Homepage

Privacy and Cookies Policy

Hello!

If you have arrived here, it is a reliable sign that you value your privacy. We understand this perfectly, so we have prepared this document for you, in which you will find the rules of processing personal data and the use of cookies in connection with the use of the website https://www.bivisee.com/

Chapter 1 – Title, intro, and who the controller is

Privacy and Cookies Policy
This Privacy and Cookies Policy explains how we collect and use personal data when you use our website https://www.bivisee.com/ (the “Website”). It also explains how we use cookies and similar technologies.

Controller
The controller (data administrator) of your personal data is:
BiViSee Sp. z o.o., Mickiewicza 37/58, 01-625 Warsaw, Poland
KRS: 0000845111 | NIP: PL5252825352 | REGON: 386245188

Contact about privacy
If you have questions about this Policy or about your personal data, contact us:

• Email: info@bivisee.com
• Mail: Mickiewicza 37/58, 01-625 Warsaw, Poland

We have not appointed a Data Protection Officer. For all privacy matters, please use the contact details above.

Legal framework
We process personal data under applicable data protection law, including the EU General Data Protection Regulation (GDPR).

Scope
This Policy applies to the Website and to related contact channels (such as email) where this Policy is referenced.

Chapter 2 – What personal data we process and where it comes from

Depending on how you use the Website or contact us, we may process the following categories of personal data:

1. Data you provide directly

• Email address
• Name and surname (if provided)
• Company name and role (if provided)
• Content of messages sent via email or contact forms
• Information provided when booking a call or meeting (for example preferred date, time, notes)

2. Data related to communication

• Date and time of contact
• History of correspondence
• Technical metadata related to the message (for example mail server data)

3. Website usage and technical data

• IP address
• Device type, operating system, and browser type
• Screen resolution and device characteristics
• Language and approximate location (country level)
• Pages visited, time spent on the Website, interaction data
• Mouse movements, clicks, scrolling behavior, and session recordings (where possible in aggregated or anonymized form)
• Cookie preferences and consent choices

This data is collected:

• when you contact us by email or form,
• when you book a call or meeting,
• when you browse and interact with the Website,
• through cookies and similar technologies (described later in this Policy).

Providing personal data is voluntary. However, failure to provide certain data may prevent us from responding to your inquiry, arranging a meeting, or providing specific services.

In some cases, we may also receive your contact details from third-party sources (for example when you provide your details to us in another channel or when you interact with our official profiles on third-party platforms). In such cases, we provide the information required by applicable law.

Chapter 3 – Purposes of processing and legal bases

We process personal data only when we have a lawful basis under the GDPR. Below we explain each purpose of processing and the corresponding legal basis.

1. Handling inquiries and business communication

When you contact us by email or through a contact form, we process your personal data in order to:

• respond to your message,
• communicate with you about your inquiry,
• conduct initial business discussions.

Legal basis:
Article 6(1)(f) GDPR – our legitimate interest in responding to inquiries and conducting business communication.

2. Arranging calls and meetings

When you book a call or meeting with us (for example via an appointment scheduling tool), we process your personal data in order to:

• schedule and conduct the meeting,
• communicate with you about its details.

Legal basis:
Article 6(1)(b) GDPR – processing is necessary to take steps at your request prior to entering into a contract.

3. Marketing and sales communication

If you agree to receive marketing or sales-related communication from us (for example emails about our services or content), we process your personal data in order to:

• send marketing and promotional messages,
• provide information about our services and offers.

Legal basis:
Article 6(1)(a) GDPR – your consent.

You may withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing carried out before the consent was withdrawn.

We send marketing emails only where permitted by applicable electronic communications rules, and where required we rely on your consent.

4. Website analytics, user experience, and improvement

We process data related to how the Website is used in order to:

• understand how visitors use the Website,
• analyze user behavior and improve usability and user experience,
• improve the structure, content, and performance of the Website,
• ensure security and prevent abuse.

Legal basis:

• For essential security and technical processing: Article 6(1)(f) GDPR (legitimate interest).
• For analytics, user behavior analysis, and marketing-related cookies and tools: Article 6(1)(a) GDPR (consent), where required by law.

5. Legal obligations and claims

We may process personal data in order to:

• comply with legal obligations,
• establish, exercise, or defend legal claims.

Legal basis:

• Article 6(1)(c) GDPR (legal obligation), or
• Article 6(1)(f) GDPR (legitimate interest).

6. Profiling for marketing purposes

If you consent to marketing cookies, we may use marketing tools (such as Meta Pixel and LinkedIn Insight Tag) to build audiences and display ads that may be more relevant to you. This may involve automated profiling based on your activity on the Website. This profiling is used to tailor advertising and measure campaign performance. It does not produce legal effects for you and does not similarly significantly affect you.

