Privacy Policy

Last updated: 9th of December 2024

The Essentials

 

DeoLink Association (hereinafter referred to as DeoLink) takes the protection of personal data very seriously. We assure you that we make every effort to protect the personal data of users of our services. Therefore:

  • Our online forms are always encrypted, and our network is protected and monitored.
  • We never sell or transfer acquired personal data to institutions or third parties for commercial use;
  • The content of posts/conversations conducted through our services cannot be disclosed to third parties without the explicit consent of their authors.
  • We have appointed a professional Data Protection Officer to ensure that our security measures guarantee a high level of data protection.
  • Matters not regulated by the Privacy Policy or Terms of Service are governed by the provisions of the Civil Code and relevant Polish laws, as well as European Union law, in particular the GDPR (General Data Protection Regulation) (EU) 2016/679 of April 27, 2016, on the protection of natural persons concerning the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.

 

Introduction

 

We realize that only accurate information about the actions taken on personal data will help you trust us and freely use the opportunities offered by our services. The document below will help you familiarize yourself with the principles we follow, whether you are using our services as an end-user (visiting our websites, using online courses, mobile applications, email messages, multimedia resources, or in any other way), or are actively engaged as an E-Coach, volunteer, collaborator, or donor.

We assure you that we want to protect and treat the personal data of users of our services properly. We publish this Privacy Policy to present our approach to this issue.

 

Controller of Personal Data

 

The controller of your personal data is DeoLink, located in Wisla, Poland. When we use the terms „we,” „us,” or „our,” we refer to the DeoLink Association and entities acting on its behalf. Our mission is to reach people with the message of the Gospel, using media and modern means of communication, including the Internet. We are a interdenominational structure, involving individuals from all major Christian denominations in Poland. More information about us can be found on the website https://deolink.org. If you have any questions regarding our privacy policy, please contact our specially appointed data protection officer via email or postal mail:

 

Emilian Kujawski

E-mail: iod@deolink.org

Mailing address:

Data Protection Officer

DeoLink Association

Malinka 65D/2

43-460 Wisla, Poland

 

Table of Contents

  • What are personal data?
  • How do we collect your personal data?
  • If you are 16 years old or younger?
  • What information can we collect?
  • How and why do we use your data?
  • Are Your Data Subject to Profiling?
  • With whom do we share your data?
  • Links to third-party websites
  • How do we protect your data?
  • How long will we keep your data?
  • How does international data transfer work?
  • What rights do you have regarding your personal data?
  • How to file a complaint or express concern
  • What are cookies?
  • What cookies do we use and for what purposes?
  • How can I control the use of cookies?
  • Can this Privacy Policy change?

 

What are personal data?

 

Generally speaking, personal data are any information that allows you to be directly or indirectly identified as a unique natural person. More information about the categories of data collected by us can be found in the paragraph „What information can we collect?”

 

How do we collect your personal data?

 

We may collect and store your data…

  1. …when you visit our website.

You can browse our website without telling us who you are and without disclosing information about yourself, such as your email address. Our servers may collect anonymous information about your visits to our website, such as the IP address and domain you used to access our website, the type of browser, the page you entered and left, any subpage within our website that you observed from this IP address, and the country you are in. We use this data to analyze the functioning of our website (e.g., number of visits, average time spent, viewed subpages, etc.) and for operational purposes, such as continuously improving the performance of our services.

  1. …when you share your personal data with us.

We may collect and store your data when you interact with us through this or other of our websites. This may happen when…

  • you fill out any of the contact forms on our website;
  • you register for an event organized by us;
  • you subscribe to receive a newsletter or other publications from us;
  • you register for an online course;
  • you send us an inquiry, application, or complaint;
  • you submit an application for cooperation or register as a volunteer;
  • you financially support our work;
  • you correspond with one of the members of our team.
  1. …when you indirectly provide us with information about yourself.

