Privacy policy

1) This Privacy Policy defines principles of processing The Users’ personal data obtained via The Website: (hereinafter referred to as: “The Website”), the data received regarding the provision of services as well as specifies the mechanisms of using cookie files by The Website (hereinafter referred to as “Cookies”).

2) The Personal Data Controller is Pomorska Regionalna Organizacja Turystyczna, with its head office in Gdansk; address: Wały Jagiellońskie 2a, 80-887 Gdansk; entered into the Register of associations, other social and professional organisations, foundations and public health care institutions maintained by National Court Register, under KRS number: 0000177559, whose documentation is kept by District Court Gdańsk-Północ in Gdańsk, VII Commercial Division of the National Court Register; NIP: 583-284-28-41, REGON: 192982037.

3) The User’s data will be processed in accordance with The Regulation (EU) 2016/679 Of The European Parliament and Of The Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (further referred to as RODO).

4) The Data Controller performing the processing of data shall protect the interests of data subjects with due care and in particular shall ensure that the collected data:
a) is processed lawfully;
b) collected for specified and legitimate purposes and no further processed in a way incompatible with the intended purposes;
c) the data is relevant and adequate to the purposes for which it is processed and kept in a form which permits identification of the data subjects no longer than it is necessary for the purposes for which it is processed.

5) The Data Controller may be contacted at the e-mail address:, or at the address specified in section 2.

6) In case of violation of personal data protection rules The User has the right to lodge a complaint with the President of the Office for Personal Data Protection.

7) The User’s personal data collected by The Data Controller, are used for the following purposes:
a) contacting The User (The Client);
b) for information purposes and other activities related to the Data Controller’s activity on The Website;
c) contract execution and business processes;
d) marketing purposes;

8) The Data Controller processes the following data:
a) name and surname;
b) address;
c) e-mail address;
d) phone number;

9) The Data Controller may process the following data, which chatracterize the manner of using the services by electronic means (operating data).
a) designations that identify end of telecom network or ICT system which The User was using.
b) information on starting, ending and the scope of each single use of the services provided by electronic means.
c) information on The User utilizing the services provided by electronic means.

10) The Data Controller may share the data with:
a) authorised public entities;
b) companies/persons being The Data Controller’s clients or contractors, in the scope of issues related to the commissioned jobs;
c) providers of postal services;
d) providers of accounting/financial services;
e) providers of IT services.

11) Data is not intended to be transferred to a third state, unless the data subject requests the Data Controller to do so.

12) Providing personal data is voluntary, however, it is necessary for the ability to use The Website and its functionalities. The data subjects using The Website decide on their own about whether or not to use a given functionality.

13) In accordance with The Regulation (EU) 2016/679 Of The European Parliament and Of The Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (further referred to as RODO), The User’s personal data will be processed pursuant to Article 6(1)(a)(b)(c)(f) of RODO, namely:
a) based on a voluntary consent – whereas making contact with The Data Controller and transferring personal data to The Data Controller is equivalent to giving such consent;
b) is necessary for the execution of the contract, in which the data subject is the party of, or in order to take steps at the request of the data subject prior to entering into a contract;
c) is also necessary for the fulfilment of a legal obligation to which The Data Controller is subject and for the purposes of the legitimate interest pursued by The Data Controller.

14) Personal data shall be processed for the period necessary for the execution of the processing purposes. Personal data shall be kept only for the duration required under the relevant legislation, and if not specified therein, for the period sufficient to exercise and defend legal claims. For the execution of The Data Controller’s legitimate interest, data shall be processed until the approval of the objection to the processing of personal data.

15) The User has the right to access their data and to update/modify them.

16) The User who is the data subject has the right to monitor the processing of their personal data stored in The Data Controller’s database, particularly to require their supplementation, update, correction and temporary and/or permanent suspension of their processing or their removal, if they are incomplete, out-dated, untrue or collected in violation of the law or are no longer required for the purpose, for which they have been collected.

17) The Website does not collect any information in an automatic way, apart from the information included in cookie files.

18) Cookie files (so called “cookies”) are IT data, in particular text files, which are stored on The End-User’s device and are intended for the use of The Website. Cookies usually contain the name of website which they come from, the time they are stored on the End-User’s device and a unique number.

19) The Website Operator placing and gaining access to cookie files on The Website User’s device is : Pomorska Regionalna Organizacja Turystyczna with its headoffice at Wały Jagiellońskie 2a, Gdansk

20) Cookie files are used for the following purposes:
a) adapting the content of The Website to The User’s preferences and optimizing the use of The Website; in particular those files help to recognize The Website User’s device and appropriately display the webpage, adjusting it to The User’s individual needs;
b) creating statistics, which help to understand in which manner The Users of The Website use the internet resources, which in turn leads to improving the website structure and content.
c) maintaining the User’s session on The Website (after logging in), enabling The User to stay logged in without having to enter their login and password on each sub-page of The Website.

21) Two basic types of cookie files are used on the Website: “session cookies” and “persistent cookies”. “Session cookies” are temporary files, which are stored on the End-User’s device until the moment of logging out, leaving the website or switching off the software (internet browser). “Permanent” cookie files are stored on The End-User’s device for the period defined in the cookie files’ parametres or until the moment of their deletion by The User.

22) The following types of cookie files are used on the Website:
a) “strictly necessary” cookies, vital for websites to perform their actions, allowing core website functionality such as user login and account management on The Website.
b) cookie files used for ensuring security, e.g.: those used for detecting cases of fraud in the scope of verification related to The Website;
c) “performance” cookie files enabling the analysis of how visitors use The Website;
d) “functional” cookie files, allowing to ‘remember’ the settings chosen by The User and personalise The User’s interface, e.g.: region, language, font size, webpage visual features etc.;
e) “advertising” cookie files, specifically designed to display advertisements to The User based on their interests and preferences.

23) In many cases software used for website browsing (internet browser) allows, as a default, the storage of cookie files on The End-User’s device. The Website Users may, at any time, make changes concerning cookie settings. The settings may be changed, in particular, in such a way so as to block the automatic cookie service in the internet browser’s settings or inform each time about cookie files placing on the device of The Website’s User. Further details on options and methods of managing cookie files are available in the software settings sections (internet browser settings).

24) The Website Operator informs that the limitations in cookie files use may affect certain functionalities available on The Website.

25) Cookie files placed on The Website End User’s device may be shared with business partners or advertisers cooperating with The Website Operator.

26) In all matters related to personal data processing please contact us at: .

27) The Data Controller shall take the appropriate technical and organisational measures to ensure the security of personal data processed, including appropriate data access control and, in particular, protects personal data against their unauthorized disclosure, unauthorized processing, alteration, theft, loss, damage or destruction.

28) The Data Controller reserves the right to amend or modify this Privacy Policy at any time.

29) Amendments of this Privacy Policy shall enter into force at the moment of its publication on The Website.