Privacy policy

This privacy policy describes how Ignacowka Horse Riding and Creative Development Centre collects, uses and processes an individual’s personal data in the context of booking, purchasing and participating in horse rides, car tours, travel events, art workshops and other events (the “Service“).

 

The Privacy Policy includes a description of your data protection rights, including the right to object to certain personal data processing activities.

 

In this Privacy Policy, the use of the forms “we” or “us” refers to “Ignacówka” Horse Riding and Creative Development Centre, 26-130 Mostki, NIP, 663-18-47-387 REGON, 367555512, tel. 507 360 939, e+mail address: magsulek@op.pl.

 

We will process your personal data as a data controller.

 

This Privacy Policy should be considered in addition to other applicable policies, such as the Horse Rally Terms and Conditions and the Car Rally Terms and Conditions, the Artistic Workshop Terms and Conditions, relating to the Service.

 

For the purposes of this Policy, the following term “Data Protection Legislation” means Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (“DPA”), as well as any legislation and/or regulations implementing or created pursuant to the provisions of the DPA and the Online Privacy Legislation and any other applicable national legislation relating to the processing of personal data and privacy, in particular the Data Protection Act of 10 May 2018.

 

For the purposes of this policy, “controller”, “processor”, “third party”, “supervisory authority”, “personal data”, “processing”, “data subject” have the meanings set out in the applicable data protection legislation.

 

For what purpose do we process your personal data?

We collect and process the personal data received from you exclusively for the purpose of drawing up and subsequently concluding a contract for the provision of travel services, insurance, hotel accommodation bookings and accounting and tax operations. Your data will be stored with due care and in compliance with the security standards described in this Policy. Any use of data for marketing purposes requires a separate, explicit consent.

 

Who can receive your personal data?

In the context of providing the Service, in order to ensure that the services in the Rally Programme can be provided and to comply with legal requirements (such as local registration requirements in hotel facilities), your personal data will be shared with the service providers in the Rally Programme or the Rally Agreement, the Workshop Agreement and the insurance company to the extent necessary and appropriate.

 

Is your data used for direct marketing?

If you give your express consent, we may contact you from time to time with information about our Service.  Your consent to marketing communications may be withdrawn at any time by contacting us as indicated at the end of this Privacy Policy.

 

How long will your personal information be kept?

We will retain your personal information for the period necessary to fulfill the purposes set out in this Privacy Policy, unless a longer retention period is required by law.

 

How is your information shared with third parties?

We share or disclose information as described in the Privacy Policy document, including to third parties. The transfer of data is done in a secure manner, with a commitment from the entity receiving the data to keep it secure and confidential.

 

Your personal data will also be shared with government bodies or law enforcement officials if required by them and if required by law or if required for the legal protection of the data controller under applicable legislation.

 

What are your rights?

When you provide personal data, you have rights under the provisions of the Data Protection Legislation, which can be exercised free of charge, subject to statutory exceptions. In particular, you have the following rights:

  • Right to withdraw consent: if your personal data are processed on the basis of your consent, you have the right to withdraw your consent at any time and on your own initiative. You can do so by any form, in particular by contacting us personally at the “Ignacia” head office, by telephone on +507 360 939 or by sending a message to the e+mail address: magsulek@op.pl. The withdrawal of consent will not affect the lawfulness of the previous collection and processing of your data based on your consent, until you withdraw your consent.
  • Right to access, review and correct your data: you have the right to access, review and request correction of your personal data. You may ask us for a copy of your data in order to review or correct it; if you wish to review or correct any information, such as your name, email address, postal address and other details, you may do so by contacting us at the ‘Ignaccia’ premises or by sending an email to magsulek@op.pl.
  • Right to erasure: you have the right to request the erasure of all personal data processed as described herein, where the personal data is no longer necessary for the purposes for which the personal data was originally collected or processed, in accordance with Data Protection Legislation.
  • Right to object or restrict processing: under certain circumstances described in the Data Protection Legislation, you may request the restriction of processing or object to the processing of your personal data.
  • Right to object to processing for direct marketing: if your personal data is processed for direct marketing purposes, you may object to processing for that purpose, in any form.
  • Right to data portability: you have the right to receive your personal data processed in a format that is structured, commonly used and machine-readable and to transmit that data to another service provider.

 

These rights may be limited, for example, if complying with your request discloses personal data about another person, or if you ask us to delete information that is lawfully required to be retained or necessary for important legitimate interests. To exercise any of these rights, you may contact us as set out below.

 

If you have unresolved concerns, you have the right to lodge a complaint with the EU data protection authority where you live, work or where you think the infringement may have occurred. In Poland, such authority is the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw, tel. 22 531 03 00, fax. 22 531 03 01, e-mail: kancelaria@giodo.gov.pl.

 

What security measures have been introduced?

Appropriate technical and organisational measures are implemented to ensure an adequate level of personal data security, in particular: personal data are stored only in IT systems protected against unauthorised access by third parties (computer working on a full and secure version of the operating system, password protection, anti-virus and anti-malware software, automatic security updates, network protection by means of firewalls), and personal data recorded on paper are stored in a locked room to which access is limited to persons authorised by the Company.

 

If personal data is compromised as a result of a breach of security and if the breach is likely to cause a high risk to rights and freedoms, we will take the necessary notifications in accordance with the provisions of the Data Protection Legislation.

 

How are cookies used and do we use a customer profiling mechanism?

Cookies are understood to be IT data, in particular text files, stored on your terminal equipment such as computer, smartphone, tablet or similar device, transmitted by websites. Cookies make it possible, among other things, to recognise your device and display a website adapted to your individual preferences.

 

We use cookies on our website to personalise content and advertising, to offer social features, i.e. linking the website to Facebook, Instagram and Youtube and to analyse traffic on our website. The corresponding information on the use of cookies is automatically displayed when you visit our website.

 

We share information about how you use our website with social media, advertising and analytics partners in an automated manner. These partners (i.e. Google, Facebook, Instagram and Youtube) may combine this information with other data received from you or obtained when you use their services. The Customer profiling mechanism used is fully automated and does not involve us collecting data about the identity of visitors to our Website.

 

Our website uses the storage and access to “cookies” on the basis of the consent given by the web user, expressed during the configuration of the web browser or the selected website. You have the ability to change your browser settings at any time and determine the conditions under which our Company stores or accesses this information.

 

Usually, the software used to browse the Internet allows the placement of “cookies” on your terminal device by default. These settings can be changed in the settings of your web browser in such a way as to block the automatic handling of cookies or inform on their sending to your device each time. In view of the above, you may refuse to consent to our use of cookies and related automated customer profiling mechanisms by changing the settings of your Internet browser.

 

Changes to this privacy policy

We reserve the right to modify and update this privacy policy. We will inform you of changes if they indicate a fundamental change in the processing or are relevant to the nature of the processing or are relevant to you and affect your data protection rights.

 

How can you contact us?

Questions, comments, concerns, requests or complaints regarding this Privacy Policy are welcome and should be addressed

To the following address:

Horse Riding and Creative Development Centre “Ignacowka”
Mostki 80
26-130 Mostki
507 360 939, e-mail address: magsulek@op.pl.