Privacy Policy

1. Introduction

Dear User!

We care about your privacy and want you to feel comfortable while using our services. Therefore, below we present you with the most important information about the principles of our processing of your personal data and cookies, which are used by our Website. This information has been prepared taking into account the contents of the GDPR, i.e. the General Data Protection Regulation.

2. Personal data controller

Taxology Spółka z ograniczoną odpowiedzialnością
ul. Sienna 64
00-825 Warsaw
entered into the National Court Register – Register of Entrepreneurs by the DISTRICT COURT FOR THE CAPITAL CITY OF WARSAW, 13th COMMERCIAL DIVISION OF THE NATIONAL COURT REGISTER
KRS: 0000773156
REGON: 382632830
NIP: 5272883861
share capital: PLN 5,000

If you wish to contact us regarding our processing of your personal data, please email us at: hello@taxology.co

3. Your rights

You can:

• access to your personal data, including obtaining a copy of your data (Article 15 of the GDPR or, if applicable, Article 13(1)(f) of the GDPR);
• data rectification (Article 16 of the GDPR);
• data erasure (Article 17 of the GDPR);
• restriction of processing (Article 18 of the GDPR);
• transfer of data to another controller (Article 20 of the GDPR).

You also have the right:

• to object to the processing of your data at any time:
– for reasons related to your particular situation – against the processing of personal data concerning you based on Article 6(1)(f) of the GDPR (i.e. on legitimate interests pursued by us), including profiling (Article 21(1) of the GDPR);
– if personal data is processed for the purposes of direct marketing, including profiling, to the extent that the processing is related to such direct marketing (Article 21(2) of the GDPR).

Please contact us should you want to exercise your rights. You can object to our use of cookies (more information below) in particular by using the appropriate browser settings.
If you believe that your data are being processed unlawfully, you can file a complaint with the President of the Office for Personal Data Protection.

4. Personal data and privacy

Below you will find detailed information about the processing of your data depending on your activities.

  1. Using our services

For what purpose?

implementation of a contract for the provision of services offered on the Website

On what basis?

a contract for the provision of services (Article 6(1)(b) of the GDPR)

a legal obligation requiring us to process your personal data (Article 6(1)(c) of the GDPR)

How long?

for the duration of the contract

until the expiration of the legal obligation related to accounting

in addition, your data will be processed until the expiration of the period during which it is possible to assert claims either by you or by us

(see the last table of this section for more information)

What will happen if you fail to provide data?

you will not be able to use our services

 

  1. Contacting us (e.g., to ask a question)

For what purpose?

handling your inquiries or requests

On what basis?

a contract or actions taken at your request aiming to conclude a contract (Article 6(1)(b) of the GDPR) – in case your inquiry or request concerns a contract to which we are or may be a party

our legitimate interest consisting in processing your data for the purpose of communicating with you (Article 6(1)(f) of the GDPR) – if your inquiry or request is not related to a contract

How long?

for the duration of a contract binding us or, if no contract is concluded, 18 months 18 months or until we honor your objection to processing*

in addition, your data will be processed until the expiration of the period during which it is possible to assert claims either by you or by us

(see the last table of this section for more information)

What will happen if you fail to provide data?

we will be unable to respond to your inquiry or request

* whichever is applicable on a case-to-case basis and whichever falls on earlier.

  1. Browser settings or other similar action to permit marketing activity

For what purpose?

direct marketing by displaying personalized advertisements

(you can read more about this in the “Profiling” and “Cookies” sections of the Privacy Policy)

On what basis?

our legitimate interest in processing the data for the purpose stated above (Article 6(1)(f) of the GDPR)

How long?

until the expiration or deletion of cookies used for marketing purposes by you*

What will happen if you fail to provide data?

you will not receive suggestions for products or services in which you may be interested

* whichever is applicable on a case-to-case basis and whichever falls on earlier

  1. Browser settings or other similar action to allow analytics activity

For what purpose?

analyzing how you use and navigate the Website, in order to adapt the Website to the needs and behavior of Users

(you can read more about this in the “Analytics Activities” and “Cookies” sections of the Privacy Policy)

On what basis?

our legitimate interest in processing the data for the purpose stated above (Article 6(1)(f) of the GDPR)

How long?

until the expiration or deletion of cookies used for analytical purposes by you*

What will happen if you fail to provide data?

we will not take into account your preferences regarding the use of the Website in the development of the Website

* whichever is applicable on a case-to-case basis and whichever falls on earlier.

