Privacy Policy

Version: 07.07.2025

1. General Information

  1. This Privacy Policy is a set of rules aimed at providing information about all aspects of the process of obtaining, processing and protecting your personal data. The policy is addressed to all Users of the Controller’s Website and Users of the Newsletter service.

  2. This Policy sets out the rules for processing of personal data by the Data Controller, which is: FLASHX SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ with its registered office in Białystok, 6/32 Warszawska Street, 15-063 Białystok, entered in the Register of Entrepreneurs kept by the District Court in Białystok, 12th Commercial Division of the National Court Register, under KRS number: 0001159208, NIP: 9662203557, REGON: 54105653300000 (hereinafter: “Controller”).

  3. The User may contact the Service Provider:

  • by email at: contact@pixdrobe.com and
  • in writing to the following address: 6/32 Warszawska Street, 15-063 Białystok.

  1. The hosting service provider is INFOCAL sp. z o.o. with its registered office in Poznań (60-551) 45A/48 Augustyna Szamarzewskiego Street, entered in the Register of Entrepreneurs kept by the District Court Poznań Nowe Miasto i Wilda in Poznań, 8th Commercial Division of the National Court Register under KRS number 7831778579, NIP 8971849179, REGON 380143653.

  2. This Policy may be amended and updated in the event of changes in practices related to processing of personal data or changes in the law. The Controller will inform Users of any changes to the Policy by placing relevant information on the Website, and in the case of Users using the Newsletter service, by sending this information directly to the User’s e-mail address.

  3. By using the Controller’s Website, the User acknowledges that they have read this Privacy Policy and, if they subscribe to the Newsletter, that they accept it.

  4. Providing personal data to the Controller is voluntary.

2. Definitions

  1. Controller means the entity that decides how and for what purposes Personal Data is processed. The Controller is responsible for ensuring that the processing complies with applicable personal data protection law.

  2. Personal Data means any information relating to an identified or identifiable natural person.

  3. To Process, Processing or Processed means any operation or set of operations performed on Personal Data, whether or not by automated means, such as: collection, recording, organisation, structuring, storage, adapting or altering, retrieving, consulting, using, disclosing by transmission, disseminating or otherwise making available, aligning or combining, restricting, erasing or destroying.

  4. Processor means any person or entity that processes Personal Data on behalf of the Data Controller (other than an employee of the Data Controller).

  5. Website - https://pixdrobe.com

  6. Fanpage Data Controller on social media:

  1. Electronic Services - services provided via the Website. The provision of Electronic Services to Users on the Website is subject to the terms and conditions set out in this Policy.

3. Processing of Users’ Personal Data

  1. The Controller may collect Users’ Personal Data in particular in the following cases:
  • pursuit of the Controller’s legitimate interests, including the pursuit of claims and taking action in connection with the defence of the Controller’s rights, conducting court proceedings and, among other things, preventing fraud when using the Website pursuant to Article 6(1)(f) of the GDPR (the Controller’s legitimate interest referred to above),
  • obtaining Users’ Personal Data published on social media (the Controller’s Fanpage) (e.g. obtaining information from Users’ private profiles on social media, to the extent that such information is publicly visible) pursuant to Article 6(1)(f) of the GDPR (legitimate interest of the Controller - promotion of its own activities and services, maintaining a social media profile (Fanpage), building and strengthening relationships with customers, conducting analyses and statistics on the popularity and functioning of the profile, as well as determining, investigating and defending against any claims regarding the use of the profile, responding to contact),
  • the User’s consent to processing of personal data provided for the purpose of sending the Newsletter, pursuant to Article 6(1)(a) (consent) sending commercial information - Newsletter, sharing marketing content via electronic communication, in accordance with Article 398 of the Electronic Communications Law,
  1. Provision of personal data is voluntary, it is not a statutory obligation. In certain cases, however, it is not possible to use the full functionality of the Website or the Newsletter services without providing personal data. Categories of Users’ Personal Data Processed by the Data Controller may include, in particular:
  • Personal data: first name(s), surname(s),
  • Contact details: e-mail address,
  • Content of messages: all messages (queries, statements, views and opinions) sent via the contact form or published on the Controller’s website or Fan Pages by the User.
  • Image: in the case of publishing opinions, leaving comments, clicking the “Like” button on the Controller’s social media (Fanpage) (provided that the User has made their image available on their private account on that social media).
  1. The Controller uses fanpage profiles on social media. Public data provided by social media Users may be used for the following purposes:
  • responding to private messages sent to us,
  • conducting discussions in the comments section under individual posts,
  • sharing our posts with people who follow our Fanpage,
  • marketing consisting of informing about our services and about ourselves through posts that we place on our Fanpage, including sponsored posts that are displayed to a wider group of Users,
  • statistical, which consists of presenting data on visibility of our posts, their reach, and the number of interactions; the data presented to us by the owners of social media websites are statistical data, but they are created on the basis of observations of behaviour on our Fanpage.
  1. Currently, the Controller’s Website uses redirects to the following stores:
  • Google Play and
  • App Store.

