Version as of 5.06.2025
Protecting your privacy and personal data is our priority. To ensure the security of this data and compliance with applicable legal regulations, we have prepared this privacy policy (hereinafter: "Privacy policy"). It contains detailed information, including the principles and purposes of the processing of personal data, which are collected while using our website https://rebel-wolves.com/pl/ (hereinafter: "Website") and through other selected forms of cooperation with the Controller.
The controller of your personal data (hereinafter: "Controller") is Rebel Wolves sp. z o.o., with its registered office in Warsaw at ul. Dereniowa 60 / U4, (02-776) Warsaw, registered in the Register of Entrepreneurs of the National Court Register maintained by the District Court for the capital city of Warsaw in Warsaw, XIII Commercial Division of the National Court Register under KRS number 0000933935, REGON: 520497877, NIP: 9512529961, with share capital of PLN 50,000.00.
You can contact the Controller by post at the address indicated above or via e-mail – [email protected].
Use of the Website
If you use our Website only for informational purposes, i.e. without filling in forms or providing us with information any other way, we only collect data transmitted by your browser to our server in order to enable the use of the Website. Detailed information on the purposes and grounds for the processing of this data can be found below.
Your personal data as users of the Website, including your IP address or other identifiers and information collected through cookies and other tracking technologies, are processed by the Controller:
to ensure the proper operation of the Website and its functionality, as well as for analytical, statistical and marketing purposes – then the legal basis for the processing is the legitimate interest of the Controller (Article 6(1)(f) of the GDPR), which involves ensuring the proper functioning of the Website, as well as conducting analytical/statistical and marketing activities;
to establish, pursue or defend against claims – the legal basis for the processing is the legitimate interest of the Controller (Article 6(1)(f) of the GDPR), which involves the protection of its rights.
The user's activity on the Website, including their personal data, may be recorded in system logs. This data is used mainly for the purpose of administering the Website. The Controller also processes them for technical purposes, such as ensuring security and efficient management of the IT system.
Our Website may contain links to other websites (external services). We are not responsible for maintaining privacy and the rules of personal data processing applicable on these websites, unless these websites belong to the Controller. We encourage you to read the privacy policy available there when visiting such websites. This Privacy Policy applies only to the Website.
Using the Controller's fanpage on Facebook, YouTube, X
Running a fanpage by the Controller on social media platforms such as Facebook, YouTube or X takes place on the terms and conditions specified by the providers of these platforms. The Controller processes your personal data collected via social media platforms (i.e. data of persons who follow the Controller's profiles or who have published their comment or reaction under the Controller's posts) for marketing, statistical or analytical purposes – the legal basis for the processing is the legitimate interest of the Controller (Article 6(1)(f) of the GDPR), which involves conducting analytical/statistical or marketing activities.
Contacting the Controller
If you contact the Controller, your data will be processed for the purpose of correspondence – the basis for the processing of data is the legitimate interest of the Controller (Article 6(1)(f) of the GDPR), which involves providing appropriate service to persons contacting the Administrator.
Conclusion and performance of contracts with the Controller
If the processing of your personal data is related to the conclusion and performance of a contract, in particular a non-disclosure agreement (NDA), to which you are a party or to which the entity represented by you is a party, personal data (identification and contact data) will be processed:
to conclude and perform a non-disclosure agreement (NDA) – the legal basis for the processing is the necessity of processing for the performance of the contract (Article 6(1)(b) of the GDPR);
to establish, pursue or defend against claims – the legal basis for the processing is the legitimate interest of the Controller (Article 6(1)(f) of the GDPR), which involves in the protection of its rights.
Recruitment
Information on the processing of personal data in connection with the recruitment process can be found on a separate page: https://rebel-wolves.com/legal/gdpr.
Personal data will be stored for different periods depending on the basis of processing:
If personal data is processed on the basis of Article 6(1)(b) GDPR (performance of a contract), it will be processed for the duration of the contract.