  1. Your consent to receive marketing content from us (e.g. information about special offers) or subscribing to the newsletter

For what purpose?

sending marketing information, especially special offers or newsletters

On what basis?

your consent to our marketing activity or to receive our newsletter (Article 6(1)(a) of the GDPR)

How long?

until you withdraw your consent; remember, you can withdraw your consent at any time – data processing remains lawful until you withdraw your consent.

in addition, your data will be processed until the expiration of the period during which it is possible to assert claims either by you or by us

(see the last table of this section for more information)

What will happen if you fail to provide data?

you will not receive our marketing materials, including information about our special offers or newsletter

 

  1. Signing up for a webinar

For what purpose?

your participation in a webinar we are organizing

On what basis?

a webinar service contract (Article 6(1)(b) of the GDPR)

How long?

until the end of the webinar

in addition, your data will be processed until the expiration of the period during which it is possible to assert claims either by you or by us

(see the last table of this section for more information)

What will happen if you fail to provide data?

you will be unable to participate in the webinar

 

  1. Browser settings or other similar action allowing to ensure the security of forms available on the pages of the Website

For what purpose?

ensuring the security of forms available on the Website

On what basis?

our legitimate interest in processing data to provide security of the Website and securing the forms available on the pages (Article 6(1)(f) of the GDPR)

How long?

until the expiration or deletion by you of the cookie used to secure the forms available on the pages*

(you can read more about the cookies files used on the Website in the “Cookies” section of the Privacy Policy)

What will happen if you fail to provide data?

we will be unable to ensure the security of the forms available on the pages of the Website

* whichever is applicable on a case-to-case basis and whichever falls on earlier.

  1. Taking an action or omission that may give rise to a claim related to the Website or our services

For what purpose?

establishment, investigation or defense of possible claims related to the concluded contract or provided services

On what basis?

our legitimate interest in processing personal data for the purpose stated above (Article 6(1)(f) of the GDPR)

How long?

until the expiration of the statute of limitations for claims or until we honor your objection to the processing*.

What will happen if you fail to provide data?

inability to establish, assert or defend claims

* whichever is applicable on a case-to-case basis and whichever falls on earlier.

5. Profiling and analytical activity

We profile users of our Website; with respect to you, this will take place if you allow such activities. This profiling involves automatically assessing what products or services you may be interested in, using information about the content you view. As a result, advertisements for products or services displayed on the online services you use will be more tailored to you and your needs.

The profiling we perform does not result in decisions that produce legal effects against you or affect you in a similarly significant manner.

We conduct analytics on the Website to make it more intuitive and accessible; with respect to you, this will be done if you allow us to do so. As part of the analytics, we will take into account how you navigate the Website, e.g., how much time you spend on a particular subpage, or which places on the Website you click on. This allows us to customize the layout and appearance of the Website and the content posted on it to meet your needs.

6. Data security

When processing your personal data, we use organizational and technical measures in accordance with applicable laws, including the use of SSL certificate connection encryption.

7. Cookies

Our Website, like most websites, uses so-called cookies. These files:

  • are stored in the memory of your device (computer, phone, etc.);
  • do not cause changes in the settings of your device.

 

On this Website, cookies are used for the following purposes:

  • Optimizing use of pages;
  • Identifying Website Recipients as currently logged in;
  • Adapting graphics, selection options and any other content of pages to the individual preferences of the Website Recipient;
  • Remembering completed automatically and manually, posted data from Order Forms or login data provided by the visitor;
  • Collecting and analyzing anonymous statistics showing how a page is used in the administration panel and Google Analytics;
  • Creating reports on site visitors in the Lead Forensics panel;
  • Creating remarketing lists based on information about preferences, behavior, use of interests on pages, and collection of demographic data, and then making these lists available on Google Ads, LinkedIn Ads and Facebook Ads (Google Ads cookies are used to display relevant ads. Ads cookies do not contain personal information. Should you wish to learn more about Google Ads cookies and how to control them, go to https://policies.google.com/privacy?gl=uk);
  • Creating data segments based on demographic information, interests, preferences in the choice of products/services viewed;
  • Using demographic and interest data in Analytics reports.

