wleci
Back to homepage

Legal documents

Last updated: June 26, 2026

Official document

Privacy Policy

Information on the processing of personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR).

§ 1. Data Controller

The controller of your personal data is Jakub Włosek (the "Controller") — a private individual not conducting registered business activity, operating the wleci.pl website. Contact: [email protected]. The Controller processes personal data only to the extent necessary and in compliance with the GDPR. Due to the nature and scale of data processing, no Data Protection Officer has been appointed.

§ 2. Scope and purposes of data processing

Data is processed for the following purposes and on the following legal bases: (1) User account management – Art. 6(1)(b) GDPR (performance of a contract); data: e-mail address, name, password hash. (2) Responding to contact messages – Art. 6(1)(f) GDPR (legitimate interest); data: e-mail address, name, message content. (3) Newsletter subscription – Art. 6(1)(a) GDPR (consent); data: e-mail address, language preferences. (4) Website analytics and security – Art. 6(1)(f) GDPR; data: anonymous session data, access logs. Providing data is voluntary; however, failure to provide data required for account management or contact makes those features unavailable.

§ 3. Rights of data subjects

Under the GDPR, you have the following rights: right of access (Art. 15), right to rectification (Art. 16), right to erasure ("right to be forgotten", Art. 17), right to restriction of processing (Art. 18), right to data portability (Art. 20), right to object (Art. 21), and right to withdraw consent at any time without affecting the lawfulness of processing before withdrawal. To exercise these rights, write to: [email protected]. You also have the right to lodge a complaint with the supervisory authority – the President of the Personal Data Protection Office (UODO), ul. Stawki 2, 00-193 Warsaw, Poland, www.uodo.gov.pl.

§ 4. Recipients, third-country transfers and retention periods

Data may be transferred to processors acting on behalf of the Controller: hosting provider (servers in the EU), e-mail service provider (SMTP). The Controller does not sell personal data or share it with third parties for marketing purposes. Data is not transferred outside the EEA. Retention periods: account data – until deletion; contact data – 12 months from last correspondence; newsletter – until consent is withdrawn; server logs – 90 days.