1. General Information

1. This policy applies to the website operating at the URL: brooklyncorpenergy.com
2. The website operator and Personal Data Administrator is: Brooklyn Corp Sp. z o.o. ul. Dolna 38 05-802 PRUSZKÓW
3. Contact email address of the operator: energia2022foto@gmail.com
4. The operator is the Administrator of your personal data in relation to data voluntarily provided in the Service.
5. The Service utilizes personal data for the following purposes:
   • Handling inquiries via the form
6. The Service collects information about users and their behavior in the following ways:
   1. Through voluntarily entered data in forms, which are submitted to the Operator’s systems.
   2. By saving cookies on end-user devices.

2. Selected Data Protection Methods Used by the Operator

1. Login and data entry points are secured with SSL encryption. This ensures that personal data and login details entered on the website are encrypted on the user’s computer and can only be read on the target server.
2. Personal data stored in the database is encrypted in such a way that only the Operator with the appropriate key can read it. This protects the data in case the database is stolen from the server.
3. User passwords are stored in hashed form. The hashing function is one-way, making it impossible to reverse-engineer it, which is the modern standard for storing user passwords.
4. To protect data, the Operator regularly performs backups.
5. An essential part of data protection is the regular updating of all software used by the Operator to process personal data, including regular updates of programming components.

3. Hosting

1. The Service is hosted (technically maintained) on servers operated by SeoHost.
2. The hosting company ensures technical reliability by maintaining server-level logs. These logs may include:
   • resources identified by URL (addresses of requested resources – pages, files),
   • time of request,
   • time of response,
   • client station name – identified by the HTTP protocol,
   • information about errors encountered during the execution of HTTP transactions,
   • URL address of the page previously visited by the user (referer link) – if the transition to the Service was via a link,
   • information about the user’s browser,
   • IP address information,
   • diagnostic information related to self-ordering processes through the forms on the website,
   • information related to email correspondence addressed to and sent by the Operator.

4. Your Rights and Additional Information on Data Use

1. In certain situations, the Administrator has the right to transfer your personal data to other recipients if it is necessary to fulfill the agreement with you or to meet obligations imposed on the Administrator. This applies to such groups of recipients:
   • hosting company under entrustment agreements,
   • postal operators,
   • authorized employees and collaborators who use the data to fulfill the purpose of the website.
2. Your personal data is processed by the Administrator no longer than necessary to perform actions associated with them as defined by separate regulations (e.g., accounting regulations). For marketing data, the data will not be processed longer than 3 years.
3. You have the right to request from the Administrator:
   • access to your personal data,
   • rectification,
   • deletion,
   • restriction of processing,
   • and data portability.
4. You have the right to object to the processing specified in point 3.2 regarding the processing of personal data for the purposes of legitimate interests pursued by the Administrator, including profiling. However, the right to object cannot be exercised if there are valid, legally justified grounds for processing that override your interests, rights, and freedoms, particularly for establishing, pursuing, or defending claims.
5. You have the right to lodge a complaint with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
6. Providing personal data is voluntary but necessary to use the Service.
7. Automated decision-making activities, including profiling, may be undertaken concerning you to provide services under the agreement and for the Administrator’s direct marketing.
8. Personal data is not transferred to third countries within the meaning of data protection regulations. This means that it is not sent outside the European Union.

5. Information in Forms

1. The Service collects information voluntarily provided by the user, including personal data, if provided.
2. The Service may save information about connection parameters (timestamp, IP address).
3. The Service may, in certain cases, save information facilitating the linking of data in the form with the user’s email address. In such cases, the user’s email address appears within the URL of the page containing the form.
4. Data provided in the form is processed for purposes arising from the function of the specific form, e.g., handling service requests, commercial contact, service registration, etc. The context and description of the form clearly indicate its purpose.

6. Administrator Logs

1. Information about user behavior in the Service may be subject to logging. These data are used for website administration purposes.

7. Important Marketing Techniques

1. The Operator uses statistical analysis of website traffic via Google Analytics (Google Inc., based in the USA). The Operator does not transfer personal data to this service provider, only anonymized information. The service uses cookies stored on the user’s end device. Regarding information about user preferences collected by Google’s advertising network, the user can view and edit information derived from cookies using the tool: https://www.google.com/ads/preferences/

8. Information About Cookies

1. The Service uses cookies.
2. Cookies are IT data, particularly text files, stored on the user’s end device and intended for use with the Service’s websites. Cookies usually contain the name of the originating website, the storage time on the end device, and a unique number.
3. The entity placing cookies on the user’s end device and accessing them is the Service operator.
4. Cookies are used for the following purposes:
   1. maintaining the Service user’s session (after logging in), so the user does not have to re-enter login and password on each subpage of the Service;
   2. achieving the purposes outlined in the “Important Marketing Techniques” section above;
5. The Service employs two main types of cookies: “session” cookies and “persistent” cookies. Session cookies are temporary files stored on the user’s end device until they log out, leave the website, or close the browser. Persistent cookies are stored on the user’s end device for the time specified in the cookie parameters or until the user deletes them.
6. Web browsers typically allow the storage of cookies on the user’s end device by default. Users can change their settings to delete cookies or automatically block them. Detailed information can be found in the help or documentation of the web browser.
7. Restrictions on the use of cookies may affect some functionalities available on the Service’s websites.
8. Cookies stored on the Service user’s end device may also be used by entities collaborating with the Service operator, particularly Google (Google Inc., based in the USA), Facebook (Facebook Inc., based in the USA), and Twitter (Twitter Inc., based in the USA).

9. Managing Cookies – How to Express and Withdraw Consent?

1. If you do not wish to receive cookies, you can change your browser settings. Note that disabling cookies necessary for authentication, security, or user preference maintenance processes may hinder or, in extreme cases, prevent the use of websites.
2. To manage cookie settings, choose your web browser from the list below and follow the instructions:
   • Edge
   • Internet Explorer
   • Chrome
   • Safari
   • Firefox
   • Opera
   Mobile devices:
   • Android
   • Safari (iOS)
   • Windows Phone