Privacy policy


Privacy policy 16.03.2020

General information

 This Privacy Policy (hereinafter referred to as the "Policy") contains the rules of personal data processing and information concerning cookies applicable on the website (hereinafter referred to as the "Website").


The Administrator of the Service is InstantPay Piotr Zając, Starogórska 56/1, 56-200 Góra, NIP: 5010078012, e-mail address: [email protected]

              Personal data is processed in accordance with the provisions of Regulation 2016/679 of the European Parliament and of the Council (EU) of 27.04.2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (OJ EU L 119, p. 1) (hereinafter referred to as "GDPR").

We take particular care to protect the privacy and information received from users. We carefully select and apply technical measures to protect the personal data processed.

Personal data

Personal data administrator

The administrator of personal data is InstantPay Piotr Zając, Starogórska 56/1, 56-200 Góra, NIP: 5010078012 (hereinafter referred to as "Administrator").

As far as personal data is concerned, you may contact the Administrator by e-mail: [email protected] or by post: ul. Starogórska 56/1, 56-200 Góra.


Purpose, legal basis and the time of personal data processing

The personal data controller processes personal data for the following purposes and scope:

concluding and performing the contract - during the term of the contract and after its termination, until the proper performance of the contract;

fulfilment of the Administrator's legal obligations: issuing and storing invoices, including accounting documents; handling of complaints within the time and form provided for by the law - for the time necessary to fulfil the Administrator's legal obligation;

sending marketing information - as long as the consent to receive marketing information exists;

sending a newsletter - during the period of consent to receive the newsletter exists.

The legal basis for processing personal data by the Administrator is:

6 paragraph 1 letter a of GDPR  i.e. obtained consent to the processing of personal data;

6 paragraph 1 letter b of GDPR i.e. execution of a contract or taking action upon request before concluding a contract;

6 paragraph 1 letter c of GDPR, i.e. fulfilling the legal obligation of the PDA.


Personal data will be processed for the period necessary to provide services available on the Website. Personal data will be deleted in the following cases:

when the person concerned asks for their removal or withdraws their consent;

when the person to whom the data refer does not take action for more than 3 years (inactive contact);

after being informed that the stored data are outdated or inaccurate.


Categories of personal data

The personal data administrator processes the following categories of personal data concerned:

contact details;

- data concerning activity on the Website;

- data concerning complaints and requests;


Personal data recipients

 1.Personal data may be transferred to third parties providing payment, legal, accounting, server and hosting services.

  1. Please note that personal data is not transferred beyond the European Economic Area (EEA).

3.We will provide personal data to state authorities: prosecutor's office, police, President of Personal Data Protection Office, President of the Office of Competition and Consumer Protection, if requested to do so.

Rights of the person concerned

You are entitled to:

1.demand access to your personal data;

2.demand the correction of your personal data;

3.demand the deletion of your personal data;

4.demand to restrict the processing of your personal data;

5.object to the processing of your personal data;

6.demand the transfer of personal data.


If you wish to execute any of the above mentioned rights, please submit your request to: [email protected]

Access rights to personal data

You have the right to obtain information from the Administrator whether your personal data is being processed. If the Administrator is processing your personal data you have the right to:

1.access your personal data;

2.obtain information about the purposes of the processing, the categories of personal data processed, the recipients or categories of recipients of these data, the planned period of storage of the data or the criteria for determining this period, the rights pursuant to GDPR and the right to lodge a complaint with the supervisory authority, the source of these data, automated decision making, including profiling, and the protection applied in connection with the transfer of these data outside the European Union;

3.obtain a copy of your personal data. 

Rights of personal data to be rectified


1.If your personal data is incorrect, you have the right to request the Administrator to correct your personal data immediately.

2.You also have the right to request the Administrator to complete your personal data. 

Rights to delete personal data


You have the right to demand that the Administrator delete your personal data when:

1.the personal data is no longer necessary for the purposes for which it was collected or otherwise processed; have withdrawn your specific consent, to the extent that the personal data was processed based on your consent;

3.the personal data has been processed against the law; have objected to the processing of your personal data.

