1. General Information

1. This policy applies to the website operating under the URL: mopexhis.com.pl
2. The operator of the website and the Personal Data Administrator is: MOPEX HIS Sp. z o.o. S.K., 46-034 Pokój, ul. Zieleniec 63
3. Operator’s contact email address: biuro@mopexhis.com.pl
4. The Operator is the Administrator of your personal data provided voluntarily on the website.
5. The website processes personal data for the following purposes:
   • Handling inquiries through the contact form
6. The website collects information about users and their behavior in the following ways:
   1. Through data voluntarily entered in forms, which are entered into the Operator’s systems.
   2. By storing cookies on end-user devices (“cookies”).

2. Selected Data Protection Methods Used by the Operator

1. Login and personal data entry areas are protected at the transmission layer (SSL certificate). This ensures that personal data and login information entered on the site are encrypted on the user’s device and can only be read on the target server.
2. User passwords are stored in hashed form. The hashing function works one-way, which means it is not possible to reverse it, which is the current modern standard for storing user passwords.
3. The Operator periodically changes its administrative passwords.
4. To protect data, the Operator regularly creates backup copies.
5. An important element of data protection is the regular update of all software used by the Operator to process personal data, particularly regular updates of programming components.

3. Hosting

1. The website is hosted (technically maintained) on servers provided by: nazwa.pl
2. The hosting company maintains server logs to ensure technical reliability. Logged data may include:
   • Resources specified by URL (addresses of requested resources – pages, files),
   • Request arrival time,
   • Response time,
   • Client station name – identification performed via the HTTP protocol,
   • Information about errors that occurred during the execution of HTTP transactions,
   • URL address of the page previously visited by the user (referer link) – if the website was accessed via a link,
   • Information about the user’s browser,
   • IP address information,
   • Diagnostic information related to the self-ordering process via recorders on the website,
   • Information related to handling emails directed to and sent by the Operator.

4. Your Rights and Additional Information on How Data is Used

1. In some situations, the Administrator has the right to transfer your personal data to other recipients if necessary to fulfill a contract with you or to fulfill the Administrator’s obligations. This applies to such groups of recipients:
   • hosting company under entrustment agreement
   • companies providing marketing services for the Administrator
2. Your personal data processed by the Administrator are not kept longer than necessary to carry out related activities specified by separate regulations (e.g., accounting). For marketing data, they are not processed for more than 3 years.
3. You have the right to request from the Administrator:
   • access to your personal data,
   • rectification,
   • deletion,
   • restriction of processing,
   • and data portability.
4. You have the right to object to the processing specified in section 3.2, in relation to the processing of personal data for legally justified interests pursued by the Administrator, including profiling, but the right to object may not be exercised if there are valid legally justified grounds for processing, overriding your interests, rights, and freedoms, in particular to establish, pursue or defend claims.
5. Actions of the Administrator are subject to a complaint to the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
6. Providing personal data is voluntary, but necessary to operate the website.
7. Automated decision-making, including profiling, may be carried out in relation to you to provide services under a concluded contract and for the Administrator’s direct marketing purposes.
8. Personal data are not transferred to third countries within the meaning of data protection regulations. This means we do not transfer them outside the European Union.

5. Information in Forms

1. The website collects information voluntarily provided by the user, including personal data, if provided.
2. The website may record connection parameters (time, IP address).
3. The website may, in some cases, save information facilitating the linking of data in the form with the user’s email address filling out the form. In such a case, the user’s email address appears within the URL of the page containing the form.
4. Data provided in the form are processed for the purpose resulting from the function of the specific form, e.g., to process a service request or commercial contact, registration of services, etc. Each time, the context and description of the form clearly inform what it is for.

6. Administrator Logs

1. User behavior information on the website may be logged. These data are used to administer the website.

7. Key Marketing Techniques

1. The Operator uses statistical analysis of website traffic via Google Analytics (Google Inc. based in the USA). The Operator does not transfer personal data to the service provider, only anonymized information. The service is based on using cookies on the user’s end device. In terms of information about user preferences collected by Google’s advertising network, the user can view and edit information derived from cookies using the tool: https://www.google.com/ads/preferences/

8. Information About Cookies

1. The website uses cookies.
2. Cookies are IT data, in particular text files, that are stored on the end user’s device and are intended for use on the website. Cookies usually contain the name of the website from which they originate, the time they are stored on the end device, and a unique number.
3. The entity placing cookies on the end user’s device and accessing them is the website operator.
4. Cookies are used for the following purposes:
   • Maintaining the user’s session on the website (after logging in), so the user does not have to re-enter their login and password on every subpage;
   • Achieving the purposes specified above in the section “Key Marketing Techniques”;
5. There are two main types of cookies used within the website: “session cookies” and “persistent cookies.” “Session” cookies are temporary files stored on the user’s device until they log out, leave the website, or close the software (web browser). “Persistent” cookies are stored on the user’s device for the time specified in the cookie parameters or until they are deleted by the user.
6. Web browsing software (web browser) usually allows cookies to be stored on the user’s end device by default. Website users can change these settings. The web browser allows users to delete cookies. It is also possible to automatically block cookies. Detailed information on this is available in the help section or documentation of the web browser.
7. Restrictions on the use of cookies may affect some functionalities available on the website.
8. Cookies placed on the end user’s device may also be used by entities cooperating with the website operator, in particular, companies such as Google (Google Inc. based in the USA), Facebook (Meta Platforms Inc. based in the USA), and Twitter (Twitter Inc. based in the USA).

9. Managing Cookies – How to Give and Withdraw Consent in Practice?

1. If the user does not wish to receive cookies, they can change the browser settings. Please note that disabling cookies necessary for authentication processes, security, and maintaining user preferences may hinder, and in extreme cases, prevent the use of websites.
2. To manage cookie settings, select your web browser/system from the list below and follow the instructions:
   • • Edge
     • Firefox
     • Chrome
     • Safari
     • Opera

   On mobile devices:

   • • Android
     • Safari (iOS)
     • Windows Phone