1. General Information

This Privacy Policy defines the principles for the processing and protection of personal data of users who use the Anna Kilyk Atelier website.

The controller of personal data is:

Anna Kilyk Atelier
Anna Kilyk-Wiszowata

atelier@annakilyk.com

The controller takes special care to protect the privacy of users and the security of the data provided.

2. Scope of Collected Data

Depending on the way the website is used, the following data may be collected:

  • name and surname

  • email address

  • the content of messages sent through the contact form

  • technical data related to the use of the website (e.g. IP address, browser type)

Data is collected only to the extent necessary to achieve specific purposes.

3. Purpose of Data Processing

Personal data may be processed for the purpose of:

  • responding to inquiries sent through the contact form

  • processing orders and communication related to the purchase of artworks

  • sending newsletters (if the user has given consent)

  • analyzing website traffic for statistical purposes

 

Legal Basis for Data Processing

Personal data is processed in accordance with Article 6(1) of Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR), in particular on the basis of:

    • the user’s consent (e.g., in the case of subscribing to the newsletter),

    • the necessity to take steps at the user’s request prior to entering into a contract or for the purpose of fulfilling an order,

    • the legitimate interests of the controller, consisting of operating the website and communicating with users.

4. Newsletter

Users may subscribe to the newsletter by providing their email address.

Data is processed solely for the purpose of sending information related to the activities of Anna Kilyk Atelier, including new artworks, articles, and updates.

The newsletter is managed using the Mailchimp platform, which may store user data on servers located outside the European Economic Area in accordance with applicable data protection regulations.

Users may unsubscribe from the newsletter at any time by clicking the link included in the email.

 

User data may be transferred outside the European Economic Area in connection with the use of the Mailchimp platform. The transfer of data takes place in accordance with applicable data protection regulations and with appropriate safeguards in place.

Users have the right to withdraw their consent to the processing of data for marketing purposes at any time, which does not affect the lawfulness of processing carried out before the withdrawal of consent.

5. Cookies

The website may use cookies in order to:

  • ensure the proper functioning of the website

  • analyze website traffic

  • improve the user experience

Cookies are small files stored on the user’s device.

Users can change their cookie settings at any time in their web browser.

6. Data Sharing

Personal data is not sold or shared with third parties, except where necessary for the functioning of the website, such as:

  • hosting service providers

  • analytics tools

  • the newsletter platform

These entities process data only to the extent necessary to provide their services.

 

Data Retention Period

Personal data is stored for the period necessary to achieve the purpose for which it was collected, in particular:

  • data related to inquiries sent via the contact form – for the time necessary to respond and conduct further correspondence,

  • data processed for the purpose of sending the newsletter – until the user withdraws their consent.

7. User Rights

Users have the right to:

  • access their data

  • correct their data

  • request deletion of their data

  • restrict the processing of their data

  • object to the processing of their data

  • lodge a complaint with the supervisory authority

In matters concerning personal data, users may contact the controller via the email address provided on the website.

 

The supervisory authority responsible for personal data protection matters in Poland is:

President of the Personal Data Protection Office (UODO)
Stawki 2 Street
00-193 Warsaw
Poland

8. Data Security

The controller applies appropriate technical and organizational measures to protect data against unauthorized access, loss, or destruction.

9. Changes to the Privacy Policy

This Privacy Policy may be updated periodically due to changes in legal regulations or the functioning of the website.

The current version of the document is always available on this page.