This Privacy Policy sets out the rules for the collection and processing of data of persons („personal information”) using the website: www.travatar.ai and the services provided by the Administrator. This Privacy Policy is meant to help you understand what information we collect, why we collect it, and how you can update, manage, export, and delete your information.
Personal information: this is information that you provide to us which personally identifies you, such as your name, email address, or billing information, or other data that can be reasonably linked to such information by Travatar, such as information we associate with your Travatar Account.
The administrator of personal information within the meaning of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal information and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as "GDPR", is Travatar spółka z ograniczoną odpowiedzialnością with its registered office in Puławy, ul. Ignacego Mościckiego 1, 24-110 Puławy, entered in the National Court Register by the District Court Lublin-East in Lublin, with its seat in Świdnik, VI Economic Division of the National Court Register, under KRS No.: 0000833569, having REGON No.: 385769630, NIP No.: 7162828885 (hereinafter: "Administrator" or "Travatar").
Contact with Travatar on matters related to the processing of personal information is possible via e-mail at: privacy@travatar.ai or at: ul. Ignacego Mościckiego 1, 24-110 Puławy.
Travatar provides businesses of all sizes with the services such as:
Ad Fraud Prevention
Website Security
Analytics
Travatar provides Services to businesses and entities in a commercial context and our Services are not intended for consumers.To learn more about the terms and conditions of our services please visit this link.
Travatar takes special care to respect the privacy of individuals using Travatar services. Travatar guarantees the confidentiality of any personal information provided and ensures that all security and data protection measures required by data protection laws are taken. Personal information is collected with due diligence and properly protected against access by unauthorized persons.
This Privacy Policy, subject to sec. 4, does not apply to information collected by third-party websites ("Customer Website").
THE INFORMATION WE COLLECT
We collect information, including personal data, when you use our Services. We collect this information when you fill out forms or engage with us directly. We also collect this information via cookies, pixel tags, and certain software designed to interact with your computer or mobile device. We use this information to communicate with you, to market, provide, maintain, protect and improve our Services, and to develop new or enhanced versions of the Services.
We collect information incl personal information about you when you use our Services, when you fill out forms or engage with us directly, when you are our customer ("User") and when you visit our website: www.travatar.ai (the "Website")
We collect this information via cookies, pixel tags, and certain software designed to interact with your computer or mobile device.
We collect information from figuring out basic stuff like which language you speak, your e-mail address, first name, surname, company name, to more detailed things such as telephone number, IP address, operating system type, browser type, website activities: entering a particular page, clicking on function buttons to provide better services to all our Users: to communicate with you, to market, provide, maintain, protect and improve our Services, and to develop new or enhanced versions of the Services.
The information Travatar collects, and how that information is used, depends on how you use our services and how you manage your privacy settings.
The exact scope of the data we collect, the purposes of its collection, and the duration of its storage you will find in the following sections below.
PURPOSES, SCOPE AND DURATION OF PROCESSING OF PERSONAL DATA BY TRAVATAR AS DATA ADMINISTRATOR
Things that you create or provide us at the very beginning: When you create a Travatar Account, you provide us with Personal Information that includes your e-mail address and a password. You can also choose to create your Travatar Account by using your existing Google account and then you will provide us with personal information that includes your Google e-mail address and a password. You can also choose to add a phone number or payment information to your Account. Even if you aren’t signed in to a Travatar Account, you might choose to provide us with information - like an email address to communicate with Travatar or receive updates about our services and marketing information and offers.
Information we collect as you use our services We collect information about the applications, browsers, and devices you use to use Travatar services, which helps us to improve our services so that they work better with the devices, applications, and software you use.The information we collect includes unique identifiers, browser type and settings, device type, and settings, and operating system. We also collect information about the interaction of your apps, browsers, and devices with our services, including IP address, crash reports, system activity, and the date, time, and referrer URL of your request. To get access to more advanced Travatar services such as reports and analytics, you can also choose to integrate your Travatar Account with your Google Ads account. To do that, you provide us with your Google Ads ID.
When you are asked to provide personal information, you may decline. And you may use application or device controls to prevent certain types of automatic data collection. But if you choose not to provide or allow information that is necessary for specific services or features, those services or features may not be available or may not function correctly.
Specific purposes of processing your personal information and the period of which it is processed and stored:
Purpose of processing: performance of the contract for the provision of services through Travatar i.e. on the basis of Article 6(1)(b) GDPR in terms of the conclusion, performance, and termination of the concluded contract (data processing is necessary for the performance of the contract concluded with Travatar) - data is processed and stored for the period necessary for the performance, termination or expiration of the contract.
Purpose of processing: establishing contact with Travatar, including responding to inquiries directed to Travatar via forms available on the Website or via e-mail, i.e. on the basis of Article 6(1)(a) of the GDPR (expressed consent to process personal information) - data is processed and stored until the consent is revoked, and after the consent is revoked for a period of time corresponding to the period of limitation of claims that the Administrator may raise and that may be raised against him.