Chapter 4 – Data retention

We store personal data only for as long as it is necessary to achieve the purposes for which it was collected, or as required by law.

Retention periods depend on the type of data and the purpose of processing:

1. Contact and business communication

Personal data processed in connection with inquiries, email communication, and contact forms is stored:

• for the duration of the correspondence, and
• thereafter for a limited period necessary for internal archiving and the defense against potential claims.

As a rule, this period does not exceed 3 years from the last contact, unless a longer retention is required due to a contract or legal obligation.

2. Calls and meetings

Data related to booked calls or meetings is stored:

• until the meeting is completed, and
• for a limited period thereafter for organizational and follow-up purposes.

As a rule, this data is stored for up to 12 months after the meeting, unless a business relationship is established, in which case data may be retained longer in accordance with contractual and legal requirements.

3. Marketing communication

Personal data processed for marketing purposes is stored:

• until you withdraw your consent, or
• until the marketing purpose is no longer relevant.

After consent is withdrawn, we may retain minimal data in a suppression list in order to ensure that your objection or withdrawal of consent is respected.

4. Website analytics and technical data

Website usage data and cookie-related data is stored:

• for the periods defined in the settings of the tools we use, or
• until you withdraw your consent for non-essential cookies.

Where possible, such data is aggregated or anonymized.

5. Legal obligations and claims

Personal data may be retained for longer periods where this is necessary to:

• comply with legal obligations, or
• establish, exercise, or defend legal claims.

In such cases, data is stored for the duration required by applicable law or until the limitation period for claims expires.

Chapter 5 – Recipients of personal data and data processors

We do not sell personal data.

We may share personal data only with trusted recipients and service providers, to the extent necessary to operate the Website and conduct our business.

1. Data processors

We use external service providers who process personal data on our behalf and under our instructions. These entities act as data processors under Article 28 GDPR and are bound by appropriate data protection agreements.

Such processors include, in particular:

• hosting and server providers,
• customer relationship management (CRM) and email communication tools,
• website analytics, user behavior analysis, and marketing technology providers.

2. Specific service providers

At the time of publication of this Policy, we use the following key service providers:

• dhosting.pl Sp. z o.o. (Poland) – website hosting and data storage,
• Google LLC / Google Ireland Limited – website analytics (Google Analytics) and embedded services,
• Meta Platforms Ireland Limited – marketing and remarketing tools (Meta Pixel),
• LinkedIn Ireland Unlimited Company – marketing and analytics tools (LinkedIn Insight Tag),
• Microsoft Corporation – user behavior analytics and session recordings (Microsoft Clarity),
• HubSpot, Inc. / HubSpot Ireland Limited – CRM, forms, and marketing communication tools,
• Stripe, LLC – payment gateway.

Each of these providers applies appropriate technical and organizational measures to protect personal data.

3. Other recipients

Personal data may also be disclosed:

• to public authorities or other entities when required by applicable law,
• to professional advisors (for example legal or accounting advisors), where necessary for compliance or defense of claims.

In all cases, personal data is shared only to the extent necessary and in accordance with applicable data protection law.

Chapter 6 – Transfers of personal data outside the European Economic Area (EEA)

Some of the service providers we use may process personal data outside the European Economic Area (EEA), including in the United States. This applies in particular to providers of analytics, marketing, and CRM tools.

We transfer personal data outside the EEA only when it is necessary and only in compliance with applicable data protection law.

1. Legal safeguards for international transfers

When personal data is transferred outside the EEA, we ensure that at least one of the following safeguards applies:

• an adequacy decision of the European Commission for the relevant third country,
• the use of Standard Contractual Clauses approved by the European Commission,
• participation of the recipient in an approved data transfer framework, where applicable.

These safeguards are designed to ensure that personal data transferred outside the EEA is protected at a level essentially equivalent to that required under EU law.

2. Your rights regarding transfers

You may request additional information about international data transfers or obtain a copy of the safeguards used by contacting us using the details provided in this Policy.

Chapter 7 – Your rights under the GDPR

Under the GDPR, you have the following rights in relation to your personal data:

• Right of access – to obtain confirmation as to whether we process your personal data and to receive a copy of it (Article 15 GDPR).
• Right to rectification – to request correction of inaccurate or incomplete personal data (Article 16 GDPR).
• Right to erasure – to request deletion of your personal data in cases provided for by law (Article 17 GDPR).
• Right to restriction of processing – to request limitation of processing in certain situations (Article 18 GDPR).
• Right to data portability – to receive your personal data in a structured, commonly used format and to transmit it to another controller, where applicable (Article 20 GDPR).
• Right to object – to object to processing based on our legitimate interest, including for direct marketing purposes (Article 21 GDPR).
• Right to withdraw consent – where processing is based on consent, you may withdraw it at any time (Article 7 GDPR).
• Right to lodge a complaint – to file a complaint with a supervisory authority (Article 77 GDPR). If your usual residence is in Poland, the competent authority is the President of the Personal Data Protection Office (UODO).

