Privacy Policy

    Table of Contents

    I. General Information

    The data controller is Egzekucja spółka cywilna Ryszard Rudzki, Andrzej Kraś, a civil partnership registered in the Central Register and Information on Economic Activity (CEIDG), with its registered office in Zielona Góra (65-602), ul. Miodowa 2b, tel. +48 68 325 50 17, hereinafter referred to as the Controller.

    The Controller attaches particular importance to the protection of the privacy of persons using the website and to the security of processed personal data.

    This Privacy and Cookies Policy (hereinafter: Policy) sets out the rules for the processing of personal data of website users and information on the use of cookies and similar technologies.

    The Controller is not obliged to appoint a Data Protection Officer, in accordance with Article 37 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR).

    For all matters related to the processing of personal data and the exercise of rights under the GDPR, please contact the Controller:

    II. Purposes and Legal Bases for Processing Personal Data

    Users may use the website without disclosing their identity. However, in certain cases, personal data may be processed for the following purposes:

    1. Handling inquiries and contact

    Personal data is processed to respond to inquiries sent via the contact form, email, or phone.

    Scope of data from contact form: name, email address, phone number (optional), subject and message content.

    Retention period: data from the contact form is stored for 3 years from the date of receipt or until the inquiry is resolved.

    Legal basis: Art. 6(1)(b) GDPR – taking steps prior to entering into a contract or performance of a contract; Art. 6(1)(f) GDPR – legitimate interest of the Controller in conducting correspondence.

    2. Establishing cooperation and contract performance

    Personal data is processed for the purpose of concluding and performing contracts, in particular debt collection contracts.

    Legal basis: Art. 6(1)(b) GDPR.

    3. Logging into Client Panels

    When using the Client Panel or Client Zone, login data is processed to enable access to the account and service provision.

    Scope of data: email address or username, IP address for security purposes, login date and time.

    Legal basis: Art. 6(1)(b) GDPR (contract performance).

    Retention period: login data is stored for the duration of the contract and 3 years after its termination.

    4. Fulfillment of legal obligations

    Personal data is processed to fulfill obligations arising from legal provisions, in particular tax and accounting regulations.

    Legal basis: Art. 6(1)(c) GDPR.

    5. Pursuing claims and defense against claims

    Personal data may be processed to establish, pursue, or defend claims.

    Legal basis: Art. 6(1)(f) GDPR.

    6. Ensuring website security

    Personal data is processed to ensure website security, prevent abuse, and protect against spam.

    Legal basis: Art. 6(1)(f) GDPR.

    7. Website analytics

    Personal data, including IP address or statistical data, may be processed to analyze website traffic and improve its functionality – only after obtaining User consent.

    Legal basis: Art. 6(1)(a) GDPR.

    The Controller does not conduct profiling within the meaning of Article 22 GDPR and does not make decisions that produce legal effects concerning the User or similarly significantly affect them.

    III. Personal Data Retention Period

    Personal data is processed for the period necessary to achieve the purposes for which it was collected, in particular:

    • for the duration of correspondence and after its completion – until the limitation period for any claims expires,
    • in case of contract conclusion – for the duration of the contract and after its termination for the period required by law,
    • in case of consent-based processing – until consent is withdrawn.

    These periods may be extended if personal data processing is necessary to establish, pursue, or defend claims.

    IV. Voluntary Provision of Data

    Providing personal data is voluntary, but failure to provide it may prevent:

    • responding to an inquiry,
    • concluding or performing a contract.

    In certain cases, providing personal data may be mandatory under legal provisions.

    V. Rights of Data Subjects

    Data subjects have the right to:

    1
    access to personal data
    2
    rectification of data
    3
    erasure of data
    4
    restriction of processing
    5
    data portability
    6
    object to processing
    7
    withdraw consent at any time (if processing is based on consent)
    8
    lodge a complaint with the President of the Personal Data Protection Office

    VI. Recipients of Personal Data

    Personal data may be transferred to:

    • IT and hosting service providers,
    • email service providers,
    • accounting, legal and advisory service providers,
    • Google LLC (Google Fonts, Google Maps and Google Analytics services),
    • public authorities – pursuant to applicable law.

    Customer service systems

    To provide debt collection services, we use dedicated IT systems:

    Client Panel (panelegzekucja.com) – system for submitting debt collection cases
    Client Zone (onlineegzekucja.aspnet.pl) – system for monitoring case status

    Data processed in the above systems is stored on servers located within the European Union and is subject to appropriate security measures.

    Personal data is not transferred to third parties for marketing purposes.

    VII. Data Transfer Outside the European Union

    When using tools provided by entities outside the European Economic Area, personal data may be transferred to third countries, in particular to the United States.

    Data transfer is based on standard contractual clauses (SCC) or other mechanisms compliant with Articles 45 and 46 of the GDPR. The Controller verifies that providers ensure an adequate level of personal data protection.

    VIII. Cookie Policy and External Services

    The website uses cookies for the following purposes:

    • ensuring proper website functionality,
    • improving security,
    • analyzing website traffic – only after obtaining User consent,
    • displaying ads and measuring their effectiveness – only after obtaining User consent.

    Necessary cookies (first-party)

    Always active, do not require consent under Art. 5(3) of the ePrivacy Directive

    cookie-consentstores user cookie preferences (12 months)
    preferredLanguageselected site language

    Analytics cookies (third-party)

    Activated only after obtaining User consent

    Google Analytics
    _gadistinguishes website users1 year
    _ga_*maintains session state1 year

    Marketing/advertising cookies (third-party)

    Activated only after obtaining User consent – required for Google Ads

    _gcl_austores experiment and conversion identifier3 months

    Other cookies

    Technical cookies for proper website functionality

    _gcl_lsStores conversion linker datapermanent

    Browser local storage

    Necessary for proper website functionality

    cookie-consent(localStorage)cookie preferences12 months
    preferredLanguage(localStorage)selected site languagepermanent
    scrollY, scrollPath(sessionStorage)page scroll positionuntil tab close

    Consent management is handled through the cookie mechanism displayed on your first visit to the site. You can change your cookie settings or withdraw consent at any time.

    Google Fonts

    The website uses Google Fonts to ensure consistent typography. Fonts are loaded from Google servers (fonts.googleapis.com, fonts.gstatic.com).

    When loading fonts, the user's browser connects to Google servers, which involves transferring the IP address to Google LLC (USA). This data is processed on the basis of the Controller's legitimate interest (Art. 6(1)(f) GDPR) in ensuring proper website display.

    Google Privacy Policy →

    Google Maps

    On the contact page, we use Google Maps to display the office location. The map is loaded only after the user clicks the Show map button. When using the map, the user's IP address may be transferred to Google LLC.

    Google Privacy Policy →

    Google Analytics

    After obtaining User consent, the website uses Google Analytics 4 for traffic analysis. IP addresses are anonymized. Analytics data helps us improve the website. Google Analytics cookies expire after 14 months.

    Google Ads

    After obtaining User consent, the website may use Google Ads to display personalized ads and measure campaign effectiveness. The site uses Google Consent Mode v2, which adjusts Google tag behavior based on granted consents.

    Scope of collected data: cookie identifiers, ad interaction information, device and browser data.

    Processing purpose: ad personalization, conversion measurement, remarketing, audience list creation.

    Retention period: depending on cookie type – from 30 days to 13 months in the EU.

    Legal basis: Art. 6(1)(a) GDPR (user consent).

    Google Ads Policy →

    IX. Final Provisions

    The Controller reserves the right to amend this Policy.

    The current version of the document is always available on the Controller's website.

    Last updated: January 2026