Privacy Policy

Effective from 1 March 2025

Dear User and Service Subscriber,

We make every effort to ensure the security and confidentiality of your personal data. We care about your privacy whether you visit our WP AutoWriten website, register an account, and use our services, or when you contact us by phone, email, or via online chat, subscribe to our newsletter, or visit our social media profiles. We act in accordance with applicable laws, including the European Parliament and Council Regulation (EU) 2016/679 of 27 April 2016 (GDPR).

This document presents the most important information regarding the processing of your personal data in a Q&A format. Our aim is to inform you about the purposes, legal basis, and duration of the processing of your data, who may have access to it, and what rights you have.

How Do We Collect Your Personal Data?

When using the WP AutoWriten website, you may be asked to provide your personal data. Providing these data is voluntary; however, in certain cases it is necessary—for example, without an email address you will not be able to receive our newsletter, register an account, or obtain a response to inquiries submitted via the contact form.

Some data are collected automatically through cookies during your visit (e.g., IP address, browser type, operating system). These data are used for website administration, hosting support, and creating marketing content. However, you can restrict or block cookies via your browser settings or other available tools.

Who is the Controller of Your Personal Data?

The controller of your personal data is BPA Polska Dawid Karamon, with its registered office at ul. Marszałkowska 15/168, 35-215 Rzeszów, NIP: 5170276471, REGON: 180666481.
If you have any questions or concerns, please contact us by email at: contact@wpautowriten.com.

For What Purposes, on What Legal Basis, and for How Long Do We Process Your Data?

We process your personal data for the following purposes:

  1. Concluding and Performing a Service Agreement

    • Purpose: Registration and maintenance of a user account, placing orders for services (both free and paid), and fulfilling the contract.
    • Legal Basis: Article 6(1)(b) GDPR – necessity for the performance of a contract or for taking steps at the request of the data subject prior to entering into a contract.
    • Retention Period: Until the service is terminated (e.g., account deletion or contract termination).

  2. Fulfilling Tax Obligations

    • Purpose: Issuing invoices and storing accounting records.
    • Legal Basis: Article 6(1)(c) GDPR – legal obligation.
    • Retention Period: Until the expiration of the statutory limitation periods for tax claims.

  3. Fulfilling Obligations Regarding Data Protection

    • Purpose: Complying with legal obligations related to data protection.
    • Legal Basis: Article 6(1)(c) GDPR.
    • Retention Period: Until the expiration of the statutory limitation periods for data protection claims.

  4. Establishing, Asserting, and Defending Potential Claims

    • Purpose: Taking measures to protect our rights in judicial or administrative proceedings.
    • Legal Basis: Article 6(1)(f) GDPR – our legitimate interest.
    • Retention Period: Until the expiration of the statutory limitation periods for claims under applicable law.

  5. Ensuring Proper Functioning of the Website and Analyzing User Activity

    • Purpose: Administering the website, generating statistics, and conducting marketing analyses (e.g., using Google Analytics, Facebook Pixel).
    • Legal Basis: Article 6(1)(f) GDPR – our legitimate interest.
    • Retention Period: Until a successful objection is raised or the processing purpose is achieved.

  6. Managing Social Media Profiles and Interactions

    • Purpose: Running a Facebook fan page and managing groups related to WP AutoWriten, as well as interacting with users.
    • Legal Basis: Article 6(1)(f) GDPR – our legitimate interest.
    • Retention Period: Until the expiration of the statutory limitation periods for claims under applicable law.

  7. Responding to Inquiries

    • Purpose: Answering your questions submitted by phone or electronically (including via the contact form and online chat).
    • Legal Basis: Article 6(1)(f) GDPR – our legitimate interest.
    • Retention Period: Until the expiration of the statutory limitation periods for claims under applicable law.

  8. Marketing Purposes

    • Purpose: Promoting our services, maintaining business relationships, measuring customer satisfaction, and informing you about news and special offers.
    • Legal Basis: Article 6(1)(f) GDPR – our legitimate interest or based on freely given consent (Article 6(1)(a) GDPR).
    • Retention Period: Until consent is withdrawn or a successful objection is raised, or until the processing purpose is achieved.

Remember, we process personal data for as long as necessary to achieve the aforementioned purposes, unless you submit a valid request for deletion of your data. The retention period may also be determined by applicable laws (e.g., retention of financial documents or claim periods).

Who May Receive Your Personal Data?

