Privacy Policy
1. General Information
This policy applies to the website operating at the URL: Sorau.eu
The operator and data controller of the website is: “Food Service” S.c., ul. Stanisława Moniuszki 8C/7, 65-001 Zielona Góra
Contact email address of the operator: sorau.arm@gmail.com
The operator is the data controller of your personal data in relation to the data voluntarily provided in the service.
The website collects personal data for the following purposes:
Responding to inquiries via the contact form
The service gathers information about users and their behavior through the following methods:
Data voluntarily entered into forms, which is then processed by the operator’s system.
Cookies stored on end-user devices (“cookies”).
2. Selected Data Protection Methods Used by the Operator
The places where users log in and enter personal data are secured at the transmission layer (SSL certificate). As a result, personal data and login information entered on the website are encrypted on the user’s device and can only be read on the target server.
User passwords are stored in hashed form. The hashing function is one-way – it cannot be reversed, which complies with the current standard for storing user passwords.
The operator regularly makes backup copies to protect data.
An essential element of data protection is the regular updating of all software used by the operator to process personal data, which includes regular updates of programming components.
3. Hosting
The website is hosted (technically maintained) on the servers of the operator: LH.pl
To ensure technical reliability, the hosting company maintains server logs. The logs may include:
Resources identified by URL (requested pages and files),
Time of request,
Time of response,
Client station name (identified through the HTTP protocol),
Information about errors that occurred during the HTTP transaction,
The URL of the previously visited page (referer link), in cases where the user accessed the website via a hyperlink,
Information about the user’s browser,
IP address,
Diagnostic information related to the self-ordering process on the website,
Information regarding email correspondence sent to or received by the operator.
4. Your Rights and Additional Information on Data Usage
In certain situations, the administrator has the right to transfer your personal data to other recipients if it is necessary for the execution of a contract with you or to fulfill the administrator’s obligations. This includes:
The hosting company based on the principle of data processing outsourcing.
Your personal data is processed by the administrator no longer than necessary for the activities associated with the specific data, as outlined by separate regulations (e.g., accounting laws). For marketing data, your data will not be processed for more than 3 years.
You have the right to request from the administrator:
Access to your personal data,
Rectification,
Deletion,
Restriction of processing,
Data portability.
You also have the right to object to the processing of your personal data as described in point 3.2, for legitimate interests pursued by the administrator, including profiling, though the objection may not be upheld if there are valid, legally justified grounds for processing that override your interests, rights, or freedoms, especially in matters of establishing, pursuing, or defending claims.
You have the right to lodge a complaint with the President of the Personal Data Protection Office (ul. Stawki 2, 00-193 Warsaw).
Providing personal data is voluntary, but necessary for the operation of the service.
Actions such as automated decision-making, including profiling for service delivery within the contract or direct marketing by the administrator, may apply to you.
Your personal data is not transferred outside the European Union.
2. Information in Forms
The website collects information provided voluntarily by the user, including personal data if submitted.
The website may record details about the connection (timestamp, IP address).
In some cases, the website may save data linking form content with the user’s email address. In such cases, the email address is included in the URL of the page containing the form.
Data provided in forms are processed for the purpose resulting from the function of the specific form, e.g., service request handling or commercial contact. Each form clearly indicates its intended purpose.
3. Administrator Logs
Information about user behavior on the website may be logged. These data are used for site administration.
4. Important Marketing Techniques
The operator uses statistical traffic analysis on the website via Google Analytics (Google Inc., USA). The operator does not transfer personal data to this service provider, only anonymized data. The service uses cookies on the user’s device. Users can review and manage preferences collected by Google’s advertising network via: https://www.google.com/ads/preferences/
The operator employs remarketing techniques to tailor advertising messages based on the user’s activity on the site. This may give the impression that personal data is being used for tracking, but no personal data is transferred by the operator to advertising service providers. This is made possible by enabling cookie support.
The operator uses Facebook Pixel, a technology that allows Facebook (Facebook Inc., USA) to recognize that a registered user is accessing the website. Facebook is the administrator of its own data. The operator does not provide any additional personal data to Facebook. The service is based on the use of cookies on the user’s device.
The operator uses tools to track user behavior via heat maps and session recording. These data are anonymized before being sent to the service provider, who does not know which individual they pertain to. Passwords and other personal data are not included in these recordings.
The operator uses automation solutions for service activities related to users, such as sending emails after visiting specific subpages, provided the user has agreed to receive commercial communications from the operator.
The operator may engage in profiling, as defined by data protection regulations.
5. Cookie Information
The website uses cookies.
Cookies are IT data, particularly text files, stored on the user’s device, designed for the use of the website. Cookies typically include the name of the website they originate from, the time they are stored on the device, and a unique identifier.
The entity placing cookies on the user’s device and accessing them is the website operator.
Cookies are used for the following purposes:
Maintaining the user’s session after logging in, so the user does not need to re-enter login and password on each page,
Achieving the goals mentioned in the “Important Marketing Techniques” section.
The website uses two primary types of cookies: session cookies and persistent cookies. Session cookies are temporary and are stored on the user’s device until they log out, leave the website, or close the browser. Persistent cookies are stored on the user’s device for a set period specified in the cookie parameters or until they are deleted by the user.
Most web browsers accept cookies by default. Users can change their browser settings to block cookies or remove them. Detailed information is available in the help or documentation of the browser.
Restricting cookies may impact some functionalities of the website.
Cookies placed on the user’s device can also be used by partners of the website operator, including Google (Google Inc., USA), Facebook (Facebook Inc., USA), and Twitter (Twitter Inc., USA).
Managing Cookies – How to Express and Withdraw Consent in Practice
If the user does not wish to receive cookies, they can adjust their browser settings. Disabling essential cookies related to authentication, security, or user preferences may hinder the use of certain website functions.
To manage cookie settings, choose your browser from the list below and follow the instructions: