Privacy Policy
The privacy policy describes the principles of our processing of information about you, including personal data and cookies.
Last update: 05.04.2025
1. General information
1.1. This policy applies to the www Service, operating at the url address: juwenalia.krakow.pl and the JuweKRK mobile
application available on the App Store and Google Play.
1.2. The operator of the service and the Controller of personal data is: Foundation of Students and Graduates of the AGH
University of Science and Technology in Krakow ACADEMICA, ul. Rostafińskiego 10, 30-072 Krakow
1.3. Contact email address of the operator: biuro@samorzad.agh.edu.pl
1.4. The Operator is the Controller of your personal data in relation to the data provided voluntarily on the Service.
1.5. The Service uses personal data for the following purposes:
1.5.1. Maintaining a comment system
1.5.2. Maintaining an internet forum
1.5.3. Maintaining a classified ad system
1.5.4. Handling queries via a form
1.5.5. Registration and logging in
1.6. The Service performs the functions of obtaining information about users and their behavior in the following manner:
1.6.1. Through data voluntarily entered in forms, which are entered into the Operator's systems.
1.6.2. By saving cookie files (so-called "cookies") in end devices.
2. Selected data protection methods used by the Operator
2.1. The places of logging in and entering personal data are protected in the transmission layer (SSL certificate).
Thanks to this, personal data and login data entered on the website are encrypted on the user's computer and can only be
read on the target server.
2.2. Personal data stored in the database are encrypted in such a way that only the Operator who has the key can read
them. Thanks to this, the data is protected in the event of the database being stolen from the server.
2.3. User passwords are stored in hashed form. The hashing function works unidirectionally - it is not possible to
reverse its operation, which is currently the modern standard for storing user passwords.
2.4. The Operator periodically changes its administrative passwords.
2.5. In order to protect data, the Operator regularly makes backup copies.
2.6. An important element of data protection is the regular update of all software used by the Operator to process
personal data, which in particular means regular updates of programming components.
3. Hosting
3.1. The Service is hosted (technically maintained) on the operator's servers: Fundacja Studentów i Absolwentów UJ
Bratniak
3.2. In order to ensure technical reliability, the hosting company keeps logs at the server level. The following may be
subject to recording:
3.2.1. resources specified by the URL identifier (addresses of requested resources – pages, files),
3.2.2. time of query arrival,
3.2.3. time of sending the response,
3.2.4. name of the client station – identification performed by the HTTP protocol,
3.2.5. information about errors that occurred during the execution of the HTTP transaction,
3.2.6. URL address of the page previously visited by the user (referrer link) – in the case when the transition to the
Service was made via a link,
3.2.7. information about the user's browser,
3.2.8. information about the IP address,
3.2.9. diagnostic information related to the process of self-ordering services via registers on the website,
3.2.10. information related to handling e-mail directed to the Operator and sent by the Operator.
4. Your rights and additional information on the method of using data
4.1. In some situations, the Administrator has the right to transfer your personal data to other recipients, if it is
necessary to perform the contract concluded with you or to fulfill the obligations incumbent on the Administrator. This
applies to the following groups of recipients:
4.1.1. hosting company on the basis of entrustment
4.1.2. IT company implementing software for the operation of the Website - IT services Freely Digital Szymon Halski, ul.
Na Brandyskę 12, 32-566 Alwernia, NIP 628-229-15-13.
4.2. Your personal data processed by the Administrator for no longer than necessary to perform the activities related to
them specified in separate regulations (e.g. on accounting). In relation to marketing data, the data will not be
processed for longer than 3 years.
4.3. You have the right to request from the Administrator:
4.3.1. access to personal data concerning you,
4.3.2. rectification,
4.3.3. deletion,
4.3.4. restriction of processing,
4.3.5. and data transfer.
