Privacy & Cookie Policy

www.by-kiki.com

Privacy Policy

Last updated: 20.05.2026

⸻

1. General Information

This Privacy Policy describes the principles of processing personal data and the use of cookies in connection with the use of the website www.by-kiki.com.

This Policy has been prepared in accordance with:
– Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR),
– Directive 2002/58/EC (ePrivacy Directive).

⸻

2. Data Controller

The controller of personal data is:

Klaudia Pokora
conducting business activity under the name
by-kiki Klaudia Pokora

NIP (Tax ID): 7393574953
REGON: 543454930

The Controller does not have a permanent place of business operations.

Contact details regarding personal data protection matters:
e-mail: hello@by-kiki.com
phone number: +48 571 666 428

⸻

3. Scope of Processed Personal Data

The Controller processes personal data to a limited extent, including:
– IP address,
– technical information regarding the device and web browser,
– statistical and marketing data collected through cookies (after obtaining user consent),
– data provided via the Calendly tool:
– name,
– e-mail address,
– phone number.

The website does not contain contact forms or newsletters.

⸻

4. Purposes and Legal Bases for Data Processing

Personal data is processed for the following purposes:

– ensuring the proper functioning of the website
legal basis: Article 6(1)(f) GDPR

– statistical analysis of website traffic (Google Analytics)
legal basis: Article 6(1)(a) GDPR – consent

– marketing and remarketing activities (Meta Pixel)
legal basis: Article 6(1)(a) GDPR – consent

– scheduling meetings via Calendly
legal basis: Article 6(1)(b) GDPR

– profiling users for marketing purposes
legal basis: Article 6(1)(a) GDPR – consent

⸻

5. External Tools

5.1 Google Analytics

The website uses Google Analytics (GA4), provided by Google Ireland Limited, to analyze how users interact with the website.

Google Analytics uses cookies. Data is collected only after the user has given consent through the cookie banner.

The Controller uses IP anonymization features available in Google Analytics.

⸻

5.2 Meta (Facebook / Instagram)

The website uses marketing tools provided by Meta Platforms Ireland Limited to analyze advertising effectiveness, create audience groups, and conduct remarketing activities.

As part of the Meta Pixel functionality, information regarding user activity on the website may be collected.

Data is processed only after obtaining user consent.

⸻

5.3 Calendly

The website uses Calendly, embedded directly on the website, to enable users to schedule meetings.

During the booking process, the user may provide the following personal data:
– name,
– e-mail address,
– phone number.

Providing data is voluntary, but necessary to schedule a meeting.

⸻

5.4 Cookiebot

The website uses Cookiebot, provided by Usercentrics A/S, to manage user consent regarding cookies and tracking technologies.

Cookiebot stores information about user consent choices in order to ensure compliance with personal data protection regulations.

⸻

5.5 Google Tag Manager

The website uses Google Tag Manager, which enables the management of analytical and marketing tags and scripts.

Google Tag Manager itself does not collect personal data, but it may activate other analytical or marketing tools after obtaining the appropriate user consent.

⸻

6. Profiling

The Controller may use profiling consisting of analyzing user behavior on the website in order to tailor marketing content.

Profiling takes place only on the basis of user consent.

⸻

7. Transfers of Data Outside the European Union

In connection with the use of Google Analytics, Meta, Cookiebot, and Calendly, personal data may be transferred outside the European Economic Area, particularly to the United States.

Such transfers are carried out in accordance with applicable GDPR regulations, including the use of standard contractual clauses or other mechanisms provided under European Union law.

⸻

8. Cookies

8.1 Types of Cookies

The website uses the following types of cookies:
– necessary cookies,
– analytical cookies,
– marketing cookies,
– functional cookies.

⸻

8.2 Consent to Cookies

Cookies other than strictly necessary cookies are stored only after obtaining explicit user consent.

Users may withdraw their consent or change cookie settings at any time via the cookie banner available on the website.

⸻

9. Data Retention Period

Personal data is stored:
– for the period necessary to achieve the purposes for which it was collected,
– until consent is withdrawn,
– for the period required by applicable law.

⸻

10. User Rights

Users have the right to:
– access their personal data,
– rectify their personal data,
– erase their personal data,
– restrict processing,
– data portability,
– withdraw consent at any time,
– object to data processing,
– lodge a complaint with the President of the Personal Data Protection Office.

⸻

11. Supervisory Authority

President of the Personal Data Protection Office
ul. Stawki 2
00-193 Warsaw
Poland

www.uodo.gov.pl

⸻

12. Changes to this Privacy Policy

The Controller reserves the right to make changes to this Privacy Policy.

The current version of the Policy is always available on the website.