Privacy policy

1.       What is privacy policy?

This document defines the rules of processing personal data of all persons visiting and using the website (hereinafter referred to as Marxus) and is a response to the information obligation resulting from the Regulation (EU) No 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of personal data of persons with regard to the processing of such data and on the free movement of such data and repealing Directive 95/46/EC (Official Journal of the European Union L119 of 04.05.2016, p. 1) (hereinafter referred to as "GDPR").


2.       General information

The owner of the website is PUH Marxus Jermak i Właściciele Sp. j. with its registered offices at Do Huty 37c, 33-100 Tarnów, registered in the National Court Register under the number 0000701682, with the tax identification number (NIP):993 066 49 40.
PUH Marxus Jermak i Właściciele Sp. j is the Administrator and Inspector of personal data in accordance with GDPR. Personal data obtained by the Administrator will be processed for marketing purposes (promotion of services and products offered by Marxus) and in accordance with the granted consents. The granted consent constitutes the legal basis for processing personal data.


3.       What is considered personal data in accordance with the GDPR?

In accordance with GDPR, the term personal data refers to any information which makes it possible to identify a given individual. This can be a name and surname, e-mail address, geolocation data.


4.       What type of data is processed by

The website collects and processes the following data (if provided by the data subject): name and surname, e-mail address, telephone number.


5.       Data protection policy

Marxus processes clients' personal data in order to properly perform ordered services and inquiries. This data is not shared with any third parties. Marxus requires only the data which is necessary for the proper provision of services or marketing, based on the consent provided by the data subject. Lack of required data will prevent the service from being completed. Browsing the website without filling out the contact form does not require the provision of any personal data.

The basis for processing personal data by Marxus is the voluntary consent of the Clients, as well as the statutory authorization to process personal data in order to, among other things, enable the Clients to use certain functions of the website. 

By providing their personal data when submitting a form e.g. for the purpose of sending an enquiry, the Client accepts the terms of this Privacy Policy. Consequently, the Client agrees to the processing of his personal data in connection with the conclusion and performance of the contract by Marxus. Providing any type of personal data is voluntary.

Providing data in necessary when using the contact form. The data subject has the right to access his data at any time (Article 15 of GDPR) in which case the data controller - Marxus - will provide the data subject with a copy of the personal data which are being processed.

The data subject has the right to rectify his personal data at any time (Article 16 of GDPR).

The data subject has the right to demand the cessation of the processing of his personal data at any time ("the right to be forgotten", Article 17 of GDPR), i.e. the right to erase his data from the records.

The data subject has the right to limit the processing of personal data at any time (Article 18 of GDPR). The data subject also has the right to transfer his data at any time (Article 19 of GDPR).

The data subject has the right to object to the processing of data (especially, if the data is being processed for the purposes of direct marketing) at any time. 

The recipients of personal data are, among others, entities providing maintenance of the service. The exchange of personal data with these entities is governed by a entrustment agreement.


6.       How can the data subject exercise his rights under GDPR?

The data subject needs to send a message to or send a letter to PUH Marxus Jermak i Właściciele Sp. j. with its registered office at Do Huty 37c, 33-100 Tarnów. In accordance with GDPR, the data controller of personal data will reply within 30 days.

7.       Which employees have access to the collected data?

In accordance with Article 29 of GDPR, access to the data is granted to authorized employees or associates who are involved in managing the website and who have been granted powers of proxy.

8.       Detailed information processed by Marxus:

1. The website acquires information about users and their behavior in the following ways:

a. by collecting information entered by the data subject in the contact forms.
b. by saving cookies in end-devices
c. cy collecting web server logs by the hosting operator.

2. Information in contact forms:
a.The website collects information provided by the user. 
b. The website may also save information about connection parameters (time stamp, IP address).
c. The information provided in the form are not made available to third parties other than with the user's consent.
d. The information provided in the form may constitute a set of potential customers, registered by the Operator of the Service in the register kept by the Inspector General for Personal Data Protection.
e. The data provided in the form is processed based on the function of a specific form, e.g. in order to handle a specific request.

3. Information about cookies 
a. The website uses cookies.
b. Cookies are IT data, in particular text files, which are stored in the end device of the User and are intended for the use of the website. Cookies usually contain the name of the website from which they originate, the length of time they are stored on the end device and a unique number. 
c. The operator of the Website places cookie files on the end device of the Service User and has access to them.

4. Cookies are used for the following purposes: 
a. Creating statistics that help to understand how clients use the websites, which allows to improve the website structure and content.
b. Determining the user's profile in order to display customized advertising content, especially in Google.

The website uses two types of cookies: “session cookies” and “persistent cookies”. Session cookies are temporary files that are stored on the user's devices until the user logs out, leaves the website or turns off the software (web browser). “Persistent” cookies are stored in the user's end device for the time specified in the parameters of cookies or until they are deleted by the user.

Web browsers usually allow cookies to be stored in the user's end device by default. Users can change their settings in this respect. It is possible to delete the cookies in the web browser. It is possible to automatically block cookies.

9.       Restrictions on the use of cookies may affect some of the functionalities of the Website.

10.  Cookies stored in the end device of the user: may also be used by advertisers and partners cooperating with the operator of the Website. If the user does not wish to store cookie files, he or she can make the necessary changes in the browser settings. Disabling the use of cookies necessary for authentication processes, security, maintenance of user preferences may hinder, and in extreme cases, may prevent the use of websites. We recommend reading the privacy policy to learn more about the use of cookies used in the statistics: Google Analytics Privacy Policy

11.    Cookies may be used by advertising companies, in particular Google, to display ads tailored to the way the user browses the website. For this purpose, they can store information about the user's navigation path or how long they remain on a given site. Within the scope of information about user preferences collected by the Google, the user can view and edit the information resulting from cookies by using:

12.    The viewed content is identified by URLs. The following can also be registered: 

a. time of inquiry

b. time of answer

c. client station name - identification via HTTP protocol

d. information about errors that occurred during the execution of HTTP transactions,

e. URL of the page previously visited by the user (referrer link) - if the site was accessed through an external link

f. information about the user’s browser

g. information about the IP address

13.   The above data is not associated with any particular person browsing the site.

14.   The above data is used only for server administration purposes.

15.  Data sharing
– The data will be shared with third parties only within the limits of what is legally permissible.
– Data enabling the identification of a the data subject shall be made available only with the consent that data subject. 
– The Operator may be obliged to provide information collected by the website to authorities on the basis of their request, and in the scope resulting from the request.