If you visit our profiles on social media platforms such as Facebook, Instagram, TikTok, or use YouTube, we may access your personal data. The scope of information obtained will depend on the privacy settings you have defined on each of these platforms. Changing the current settings on external services requires you to refer to their privacy policies.

We may also obtain information about your visits to our website or subpages based on cookies. For more information on this topic, please refer to the cookie section in this Privacy Policy.

 

If you are 16 years old or younger?

 

If you are under 16 years of age, you should refrain from providing us with your personal data, unless you have the consent of your parents or legal guardians. If you are a minor, remember to consult with your parents or guardians about the terms of using our services before providing us with any personal data.

 

What information can we collect?

 

The information we collect is limited solely to those that allow us to deliver our services and maintain their appropriate standard. Among the collected data may be: your name, email address, phone number, home address, date of birth, reasons for your interest in a particular page or DeoLink project, and other information you voluntarily choose to share with us through registration or sign-up forms.

 

Our services also enable you to engage in open conversations (written or oral) with other users of the service or E-trainers. The content of these conversations is beyond our direct control, and we are not responsible for their improper use. We recommend refraining from sharing any confidential information in these conversations, especially personal data. Departure from this rule will be solely at the discretion of the person sharing their data and cannot be a basis for any claims against the Data Controller.

 

Certain types of personal data have been legally recognized as more sensitive („special categories”). Among them are information revealing racial or ethnic origin, religious or philosophical beliefs, political opinions, membership in trade unions, genetic or biometric data, information concerning health, and data related to sexual life or sexual orientation.

Only with your explicit and voluntary consent can we process special categories of personal data, that is, only when you decide to share with us your reflections and/or experiences in this regard.

 

How and why do we use your data?

 

We use your personal data primarily for the following purposes:

  • Responding to inquiries: If you contact us with a question, we may use your personal data to respond to it.
  • Access to online courses and services: Your data is used to enable you to participate in online courses and take advantage of other digitally offered services.
  • Access and customization of our website: We may use your personal data to help you access our website and tailor content to your developmental needs.
  • Participation in offline events: Similar to digital services, your data may be necessary to enable your participation in real-world events such as conferences, camps, team-building events, or training sessions.
  • Processing of collaboration applications: We may process your personal data if you submit your resume or CV to evaluate your qualifications and provide you with a response.
  • Transactional purposes: We will use your personal data to fulfill obligations arising from any agreements for goods or services you order from us or to which we have jointly agreed (such as participation in training or conferences).
  • Service quality analysis: We may use your personal data to improve current and future ways of delivering our services. For this purpose, we may utilize services from other providers.
  • Fundraising: Your data will be necessary for us to announce opportunities to support projects in compliance with regulations and to record and store data regarding donations made to us.
  • Promotional activities: You will receive information about events and news (newsletters) only if you consent to it. Additionally, we may inform you about matters that may reasonably be of interest to you. In any case, we will respect your right to withdraw consent or object to such communication.
  • Administration: We may use your personal data to record and process your complaint, request not to receive further marketing communication, record the history of cooperation with volunteers, and for other necessary internal archival purposes.
  • Protection of your fundamental interests: We may process your personal data when we have reasonable suspicion of a risk of serious harm to you or someone else.
  • Market research and surveys: We may invite you to participate in surveys or market research to improve the functioning of our website or the strategic development of our services. Participation in research is always voluntary and, unless agreed otherwise, anonymous.
  • Compliance with laws and regulations: We may use your personal data to fulfill obligations arising from applicable laws, such as those related to employment or taxes.

Are Your Data Subject to Profiling?

 

Yes, in certain cases, your personal data may be subject to profiling. This means that based on your previous choices, we may suggest content or services that, according to our forecasts, might be of interest to you. This primarily applies to topics such as online courses, selected newsletters, or the location of offline events. In every instance, profiling is based on your explicit consent (e.g., provided when subscribing to a newsletter or registering for an event). Whether a specific service involves data profiling will be indicated in a dedicated notice, also referred to as an information clause, which we include wherever we collect data, such as contact forms, event registration forms, or account registration forms on our platform.

