Privacy Policy
Who We Are
The data controller for this website is Yaruyi, operating at Generała Władysława Andersa 38, Białystok, Poland. Contact: [email protected], telephone: +48 85 662 37 40.
This website (yaruyi.info) is an informational resource about Polish co-ownership housing law. It does not provide legal services or legal advice.
Legal Basis for Processing
We process personal data in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation, GDPR) and the Polish Act of 10 May 2018 on the Protection of Personal Data (Dz.U. 2018, poz. 1000). The applicable legal bases are:
- Article 6(1)(a) GDPR — consent, where you have expressly agreed (e.g., cookie acceptance)
- Article 6(1)(b) GDPR — performance of a contract or pre-contractual steps, where you contact us with an enquiry
- Article 6(1)(f) GDPR — legitimate interests, for website security and analytics that do not override your rights
Data We Collect
Contact Form
- Name — to address you in our response
- Email address — to send a reply
- Message content — to understand and respond to your enquiry
Automatically Collected Data
- IP address and approximate geographic region — for server security and spam prevention
- Browser type and device information — for compatibility monitoring
- Pages visited and time on site — for aggregate analytics (where consent is given)
We do not collect sensitive personal data (special categories under Article 9 GDPR). We do not collect financial information.
How We Use Your Data
- Responding to enquiries submitted via the contact form
- Maintaining website security and preventing fraudulent access
- Improving site content based on aggregate, anonymised usage patterns
- Complying with legal obligations under Polish and EU law
We do not use your data for automated decision-making or profiling as defined in Article 22 GDPR.
Data Retention
Contact form data is retained for no longer than 12 months from the date of receipt, unless a longer period is required by applicable law. Server logs are retained for up to 90 days for security purposes. Cookie preference records are retained for the duration of the cookie lifetime set out in our Cookie Policy.
Third Parties and Data Transfers
We use Google Maps (embedded iframe) on this site. Google's privacy practices are governed by the Google Privacy Policy available at policies.google.com. Where the embedded map is loaded, data may be transferred to Google LLC in the United States under Standard Contractual Clauses as an appropriate safeguard under Article 46 GDPR.
We do not sell, rent, or share your personal data with any third party for marketing purposes. We do not transfer personal data to countries outside the European Economic Area except as described above with appropriate safeguards in place.
Your Rights
Under GDPR and Polish data protection law, you have the following rights regarding your personal data:
- Right of access (Article 15 GDPR) — request a copy of data held about you
- Right to rectification (Article 16 GDPR) — correct inaccurate data
- Right to erasure (Article 17 GDPR) — request deletion where no legal basis for retention exists
- Right to restriction of processing (Article 18 GDPR)
- Right to data portability (Article 20 GDPR) — where processing is based on consent or contract
- Right to object (Article 21 GDPR) — to processing based on legitimate interests
- Right to withdraw consent (Article 7(3) GDPR) — at any time, without affecting the lawfulness of prior processing
To exercise any right, contact us at [email protected]. We will respond within one month as required by Article 12 GDPR.
Supervisory Authority
You have the right to lodge a complaint with the Polish supervisory authority: Prezes Urzędu Ochrony Danych Osobowych (UODO), ul. Stawki 2, 00-193 Warsaw, website: uodo.gov.pl. This right exists without prejudice to any other administrative or judicial remedy.
Security
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or destruction, in accordance with Article 32 GDPR. These measures include HTTPS encryption for data in transit and access controls for any stored data.
Changes to This Policy
We may update this policy to reflect changes in our practices or applicable law. Material changes will be noted with a revised "Last Updated" date. Continued use of the site after a change constitutes acknowledgment of the updated policy.