Privacy Policy

This Privacy Policy sets out the rules for storing and accessing data on Users’ Devices used to access the Service for the purpose of providing electronic services by the Administrator, as well as the rules for collecting and processing Users’ personal data which have been provided by them personally and voluntarily via tools available within the Service.

This Privacy Policy forms an integral part of the Service Terms and Conditions, which set out the rules, rights, and obligations of Users using the Service.

§1 Definitions

• Service – the website operating at https://vetpraktyki.pl

• External Service – websites of partners, service providers, or service recipients cooperating with the Administrator.

• Service / Data Administrator – the Service Administrator and the Data Controller (hereinafter: the Administrator) is “VETPRAKTYKI Sp. z o.o.”, conducting business at: ul. Mleczarska 7, 05-500 Nowa Iwiczna, NIP: 1231548709, KRS: 0001083273, providing electronic services via the Service.

• User – a natural person for whom the Administrator provides electronic services via the Service.

• Device – an electronic device together with software through which the User accesses the Service.

• Cookies – text data stored in the form of files placed on the User’s Device.

• GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).

• Personal data – information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

• Processing – an operation or set of operations performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

• Restriction of processing – the marking of stored personal data with the aim of limiting their processing in the future.

• Profiling – any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyse or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behaviour, location or movements.

• Consent – any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.

• Personal data breach – a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed.

• Pseudonymisation – the processing of personal data in such a manner that the data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.

• Anonymisation – an irreversible process of operations on data that destroys or overwrites personal data, making identification or linking a record to a specific User or natural person impossible.

§2 Data Protection Officer

Pursuant to Article 37 of the GDPR, the Administrator has not appointed a Data Protection Officer.

In matters relating to data processing, including personal data, please contact the Administrator directly.

§3 Types of Cookies

• Internal Cookies – files placed and read from the User’s Device by the Service’s ICT system.

• External Cookies – files placed and read from the User’s Device by ICT systems of External Services. Scripts of External Services that may place Cookies on Users’ Devices have been intentionally embedded in the Service through scripts and services made available and installed within the Service.

• Session Cookies – files placed and read from the User’s Device by the Service during a single session of a given Device. After the session ends, the files are removed from the User’s Device.

• Persistent Cookies – files placed and read from the User’s Device by the Service until they are manually deleted. The files are not automatically removed after the Device session ends, unless the User’s Device settings are configured to delete Cookies after the session ends.

§4 Data Storage Security

• Mechanisms for storing and reading Cookies – mechanisms for storing, reading and exchanging data between Cookies stored on the User’s Device and the Service are implemented via built-in browser mechanisms and do not allow for downloading other data from the User’s Device or data from other websites visited by the User, including personal data or confidential information. Transferring viruses, trojans or other worms to the User’s Device is also practically impossible.

• Internal Cookies – Cookies used by the Administrator are safe for Users’ Devices and do not contain scripts, content or information that could endanger the security of personal data or the security of the Device used by the User.

• External Cookies – the Administrator makes every possible effort to verify and select Service partners in terms of Users’ security. The Administrator selects well-known, major partners with global public trust. However, the Administrator does not have full control over the content of Cookies originating from external partners. The Administrator shall not be liable for the security of Cookies, their content, or their use in compliance with the licence by scripts installed in the Service originating from External Services, to the extent permitted by law. The list of partners is provided later in this Privacy Policy.

• Cookie Control

  • The User may at any time independently change the settings for storing, deleting and accessing data stored in Cookies by any website.

  • Information on how to disable Cookies in the most popular desktop browsers:

    • Managing Cookies in Chrome
    • Managing Cookies in Opera
    • Managing Cookies in Firefox
    • Managing Cookies in Edge
    • Managing Cookies in Safari
    • Managing Cookies in Internet Explorer 11

  • The User may at any time delete all Cookies saved so far using the tools available on the User’s Device through which the User accesses the Service.

• User-side Risks – the Administrator applies all possible technical measures to ensure the security of data stored in Cookies. However, it should be noted that ensuring the security of such data depends on both parties, including the User’s actions. The Administrator shall not be liable for interception of such data, impersonation of the User’s session or deletion of such data as a result of the User’s conscious or unconscious actions, viruses, trojans or other spyware that may have infected the User’s Device.

• Storage of Personal Data – the Administrator ensures that it makes every effort to keep personal data voluntarily provided by Users secure, with access limited and carried out in accordance with its intended purpose and processing objectives. The Administrator also makes every effort to protect the data it holds against loss by applying appropriate physical and organisational safeguards.

• Password Storage – the Administrator declares that passwords are stored in en