Importantly, under no circumstances do we employ automated decision-making (without human intervention) that produces legal effects concerning you or significantly affects your rights and freedoms.

With whom do we share your data?

 

We will only use your data for the purposes for which we collected it, and if we share it with third parties, it will always be related to fulfilling our obligations towards you.

We will never sell or transfer your personal data to individuals or third-party institutions for their own separate purposes unless required by law. If you receive a marketing message suggesting our consent or data sharing, please contact us promptly.

Our external providers may have access to your data if they assist us in ensuring the quality and maintenance of our services, project implementation, or fundraising. Such providers will operate solely based on instructions received from us and are subject to screening before starting cooperation, with contracts containing strict data protection provisions. Currently, we have agreements with the following service providers:

Studio DR Ltd. – located in Poland and 100% owned by DeoLink. This is our „tooling” company that employs experts from various fields and helps us achieve statutory goals, including creating content available on websites or ensuring secure hosting of data processed by us;

Salesforce.com, provider of customer communication management system. A leading global entity based in the USA;

Stripe Inc., provider of online payments solutions. It’s US based, globally operating company.

 

In the event that we organize conferences or meetings, it may be necessary to transfer certain data to service providers such as conference centers/hotels or insurance companies.

We will comply with requests for data disclosure when required by law. For example, we may disclose your personal data to authorized authorities for tax investigations, crime prevention, or detection purposes. We may also share your data with emergency services if we have grounds to believe there is a risk of serious harm to you or another person.

 

Links to third-party websites

 

Our websites and online services may contain links to third-party websites or services that are not owned or controlled by us. Please note that we are not responsible for the privacy practices of such third parties. We encourage you to read the privacy policies of each website you visit.

 

How do we protect your data?

 

To ensure the security of your personal data, we employ appropriate technical and organizational measures. We limit access to information to those who need to know it and ensure that our personnel are aware that this information is to be used only in accordance with this Privacy Policy and other procedures established to ensure the legality of data processing.

We regularly review and update the permissions of individuals who may have access to the information stored by us to ensure that this data is processed only by trained employees, volunteers, or contractors. Our online forms are always encrypted, and our network is protected and monitored.

 

Confidentiality and security are very important to us. The content of conversations conducted through our services cannot be disclosed to third parties without the explicit consent of the authors, except in situations where conversations are clearly marked as public. Our employees and collaborators are informed about this and have consented to it. You are also obliged to maintain confidentiality. By using our services, you agree not to publish or share the content of conversations held with our volunteers or other users without their explicit consent.

 

If you use your credit or debit card to make a donation, we securely transmit your card details to our payment processing partners. We do not store this data on our website.

However, it should be noted that there are risks associated with transmitting information over public networks (open hotspots) or using publicly accessible computers, and we cannot guarantee 100% security of data (including personal data) disclosed or transmitted via public networks or unencrypted connections.

 

How long will we keep your data?

 

Your personal data will be processed no longer than necessary for the purposes for which they were collected or until you explicitly withdraw your consent (or object) to their processing. If you are unable to quickly locate the appropriate command to stop the processing of your personal data in any of our services, you can always write to iod@deolink.org and request the deletion of your data from a specific service.

If you request to stop processing your personal data for marketing purposes, in some cases, we may need to add your data to a blocking file, which will enable your request to be enforced.

As for personal data related to financial transactions, your data will be processed for as long as required by tax and accounting law (this may be up to six years from the transaction date).

 

How does international data transfer work?

 

We make every effort to ensure that the personal data we collect is not transferred and processed outside the European Economic Area (EEA), i.e., to the extent possible, processed within the scope of the European General Data Protection Regulation (GDPR).

However, due to the global nature and interconnections of some internet services, in exceptional cases, we may use services provided by a supplier located outside the EEA. You will always be informed of such situations before the processing of data begins. When selecting service providers from outside the EEA, we always verify the guarantee of appropriate safeguards provided during the processing of your personal data by the supplier, such as the origin of the supplier from a country recognized as safe by an appropriate decision of the European Commission or those applying specific standard contractual clauses set by it.

