Privacy and Cookies Policy

Formal information: 

The website administrator is Andrzej Kruczek, Calle Pursiana 25 Bajos, 07013 Palma de Mallorca, Spain

If you have any doubts concerning this Privacy Policy, please contact us by sending an e-mail to studio@andrewkruczek.com

Abbreviated version – most important information

By contacting us using the form, you provide your personal data and we assure you that your data shall remain confidential and secure.

We only entrust the processing of personal data to verified and trusted providers of personal data processing services. 

We use Google Analytics analytical tools that collect information about your visits to the website, such as the sub-pages you have viewed, the time you have spent on the website, and transitions between different sub -pages. Google Analytics cookies from Google LLC are used for this purpose. As part of Google Analytics, we collect demographic data and interest data. Under the cookie settings, you can decide whether or not you consent to the collection of such data about you.

We use marketing tools such as Facebook Pixel to target you with personalised Facebook ads. This involves the use of Facebook cookies. As part of your cookie settings, you can decide whether or not you agree to our use of the Facebook Pixel in your case.

We allow you to use social features, such as sharing content on social networks and subscribing to a social profile. These functions may involve the use of cookies by the administrators of social networks such as Facebook, Instagram, YouTube, or Pinterest.

We embed YouTube and Vimeo videos. For this purpose, Google LLC cookies concerning the YouTube service and Vimeo Inc. cookies are used. The cookies are only loaded when the video is played.

We use our own cookies to operate the website correctly.

If you need more than the above information, you will find further details below. 

Personal data

Data controller. Within the meaning of the provisions on personal data protection, the controller of your data is Andrzej Kruczek, Calle Pursiana 25 Bajos, 07013 Palma de Mallorca, Spain

The purposes, legal basis, and duration of personal data processing are specified separately for each purpose of data processing (see description of individual purposes of personal data processing below). 

Rights. 

GDPR grants you the following potential rights in relation to the processing of your personal data:

The right to access your personal data,

The right to rectify your personal data,

The right to remove your personal data,

The right to restrict the processing of your personal data,

The right to object to the processing of your personal data,

The right to transfer your personal data,

The right to lodge a complaint to the supervisory authority,

The right to revoke consent to the processing of your personal data if you have given such consent. 

The rules related to the exercise of these rights are described in detail in Articles 16 – 21 of the GDPR. We encourage you to get acquainted with these provisions. On our part, we consider it necessary to explain to you that the rights specified above are not absolute and you shall not be entitled to them in relation to all activities associated with the processing of your personal data.

We would like to emphasise that one of the rights indicated above is always available to you – if you consider that we have violated the regulations on personal data protection during the processing of your personal data, you have the right to lodge a complaint to the supervisory authority (President of the Office for Personal Data Protection). 

Data recipients. Your data may be processed by our subcontractors, i.e. entities whose services we use for data processing.

All entities to which we entrust the processing of personal data guarantee the application of appropriate measures for the protection and security of personal data required by the law. 

Data processing purposes and operations

E-mail contact. When contacting us by e-mail, including sending a query via the contact form, you naturally provide us with your e-mail address as the sender of the message. In addition, you may also include other personal data in the message. The provision of data is voluntary yet necessary in order to establish contact.

Your data is processed in this case for the purpose of contacting you, and the basis for processing is Article 6.1(a) of the GDPR, i.e. your consent resulting from initiating contact with us. The legal basis for post-contact data processing is the legitimate purpose of archiving correspondence for internal purposes (Article 6.1(c) of the GDPR). 

The content of correspondence may be subject to archiving and we are unable to make it clear when it will be deleted. You have the right to request the history of any correspondence you have had with us (if it is subject to archiving), as well as to request its deletion, unless its archiving is justified by my overriding interests, such as e.g. protection against potential claims from you. 

Newsletter 

1. Data Collection for Newsletters When you subscribe to our newsletter, we collect your personal data, specifically:

  • Email address: Required to send you our newsletters.
  • Name, Surname: If provided, used to personalize the content of our emails.

We collect this data directly from you when you sign up for our newsletter via our website or during a visit to our salon.

