PRIVACY POLICY FOR KOTA-APP.COM

§ 1. GENERAL PROVISIONS AND DATA ADMINISTRATOR DETAILS

1. The Data Controller (ADO) for Personal Data collected via the website https://www.KOTA-app.com is the company:
   KOTA sp. z o.o.
   ul. 1905 ROKU nr 21 /101
   26-600 RADOM, POLAND
   NIP: 9482648335
   REGON: 529456963
   KRS: 0001123272
   (hereinafter referred to as the “Controller” or “KOTA”).
2. Contact with the Controller is possible via email at: info@kota-app.com.
3. The Controller attaches particular importance to respecting the privacy and protection of Users’ personal data. Data is processed in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR) and Polish data protection laws.

§ 2. PURPOSE AND LEGAL BASIS FOR DATA PROCESSING

The Controller processes personal data for the following purposes, based on the legal grounds indicated by the GDPR:

Purpose of Processing	Legal Basis (GDPR)	Type of Data (Examples)	Retention Period
Contact (Responding to inquiries sent via contact form)	Art. 6(1)(f) (Legitimate interest of the Controller, i.e., communication with potential clients and partners)	Name, email address, content of the message	Until the objection is lodged or correspondence ends.
Analytical and Statistical Activities (Website traffic analysis)	Art. 6(1)(f) (Legitimate interest of the Controller, i.e., optimizing website operation and measuring marketing effectiveness)	IP address, geolocation data, on-site behaviour (collected via cookies)	For the duration required by law and/or cookie expiration settings.
Direct Marketing (e.g., newsletter, if service is launched)	Art. 6(1)(a) (User consent)	Email address, (optional) name	Until consent for processing is withdrawn.
Establishment, assertion, or defense of claims	Art. 6(1)(f) (Legitimate interest of the Controller, i.e., protection of rights and claims)	All data processed for basic purposes	For the period of limitation of claims.

§ 3. RECIPIENTS OF DATA

Users’ personal data may be disclosed to the following categories of recipients:

1. Entities processing data on behalf of the Controller (Processors): Hosting service providers, analytical service providers (e.g., Google Analytics), IT companies maintaining IT systems.
2. Entities authorized to obtain data under applicable law (e.g., courts, law enforcement agencies).

§ 4. COOKIES AND TRACKING TECHNOLOGIES

1. The https://www.google.com/url?sa=E&source=gmail&q=KOTA-app.com website uses “Cookies” (small text files) to identify areas visited by the User and for analytical and functional purposes.
2. Cookie Definition: A Cookie is a small piece of data stored on the User’s computer or mobile device by the web browser, used to remember information (e.g., language preferences or login data) and provide statistics.
3. Cookie Functions: We use Cookies to improve the performance and functionality of our website. Although they are not essential for using the service, disabling them may result in some functions (e.g., videos) becoming unavailable or requiring re-login.
4. Blocking Cookies: The User has the option to block or disable cookies in their browser settings. However, it should be noted that such an action may block necessary cookies and prevent the website from functioning correctly. Disabling cookies does not remove cookies from the browser; this must be done manually using the browser’s help menu.
5. Tracking Technologies: The website may use tools such as Google Maps API, which may collect information for security purposes, in accordance with Google’s own Privacy Policy.

§ 5. PAYMENT DATA AND CHILDREN’S PRIVACY

1. Payment Data: With respect to any credit card data or other payment processing details, KOTA commits to storing this confidential information in the most secure manner possible. All sensitive data is transmitted via Secure Socket Layer (SSL) technology. After the transaction, private financial information is never stored in a file.
2. Children’s Privacy: We do not target our services to individuals under the age of 13. We do not knowingly collect personal data from individuals under the age of 13. If a Parent or Guardian becomes aware that their child has provided us with Personal Data, please contact us. We will take steps to remove this information from our servers.

§ 6. SECURITY AND DATA TRANSFER

1. Data Protection: The Controller employs various security measures to maintain the safety of Personal Data, including physical, electronic, and managerial procedures to prevent unauthorized access. However, we cannot ensure absolute security, as no security system is entirely foolproof.
2. International Transfer: KOTA sp. z o.o. is registered in Poland. Information collected via our website may be transferred from time to time to our offices, personnel, or third parties located globally, including to countries that may not have general laws governing the use and transfer of such data.

§ 7. USER RIGHTS AND POLICY CHANGES

1. User Rights (In accordance with GDPR): Users have the right to request from the Controller access to their data, rectification, erasure (“right to be forgotten”), restriction of processing, data portability, or to object to processing.

• KOTA Clients have the right to request the deletion of identifiable personal data maintained in our systems by contacting us and potentially cancelling their account.

2. Changes and Updates: We reserve the right to change this Privacy Policy. Changes will take effect, unless required otherwise by law, after prior notification to the User (e.g., via our Service) and giving them the opportunity to review them. Continued use of the Service will be deemed acceptance of the updated Privacy Policy.

Governing Law: This Privacy Policy is governed by Polish law.