Privacy Policy

Privacy Policy

This Privacy Policy outlines the principles of storing and accessing data on Users’ Devices using the Service for the purpose of electronic service provision by the Administrator, as well as the principles of collecting and processing personal data voluntarily provided by Users through tools available in the Service.

This Privacy Policy is an integral part of the Service’s Terms and Conditions, which define the rules, rights, and obligations of Users using the Service.

§1 Definitions

  • Service – the “metalfabricationpoland.com” website operating at https://metalfabricationpoland.com.
  • External Service – partner websites, service providers, or service recipients cooperating with the Administrator.
  • Service/Data Administrator – the Administrator of the Service and the Data Administrator (hereinafter referred to as the Administrator) is “BIML”, operating at ul. Kielecka 79A, 26-130 Suchedniów, Poland, providing electronic services through the Service.
  • User – an individual for whom the Administrator provides services electronically through the Service.
  • Device – an electronic device with software through which the User accesses the Service.
  • Cookies – text data collected in the form of files placed on the User’s Device.
  • GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
  • Personal Data – means information about an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
  • Processing – means any operation or set of operations performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.
  • Restriction of processing – means the marking of stored personal data with the aim of limiting their processing in the future.
  • Profiling – means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.
  • Consent – consent of the data subject means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
  • Personal data breach – means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored, or otherwise processed.
  • Pseudonymization – means the processing of personal data in such a manner that the data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
  • Anonymization – data anonymization is an irreversible process of operations on data that destroys/overwrites “personal data” preventing the identification or association of a given record with a specific user or natural person.

§2 Data Protection Officer

Pursuant to Article 37 of the GDPR, the Administrator has not appointed a Data Protection Officer.

For matters related to data processing, including personal data, please contact the Administrator directly.

§3 Types of Cookies

  • Internal Cookies – files placed and read from the User’s Device by the Service’s teleinformation system.
  • External Cookies – files placed and read from the User’s Device by external Service systems. Scripts from external Services that may place Cookies on the User’s Device have been deliberately embedded in the Service through scripts and services provided and installed in the Service.
  • Session Cookies – files placed and read from the User’s Device by the Service during a single session of a given Device. After the session ends, the files are deleted from the User’s Device.
  • Persistent Cookies – files placed and read from the User’s Device by the Service until they are manually deleted. The files are not automatically deleted after the session ends unless the User’s Device configuration is set to delete Cookies after the session ends.

§4 Data Storage Security

  • Cookie storage and retrieval mechanisms – The mechanisms for storing, reading, and exchanging data between Cookies saved on the User’s Device and the Service are implemented through built-in web browser mechanisms and do not allow for the retrieval of other data from the User’s Device or data from other websites visited by the User, including personal or confidential information. It is practically impossible to transmit viruses, Trojan horses, or other worms to the User’s Device.
  • Internal Cookies – Cookies used by the Administrator are safe for Users’ Devices and do not contain scripts, content, or information that could threaten the security of personal data or the security of the Device used by the User.
  • External Cookies – The Administrator makes every effort to verify and select service partners concerning User security. The Administrator selects known, large partners with global social trust for cooperation. However, the Administrator does not have full control over the content of Cookies from external partners. The Administrator is not responsible for the security of Cookies, their content, or their licensed use by scripts installed in the Service from external Services to the extent permitted by law. A list of partners is included later in this Privacy Policy.

Cookie Control

The User may change the settings for storing, deleting, and accessing data stored by Cookies on any website at any time.

Information on how to disable Cookies in the most popular desktop browsers is available at: how to disable cookies or from one of the following providers:

  • Managing cookies in Chrome
  • Managing cookies in Opera
  • Managing cookies in Firefox
  • Managing cookies in Edge
  • Managing cookies in Safari
  • Managing cookies in Internet Explorer 11

The User may delete all previously stored Cookies using the tools of the User’s Device through which the User uses the Service at any time.

User-side Threats

The Administrator takes all possible technical measures to ensure the security of data placed in Cookies. However, it is essential to note that the security of this data depends on both parties, including the User’s activities. The Administrator is not responsible for data interception, impersonation of the User’s session, or deletion resulting from the User’s conscious or unconscious activities, viruses, Trojan horses, or other spyware that the User’s Device may be or has been infected with. Users should follow safe internet usage practices to protect themselves from these threats.