Some of these rights may be subject to limitations, for example where we are legally required to continue processing certain data.

To exercise any of these rights, contact us using the contact details provided in this Policy.

Chapter 8 – Cookies and similar technologies (general rules)

Our Website uses cookies and similar technologies to ensure proper operation, improve performance, and support marketing activities.

Cookies are small text files stored on your device (computer, tablet, smartphone) when you visit a website. They allow the website to recognize your device and remember certain information.

1. Types of cookies we use

We use the following categories of cookies:

• Necessary cookies
  These cookies are required for the Website to function properly. They enable basic features such as security, page navigation, and access to essential functions. These cookies do not require your consent.
• Functional cookies
  These cookies allow the Website to remember your preferences and settings, such as language or cookie choices.
• Analytics cookies
  These cookies help us understand how visitors use the Website, for example which pages are visited and how users interact with content. This allows us to improve the Website.
• Marketing cookies
  These cookies are used to track users across websites in order to display advertising that is relevant and engaging.

2. Cookie consent and management

When you visit the Website for the first time, you are asked to consent to the use of non-essential cookies (analytics and marketing). You may:

• accept all cookies,
• reject non-essential cookies, or
• customize your cookie preferences.

You can change or withdraw your consent at any time through the cookie settings available on the Website. You can open the cookie settings at any time using the “Cookies settings” option available in the banner or on the Website.

Disabling cookies may affect some Website functionalities.

3. Browser settings

You can also manage cookies through your browser settings, including deleting cookies or blocking their storage. Instructions differ depending on the browser you use.

Chapter 9 – Cookies and third-party tools

We use selected third-party tools on the Website to analyze traffic, understand user behavior, support marketing activities, and provide services and content. These tools may use cookies or similar technologies.

1. Google Analytics

We use Google Analytics to analyze how visitors use the Website. This helps us improve content, structure, and performance.

Google Analytics collects information such as:

• pages visited,
• time spent on the Website,
• device and browser type,
• IP address (processed in accordance with Google’s privacy settings).

Processing is based on your consent, where required by law.

More information:
https://support.google.com/analytics/answer/6004245

2. Microsoft Clarity

We use Microsoft Clarity to analyze user behavior and improve usability and user experience.

Microsoft Clarity records:

• mouse movements, clicks, and scrolling behavior,
• session replays,
• device and browser information.

Data is processed in aggregated or anonymized form where possible. Processing is based on your consent, where required by law.

More information:
https://privacy.microsoft.com

3. Marketing and remarketing tools

We use marketing and remarketing tools provided by:

• Meta Platforms (Facebook Pixel),
• LinkedIn (LinkedIn Insight Tag).

These tools allow us to measure campaign effectiveness and display ads tailored to user interests.

Marketing cookies are used only if you give your consent. You can withdraw this consent at any time via the cookie settings on the Website or through your account settings on the relevant platform.

In some cases, Meta and LinkedIn may act as separate controllers or joint controllers for parts of their processing (for example measurement and reporting). Details are provided in their privacy policies and platform terms.

4. CRM and marketing automation tools

We use HubSpot to:

• manage contacts and forms,
• send email communication,
• analyze interactions with our messages and content.

These tools may use cookies or tracking technologies where permitted by law.

We also use HubSpot’s cookie consent tools to store information about your consent choices and to apply them on the Website.

5. Social media plugins

The Website may include social media buttons or plugins. When these elements are loaded, your browser may connect directly to the servers of the social media provider.

We do not control the scope of data collected by these providers. Details are available in their respective privacy policies.

Chapter 10 – Server logs, security, and final provisions (draft)

1. Server logs

Use of the Website involves sending requests to the server on which the Website is hosted. These requests are recorded in server logs.

Server logs may include:

• IP address,
• date and time of the request,
• information about the browser and operating system used.

This data is used exclusively for technical administration, security, and diagnostics. It is not used to identify individual users.

2. Security of personal data

We apply appropriate technical and organizational measures to protect personal data against unauthorized access, loss, or misuse.

Personal data is processed with due care and protected in accordance with applicable data protection regulations.

3. Links to third-party websites

The Website may contain links to third-party websites. This Policy applies only to the Website.

We are not responsible for the privacy practices of third-party websites. We encourage you to review their privacy policies separately.

4. Changes to this Policy

We may update this Privacy and Cookies Policy from time to time to reflect legal, technical, or organizational changes.

The current version of the Policy is always available on the Website. Significant changes will be communicated in an appropriate manner.

5. The Website is not intended for children

The Website is not intended for children and we do not knowingly collect personal data of children.

6. Final remarks

If you have questions about this Policy or the processing of your personal data, please contact us using the contact details provided above.

Last update date: January 02, 2026