2. Purpose and Legal Basis for Processing We process your personal data to send you newsletters and promotional materials, including updates about our salon services, special offers, and events. The legal basis for processing your data is:

  • Consent: By subscribing to the newsletter, you have provided us with explicit consent (Article 6(1)(a) GDPR) to process your data for this purpose.

You can withdraw your consent at any time by clicking the “unsubscribe” link in any newsletter or by contacting us directly at studio@andrewkruczek.com

3. Data Storage and Security Your personal data is stored securely on our newsletter platform, which complies with the applicable data protection regulations, including GDPR.

  • Data Encryption: We use secure, encrypted connections (SSL) to protect your personal information during data transfer.
  • Access Control: Only authorized personnel have access to your data to manage the newsletter service.

4. Data Retention We retain your personal data for as long as you are subscribed to our newsletter. If you unsubscribe, your data will be removed from our mailing list and will no longer be used for newsletter distribution. However, we may retain your information for a short period afterward to ensure that your opt-out request is honored and processed correctly.

5. Third-Party Providers We use trusted third-party services to manage and deliver our newsletters. These providers may process your data, but they do so under agreements that ensure compliance with data protection laws.

6. You can unsubscribe from our newsletter at any time by clicking the “unsubscribe” link in the email.

Booking System and Data Processing

  1. Use of Third-Party Booking System We use the Booksy platform for managing and scheduling appointments at our salon. When you book an appointment through our website, you are redirected to Booksy, where you may need to create an account and provide personal information such as:
  • Name
  • Email address
  • Phone number
  • Payment information (if applicable)

By using our booking link, you will be submitting your data directly to Booksy, and your information will be handled according to Booksy’s privacy policy, which you can review here:

https://booksy.com/en-gb/p/information-obligation#ba_s=seo

Cookies and other tracking technologies

Our website, like almost all other websites, uses cookies. 

Cookies are small text information stored on your terminal device (e.g. computer, tablet, smartphone) that can be read by our ICT system (our cookies) or a third party’s ICT system (third-party cookies). 

Some of the cookies we use are deleted when the browser session ends, i.e. when the browser is closed (so-called session cookies). Other cookies are stored on your terminal device and allow your browser to be recognized the next time you visit the website (persistent cookies). 

You can find more details below.

Consent to cookies. During your first visit to the website, you will be shown information on the use of cookies. Thanks to a special tool you can manage your cookies from the website level. In addition, you can always change the settings of your browser cookies or delete your cookies. Browsers manage cookie settings in different ways. In the help menu of your browser you will find explanations on how to change your cookie settings.

Please note that disabling or restricting cookies may cause difficulties in using the website, as well as many other websites that use cookies. 

Own cookies. We use our own cookies to ensure the proper functioning of the website.

Third party cookies. Our website, like most modern websites, makes use of functions provided by third parties, which involves the use of cookies from third parties. The use of these cookies is described below.

Google Analytics. We use the Google Analytics tool provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. We carry out activities in this regard based on my legitimate interest to create statistics and analyse them in order to optimise the website.

Google Analytics automatically collects information about your use of my website. The information collected in this way is usually transmitted to a Google server in the United States and stored there. 

Since Google LLC is based in the USA and uses technical infrastructure located in the USA, it has joined the EU-US-Privacy Shield programme in order to ensure an adequate level of data protection as required by European legislation. As part of the agreement between the USA and the European Commission, the latter has determined an adequate level of data protection for companies with Privacy Shield certification.

As part of Google Analytics, we also collect demographic and interest data.

If you are interested in the details related to the processing of data within Google Analytics, we encourage you to read the explanation prepared by Google at: https://support.google.com/analytics/answer/6004245.

Facebook Pixel. We use the marketing tools available as part of Facebook and provided by Facebook Inc., 1601 S. California Ave. Palo Alto, CA 94304, USA. Within the scope of these tools, we direct advertising to you on Facebook. We do this based on my legitimate interest in marketing our products or services. 

To target you with advertisements personalized to you based on your behavior on our website, we have implemented Facebook Pixel within our sites, which automatically collects information about your use of our website in terms of the pages you have viewed. The information collected in this way is usually transmitted to a Facebook server in the USA and stored there.