The terms of use for Google Play are available at: https://play.google.com/intl/ALL_pl/about/play-terms/ The terms and conditions of use of the App Store are available at: https://www.apple.com/legal/internet-services/itunes/pl/terms.html

  1. When you like a post or other activity of the Controller on social media, leave a comment, send a private message, subscribe to the channel, the Controller will:
  • Meta Platforms Ireland Limited, Block J, Serpentine Avenue, Dublin 4, Ireland becomes the Controller of your personal data shared on their Fanpage for data processing for statistical and advertising purposes.
  1. Therefore, we encourage you to read their privacy policy:

4. Sharing Personal Data with third parties

  1. The Controller may share Users’ Personal Data with:
  • persons authorised by the Controller to process the data,
  • entities entrusted with data processing e.g. technical service providers and consultancy service providers,
  • other controllers, if required by law or in good faith, that such action is necessary to comply with applicable law, in particular in response to a request from a court or state authority.
  1. If we engage a third party to Process Users’ Personal Data, in accordance with the processing entrustment agreement concluded with such entity, the Processor will be obliged to:
  • process only the Personal Data indicated in the Controller’s prior written instructions; and
  • apply all measures to protect confidentiality and security of Personal Data and ensure compliance with all other requirements of generally applicable law.
  1. Due to the use of Facebook services, data may be transferred by these entities outside the European Economic Area to third countries, including the United States of America (USA) in connection with their internal sharing by these entities to: Meta Platforms Inc. Google LLC (USA), over which the Controller has no influence. The Controller will fulfil its obligations under Chapter V of the GDPR to ensure the lawfulness of such processing, including on the basis of the European Commission’s decisions on the adequate level of privacy protection under the EU-US Data Privacy Framework.

5. Data Protection

  1. The Controller informs that it has implemented appropriate technical and organisational measures to protect Personal Data, in particular including safeguards against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, unauthorised access and other unlawful and unauthorised forms of Processing, in accordance with applicable law.

  2. The Controller is not liable for the actions or omissions of Users. Users are responsible for ensuring that all personal data is sent to the Controller in a secure manner.

  3. Personal data will not be subject to automated profiling, i.e. automated decision-making towards the User, namely decisions made by technical means without human intervention, producing legal effects concerning the profiled person or otherwise significantly affecting the profiled person.

6. Data Accuracy

  1. The Controller shall take all reasonable steps to ensure that:
  • The Personal Data of Users that the Controller processes are accurate and, where necessary, kept up to date;
  • all Personal Data of Users that the Controller Processes which is erroneous (considering the purpose for which it is Processed) will be deleted or corrected without undue delay.
  1. The Controller may, at any time, ask Users about the accuracy of the Personal Data being Processed.

7. Data scope minimization

The Controller takes all appropriate measures to ensure that the scope of the Users’ Personal Data that it processes is limited to Personal Data that are adequately required for the purposes set out in this Policy.

8. Personal Data Retention Period

  1. The criteria determining the length of time during which the Controller stores Users’ Personal Data are as follows: The Controller shall store copies of Users’ Personal Data in a form that allows identification only for as long as necessary to achieve the purposes set out in this Policy, unless the law requires a longer period of storage of Personal Data. The Controller may, in particular, store Users’ Personal Data for as long as necessary to establish, exercise or defend claims.

  2. In the case of using the Newsletter Service, Users’ Personal Data is stored for the duration of the service or until consent is withdrawn.

When the User uses the Website, no Personal Data is collected in the form of cookies.