If personal data is processed on the basis of Article 6(1)(f) of the GDPR (legitimate interest of the Controller), they will be stored until the Controller has this legitimate interest or until you effectively object to it. The data processing period may be extended if processing is necessary for the establishment or pursuit of potential claims or the defense against claims, and afterward only if and to the extent required by law.
If your personal data is processed on the basis of Article 6(1)(a) of the GDPR (your consent), it will be processed until you withdraw your consent or the personal data is no longer useful for the specified purposes.
Your personal data may be transferred to third parties to the extent necessary to achieve the purposes. The recipients of personal data may be in particular: entities providing IT support, including, among others, hosting providers, marketing service providers and external advisors, e.g. law firms.
As a rule, personal data will be processed within the European Economic Area (EEA). However, the data may be transferred to the Controller's partners who process data outside the EEA, but only to the extent necessary related to the Controller's cooperation with these partners. In such situations, the Controller provides all possible measures to ensure the security of the transferred personal data, including, in particular, transferring personal data to countries for which the European Commission (EC) has found an adequate level of protection. In the absence of such a decision, the security of personal data is ensured by safeguards applied by the Controller, such as standard contractual clauses (SCCs) approved by the EC. If these conditions are not met, the Controller will apply for express consent to such transfer, informing in advance about the risk associated with such transfer. More information on the security measures used, including a copy thereof, can be obtained by contacting the Controller.
You have the right to access your data and request their rectification, erasure, restriction of processing, data portability, and the right to object to the processing of data. You also have the right to lodge a complaint with the relevant supervisory authority dealing with the protection of personal data, which in Poland is the President of the Office for Personal Data Protection.
If the data processing would be based on consent, you have the right to withdraw it at any time without affecting the lawfulness of the processing that was carried out on this basis before the consent was withdrawn.
The scope of each of the above rights and the situations in which they can be exercised result from the provisions of law. In order to exercise your rights, please contact the Controller.
The Controller informs that personal data will not be subject to processes involving automated decision-making, including profiling, as referred to in Article 22(1) and (4) of the GDPR.
Your personal data may come directly from you, including from your device, or from third parties. In particular, we may receive personal data from the entities you represent when entering into a non-disclosure agreement (NDA).
Providing personal data is voluntary. However, it should be remembered that failure to provide certain personal data may prevent you from using the Website, contacting or establishing cooperation with the Controller.
The Website may use cookies and other tracking technologies. Cookies are IT data, in particular text files, stored on the user's end device to facilitate the use of the website. Cookies typically contain the name of the website from which they originate, their storage duration on the end device, and a unique number. The Website uses both the Controller's cookies and third-party cookies.
The information collected by cookies, as a rule, does not constitute personal data (it does not allow for user identification). However, some of this information, depending on its content and use, may be assigned to a specific person and thus considered personal data, in which case the other provisions of the Privacy policy apply to it.
The following types of cookies are used on the Website:
session cookies – temporary files stored on the user’s device until they leave the website or close the browser.
persistent cookies – files stored on the user’s device for a period specified in the cookie parameters or until manually deleted by the user.
Cookies can also be divided according to the purpose of their use. The following categories of cookies may be used on the Website:
necessary – you cannot disable these cookies, as they are necessary for the functioning of the Website. We use them to guarantee the proper operation of the Website and without them it would be impossible to use the Website;
analytical/statistical – they require your consent. They help to analyse the way the Website is used. They allow, for example, to determine the number of visitors to the Website, as well as to detect and remove irregularities in its functioning;
preferential / functional – require your consent. They help to provide you with an efficient and friendly Website, tailored to your preferences. They allow, inter alia, to check how you use the Website, e.g. how often you visit the Website and what functionalities you use.
Some cookie providers (third parties) may act as independent controllers of your personal data in certain cases. In some cases, if required by a given cookie provider (third party), the basis for the processing of personal data may also be your consent.
A detailed list of cookies used is available as part of a dedicated functionality (cookie banner) on the Website, through which you can decide on the scope of cookies used on your end devices.
The Privacy policy can be verified on an ongoing basis and updated if necessary.