Purpose of processing: fulfillment of legal obligations, including tax, accounting obligations i.e. on the basis of Article 6(1)(c) GDPR in conjunction with Article 86 § 1 of the Tax Ordinance Act of January 29, 1997 (i.e. Journal of Laws 2019, item 900) and/or Article 74(2) of the Accounting Act of September 29, 1994. on accounting (fulfillment of a legal obligation) - the data is stored for the period required by law ordering the Administrator to keep tax books (until the expiration of the statute of limitations for tax liabilities, unless otherwise provided by tax laws) or accounting books (5 years, counting from the beginning of the year following the fiscal year to which the data refer).
Purpose of processing: establishment, investigation, or defense of claims that Travatar may raise or that may be raised against Travatar in connection with the concluded agreement i.e. on the basis of Article 6(1)(f) GDPR (realization of Travatar's legitimate interests related to the establishment, investigation, and defense of claims) - data is stored until the expiration of the statute of limitations for claims arising from the contract, with the statute of limitations being determined by the provisions of the Civil Code.
Purpose of processing: undertaking promotional and marketing activities, including sending product, marketing, and commercial information in electronic form, i.e. on the basis of Article 6(1)(f) GDPR (legitimate legal interest of Travatar consisting in conducting marketing activities in relation to persons and entities with whom Travatar has entered into a contract) or Article 6(1)(a) (on the basis of the consent granted) - in case of processing of personal information on the basis of Article 6(1)(f) GDPR – data is stored for the duration of the contract concluded with the Company, no shorter than the period of holding an active User account, in case of processing of personal information on the basis of Article 6(1)(a) GDPR - data is stored no longer than until the withdrawal of consent.
Purpose of processing: to maintain and improve the operation of our Website and services, including security, as well as to administer the Website and to perform internal operations, including troubleshooting, data analysis, research, testing, statistical and research purposes, i.e., based on Article 6(1)(f) of the GDPR, i.e., the Company's legitimate legal interest in improving the Website, serving visitors to the Website - data is stored only for the period necessary for the Company's specific purposes, with the Company reviewing the legitimacy of personal information processing on an ongoing basis.
The scope of personal information processing:
In order to perform the contract for the provision of services through Travatar, to fulfill obligations under the law, including tax obligations, billing obligations, to establish, assert, or defend claims: e-mail address/Google e-mail address, first name, surname, company name, telephone number, tax identification number, address, taxpayer identification number, credit card number, other data voluntarily provided in connection with the use of services,
In order to establish contact with Travatar, including responding to inquiries directed to Travatar via forms available on the Website or via email: name, surname, e-mail address/Google e-mail address and other data voluntarily included in the content of the message,
In order to undertake promotional and marketing activities, including sending electronic product, marketing, and commercial information: name, surname, e-mail address, and other data voluntarily included in the content of the message. In order to maintain and improve the operation of the Website and services, including security, as well as to administer the Website and to perform internal operations, including troubleshooting, data analysis, research, testing, statistical and research purposes: name, surname, e-mail address/Google e-mail address, IP address, operating system type, browser type, website activities: entering a particular page, clicking on function buttons.
Provision of personal information is voluntary, but necessary to conclude and perform the contract and use the services provided by Travatar, receive newsletters,marketing information, and perform other purposes indicated in this Privacy Policy.
PURPOSES, SCOPE, AND DURATION OF PROCESSING OF PERSONAL INFORMATION BY TRAVATAR AS PROCESSOR
Travatar may process third-party data entrusted to it by Customers, as personal information administrators, in connection with the performance of services to the Customer.
In the case referred to in sec. 4.1 Travatar acts as a processor of personal information and processes such data on the basis of a data processing agreement concluded with the Customer, so that the Customer declares that it is entitled to entrust personal information to Travatar to the necessary extent.
WHEN WE SHARE PERSONAL INFORMATION
We’ll share personal information outside of Travatar when we have your consent. We do not share your personal information with companies, organizations, or individuals outside of Travatar except in the following cases:
For the proper functioning of the Website and professional provision of services, it is necessary for Travatar to use the services of third parties. Travatar uses only such processors that provide sufficient guarantees for the implementation of appropriate technical and organizational measures so that the processing meets the requirements of the Regulation and protects the rights of data subjects.
Travatar may entrust personal information to third parties for processing.
Then, the recipients of personal information are entities that support Travatar in its ongoing operations, including entities that perform components of Travatar's services or enable Travatar to perform such operations. In particular, these may be: (a) providers of accounting, financial, legal and consulting services, (b) hosting providers, (d) payment processing companies, (e) companies providing software used in the performance of operations related to the proper provision of services, including service providers supplying Travatar with technical, IT and organizational solutions, (f) other entities, if the use of their services is necessary for the proper operation of the Website and the provision of services by Travatar.