 

Under the following link (https://deolink.org/data-transfer-to-third-countries), you will find detailed information about entities from third countries to which data may be made available, as well as about mechanisms for securing data in such cases.

 

What rights do you have regarding your personal data?

 

At any time, you can exercise your right to access your personal data processed by us (information about their scope, purposes of processing) and to correct any inaccuracies. You also have the right to request us to delete your personal data or to restrict their processing. Our services, such as online courses or email subscriptions, give you the opportunity to easily exercise these rights using their functionalities. If a particular service does not provide such functionality automatically, please send a message to the data protection officer (iod@deolink.org), and they will guide you through the process. Also, provide any additional information related to previous communication with us that may help us locate your data.

In accordance with data protection law, your request will be processed no later than within 30 days of receiving your written request.

 

How to file a complaint or express concern

 

If you want more information or have questions regarding this Privacy Policy, if you wish to lodge an official complaint about our approach to data protection, or if you want to express concerns regarding privacy, please contact DeoLink at the email address: iod@deolink.org or the postal address:

 

Data Protection Officer

DeoLink

Malinka 65D/2

43-460 Wisla, Poland

 

If you wish to file a complaint regarding our improper treatment of your personal data, please follow the complaint procedure. If you are not satisfied with the response received, you can escalate your concerns to the appropriate supervisory authority:

 

President of the Personal Data Protection Office

Stawki 2

00-193 Warsaw, Poland

https://uodo.gov.pl/

 

What are cookies?

 

Cookies are small text files that are downloaded and stored on your device when you visit websites. Cookies are a common tool used by website owners to ensure you have a good browsing experience.

When you visit our website, we may send a „cookie” to your device and track your visit. It acts like an identification card that allows our website to recognize you and retain information that may be relevant for your interaction with our site. Cookies enable us to monitor your visit to the website, helping us better understand how you use our site and allowing us to customize it to better meet your needs.

 

What cookies do we use and for what purposes?

 

We have divided the cookies we use into two categories: functionality cookies and performance cookies. Each of these categories is described below, including details of specific cookies, although we may use additional or alternative cookies within each group.

Please note that third parties (including, for example, advertising networks and providers of external services like internet traffic analytics) may also use cookies that are beyond our control. These cookies may belong to the functionality or advertising cookie groups.

Functionality Cookies:

Improve your experience of using the site by recognizing when you return to our site, such as by remembering access preferences, system operation preferences, etc.

Performance Cookies:

These cookies allow us to monitor and improve the functioning of our site. They, for example, enable us to count visitors, identify the source of traffic, and indicate the most popular parts of the site.

Google Analytics: This cookie is used to monitor traffic on our site using the Google Analytics interface.

Matomo (Piwik): This cookie is used to monitor traffic on our site using the Matomo (Piwik) interface.

Facebook Pixel: An analytical tool that helps measure the effectiveness of ads based on analysis of actions taken by users visiting our services.

 

How can I control the use of cookies?

 

The information about the use of cookies on our website is provided to you in a banner displayed during your first visit. The scope of accepted cookies will be applied in your browser until you change the settings. If you wish to restrict, block, or delete cookies set on websites, you can usually do so in your browser settings. You can typically find these settings in the „options” or „preferences” section of your browser menu.

However, please note that if you set your browser to block all cookies, you may not be able to access all parts of our website. If you do not change your settings, our website will continue to send cookies.

 

Can this Privacy Policy change?

 

We reserve the right to make changes or additions to this Privacy Policy. Any such changes will be published on the www.deolink.org website under the „Privacy Policy” tab/link. Therefore, we recommend that all our users regularly visit our website and monitor the latest updates regarding the terms of use of our services. These changes do not affect our fundamental principle: we do not disclose our users’ personal data to third parties.

 

Thank you for reviewing our Privacy Policy.

 

Have a great day!

The Deolink Team