4.4. You have the right to object to the processing indicated in point 3.2 to the processing of personal data for the
purpose of exercising legally justified interests pursued by the Administrator, including profiling, and the right to
object cannot be exercised in the event of the existence of legally valid legitimate grounds for processing, interests,
rights and freedoms that override your interests, rights and freedoms, in particular the determination, pursuit or
defence of claims.
4.5. You may file a complaint against the Administrator's actions to the President of the Personal Data Protection
Office, ul. Stawki 2, 00-193 Warsaw.
4.6. Providing personal data is voluntary, but necessary for the operation of the Service.
4.7. Actions involving automated decision-making may be taken against you, including profiling, in order to provide
services under the concluded contract and for the Administrator to conduct direct marketing.
4.8. Personal data is not transferred from third countries within the meaning of the provisions on the protection of
personal data. This means that we do not send it outside the European Union.
5. Information in forms
5.1. The Service collects information provided voluntarily by the user, including personal data, if provided, such as
Username, first and last name, email address, phone number.
5.2. The service may save information about connection parameters (time stamp, IP address).
5.3. In some cases, the service may save information facilitating the linking of data in the form with the e-mail
address of the user filling out the form. In such a case, the user's e-mail address appears inside the URL of the page
containing the form.
5.4. The data provided in the form is processed for the purpose resulting from the function of a specific form, e.g. to
process a service request or sales contact, register services, etc. Each time, the context and description of the form
clearly informs what it is for.
6. Administrator's Logs
6.1. Information about the behavior of users on the service may be subject to logging. This data is used to administer
the service.
7. Important marketing techniques
7.1. The operator uses statistical analysis of traffic on the website, through Google Analytics (Google Inc. based in
the USA). The operator does not transfer personal data to the operator of this service, but only anonymized information.
The service is based on the use of cookies on the user's end device. In terms of information about user preferences
collected by the Google advertising network, the user can view and edit information resulting from cookies using the
tool: https://www.google.com/ads/preferences/
7.2. The Operator uses the Facebook pixel. This technology means that Facebook (Facebook Inc. based in the USA) knows
that a given person registered with it uses the Service. In this case, it is based on data for which it is the
administrator, the Operator does not transfer any additional personal data to Facebook. The service is based on the use
of cookies on the user's end device.
8. Information about cookies
8.1. The Service uses cookies.
8.2. Cookies (so-called "cookies") are computer data, in particular text files, which are stored on the Service User's
end device and are intended for using the Service's websites. Cookies usually contain the name of the website they come
from, the time they are stored on the end device and a unique number.
8.3. The entity that places cookies on the Service User's end device and obtains access to them is the Service operator.
8.4. Cookies are used for the following purposes:
8.4.1. maintaining the Service User's session (after logging in), thanks to which the user does not have to re-enter
their login and password on each subpage of the Service;
8.4.2. achieving the purposes specified above in the "Important marketing techniques" section;
8.5. The Service uses two basic types of cookies: "session cookies" and "persistent cookies". "Session" cookies are
temporary files that are stored on the User's end device until logging out, leaving the website or disabling the
software (internet browser). "Persistent" cookies are stored on the User's end device for the time specified in the
cookie parameters or until they are deleted by the User.
8.6. Software for browsing websites (internet browser) usually allows cookies to be stored on the User's end device by
default. Users of the Service can change the settings in this regard. The internet browser allows cookies to be deleted.
It is also possible to automatically block cookies. Detailed information on this subject can be found in the help or
documentation of the internet browser.
8.7. Limitations on the use of cookies may affect some functionalities available on the websites of the Service.
8.8. Cookies placed on the User's end device may also be used by entities cooperating with the Service operator, in
particular those concerning y to companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the
USA), Twitter (Twitter Inc. based in the USA).
9. Managing cookies - how to express and withdraw consent in practice?
9.1. If the user does not want to receive cookies, they can change their browser settings. We reserve that disabling the
support of cookies necessary for authentication processes, security, and maintaining user preferences may make it
difficult, and in extreme cases may prevent the use of www pages.
