Privacy Policy (Information about processing of personal data)

This document specifies details regarding the rules of processing of the personal details of all visitors of AppDistrict.com site (including our Clients), as required by the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, GDPR) (Official Journal of the EU L 119/1).

I. Personal data controller

The AppDistrict Sp. z o.o. based in Krakow acts as the personal data controller for the data mentioned in this document.

II. Purpose and lawful basis for data processing

We are processing personal data:

• to inform you about our products and services based on your voluntary consent (Art. 6, 1a of the GDPR)
• to take necessary steps at your request prior to entering into a Hosting Service Agreement (Art. 6, 1b of the GDPR)
• to perform the Hosting Service Agreement (Art. 6, 1b of the GDPR)
• to provide the data to the state authorities for the needs of legal proceedings carried on by them as required by the Polish ACT of 18 July, 2002 on Providing Services by Electronic Means (Dz. U. [Journal of Laws] 2017.1219, as amended) (Art. 6, 1c of the GDPR)
• for analytical purposes - including: selection of services based on your preferences, improvement of our services based on your feedback, technical logs to provide security and proper operations of our ICT systems which are our legitimate interests (Art. 6, 1f of the GDPR)
• for archival purposes (as proof) to protect the information required to demonstrate the legal facts which is our legitimate interest (Art. 6, 1f of the GDPR)
• to potentially exercise our legal rights or to defend against legal claims which is our legitimate interest (Art. 6, 1f of the GDPR)
• to measure our customers satisfaction and quality of our support, which is our legitimate interest (Art. 6, 1f of the GDPR)

III. Cookie Files

• We may store Cookies on your device and retrieve it to offer best user experience.
• Cookies are small chunks of data stored as files by the browser and retrieved each time the Site is visited. Cookies usually contains site name / domain, expiration date, randomly generated UUID.
• We use Cookies to:
  • store your preferences and optimize Site display based on the individual preferences; Cookies allow to detect your device and display Site personalized for you,
  • collect statistical information to help understand behavior of Site visitors and serve personalized content,
  • store sessions of logged users to prevent the need to re-login on each sub-page
• Most browsers store Cookies by default. At any moment you may change browser's behavior, choosing whether to accept, block, or prompt for cookies.
• By not altering browser settings the you gives us consent to store Cookies on the device
• Blocking cookies may seriously harm Site usability or even block access to some of its sections (especially password protected parts of the Site)
• No other data is collected automatically.

IV. Data recipients

Your data may be transferred to the following categories of recipients:

• our contractors - companies that help us in providing services to you:
  • bookkeepers and accountants IT service providers marketing agencies
• other independent entities:
  • domain registrars and registries
  • other trading partners whose services are required to provide you with a complete offer

V. Transfer to third countries and international organizations

We reserve the right to transfer your personal data outside of the European Economic Area (EEA) to the extent permitted by the GDPR, especially when it is required to provide services such as:

• Hosting services (Shared Hosting, VPS) provided from servers outside of the EEA (such services would be always clearly marked with the country)
• Domain registration in registry located outside of the EEA (e.g.: .com)
• Providing SSL certificates issued by the entity based outside of the EEA

VI. Data retention period

• Data required to take necessary steps at your request prior to entering into a Hosting Service Agreement are stored during the whole negotiation period as well as to the end of the calendar year following the year in which you contacted us for the last time regarding the contract.
• Data needed to perform the Hosting Service Agreement are stored until the expiration of all potential legal claims related to the given contract.
• We store your basic contact details required to inform you about our new products and services until you object to the processing of your personal data, withdraw your consent if the processing has been done based on your consent (so-called “marketing consent”), or we find out data to be no longer valid.

VII. Your rights

You have the right to:

1. access your data and receive its copy
2. rectify your data
3. erase your data (if it is justified)
4. restrict the data processing only to storage or performing agreed operations
5. object to the processing of data
6. receive personal data concerning you which you have provided to us in a structured, commonly used, machine-readable and interoperable format. We may also transmit it to another controller providing sufficient technical means for secure transfer are ensured by this controller.
7. lodge a complaint with a supervisory authority (The President of the Personal Data Protection Office)
8. withdraw your consent at any moment (if the processing has been done based on your consent). Withdrawing your consent does not change the lawfulness of any prior data processing.

To execute your rights under you may contact us via the ticket submitted to our Support Team via the Contact Form at https://appdistrict.com/en/contact or from your Clients Panel. Please note that due to the requirement of the GDPR we are obliged verify your identity before responding to each request.

VIII. Information regarding mandatory/voluntary data collection

To enter into a Hosting Service Agreement with us, you are required to provide us with data that we need to properly execute this contract. We may ask you additional data apart from the mentioned above (they are going to be marked as “optional” in our forms), which might be processed to improve our offer or render better services, based on your voluntary consent. Please note that refusal to provide us with date required to enter into a Hosting Service Agreement would prevent us from concluding this contract.