs, trade union membership, information about physical or mental health, genetic data, biometric data, information about sexual life or sexual orientation, and criminal history.

Basically, we process personal data that you have provided to us yourself, be it by contacting us via instant messaging integrated with the website, the contact form on the website or email, or by leaving a comment on the forum in the blog section of the website. Our processing of your personal data serves quite obvious purposes, which you define yourself or you can easily recognize – and so, for example, we answer your questions, on your request we send you our offer or commercial information, and we keep statistics on the use of the Website. If it comes to our mind to process your personal data for a different purpose than the current one, we will let you know about it and try to obtain your consent to the processing for the new purpose. Likewise, when we obtain your personal data from third parties, we will provide you with the relevant information within a reasonable period of time after obtaining the data or when communicating with you for the first time.

If we ask you for your consent to the processing of your personal data, we make sure that your will is free, properly informed, specific and unambiguous, and also that you are aware that you can withdraw your consent to further processing of your personal data at any time. It does not always have to be a checkbox, but we will never assume your consent until you give us a clear signal that you are ok. with the processing of your personal data by us. In other cases, our processing of your personal data may be based on the fact that it is necessary to perform the contract that connects us or to take action, at your request, before concluding the contract. It may also happen that the comparison of your interests or fundamental rights and freedoms with the interests of ourselves or of third parties will enable us to lawfully process your personal data, be it for direct marketing or to ensure network and information security – then we will inform you about overriding our or third party’s interests.

In any event, we will provide you with relevant information explaining the grounds and purposes of our processing of your personal data, whenever we collect this data. Regardless of whether the basis for our processing of your personal data is consent, contract, legitimate interest or other premise legalizing the processing, we will make sure that the scope of your personal data collected or otherwise processed is as small as possible, unless you decide to provide us personal data in a larger amount or for a longer period than necessary. For example, if you want to make an appointment or talk to us remotely, we will ask you for only the personal data that is necessary to arrange the meeting or conversation – i.e. your name and email address. If we do not move to the stage of preparation, conclusion or performance of the contract or you do not give us your consent to the processing of your personal data for a specific purpose, your personal data processed in connection with the meeting or conversation will be deleted from our IT systems or data sets or made anonymous. As a rule, your personal data live in our IT system for no longer than 180 days.

Moreover, we would like to draw your attention to your rights to request access to your personal data, rectification, deletion or limitation of processing and to object to processing, including your absolute right to object to processing for direct marketing purposes, as well as to data portability. At this point, however, we must make a reservation that while access to personal data, including the right to obtain a copy of the data, as well as the possibility of rectifying this data, are not limited, the right to delete personal data (the right to be forgotten) is limited and does not may be performed if the processing is necessary for us to establish, assert or defend claims. Similarly, your request to receive personal data in a structured, commonly used machine-readable format or to send personal data to another administrator will be satisfied only with regard to the personal data provided by you and processed by us on the basis of consent or a contract in an automated manner. In any case, you have the right to lodge a complaint with the supervisory authority.

However, as long as your personal data is processed by us, their processing will take place using appropriate technical and organizational measures, including appropriate staff and encryption mechanisms, so as to meet the requirements of the GDPR and protect your rights. If we decide to entrust the processing of your personal data to third parties, and we will do so when using external IT resources, applications or cloud and similar services, we will only select processors that provide sufficient guarantees to implement appropriate technical and organizational measures so that the processing meets the requirements. GDPR and protected your rights. We present the list of data processors here: Google Analytics, Facebook, Hotjar and we promise to update it on a regular basis.

The website uses cookies and similar technologies (collectively, “Cookies”), which, however, can be turned off using the web browser settings. You can find out about the cookies we use here. In order to reach you with our marketing messages outside the Website (remarketing), we use the services of external suppliers, such as Google or Facebook. For this purpose, external providers install, for example, an appropriate code or pixel to download information about your activity on the Website. We use data about your activity, such as: search history, clicks, visits, history and your activity related to our e-mail communication with you, to create your profile corresponding to your interests and preferences. Then, to the created profile, we match marketing information about our products and services that may be of interest to you. To conclude, we will only point out that we prefer such suppliers and other recipients of your personal data who process data in the European Economic Area; although we do not intend to transfer your personal data to a third country, if this should happen, we will choose a country or recipients who provide an adequate level of protection, for example as part of the Privacy Shield self-certification ( ).

The website may contain active links to other websites on the Internet, managed by entities not related to us, according to autonomously adopted rules, and sometimes not respecting the requirements of the GDPR. We recommend that you read the relevant privacy policies before using these websites.