Privacy Policy - Digital Forms

1. Who We Are

This Privacy Policy applies to Digital Forms Group sp. z o.o., a company incorporated under Polish law, registered at ul. Kaleńska 5, 04-367 Warszawa, Poland ("Digital Forms", "we", "us").

We are the data controller for personal data collected through our website digitalforms.io and any related services. If you have questions about how we handle your data, contact us at:

Digital Forms Group sp. z o.o.
ul. Kaleńska 5, 04-367 Warszawa, Poland
[email protected]
+48 509 103 244

2. What Data We Collect

We collect personal data only when you actively provide it or when it is generated by your use of our website.

Category	Examples	Source
Contact data	Name, email address, phone number, company name	Contact form, email correspondence
Usage data	Pages visited, time on site, browser type, referring URL, IP address (anonymised)	Google Analytics, server logs
Communication data	Content of messages sent to us	Contact form, email
Cookies	Session identifiers, analytics cookies, preference cookies	Browser — see our Cookie Policy

We do not collect sensitive personal data (health, financial, biometric, etc.) through our website.

3. Why We Process Your Data (Legal Bases)

Purpose	Legal basis (GDPR Art. 6)
Responding to contact form enquiries and emails	Legitimate interest (Art. 6(1)(f)) — responding to business enquiries
Sending follow-up communications about our services	Legitimate interest; you may opt out at any time
Website analytics and performance monitoring	Legitimate interest (anonymised analytics to improve the site)
Legal compliance (accounting, tax records)	Legal obligation (Art. 6(1)(c))

4. How Long We Keep Your Data

Contact enquiries — up to 3 years from last contact, unless a contract is formed.
Client/contract data — 5 years from the end of the contractual relationship (Polish accounting law).
Analytics data — 14 months, in line with Google Analytics data retention settings.
Cookies — per session or up to 12 months depending on cookie type (see Cookie Policy).

5. Who We Share Your Data With

We do not sell your data. We may share it only with trusted processors acting under data processing agreements:

Google LLC — Google Analytics (analytics; data processed in the EU/EEA under Standard Contractual Clauses)
Calendly Inc. — scheduling tool, if you book a call via our site
Our hosting provider — Amazon Web Services (EU region)
Professional advisors — accountants and lawyers, when legally required

We will not transfer your data outside the EEA without appropriate safeguards in place.

6. Your Rights Under GDPR

You have the right to:

Access — request a copy of the personal data we hold about you
Rectification — ask us to correct inaccurate data
Erasure — ask us to delete your data ("right to be forgotten")
Restriction — ask us to restrict how we use your data
Portability — receive your data in a structured, machine-readable format
Objection — object to processing based on legitimate interest
Withdraw consent — where we rely on consent, you can withdraw it at any time

To exercise any of these rights, email us at [email protected]. We will respond within 30 days. You also have the right to lodge a complaint with the Polish data protection authority (UODO — uodo.gov.pl).

7. Website Security

Our website is served over HTTPS. Access to personal data is restricted to authorised personnel only. We keep our systems patched and updated. Despite these measures, no internet transmission is 100% secure — please do not send sensitive information via the contact form.

8. Third-Party Links

Our website may link to external sites (LinkedIn, Calendly, client websites). This Policy does not cover those sites. We recommend reviewing their privacy policies before submitting personal data.

9. Changes to This Policy

We may update this Policy from time to time. The "Last updated" date at the top of this page shows when it was last revised. Material changes will be noted on this page.

10. Contact

For any privacy-related enquiries:

Digital Forms Group sp. z o.o.
ul. Kaleńska 5, 04-367 Warszawa, Poland
[email protected]