Privacy & Cookies Policy

1. Data controller

The controller of your personal data is Compago Michał Bartylak, based in Koszalin (ul. Mieszka I 22 lok. F, 75-132 Koszalin), Tax ID (NIP) 953-274-88-44, REGON 380144196.

For any matters concerning personal data, contact: contact@compago.me.

2. Data collected via the form

Through the contact form we collect the data you provide yourself:

• first and last name,
• email address,
• phone number (optional),
• message content and the selected enquiry category.

3. Purposes and legal bases

We process your data for the following purposes:

• answering your enquiry and conducting correspondence - Art. 6(1)(b) GDPR (steps prior to entering a contract) and (f) (the controller's legitimate interest);
• business contact and presenting an offer - Art. 6(1)(a) GDPR (consent given by submitting the form) or (f);
• ensuring the security of the website and protection against abuse (spam, bots) - Art. 6(1)(f) GDPR;
• establishing, pursuing or defending claims - Art. 6(1)(f) GDPR.

4. Retention period

We keep form data for as long as necessary to respond and conduct correspondence, and then for the limitation period of any potential claims, or until consent is withdrawn or an effective objection is raised.

5. Recipients and processors

To run the site and the form we use trusted providers who process data on our behalf:

• Cloudflare, Inc. - handling the contact form (Cloudflare Workers) and bot protection (Cloudflare Turnstile);
• Resend (Plus Five Five, Inc.) - delivering emails sent via the form;
• Vercel Inc. - website hosting.

6. Transfers outside the EEA

Some of the providers above are based outside the European Economic Area (including the USA). Transfers take place on the basis of Standard Contractual Clauses (SCC) approved by the European Commission, or other mechanisms ensuring an adequate level of data protection.

7. Cookies and similar technologies

The compago.me website uses only cookies and similar technologies strictly necessary for it to function correctly and securely. We do not use analytics, marketing or profiling cookies.

Technologies used:

• Cloudflare Turnstile - verifies that the form is filled in by a human, not a bot; may store necessary technical data in your browser;
• browser local storage (localStorage) - remembers, among other things, that you dismissed the cookie notice, so it is not shown again.

8. Logs and security

For security and diagnostic purposes, the mechanism handling the form may record your IP address and the date and time of submission. We use this data solely to detect and limit abuse.

9. Your rights

In connection with the processing of your data, you have the right to:

• access your data and obtain a copy,
• rectify (correct) your data,
• erase your data (the 'right to be forgotten'),
• restrict processing,
• object to processing based on legitimate interest,
• data portability,
• withdraw consent at any time - without affecting the lawfulness of processing carried out before withdrawal,
• lodge a complaint with the President of the Personal Data Protection Office (ul. Stawki 2, 00-193 Warsaw, Poland).

10. Voluntariness and no profiling

Providing data is voluntary but necessary to answer your enquiry. We do not make decisions based solely on automated processing and we do not profile your data.

11. Changes to this Policy

This Policy may be updated - e.g. due to changes in law or in the tools we use. The current version is always available on this page, with the last-updated date shown at the top.

12. Contact

For privacy and personal-data matters, write to: contact@compago.me.