Last updated: March 2025  

1. General provisions

This Privacy Policy contains important information regarding your personal data and we encourage you to read it carefully. The policy is addressed to people who use our website: https://ambiscale.com/ 

This Privacy Policy describes the personal data that we collect about you, how we use it, how we share it, your rights and choices, and how you can contact us about our privacy practices. This Policy also outlines your data subject rights, including the right to object to certain uses of your personal data.

2. Definitions

1. Personal data means any information that relates to an identified or identifiable individual, and can include information about how you engage with our Services. 
2. Data Controller – Ambascale Sp. z o.o., registered at ul. Św. Mikołaja 7, Wrocław.
3. “Services” means the services provided by the Data Controller.
4. “Processing” means any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, including collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction;

3. Data Protection Officer 

The Controller has appointed a Data Protection Officer. For all matters related to the processing of personal data, please contact us at: [email protected]

4. Personal data that we collect

1. We use this information for the following purposes:

• When you contact us and send an email for communication purposes.
• When you send your CV to our email address.
• When you submit a question about our services using the contact form on our website.
  

2. How do we collect your information? 

• Most of the personal data we receive comes from users of our website.
• Personal information is collected when you send an email to our address.
  

5. Legal bases for data processing

1. to use your information for one of the following purposes: contacting users via email, receiving your CV, or sending you information about our services (the data subject has given consent to the processing, Art. 6(1)(a) GDPR).
2. we use your information to administer our site, including troubleshooting and statistical purposes (processing is necessary for the purposes of the legitimate interests pursued by the controller, Art. 6(1)(f) GDPR).
3. ensuring the security of our website (processing is necessary for the purposes of the legitimate interests pursued by the administrator, Art. 6(1)(f) GDPR).
4. consent to send the report (basis for processing: Art. 6(1)(a) GDPR – consent of the data subject).
5. consent to send marketing communications (basis for processing: Art. 6(1)(a) GDPR – consent of the data subject).

6. Your rights and choices

You have rights regarding your personal data. Below is a summary of each right and how you can exercise it.

Right of access by the data subject

You have the right to obtain confirmation from the controller as to whether your personal data is being processed and, if so, to access that data. 

Right to rectification data

You have the right to obtain from the controller, without undue delay, the rectification of inaccurate personal data concerning you.

Right to erasure (right to be forgotten)

Under certain circumstances, you have the right to request the deletion of your personal data. These circumstances are outlined in Article 17 of the GDPR.There are also certain exceptions where we may refuse a request for erasure, such as when the personal data is required to comply with a legal obligation or for the establishment, exercise, or defense of legal claims.

Right to restriction of processing

You have the right to obtain from the controller the restriction of the processing of your data if one of the conditions set out in Article 18 of the GDPR is met.

Right to data portability

In most cases, you have the right to receive all personal data that you have provided to us in a structured, commonly used and readable format. 

Right to lodge a complaint with a supervisory authority

If you object to our processing of your personal data, you have the right to lodge a complaint with the Data Protection Authority (DPA) in the country where you live, work, or where an alleged breach of data protection law has occurred.

To exercise your data protection rights, please contact our Data Protection Officer, Daria Rychlik, at [email protected].

7. Security and retention

The Data Controller makes reasonable efforts to ensure a level of security appropriate to the risks associated with the processing of your personal data. We implement organizational, technical, and administrative measures to protect personal data covered by this Policy against unauthorized access, destruction, loss, alteration, or misuse. Only a limited number of employees who require access to the information to perform their duties are granted access to personal data.

We store your personal data:

1. as long as it is necessary to achieve the purposes for which it was collected;
2. until you withdraw your consent;

You have the right to withdraw your consent at any time. Withdrawal of consent does not affect the lawfulness of the processing that was carried out based on consent before its withdrawa

8. International data transfers

Ambiscale is a business located in the EU – Poland. We provide services in EU countries and other countries around the world. We process data in accordance with the GDPR. We store personal data of our clients within the EU. In the case of transfers to third countries, such as the United States, we have entered into Standard Contractual Clauses, approved by the European Commission, to ensure an adequate level of protection for the transfer of your personal data to entities outside the EEA.

9. Data Protection Law in United States

1. We provide services to a client with headquarters in the USA. 
2. We will comply with applicable state-specific local data protection and privacy laws when providing customer services.

10. Further processing

For further processing to provide services to our clients, we use the services of other entities that support us in our business operations. A list of these processors is available upon request from users.

The Website uses:

1. the Microsoft Clarity tool. This tool records Users’ interactions on the Service, such as how pages are rendered and interactions (mouse movements, clicks, scrolling). All data from Microsoft Clarity is anonymous, and there is no way to identify users of the Service. Users can find details of Microsoft Clarity data processing at https://learn.microsoft.com/en-us/clarity/faq.
2. Google Analytics 4 service. More information about privacy https://support.google.com/analytics/answer/12017362?hl=en

11. Cookies and other tracking technologies

Our website uses cookies, web beacons, file information, and similar technologies to distinguish you from other users of the Services. This helps us to provide you with a good experience when you browse the Services and also allows us to improve the Services. Cookies are pieces of code that allow for personalization of the Services experience by saving your information such as user ID and other preferences. A cookie is a small data file that we transfer to your device’s hard disk (such as your computer or smartphone) for record-keeping purposes. We use or may use the data collected through tracking technologies to: (a) remember information so that you will not have to re-enter it during your visit or the next time you visit the site; (b) provide custom, personalized content and information, including targeted content and advertising; (c) identify you across multiple devices; (d) provide and monitor the effectiveness of our Services; (e) monitor aggregate metrics such as total number of visitors, traffic, usage, and demographic patterns on our Website; (f) diagnose or fix technology problems; and (g) otherwise to plan for and enhance our Services.

We use the following types of cookies: 

– ppwp_wp_session – help make a website usable by enabling basic functions like page navigation and access to secure areas of the website 

– __utmz, _ga , _gat , _gid – help website owners to understand how visitors interact with websites by collecting and reporting information anonymously. 

– ads/ga-audiences, initialTrafficSource – o track visitors across websites 

The cookies we use are designed to help you get the most from the Services, but if you do not wish to receive cookies, most browsers allow you to change your cookie settings. Please note that if you choose to refuse cookies, you may not be able to use the full functionality of the Services. These settings will typically be found in the “options” or “preferences” menu of your browser. In order to understand these settings, the following links may be helpful; otherwise, you should use the “Help” option in your browser for more details. 

• Cookie settings in Internet Explorer 
• Cookie settings in Firefox 
• Cookie settings in Chrome 
• Cookie settings in Safari web

We also use google analytics services.

12. Data processing agreement 

By entering into a contract for the provision of services, customers entrust us with the processing of their personal data.

13. Update 

We may update this policy from time to time to reflect new services, changes in our privacy practices, or applicable laws. The date of the last update is indicated at the top of this policy.

14. Contact us 

If you have any questions about data protection, please contact us: 

Ambiscale Sp. z o. o

Świętego Mikołaja 7 Street

50-125 Wrocław, Poland