Personal information collected by Travatar may also be made available: to the relevant state authorities at their request under the relevant provisions of law, or to other persons and entities - in cases provided for by law.
Each entity to which Travatar entrusts personal information for processing guarantees an adequate level in terms of security and confidentiality of personal information processing.
Sharing of personal information with unauthorized parties according to this Privacy Policy, may be done only with the prior consent of the person whose data may be transferred.
Travatar may transfer personal information to third countries in situations where, any of the entities, indicated in sec. 5.2 above performs data processing in a third country and only in situations where the European Commission has made a determination of adequate protection or using contractual clauses approved by the European Commission.
PROFILING
When you interact with our Services by completing a form (such as a request for us to contact you, creation of an account, request for information on pricing, or downloading content), we will collect your personal data and analyze your information to build individual profiles. We use third-party tools to help us make the profile by providing information about your business (like, company size and industry, for example). These profiles will be used to help us predict future interest in our Services. We base our profiling on your activity on the Services, and we update your profile based on your use of the Services.
The Website conducts profiling through session recording, which will involve the creation of dynamic and automated:
news and advertising content,
forms of after-sales communication,
methods for segmenting contacts and sending e-mails,
methods of selecting communication channels,
methods to manage contacts.
Profiling will result in the generation of personalized marketing activities and the emergence of analytics and sales forecasts.
You can object to the ongoing profiling of your person by writing to this email address privacy@travatar.ai.
COMPLIANCE WITH THE LIMITED USE POLICY OF GOOGLE
Travatar’s use and transfer of information received from Google APIs to any other app will adhere to the regulations of Google API Services User Data Policy, including the Limited Use requirements.
Google API Services, incl Google Sign-In, are part of an authentication and authorization framework that gives us the ability to connect directly with Google users when we would like to request access to Google user data, for example, when registering or logging into the Travatar System.
YOUR RIGHTS AS PERSON WHOSE DATA IS PROCESSED BY TRAVATAR AS AN ADMINISTRATOR
In addition to the choices outlined in other parts of this Privacy Policy, you also have control over the following:
The right to request access to one's own personal information - the right to obtain confirmation as to whether the Administrator is processing one's personal information and, if so, the right to obtain access to the data and to receive information regarding the data such as, for example, the purpose of the processing, the categories of data, information about the recipients or categories of recipients to whom the data have been or will be disclosed, the intended period of storage of personal information or the criteria for determining that period;
The right to rectify personal information (when it is incorrect), which includes filing a request to complete incomplete personal information
The right to deletion of personal information (the so-called "right to be forgotten"), under the following circumstances: when personal information is no longer necessary for the purposes for which they were collected, the data subject has withdrawn consent to processing and there is no other basis for processing, the data subject has objected to processing, the personal information must be erased in order to comply with a legal obligation under Union Law or the law of a Member State to which the Administrator is subject, the personal information was collected in connection with the offering of information society services
The right to restrict data processing when: the data subject questions the correctness of the personal information (for a period of time allowing the Administrator to verify the correctness of the data), the processing is unlawful and the data subject objects to the erasure of the data, the Administrator no longer needs the personal information for the purposes of processing, but the data are nevertheless needed by the User to establish, assert or defend claims, the data subject has objected to the processing until it is determined whether the legitimate grounds on the part of the Administrator override the grounds for the objection
The right to object to processing when: the data subject does not want the Administrator to process and when it is justified by the grounds for processing
The right to data portability, including the right to receive from the Administrator in a structured, commonly used machine-readable format the personal information that the User has provided, including the right to request that the personal information be sent by the Administrator directly to another Administrator (if technically possible)
The right to revoke the consent to data processing expressed at any time (whereby revocation of consent does not affect the lawfulness of the processing carried out on the basis of the consent given before its revocation)
The right to lodge a complaint with the President of the Office for Personal Information Protection if the User believes that the processing of personal information violates the law.
If you have any questions regarding the processing of your personal information and to exercise the above rights, please contact the Company via email sent to: privacy@travatar.ai.
COOKIES
Cookies are small text files we send to individuals’ computers when they visit our Website. Cookies make our Website work more efficiently and effectively and help us improve our Website, the relevance of our marketing activities, and your experience while using the Services. Some of the cookies we use may provide us with information about you. The text in a cookie often consists of a string of numbers and letters that uniquely identifies your computer, but it can contain other information as well. We use cookies to see which areas and features are popular and to count visits to our Website. Most web browsers are set to accept cookies by default. If you prefer, you can choose to set your browser to remove cookies or to reject cookies. Where appropriate, you may also be provided with further options to control the use of cookies when visiting the Website or using the System or Services. If you want to delete, remove or refuse cookies, this could affect certain features or functionality of our Website and could remove cookies used to opt-out of tracking for the Services.