 

You can refer to your browser’s help file to learn how to manage cookies, including how to disable them in your browser. You can read about this information by pressing the F1 key on your browser. In addition, you will find relevant tips on the following subpages, depending on the browser of your choice:

Below you will find information about the function of the cookies we process and their validity period:

Name Type of Cookies Cookie validity period
cp_lastTriggerId Necessary Permanent
cp_metrics Necessary Session
cp_resolvedTriggers Necessary Permanent
cp_score Necessary Permanent
cp_session_id Necessary Permanent
cp_wasWidgetShown Necessary Permanent
cp_widget_geo_response Necessary Permanent
cp_widget_session Necessary 30 days
hex (40) Necessary 30 days
test_cookie Necessary 1 day
_grecaptcha Necessary Permanent
rc::a Necessary Permanent
rc::b Necessary Session
rc::c Necessary Session
rc::f Necessary Permanent
__ca__chat Necessary 1 year
callpage-widget-version Necessary Session
CookieConsent Necessary 1 year
cp.lead.phoneNumber Necessary Session
wp-wpml_current_language Necessary Session
_GRECAPTCHA Necessary 180 days
collect Statistical Session
_hjRecordingEnabled Statistical Session
_hjRecordingLastActivity Statistical Session
hjActiveViewportIds Statistical Permanent
hjViewportId Statistical Session
_ga Statistical 2 years
_ga_# Statistical 2 years
_gat Statistical 1 day
_gid Statistical 1 day
_hjAbsoluteSessionInProgress Statistical 1 day
_hjFirstSeen Statistical 1 day
_hjIncludedInSessionSample_# Statistical 1 day
_hjSession_# Statistical 1 day
_hjSessionUser_# Statistical 1 year
ln_or Statistical 1 day
IDE Marketing 1 year
AnalyticsSyncHistory Marketing 30 days
bcookie Marketing 1 year
li_gc Marketing 180 days
li_sugr Marketing 3 months
lidc Marketing 1 day
UserMatchHistory Marketing 30 days
_fbp Marketing 3 months
_gcl_au Marketing 3 months
_ueuuid Marketing 400 days
ads/ga-audiences Marketing Session
pagead/1p-user-list/#/ Marketing Session
ads/ga-audiences Marketing Session
pagead/1p-user-list/#/ Marketing Session
bscookie Marketing 1 year

 

By using the appropriate options of your browser, you can at any time:

  • remove cookies;
  • block the future use of cookies.

In such cases, we will no longer process the cookies.

For more information about cookies, see Wikipedia.

8. External services / data recipients

We use third-party entities to support us in running our business. We outsource your data to them for the purpose of their processing. These entities process data only upon our documented instruction.

Below you will find a list of recipients of your data:

ACTION DATA RECIPIENTS TRANSFER OF DATA OUTSIDE THE EUROPEAN UNION
any activity in connection with the Website web host no
persons cooperating with us on the basis of civil law contracts, supporting our ongoing business no
remaining on a Website page with settings that allow for marketing activity marketing service provider yes – United States of America, United Kingdom **
remaining on a Website page with settings that allow for analytical activity entity enabling analytical activities on the page yes – United States of America, United Kingdom **
use of our services accounting firm no
provider of software to facilitate business operations (e.g., accounting software) no
payment provider no
provider of standard office software (including email boxes) yes – United States of America **
external storage space service provider

(cloud)

yes – United States of America **
entity responsible for selling services no
tax return filing service providers no
provider of services in terms of tax consulting, as well as training and participation in webinars no
CRM software provider no
contracting platform provider no
tax authorities of countries where customers are required to file tax returns Yes – United Kingdom **

(depending on the scope of services)

subscribing to the newsletter or agreeing to receiving marketing messages entity that provides newsletter or marketing emails no
external storage space service provider

(cloud)

yes – United States of America **
CRM software provider there is no room
data integration software provider yes – United States of America **
contacting us (e.g., inquiry) Provider of standard office software (including email boxes) yes – United States of America **
A provider that provides online telephone communication software no
external storage space service provider

(cloud)

yes – United States of America **
CRM software provider no
software to manage customer requests yes – Australia **
data integration software provider yes – United States of America **
webinar registration provider of services in terms of tax consulting, as well as training and participation in webinars no
entities providing software for organizing webinars yes – United States of America **

Additionally: the relevant public authorities to the extent that we are required to share data with them.

9. Transfer of personal data to countries outside the European Union

** Accordingly, your personal data may also be processed by entities outside the European Union. An appropriate level of protection of your data, including through the use of appropriate safeguards, is provided:

  • By application of standard data protection clauses adopted by the European Commission, as referred to in Article 46(2)(c) of the GDPR – for Australia and the United States;
  • By Commission Implementing Decision (EU) 2021/1772 of 28 June 2021 pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council on the adequate protection of personal data in the United Kingdom.

Do you need any support in VAT compliance?

If you need any help in the field of VAT registration and returns, check out our offer of a comprehensive VAT compliance service.