Privacy Policy

Last updated: 2026-02-08

I. Introduction and Controller Information

Respecting your privacy and ensuring the security of your personal data, I have implemented this Privacy Policy, which sets out the rules for the collection, processing, and use of information about Users of the website (hereinafter: the "Website"). As a Senior Developer, I treat data security as a priority, applying Privacy by Design principles.

The Controller of your personal data is Artur Sadowski, operating under the business name red jungle Artur Sadowski, with its registered office at ul. Jana Długosza 16B, 43-602 Jaworzno, Poland, Tax ID (NIP): PL6462713045 (hereinafter: the "Controller").

You can contact me directly regarding data protection matters via e-mail: kontakt@redjungle.pl.

II. Purposes and Legal Bases for Data Processing

I process your personal data only for specific, lawful purposes, based on the provisions of the General Data Protection Regulation (EU) 2016/679 (GDPR).

Purpose of processing

Scope of data

Legal Basis (GDPR)

Retention Period

Communication via contact form

Name, surname, e-mail address, content of the message.

Art. 6(1)(f) GDPR – legitimate interest of the Controller (answering inquiries, archiving correspondence); or Art. 6(1)(b) GDPR – taking steps prior to entering into a contract (cooperation offers).

Until the contact ends or claims expire.

Web analytics (Google Analytics 4)

IP address (anonymized), cookie identifiers, device data, approximate location, on-site behavior.

Art. 6(1)(a) GDPR – your voluntary consent expressed via the Cookiebot platform.

2 months (user-level data).

Consent management (Cookiebot)

IP address (anonymized), consent ID, date and time of consent, browser info.

Art. 6(1)(c) GDPR – compliance with a legal obligation (documenting consent pursuant to Art. 7(1) GDPR).

12 months (accountability requirement).

Server security and administration (Logs)

IP address, date and time of request, HTTP response code, OS and browser info.

Art. 6(1)(f) GDPR – legitimate interest of the Controller (ensuring service stability, error diagnostics, DDoS protection).

Up to 30 days (hosting technical cycle).

III. Data Recipients and Technical Infrastructure

As an IT professional, I use proven technological infrastructure. Your data may be entrusted to processors with whom I have concluded appropriate Data Processing Agreements (DPA) or who operate under regulations ensuring compliance with the GDPR:

  1. Hosting service provider: – regarding server data storage and e-mail handling.

  2. Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) – regarding analytical services (Google Analytics 4) and tag management (Google Tag Manager).

  3. Usercentrics A/S (Havneholmen 29, 1561 Copenhagen, Denmark) – provider of the Cookiebot service used for cookie consent management.

IV. International Data Transfers (Data Privacy Framework)

I use tools provided by Google, which may involve the transfer of anonymized technical data to Google LLC servers in the United States.

Please be informed that this transfer is fully compliant with the law based on the European Commission's Implementing Decision of July 10, 2023, which approved the EU-US Data Privacy Framework (DPF). Google LLC is a certified entity under this program, which guarantees that your data is protected at a level adequate to European standards.3

You can verify Google's certification status on the official US Department of Commerce website: https://www.dataprivacyframework.gov/.

V. Google Analytics 4 and Privacy Protection

I have implemented Google Analytics 4 in a configuration that ensures an enhanced level of privacy:

  • IP Anonymization: This feature is active by default. Your full IP address is not logged or shared in reports.3

  • Retention period: Event data associated with cookie identifiers is deleted after 2 months.

  • Google Signals: [Optional: If disabled] I do not use the Google Signals feature to track users across devices.

You can completely block Google Analytics by installing the browser add-on provided by Google: https://tools.google.com/dlpage/gaoptout.

VI. Your Rights

Under the GDPR, you have a number of rights that you can exercise by contacting me via email:

  1. Right of access (Art. 15 GDPR).

  2. Right to rectification (Art. 16 GDPR).

  3. Right to erasure ("right to be forgotten") (Art. 17 GDPR).

  4. Right to restriction of processing (Art. 18 GDPR).

  5. Right to data portability (Art. 20 GDPR).

  6. Right to object (Art. 21 GDPR) – regarding data processed based on legitimate interest.

  7. Right to withdraw consent – regarding data processed based on consent (e.g., cookies), you have the right to withdraw it at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

You also have the right to lodge a complaint with a supervisory authority (in Poland: Prezes Urzędu Ochrony Danych Osobowych, ul. Stawki 2, 00-193 Warsaw) if you believe that the processing of your data violates GDPR regulations.

VII. Data Security

The website uses an encrypted SSL/TLS (Transport Layer Security) connection. This means that data sent via the contact form is protected against interception by unauthorized persons. Access to data on the Controller's side is secured by two-factor authentication (2FA) mechanisms.

VIII. Cookie Policy (Cookiebot Declaration)

The Website uses cookies to ensure the proper functioning of the site (necessary cookies) and – with your consent – for analytical and statistical purposes.

Consent management is handled via the Cookiebot platform, which blocks scripts (including Google Tag Manager and Google Analytics) until you give your active consent. You can change your settings at any time by clicking the icon visible in the corner of the screen or using the panel below.