In some cases, if necessary for achieving the processing purposes, we use external service providers to whom we disclose your personal data, provided they ensure appropriate protection and confidentiality.
Recipients of your personal data may include:

  1. Entities involved in the execution of contracts (e.g., accounting offices, IT service providers, hosting providers, payment system operators).
  2. Entities whose services we use in our business activities under separate agreements (e.g., providers of tools for analyzing website activity, direct marketing systems, landing page creation tools, office software, project management systems, communication solutions).
  3. Public authorities authorized under applicable law.
  4. Other entities to which the disclosure of data is required or justified by law.

Do We Transfer Personal Data to Third Countries?

As a rule, we do not transfer personal data to countries outside the European Union and the European Economic Area (EEA). However, if it becomes necessary to transfer data in the context of providing our services, we will assess the risk and ensure an adequate level of data protection in accordance with legal requirements.

Using the WP AutoWriten service, we employ services and technologies offered by entities such as Facebook, Microsoft, and Google, which may have headquarters in the United States and process data on servers located outside the EEA. In such cases, we implement appropriate safeguards, e.g., standard contractual clauses approved by the European Commission.

Do We Profile Your Personal Data?

Within the WP AutoWriten service, we may engage in profiling, which involves analyzing user data (such as gender, age, interests, approximate location, and website behavior) to assess activity and potential interest in our services.
Profiling enables us to personalize offers and advertisements, but does not affect the terms of any service agreements. The processed data are anonymized and not directly linked to your identity, and no automated decisions with legal or similarly significant effects are made.

What Personal Data Do We Process as a Processor and How Do We Obtain Them?

As part of providing our services, WP AutoWriten also acts as a data processor under a data processing agreement. The data are collected directly by the data controller, which is BPA Polska Dawid Karamon.
As a processor, we process data solely on the documented instructions of the controller (our client) and commit to adequately securing the data using technical and organizational measures in accordance with Article 32 of the GDPR. Authorized personnel are bound by confidentiality obligations. Upon termination of the services, we will return the data to the controller and delete all copies, unless retention is required by applicable law.

Do We Use Cookies?

At WP AutoWriten, we use cookies, which are short text files stored on your device that can be read by our system and by systems of third-party providers (e.g., Facebook, Google).
Cookies enable us to collect anonymous data about user visits, which we use to improve the functionality of the website, identify errors, and support marketing activities.
Most web browsers accept cookies by default; however, you can block or limit them through your browser settings. On your first visit to the website, we will display information regarding our use of cookies. If you do not change your settings, you consent to their use.
Please note that disabling cookies may affect website performance (e.g., longer loading times or reduced functionality).

How Do We Protect Your Data?

To ensure a high level of protection, we implement appropriate technical and organizational security measures, including:

  1. Encryption of data transmissions using TLS protocol;
  2. Regular backups;
  3. Data center security measures;
  4. Regular security tests;
  5. System monitoring for security breaches;
  6. Minimization of potential abuse risks and prompt response in case of incidents;
  7. Implementation of data protection policies;
  8. Ensuring the confidentiality, integrity, and availability of processing systems;
  9. Allowing access to data only to authorized personnel;
  10. Regularly changing access passwords for systems where data are processed.

What Rights Do You Have?

You have the right to:

  1. Access your personal data;
  2. Rectify your personal data;
  3. Delete your personal data;
  4. Restrict the processing of your personal data;
  5. Object to the processing of your personal data;
  6. Data portability;
  7. Withdraw your consent to the processing of your data (if consent is the legal basis).

In some cases, after an analysis, we may lawfully refuse to comply with these rights.
Withdrawal of consent does not affect the legality of data processing that occurred before the consent was withdrawn.
We will respond to requests to exercise these rights promptly, and no later than one month from receipt. In the case of complex requests, the period may be extended by an additional two months, provided we inform you in advance.

How Can You Lodge a Complaint About Data Processing?

If you believe that your personal data are being processed in violation of applicable law, you have the right to lodge a complaint with the President of the Personal Data Protection Office.

Does Using the Service Involve Sending Server Logs?

Using the WP AutoWriten service involves sending requests to the server where the website is hosted. Each request is recorded in the server logs, which include, among other things, the IP address, date and time, browser information, and operating system details.
Data in the server logs are not linked to specific individuals and are used solely for administrative purposes. Access to the logs is restricted to authorized personnel responsible for server management.

Can We Change Our Privacy Policy?

Yes. The WP AutoWriten Privacy Policy may be updated or amended as technology evolves and needs change. We will notify you of any significant changes by posting information on the website and, in the case of substantial changes, by sending an electronic notification to registered users.

© WP AutoWriten. All rights reserved.