PRIVACY POLICY
PAYNOWZ.COM SERVICE

1. The personal data administrator within the meaning of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (hereinafter: "GDPR"), is Blockbridge Sp. z o.o. based in Poznan, address: Święty Marcin 29 / 8, 61-806 Poznan, registered in the Register of Entrepreneurs of the National Court Register, under number KRS: 0001092676, NIP: 7831899509, REGON: 528002310 (hereinafter: "Administrator").
2. Regarding personal data protection matters, you can contact the Administrator directly via the dedicated email address [email protected]

The Data Protection Officer is Katarzyna Mirosława Kaźmierczak, who can be contacted via the dedicated email address: [email protected]

Personal data may be processed by the Administrator on the indicated basis and for the indicated purpose:

• on the basis of necessity for the performance of a contract or to take steps prior to entering into it (Art. 6(1)(b) GDPR), for the purpose of:
  • providing electronic services through the Service, in accordance with the Service Regulations available at: paynowz.com/terms
  • handling complaints, grievances, reports;
  • solving technical problems;
  • contact for service-related purposes.
• on the basis of necessity to fulfill legal obligations incumbent on the Administrator and protection of vital interests of the data subject (Art. 6(1)(c) and (d) GDPR) for the purpose of fulfilling legal obligations incumbent on the Administrator and preventing actions to the detriment of users or the Administrator, resulting from laws including the Electronic Services Act, Payment Services Act, Anti-Money Laundering and Terrorist Financing Act.

1. The Administrator may request the user to provide personal data in the case of a natural person: identification document designation, as well as name, surname, citizenship, residential address, country of birth, information about tax residence and holding an exposed political position, telephone number, date of birth and PESEL number, e-mail address, NIP number and address of the main place of business activity (if the user is a natural person conducting sole proprietorship); however, with regard to Users who are foreigners who do not have a PESEL number, it may be necessary to provide an equivalent of such number (national identification number) or submit a statement of not having a PESEL number or other equivalent of such number and indicate the date of birth.
2. For the purpose of data verification, the user may be required to present a document confirming identity and confirming the correctness of other data. Presentation of these documents may take place in particular using such channels
3. Personal data is processed in accordance with GDPR.
4. Providing data by the user is voluntary, however, necessary for the provision of services. Failure to provide data may result in the inability to provide services by Blockbridge Sp. z o.o. within the Service, including the possibility of providing services in the scope of establishing and availability of an account in the Service.

1. Data may be transferred to entities processing them on behalf of the Administrator on the basis of contracts concluded with the Administrator, but only for the purpose and scope necessary for the implementation of the above-mentioned purposes, including, among others, entities providing IT services or other services ensuring the proper functioning of the Service on behalf of the Administrator, whereby such entities process data exclusively in accordance with the Administrator's instructions.

1. Processed data will not be subject to profiling. Profiling is automated processing of personal data allowing to assess personal factors of a natural person, and in particular to analyze or predict aspects concerning work performance, economic situation, health, personal preferences or interests, reliability or behavior, location or movement of the person concerned - provided that it produces legal effects concerning that person or similarly significantly affects that person
2. The Service uses automated data processing tools or collects certain information about users and their analysis, however, this does not produce legal effects concerning users.

1. Personal data is processed only for the period necessary to fulfill the purpose of their storage or as long as it is required by law, in particular until the expiry of potential claims or the expiry of the archiving obligation resulting from legal provisions, including the obligation to keep accounting documents.
2. In case of processing personal data based on expressed consent, data will be stored until its withdrawal. At any time it is possible to withdraw consents expressed in the service, including consent to data processing for marketing purposes of entities cooperating with the Administrator. Withdrawal of consent to processing will not affect the lawfulness of processing carried out before its withdrawal.
3. In case of processing data based on the Administrator's legitimate interest, the Administrator will stop processing data earlier if an effective objection to data processing is submitted.

In connection with the processing of personal data by the Administrator, the data subject has the right to:

• obtain confirmation whether the Administrator processes personal data, and the right of access to processed personal data and information regarding such processing,
• request rectification of personal data if the personal data processed by the Administrator are incorrect or incomplete,
• request deletion of personal data,
• restrict data processing,
• object to personal data processing,
• data portability, i.e., the right to receive personal data previously provided to the Administrator and to transmit such personal data to another administrator,
• withdraw consent to personal data processing at any time (whereby the withdrawal of consent does not affect the lawfulness of personal data processing carried out on the basis of consent given before its withdrawal),
• lodge a complaint with the supervisory authority.

