Privacy Policy (English Version for English Users)

Who is the Data Controller

The data controller is Solids Paweł Małecki, with its registered office at ul. Bażancia 11, 44-105 Gliwice (warehouse: ul. Sowińskiego 25B, 44-121 Gliwice). Contact with the data controller is possible via e-mail: in**@****ds.pl or by phone: +48 784 393 577. We process personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as “GDPR”, Regulation (EU) 2023/2854 of the European Parliament and of the Council of 13 December 2023 on harmonised rules on fair access to and use of data (Data Act) – where applicable in the context of processing data generated by connected products – and Polish data protection regulations, including the Act of 10 May 2018 on the protection of personal data (with any amendments up to 2025). VAT PL9691331387

GDPR

GDPR (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data) forms the legal basis for processing your personal data by us, supplemented by new regulations such as the Data Act (effective from 12 September 2025), which affect access to and exchange of data in the context of connected devices. We process data in a manner consistent with GDPR principles, including data minimisation, purpose limitation, transparency, integrity, confidentiality, and security, taking into account enhanced penalties for breaches introduced in 2025.Purposes of personal data processing:

Providing responses to inquiries submitted via the contact form, e-mail, or other means of communication, which constitutes our legitimate interest (Art. 6(1)(f) GDPR);
Performance of contracts for the sale of construction machinery parts, resale, and any repair/regeneration services, including shipment organisation, processing of contact, address, and payment data (Art. 6(1)(b) GDPR – necessary for the performance of a contract);
Sending commercial and advertising information electronically (e.g., newsletter) based on separate consent provided by the User (Art. 6(1)(a) GDPR);
Conducting statistics and analysis of user behaviour on the Website to improve its functionality and tailor content (Art. 6(1)(f) GDPR – legitimate interest);
Fulfilling legal obligations incumbent on the Controller, e.g., tax, accounting, or arising from accounting regulations (Art. 6(1)(c) GDPR);
Handling complaints, returns, and warranties, which is necessary to fulfil legal obligations (Art. 6(1)(c) GDPR).

The scope of processed data includes: name and surname, e-mail address, telephone number, residence or delivery address, invoice data (NIP, company name), IP address, order data (e.g., part type, shipment details), as well as advertising data (preferences, interaction history). Data is collected automatically (e.g., via cookies) or voluntarily provided by the User in contact forms, advertising forms, or when placing an order. Providing data is voluntary but necessary for service provision. We ensure data protection through appropriate technical and organisational measures. For questions regarding GDPR or the Data Act, contact us at the address provided above.yczących RODO lub Data Act, skontaktuj się z nami pod adresem wskazanym powyżej.

Social Media

Our website may contain plugins, links, or embedded content from social media (e.g., Facebook, LinkedIn, Instagram, if implemented). Using these features may result in data being transferred to the providers of these services, such as IP address, browser information, device data, or browsing history. Data processing by these platforms is governed by their own privacy policies, over which we have no control. We do not share personal data with social media without your explicit consent, unless it arises from your interaction (e.g., like, share, or comment). We recommend reviewing the privacy policies of these services before using the plugins.

Cookies

The solids.pl website uses cookies for functional, analytical, and advertising purposes. Cookies are small text files stored on your end device by the web browser. We use the following types of cookies:

Session cookies: temporary, deleted after closing the browser or logging out;
Persistent cookies: stored for a longer period specified in the file parameters, e.g., to remember user preferences;
Analytical cookies: e.g., Google Analytics for collecting visit statistics, such as number of visits, time spent on the site, traffic source (Art. 6(1)(f) GDPR – legitimate interest);
Advertising cookies: for personalising advertising content and measuring its effectiveness, e.g., via Google Ads or similar tools (based on consent, Art. 6(1)(a) GDPR).

You can manage cookie settings in your web browser options, including blocking or deleting cookies. Disabling cookies may limit the Website’s functionality, e.g., prevent remembering preferences. Consent to cookies is given by continuing to use the site after displaying cookie information (information banner). For non-essential cookies, consent can be withdrawn at any time.dku cookies innych niż niezbędne, zgoda może być wycofana w dowolnym momencie.