Personal Data Storage

The Administrator ensures that all efforts are made to ensure that personal data voluntarily provided by Users are secure, access to them is restricted, and handled in accordance with their intended purpose and processing objectives. The Administrator also ensures that all efforts are made to secure the stored data from loss by using appropriate physical and organizational security measures.

§5 Purposes for Which Cookies Are Used

  • Improve and facilitate access to the Service
  • Personalize the Service for Users
  • Enable login to the Service
  • Marketing, Remarketing on external services
  • Advertising services
  • Affiliate services
  • Conducting statistics (users, number of visits, types of devices, connections, etc.)
  • Providing multimedia services
  • Providing social services

§6 Purposes of Personal Data Processing

Personal data voluntarily provided by Users are processed for one of the following purposes:

  • Provision of electronic services:
    • Registration and maintenance of a User account in the Service and related functionalities
    • Newsletter service (including sending advertising content with consent)
    • Communication between the Administrator and Users regarding the Service and data protection
  • Ensuring the legitimate interests of the Administrator

Data about Users collected anonymously and automatically is processed for one of the following purposes:

  • Conducting statistics
  • Remarketing
  • Serving advertisements tailored to Users’ preferences
  • Supporting affiliate programs
  • Ensuring the legitimate interests of the Administrator

§7 External Service Cookies

The Administrator uses JavaScript scripts and web components of partners who may place their own Cookies on the User’s Device. Remember that you can independently decide in your browser settings which Cookies are allowed to be used by individual websites. Below is a list of partners or their services implemented in the Service that may place Cookies:

  • Multimedia services:
    • YouTube
  • Social / integrated services:
    • (Registration, Login, content sharing, communication, etc.)
    • Twitter
    • Facebook
    • Google+
  • Newsletter services:
    • MailChimp
  • Advertising and affiliate network services:
    • MyLead
  • Statistics:
    • Google Analytics

Services provided by third parties are beyond the Administrator’s control. These entities may change their terms of service, privacy policies, data processing purposes, and methods of using cookies at any time.

§8 Types of Data Collected

The Service collects data about Users. Some data is collected automatically and anonymously, while some data is personal data voluntarily provided by Users during registration for specific services offered by the Service.

Anonymous data collected automatically:

  • IP address
  • Browser type
  • Screen resolution
  • Approximate location
  • Service subpages opened
  • Time spent on the relevant Service subpage
  • Operating system type
  • Previous subpage address
  • Referring page address
  • Browser language
  • Internet connection speed
  • Internet Service Provider

Data collected during account registration:

  • First name/last name/nickname
  • Email address
  • IP address (collected automatically)

§9 Access to Personal Data by Third Parties

In general, the only recipient of personal data provided by Users is the Administrator. The data collected as part of the services provided are not transferred or resold to third parties.

Access to data (usually based on a Data Processing Agreement) may be granted to entities responsible for maintaining the infrastructure and services necessary for the operation of the Service, such as:

  • Companies maintaining the mailing system
  • Companies maintaining the servers
  • Companies maintaining statistics systems
  • Law enforcement authorities, public institutions upon request, based on legal provisions

§10 Data Processing of Personal Data

Personal data is processed on the basis of the GDPR and applicable national legislation.

The data subject has the right to:

  • Access their personal data
  • Rectify their personal data
  • Erase their personal data (right to be forgotten)
  • Restrict the processing of their personal data
  • Object to the processing of their personal data
  • Data portability
  • Withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal
  • Lodge a complaint with a supervisory authority

To exercise the above rights, contact the Administrator.

§11 Changes to the Privacy Policy

The Administrator reserves the right to make changes to this Privacy Policy, which will be published on this page. Users are encouraged to review the Privacy Policy periodically to stay informed about how their data is protected.

§12 Contact

For any questions or concerns about the Privacy Policy or data protection practices, please contact the Administrator directly.

Effective Date: 30/08/2024

Manufacturing Excellence:

Our structures are produced in Polish factories using advanced technology and thorough static calculations, guaranteeing reliability and strength.Explore our offerings and discover how our prefabricated solutions can enhance your construction projects.

Contact Us
Scroll to Top