1. Information about certain user behaviors is logged at the server layer. This data is used exclusively for the purpose of Service administration and to ensure the most effective hosting service, also for evidentiary purposes in connection with committed crimes or due to circumstances related to pursuing claims in civil proceedings
2. Viewed resources are identified by URLs. Additionally, the following data may be stored:
   • query date,
   • response time,
   • user station name - identification performed by HTTP/HTTPS protocol,
   • information about errors that occurred during HTTP/HTTPS transaction execution,
   • URL address of the page previously visited by the user (referer link) - when the transition to the Service occurred through a reference,
   • user browser information,
   • IP address.
3. Some of the above data is not associated with specific users using the Service. The Administrator does not combine this data with user personal data and does not use it to identify the user, as it serves exclusively for server administration.

To ensure that the Service Privacy Policy meets current legal requirements at all times, the Administrator reserves the right to make changes to it at any time. The above also applies in cases where the Privacy Policy requires changes to cover new or modified Service products or services.

What are cookies and what are they for? Cookies are small text files that are saved on your device when you visit the Service. These files are sent by the website to your browser. Each cookie has an anonymous identifier and allows to identify the device in whose memory it was saved for a specific time (time after which the given cookie will be deleted). Cookies are saved to recognize your device, learn your preferences, and collect information about your previous actions in the Service.

What cookies do we use? We may use the following types of cookies:

• Session cookies – these are information stored in browser memory until the browser session ends, i.e., until it is closed. These cookies are necessary for some Service functionalities to work properly.
• Persistent cookies – thanks to them, using the Service is easier (e.g., they remember the selected resolution, content layout). They can be used for various purposes, including remembering your preferences and choices while using the website. These cookies remain in browser memory for a longer period.
• First party cookies – are saved by the currently viewed website. They serve to improve the quality of using the Service.
• Third party cookies – are used by third parties, such as social media portals, to track your visits to various websites where they place advertisements.

Cookies used by the Service can be divided into the following categories:

• Necessary cookies; Always Active
• Performance cookies;
• Functional cookies;

Necessary cookies: Always Active. Without these files you cannot navigate the site or use its functions. We process your data based on Art. 6 (1) f) GDPR. You can object to such processing of your personal data, but in practice this will make it impossible to use our website or significantly hinder it.

Performance cookies: Files in this category collect information that tells how visitors use the website, e.g., data on subpages that are visited most often. These files are used to improve the operation of the site. These files can only be activated with your consent, expressed by clicking the appropriate checkbox that will appear when opening the gdpr.pl page. You can withdraw your consent at any time.

Functional cookies: Information about your choices is stored in files of this type, thanks to which we can offer improved and personalized functions. For example, information about tracking numbers entered in applications may be stored in cookies of this type. These files can only be activated with your consent, expressed by clicking the appropriate checkbox that will appear when opening the gdpr.pl page. You can withdraw your consent at any time.

How long do we store cookies? Session cookies remain on your device until you leave the Service or turn off the software (web browser). Persistent cookies will be stored on your device for a maximum of 12 months or until you withdraw your consent.

How to manage cookies? Remember that if you do not consent to cookies, you will not be able to fully use some Service elements, e.g., you will not be able to use the Portal personalization functions. Remember to configure all browsers on different devices (tablets, smartphones, computers). There are various ways to configure browsers, so you should familiarize yourself with the "Help" section of the browser you use to learn how to configure it and use the available options.

Ways to configure cookie settings in individual browsers can be found at:

• Google Chrome: http://support.google.com/chrome/bin/answer.py?hl=en&answer=95647;
• Mozilla Firefox: http://support.mozilla.org/en/kb/delete-cookies;
• Microsoft Internet Explorer: http://support.microsoft.com/kb/278835/en;
• Microsoft Edge: https://support.microsoft.com/en-us/microsoft-edge/delete-cookies-in-microsoft-edge-63947406-40ac-c3b8-57b9-2a946a29ae09