The information collected within Facebook Pixel is anonymous, i.e. it does not allow us to identify you. We only know what actions you have taken within our website. However, we would like to inform you that Facebook may combine this information with other information about you collected as part of your use of Facebook, and use it for its own purposes, including marketing. Such actions by Facebook are not up to us, and you can find information about them directly in the Facebook’s privacy policy at: https://www.facebook.com/privacy/explanation. You can also manage your privacy settings from your Facebook account. 

Since Facebook Inc. is based in the USA and uses technical infrastructure located in the USA, it has joined the EU-US-Privacy Shield programme to ensure an adequate level of protection of personal data as required by European legislation. As part of the agreement between the USA and the European Commission, the latter has determined an adequate level of data protection for companies with Privacy Shield certification.

Social media tools. Our website uses plugins and other social tools provided by social networks such as Facebook or Instagram.

By displaying our website containing such a plug-in, your browser will establish a direct connection to the servers of the administrators of the social networks (service providers). The content of the plug-in is transmitted by the respective service provider directly to your browser and integrated into the website. Through this integration, service providers receive information that your browser has viewed our website, even if you do not have a profile with the respective service provider or you are not currently logged in with them. This information (including your IP address) is sent by your browser directly to the provider’s server (some servers are located in the USA) and stored there. 

If you have logged into one of the social networks, the provider will be able to directly associate your visit to our website with your profile on the relevant social network. 

If you use the respective plug-in, e.g. by clicking the ‘Like’ or ‘Share’ button, the corresponding information will also be transmitted directly to the server of the respective service provider and stored there.

Furthermore, this information will be published on the respective social network and will be visible to the persons added as your contacts. The purpose and scope of data collection and its further processing and use by service providers, as well as the possibility to contact you, your rights in this respect and the possibility to make settings to ensure the protection of your privacy are described in the privacy policies of the respective service providers.

– Facebook – https://www.facebook.com/legal/FB_Work_Privacy,

– Instagram – https://help.instagram.com/519522125107875?helpref=page_content,

If you do not want the social networks to attribute the data collected during your visit to our website directly to your profile on the respective service, you must log out of that service before visiting our website. You can also entirely prevent the loading of plug-ins on the website by using the appropriate extensions for your browser, e.g. blocking scripts.

Video. We embed videos from YouTube and Vimeo. For this purpose, cookies from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA are used for the YouTube service and cookies from Vimeo Inc. The cookies are only loaded when the video is played. If you do not accept their loading, please refrain from playing the video.

When you play a video, Google or Vimeo are informed, even if you do not have a profile with the respective service provider or you are not currently logged in. This information (including your IP address) is sent by your browser directly to the provider’s server (some servers are located in the USA) and stored there. 

If you are logged in to Google or Vimeo, this service provider will be able to directly associate the video playback on our website with your profile on the respective social network. The purpose and scope of data collection and further processing and use of data by service providers, as well as the possibility of contacting us and your rights in this respect and the possibility of making settings to protect your privacy are described in the privacy policies of the respective service providers.

If you do not want Google or Vimeo to allocate the data collected during video playback on our website directly to your profile on the respective service, you must log out of this service before visiting my website. You can also entirely prevent the

loading of plug-ins on the website by using the appropriate extensions for your browser, e.g. script blocking.

I encourage you to read the privacy policy details of Google (https://policies.google.com/privacy) and Vimeo (https://vimeo.com/privacy).

We retain personal data for as long as necessary to provide our services or comply with legal obligations. For marketing purposes, we retain data until consent is withdrawn.

Server logs

The use of this website involves sending requests to the server on which the website is stored. Each request made to the server is recorded in server logs. 

The logs include your IP address, the date and time of the server, information about your web browser, and the operating system you are using. The logs are saved and stored on the server. 

The data stored in the server logs are not associated with specific users of the website and are not used by us to identify you.

The server logs constitute only auxiliary material used to administer the website, and their content is not disclosed to anyone except persons authorized to administer the server.