Despite the request to delete the personal data, the Administrator may process the data further for the purpose of identifying, asserting or defending claims.


Rights to request a limitation of personal data processing

You have the right to request a restriction on the processing of your personal data when: question the correctness of your personal data - the Administrator of personal data will limit the processing of personal data for a period of time allowing to check the correctness of such data;

2.the processing of the data is illegal, and instead of deleting your personal data you will demand a limitation of the processing of your personal data;

3.personal data are no longer needed for the purposes of processing, but are needed to identify, assert or defend claims; have objected to the processing of your personal data - until it is determined whether the legitimate interests of the Administrator take precedence over the grounds stated in your objection.


Rights to object the processing of personal data

1.You have the right to object at any time to the processing of personal data, including profiling, in connection with

- processing required for the performance of a task carried out in the public interest or processing necessary for the purposes of legitimate interests pursued by the Administrator or a third party;

- processing for direct marketing purposes.


Rights to request transfer of personal data


1.You have the right to receive your personal data from the Administrator in a structured, commonly used machine-readable format and send it to another personal data Administrator.

2.You may also request that it is the Administrator who sends your personal data directly to another Administrator (if it is technically possible). 

Rights of consent withdrawal

1.You may withdraw your consent to the processing of your personal data at any time.

2.The withdrawal of consent to the processing of personal data does not affect the legitimacy of the processing carried out on the basis of consent before its withdrawal.


Complaint to the supervisory authority

1.If you believe that your personal data violates the GDPR you have the right to lodge a complaint to a supervisory authority, in particular in your Member State of habitual residence, your place of work or the place where the alleged violation was committed.

2.The supervisory authority within the meaning of the GDPR is the President of the Personal Data Protection Office.





General information

While browsing the Website, "Cookies" are used (hereinafter referred to as: "Cookies"). Cookies are small text information that are stored on your terminal device as a result of using the Website. Their use is aimed at the proper functioning of the Service.

Cookies enable the identification of the software used and customisation of the Service to individual needs.

Cookies used by us are safe for devices. In particular, it is not possible for viruses or other unwanted or malicious software to get into the devices through Cookies.

In many cases, the software used to browse the websites allows Cookies to be stored in the terminal device by default. You can change your Cookies settings at any time. These settings can be changed in particular in such a way as to block the automatic use of cookies or to inform about their placement on your device each time.

Please note that restrictions on the use of Cookies may affect some of the functionalities available on the Website.


Types of Cookies

We use two types of Cookies:

1.session Cookies: they are stored on the device and remain there until the end of a browser session, all stored information is permanently deleted from the device memory;

2.permanent Cookies: they are stored on the device and remain there until they are deleted. Terminating a browser session or switching off the device does not delete cookies from the device.



Purposes of using Cookies

Cookies are used for such purposes:

  1. adjusting the content of the Website to the user's preferences and optimising the use of the Website; in particular, these files make it possible to recognise the user's device and to display the Website accordingly, customised to their individual needs;
  2. creating statistics that help to understand how the users of the Website use the websites, which makes it possible to improve their structure and content.




Use of third party services

1.The website uses Google Analytics to analyse the website's audience. Please note that Google Analytics uses cookies of the users to measure the interaction. Google's privacy policy is available on the following link:

2.The Service uses Facebook Pixel in order to carry out analyses of the effectiveness of advertisements as part of users' use of the Service. More information about Facebook Pixel can be found on the following link:




Final information

1.The policy in this version enters into force on November 3, 2019.

2.The Administrator shall be entitled to change the Policy, the information about the change shall appear on the main page of the Service and shall become effective within 14 days from the moment of making the changed Policy available. All activities carried out in the Service before the amendments come into force shall be governed by the rules of the Policy in force to date.

3.If any provision of the Policy is found to be invalid by a legally binding court decision, the remaining provisions remain in force.