10. Newsletter

  1. The Controller provides an electronic Newsletter service. The Newsletter service consists in sending information about offers, promotions and events related to the Controller’s activities to the e-mail address provided by the User. The Controller indicates that the Newsletter will not be sent at regular intervals (e.g. monthly), and that the sending of the Newsletter will depend on promotional activities undertaken by the Controller and will be irregular.

  2. In order to use the free Newsletter service, the User must have an active e-mail address and voluntarily consent to receiving commercial information by electronic means. Subscription to the Newsletter is made by completing the Newsletter form available on the Controller’s Website and accepting this Privacy Policy governing the rules for data processing and the rules for the provision of the service. By sending a message in this way, the User makes a declaration of will to conclude the Newsletter service.

  3. The Controller shall not be liable for the provision of false data by the User or for the failure to deliver the Newsletter for reasons beyond the Controller’s control (e.g. technical problems on the part of the Internet service provider).

  4. The User undertakes to use the service in accordance with the law and this Policy and not to provide any illegal content.

  5. The Newsletter service is provided for an indefinite period. The User has the right to unsubscribe from the Newsletter at any time by withdrawing their consent to the provision of this service. The withdrawal of consent may be sent at any time to the e-mail address by clicking on the “unsubscribe” link available in each Newsletter message. After unsubscribing, the User’s e-mail address will be immediately removed from the subscriber database.

11. Provision of services by electronic means

  1. It is prohibited for Users to provide illegal content.

  2. The User is obliged to use the Controller’s Website and the Services offered in a manner consistent with the law, good manners, using data consistent with the facts and in no other manner that is inconsistent with the provisions of this Policy. The Controller shall not be liable for provision of false data by the User or failure to provide the service for reasons beyond the Controller’s control (e.g. technical problems on the part of the Internet service provider).

  3. The use of Services on the Internet, despite the use of security measures by the Controller to prevent or significantly impede intrusion into the system (hacker attacks), may involve the risk of unwanted infection of the IT system by malicious software. In connection with the above, the Controller additionally recommends using updated anti-virus software and an appropriate firewall by the User.

12. Users’ rights in connection with the processing of their personal data

  1. In connection with the processing of personal data, you have the following rights:
  • the right to access the processed personal data – on this basis, the Controller, at the request of the data subject, provides information about the processing of personal data concerning him or her, including, in particular, the purposes and legal grounds for the processing, the scope of the data held, the entities to which the personal data are disclosed and the planned date of their deletion. As part of the right of access to data, the data subject may also request information about who their personal data is disclosed to and whether it is subject to profiling and automated decision-making. The data subject also has the right to obtain a copy of their data.
  • the right to rectify data – on this basis, the Controller, at the request of the data subject, removes any discrepancies or errors concerning the processed personal data, and supplements or updates them if they are incomplete or have changed;
  • the right to data erasure – on this basis, the Controller, at the request of the data subject, deletes data which processing is no longer necessary to achieve any of the purposes for which they were collected, the consent to their processing has been withdrawn or an objection has been made and it is not required for the establishment, exercise or defence of the Controller’s claims;
  • the right to restrict and transfer processing – on this basis, the Controller, at the request of the data subject, shall cease to carry out operations on such personal data, to the extent permitted by law, and shall issue such personal data in a format that can be read by a computer;
  • the right to lodge a complaint – by exercising this right, a person who believes that their personal data is being processed in violation of applicable law may lodge a complaint with the President of the Personal Data Protection Office ( 2 Stawki Street, 00-193 Warsaw);
  • the right to object – the data subject may at any time object to the processing of personal data for the purposes for which they were collected and are being processed, objection to direct marketing – if personal data are processed for direct marketing purposes, the data subject has the right to object at any time to the processing of personal data concerning him or her in this respect;
  • the right to withdraw consent – if we process personal data on the basis of a consent given, the data subject may withdraw this consent at any time. Withdrawal of the consent does not make the processing of personal data illegal up to that point; the withdrawal of consent does not affect the lawfulness of the processing to date, but it will result in the personal data no longer being used for those purposes from the moment the consent is withdrawn.

  1. A request to exercise the rights described above may be submitted by traditional mail to the address of the Controller’s registered office or via the email address indicated in Chapter I.

  2. The request should, as far as possible, specify the subject matter of the request, i.e. in particular the addressee of the request and which of the rights described above the person submitting the request wishes to exercise. If the Controller is unable to determine the content of the request or identify the person submitting the request on the basis of the notification made, it will ask the applicant for additional information.

© 2025 FlashX