In order for the Website to function properly, Travatar uses cookie technology. Cookies are packets of information stored on devices through the Website, usually containing information consistent with the purpose of the file, by which a person uses the Website. Cookies usually contain the address of the Website, the date of posting, the expiration date, a unique number, and additional information consistent with the purpose of the file.
Travatar uses two types of Cookies: session Cookies, which are deleted permanently when the Users' browser session ends, and permanent Cookies, which remain after the end of the browser session on the Users' devices until they are deleted.
Based on Cookies, both session and permanent, it is not possible to determine the identity of Users. The Cookies mechanism does not allow the collection of any personal information.
Cookies of Travatar are safe for Users' devices, in particular, they do not allow viruses or other software to enter the device. In turn, External Cookies (i.e. Cookies placed by Travatar’s partners) can be read by an external server.
The following types of cookies are used within the Website:
"indispensable" Cookies that enable the use of services available on the Website, such as authentication Cookies used for services that require authentication on the Website;
Cookies used for security purposes, such as those used for detecting authentication abuses on the Website;
"Performance" cookies, which enable the collection of information about how websites are used;
"Functional" cookies, which allow "remembering" the settings chosen by people, and personalizing the Users' interface, e.g. with regard to the chosen language or region of origin of the User, font size, the appearance of the website, etc;
"advertising" cookies, enabling the delivery to Users of advertising content more tailored to their interests.
Cookies placed on the end device and used may also be used by advertisers and partners cooperating with Travatar. Users can independently change their settings regarding Cookies at any time, specifying the conditions for their storage by configuring the service.
SERVER LOGS
Travatar may store http queries, in connection with which some information may be stored in the server log files, in particular the IP address of the computer from which the query came, the name of the User’ station - identification carried out by the http protocol, if possible, the date and system time of registration on the Website and arrival of the query, the number of bytes sent by the server, the URL of the page previously visited by the Users if entered through a link, information about the Users' browser, information about errors that occurred during the execution of http transactions. Logs may be collected as material for the proper administration of the Website. Only persons authorized to administer the computer system have access to the information. Log files may be analyzed in order to compile statistics of traffic on the Website and errors that occur. The summary of such information does not identify Users.
SECURITY OF THE WEBSITE AND PERSONAL INFORMATION.
We work hard to protect you and Travatar from unauthorized access, alteration, disclosure, or destruction of information we hold. In compliance with applicable laws, Travatar maintains administrative, technical, and physical safeguards designed to help protect your personal data to prevent loss, misuse, and unauthorized access, disclosure, alteration, and destruction. However, no transmission over the internet is 100% secure.
Travatar uses technical and organizational measures to ensure the protection of the processed personal information appropriate to the risks and categories of protected data, and in particular, technically and organizationally protects the data from being made available to unauthorized persons, from being taken by an unauthorized person, from being processed in violation of the GDPR, and from being altered, lost, damaged or destroyed, among others, SSL certificates are used. The collection of collected personal information of Users is stored on a secured server and the data is also protected by Travatar’s internal procedures on personal information processing and information security policy.
Travatar has also implemented appropriate technical and organizational measures, such as pseudonymization, designed to effectively implement data protection principles, such as data minimization, and to give processing the necessary safeguards to meet the requirements of the GDPR and protect the rights of data subjects. Travatar implements all necessary technical measures set forth in Articles 25, 30, 32-34, 35-39 of the GDPR to ensure enhanced protection and security of personal information processing.
Travatar points out that the use of the Internet and services provided electronically may be at risk of malicious software (malware) entering the IT system and device, as well as unauthorized access to Users' data, including personal information, by third parties, despite the correct operation of the Website and safeguards in place. In order to minimize these risks, persons using the Website should use appropriate technical safeguards, e.g. using up-to-date anti-virus or Internet identification protection software. In order to obtain detailed and professional information regarding the preservation of security on the Internet, Travatar recommends seeking it from entities specializing in such IT services.
We encourage you to protect your usernames and passwords to help prevent anyone from accessing or abusing your Services account(s), including not using the same passwords that you use with other accounts. If you have any questions about the security of your personal data, you can contact us privacy@travatar.ai.
FINAL PROVISIONS
Travatar reserves the right to change the provisions of this Privacy Policy, in particular in the event of a change in the principles of personal information processing or the law on personal information protection.
We’ll ask for your consent before using your information for a purpose that isn’t covered in this Privacy Policy.
We regularly review this Privacy Policy and make sure that we process your information in ways that comply with it.
If you have any questions regarding the processing of your personal information and to exercise the above rights, please contact the Company via email sent to: privacy@travatar.ai.
This Privacy Policy shall take effect as of 21/03/2023.