AutaSnap
Quick Search
Hot
Auctions
FAQ
Blog
About the Company
+48 732 080 793
🇺🇸
+48 732 080 793
+48 732 080 793
AutaSnap
Warszawa,
Zamiany 8/LU202 02-786
[email protected]

Personal Data Processing Policy

Effective date: May 24, 2025

This Privacy Policy (hereinafter – "Policy") describes how and for what purpose LIENZO Sp. z o.o., NIP: 9512563337, as the operator of the website autasnap.pl (hereinafter – "Operator"), collects, uses, stores, and protects the personal data of users of this website (hereinafter – "Site"). The processing of personal data is carried out in accordance with the General Data Protection Regulation (GDPR) and applicable data protection laws.

Personal data we process

The operator processes the following personal data of users provided directly by users through the Website:

  • Name and surname;
  • Mailing address (residential or registration address);
  • email address (e-mail);
  • Phone number.

Providing the above data may be required when registering on the Site, placing orders, subscribing to newsletters, or using other services of the Site.

Additionally, some technical data are automatically collected during the use of the Site: IP address, cookies (see our Cookie Policy), and data about actions on the Site. These technical data may be considered personal data if they can be used to identify a specific user.

Purposes of personal data processing

We process users' personal data for the following purposes:

  • Provision of services and website operation: To ensure the operation of our service, provide access to the Website's features, personalize the user experience, and communicate with the user regarding questions related to the use of the Website.
  • Invoicing and fulfilling commitments: For processing purchases or service orders on the Website, issuing invoices, making payments, and fulfilling other contractual obligations to the user. These data may also be used to comply with legal requirements (e.g., tax accounting and reporting).
  • Site Usage Analytics: for analyzing user behavior on the Website to improve our service and user experience. Specifically, we use the Google Analytics service, which collects anonymized statistics about visits and user interactions with the Website through cookies.
  • Marketing and retargeting: To inform users about our services, promotions, and news, as well as to display targeted advertising. For these purposes, we may use contact details (e.g., email for newsletters with user consent) and technical data about visits. Additionally, the website employs retargeting tools (Facebook Pixel, TikTok Pixel) that allow showing ads to users on third-party platforms based on their activity on the site.

Legal grounds for processing

Your personal data is processed on the following legal grounds in accordance with Article 6 of the GDPR:

  • Data Subject Consent: in cases where you have given explicit consent to processing (e.g., to receive marketing emails or to use cookies for analytics/advertising, if such consent is required).
  • Necessity for contract fulfillment: when processing is necessary to提供你们我们的服务并遵守用户协议的条款(例如,在注册和使用网站时处理数据,完成订单)。
  • Legal obligation: when processing is necessary to comply with our legal obligations (for example, storing data for accounting and tax reporting when invoicing).
  • Legitimate interests of the Operator: when processing is necessary to protect our legitimate interests (such as improving services, ensuring website security, preventing fraud), provided that such interests do not violate the user's rights and freedoms.

Data sharing with third parties

The operator treats the confidentiality of your data responsibly and generally does not disclose personal data to third parties without your consent. However, to ensure the operation of the Website and the purposes mentioned above, some data may be provided to (or accessible by) the following categories of recipients:

  • To analytics and advertising services: Usage data of the Site (such as cookies and IP address) is collected by the Google Analytics service (provided by Google) for analytics purposes and may be transferred to Google LLC. Similarly, the Facebook pixel and TikTok pixel (provided respectively by Meta Platforms, Inc. and TikTok Technology Ltd.) collect data for advertising purposes and transmit it to the respective companies. These third-party companies may act as independent data controllers; their data processing is governed by their own privacy policies.
  • Hosting provider: Personal data is stored on a server provided by the hosting provider Hetzner. Hetzner ensures the physical deployment of the servers and the infrastructure for the Website, acting as a data processor on behalf of the Operator.
  • Authorized personnel of the Operator: Only authorized employees of LIENZO Sp. z o.o. who need access to this data to perform their duties (e.g., user support, accounting) have access to personal data. These employees are required to maintain confidentiality and protect your data.
  • Government agencies: In cases provided for by law, we may be required to provide your data to government authorities or agencies (for example, upon court order or as part of an investigation of an offense).

Data retention period

We store users' personal data no longer than necessary to achieve the purposes outlined in this Policy. In general, personal data is kept for no more than 365 days from the date of the user's last activity on the Site. After this period (or upon withdrawal of consent/submission of a deletion request), the data will be deleted or anonymized in a manner that prevents user identification.

Please note that some data may be retained longer if required by law. For example, information related to issued invoices and financial reporting may be kept for as long as accounting and tax regulations stipulate.

User rights

In accordance with GDPR, as a data subject, you have the following rights:

  • Access right: You have the right to request confirmation of the processing of your personal data and to obtain a copy of your personal data held by the Operator.
  • Right to rectify: You can request correction or update of your personal information if it is incorrect or outdated.
  • Right to deletion: You have the right to request the deletion of your personal data ("right to be forgotten"), for example, if the data are no longer necessary for the purposes of processing or you withdraw consent, and the Operator has no other legal grounds for processing.
  • Right to restrict processing: You have the right to request a temporary suspension of the processing of your data (excluding storage) in cases provided for by the GDPR, such as during the verification of data accuracy or legality of processing.
  • Your right to data portability: You can obtain the personal data you provided in a structured, commonly used machine-readable format and transfer those data to another data controller, or, if technically feasible, request that this be done directly (if the processing is based on consent or a contract).
  • Right to object: You have the right to object at any time to the processing of your personal data for direct marketing purposes; in some cases, you may also object to processing based on the legitimate interests of the Operator (if there are grounds related to your specific situation).
  • Right to withdraw consent: If the processing of your data is based on your consent, you can withdraw your consent at any time. Withdrawing consent does not affect the legality of the processing performed before the withdrawal.
  • Right to complain: If you believe your rights have been violated, you can file a complaint with the data protection authority (in your country of residence or the country where the violation occurred). For users from the European Union, the competent authority is usually the local data protection authority.

To exercise your rights (such as obtaining information about your data, correcting, deleting, withdrawing consent, etc.), you can send us a request via email at: [email protected]. Our operator will review your request and respond within the time frame established by law (usually within 1 month).

Privacy Protection

We take the necessary organizational and technical measures to protect users' personal data from unauthorized access, alteration, disclosure, or destruction. These measures include, for example, using secure connections (data encryption), restricting access to data (only for authorized personnel), and regularly updating software and security policies.

Links to other resources

The Site may contain links to third-party websites (e.g., external services or partners). Please note that these sites may have their own privacy policies, and the Operator is not responsible for their content or data processing practices. We recommend reviewing the privacy policies of each website you visit via external links.

Changes in Policy

The operator reserves the right to update this Policy as necessary. In the event of changes, the new version of the Policy will be published on this page with an updated effective date. We recommend periodically reviewing this page to stay informed about the current version of the Policy.

If you have any questions regarding this Policy or the processing of your personal data, you can contact us at [email protected].