Embedded Content from Other Websites

Articles, pages, or elements on solids.pl may contain embedded content (e.g., videos from YouTube, images, maps from Google Maps, if implemented). Embedded content from other websites behaves as if the User visited that website directly. These external websites may collect data about you, use cookies, add third-party tracking, and monitor your interactions with the embedded content, including tracking interactions if you have an account and are logged in to that website. Data processing by these services is in accordance with their privacy policies. We are not responsible for the privacy practices of external websites.

With Whom We Share Data

Personal data may be transferred to entities cooperating with the Controller for service provision, such as:

Courier and logistics companies (e.g., for shipment of orders from the warehouse at ul. Sowińskiego 25B, 44-121 Gliwice);
Payment service providers (e.g., banks, online payment operators like PayU, Przelewy24);
Entities providing accounting, legal, or IT services (e.g., accounting offices, law firms, hosting providers);
Providers of analytical and advertising tools (e.g., Google LLC).

We do not sell or rent personal data. Data transfer is based on data processing agreements in accordance with Art. 28 GDPR, ensuring an adequate level of protection. Data is not transferred outside the European Economic Area (EEA), unless necessary (e.g., for cloud tools), with appropriate safeguards such as standard contractual clauses approved by the European Commission or adequacy decisions.

How Long We Store Your Data

Personal data is stored for the period necessary to achieve the processing purposes, no longer than required by law:

Order and transaction data: up to 5 years from completion (for accounting and tax reasons, in accordance with the Accounting Act);
Contact data from forms: until the inquiry is processed or consent is withdrawn, no longer than 2 years;
Analytical data (e.g., from cookies): up to 26 months (standard for tools like Google Analytics);
Advertising data: until consent is withdrawn or the marketing purpose expires.

After this period, data is deleted or anonymised in a way that prevents identification. In the case of processing based on consent, data is deleted immediately upon withdrawal.

What Rights You Have Regarding Your Data

Under GDPR, you have the right to:

Access your personal data (Art. 15 GDPR);
Rectify or supplement data (Art. 16 GDPR);
Erase data (“right to be forgotten”, Art. 17 GDPR);
Restrict data processing (Art. 18 GDPR);
Data portability (Art. 20 GDPR);
Object to data processing (Art. 21 GDPR);
Withdraw consent at any time, without affecting the lawfulness of processing before withdrawal (Art. 7(3) GDPR).

To exercise these rights, please contact us via e-mail:i nf*@****ds.pl or by post to the registered office: ul. Bażancia 11, 44-105 Gliwice. We verify the applicant’s identity before fulfilling rights. You also have the right to lodge a complaint with the supervisory authority – the President of the Personal Data Protection Office (UODO), ul. Stawki 2, 00-193 Warsaw, if you believe that data processing violates GDPR.

Where We Send Your Data

Personal data is processed mainly in Poland and the European Union. When using cloud tools or external services (e.g., Google Analytics, hosting), data may be transferred to countries outside the EEA, but only with an adequate level of protection, e.g., through standard contractual clauses (Art. 46 GDPR) or adequacy decisions (Art. 45 GDPR). Comments, contact forms, or other elements may be checked by automated spam detection services (e.g., Akismet, Google reCAPTCHA), which may involve transferring data (e.g., IP address) to servers outside Poland, while maintaining GDPR compliance.

Data Security

We apply appropriate technical and organisational measures to protect personal data against unauthorised access, loss, destruction, or damage, in accordance with Art. 32 GDPR and enhanced requirements for 2025. These measures include, among others: communication encryption (SSL/TLS protocol), firewalls, regular data backups, access control (passwords, authorisation), security audits, and staff training. Data is stored on secured servers located in protected data centres. In the event of a security incident, we follow GDPR procedures, including reporting breaches to UODO within 72 hours and notifying affected individuals if required, taking into account any stricter penalties for breaches introduced in 2025.Last update date: November 03, 2025.