Polityka prywatności | Royal Tulip Warsaw Centre

Privacy Policy

1. General Information

This policy applies to the website operating under the URL: en.unique-hotels.pl.
The website operator and the Data Controller is:
UNIQUE APARTMENTS WARSZAWA SP. Z O.O., ul. Grzybowska 49, 00-844 Warsaw, NIP: 5272831485.

Contact email address: iod@unique-hotels.pl.

The Operator is the Controller of your personal data regarding any data provided voluntarily through the website.

The website uses personal data for the following purposes:

Running a newsletter.
Facilitating online chat conversations.
Handling inquiries via the contact form.
Delivering requested services.
Presenting offers or information.

The website gathers information about users and their behavior in the following ways:

Through data voluntarily entered into forms, which is stored in the Operator’s systems.
By saving cookies (so-called „cookies”) on users’ end devices.

2. Selected Methods of Data Protection Used by the Operator

Login and data entry points are protected at the transmission layer (SSL certificate). This ensures that personal and login data entered on the website are encrypted on the user’s computer and can only be read on the target server.
Personal data stored in the database is encrypted in such a way that only the Operator, who holds the key, can read it. This protects the data in the event of database theft from the server.
User passwords are stored in a hashed form. The hashing function is one-way, meaning it cannot be reversed, which is a modern standard for storing user passwords.
The Operator periodically changes its administrative passwords.
To protect data, the Operator regularly performs backups.
Regular updates to all software used by the Operator for processing personal data ensure a high level of security, including updates to programming components.

3. Hosting

The website is hosted (technically maintained) on servers operated by OVH.

4. Your Rights and Additional Information on Data Usage

In certain situations, the Controller has the right to share your personal data with other recipients if it is necessary to fulfill a contract with you or to comply with the Controller’s legal obligations. This applies to the following groups of recipients:

Hosting providers (data entrusted for processing).
Authorized employees and collaborators who use the data to fulfill the website’s objectives.
Companies providing marketing services for the Controller.

Your personal data is processed by the Controller no longer than necessary for activities defined by specific regulations (e.g., accounting laws). For marketing-related data, processing will not exceed three years.

You have the right to request from the Controller:

Access to your personal data.
Rectification of your data.
Deletion of your data.
Restriction of data processing.
Data portability.

You also have the right to object to the processing of your personal data described in point 3.3(c) for legitimate interests pursued by the Controller, including profiling. However, the objection cannot be exercised if there are overriding legitimate grounds for processing, such as establishing, pursuing, or defending legal claims.

You have the right to file a complaint with the President of the Personal Data Protection Office at ul. Stawki 2, 00-193 Warsaw.

Providing personal data is voluntary but necessary to use the website.

You may be subject to automated decision-making, including profiling, to deliver services under the agreement and for direct marketing purposes by the Controller.

Your personal data is not transferred to third countries outside the EU.

5. Information in Forms

The website collects information voluntarily provided by the user, including personal data if entered.

The website may save information about connection parameters (e.g., timestamp, IP address).

In some cases, the website may store data to link the information in the form with the user’s email address. In such cases, the user’s email address may appear within the URL of the page containing the form.

Data entered into forms is processed for the purpose resulting from the specific function of the form, such as handling service requests, business inquiries, or service registration. Each form’s context and description clearly outline its purpose.

6. Administrator Logs

Information about user behavior on the website may be subject to logging. This data is used to administer the website.

7. Important Marketing Techniques

The Operator analyzes website traffic using Google Analytics (Google Inc., USA). The Operator does not share personal data with this service, only anonymized information. The service uses cookies stored on the user’s device. You can manage preferences and cookie-based data collection through Google tools: Google Ads Preferences.
The Operator uses remarketing techniques to tailor advertising messages to user behavior on the website. However, no personal data is shared with advertising operators. This requires enabling cookies.
The Operator uses Facebook Pixel, allowing Facebook (Facebook Inc., USA) to know that a registered user is using the website. This is based on data for which Facebook is the controller, and no additional personal data is shared by the Operator.
The Operator uses tools to analyze user behavior, such as heatmaps and session recordings. The data is anonymized and does not reveal the user’s identity.
The Operator uses automated solutions for website operations, such as sending emails to users who visit specific pages if they consent to receive marketing emails.

8. Information About Cookies

The website uses cookies, which are text files stored on the user’s device to facilitate website usage. Cookies may include:

Maintaining user session (after login) to avoid repeated login on every subpage.
Using cookies for marketing techniques described above.

Two main types of cookies are used: session cookies (temporary) and persistent cookies.

Users can manage cookie settings in their browser. Blocking essential cookies may limit website functionality.

9. Managing Cookies

To manage cookies, select your browser from the list below and follow the instructions:

Desktop Browsers: Edge, Internet Explorer, Chrome, Safari, Firefox, Opera.
Mobile Devices: Android, Safari (iOS), Windows Phone.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.