ADSHIFT Limited Liability Company
1.1. Controller – ADSHIFT Limited Liability Company with its registered office in Radom, Kazimierza Pułaskiego 6/10, 26-600 Radom.
1.2. Personal data – information about a natural person who is identified or can be identified by one or more specific factors determining their physical, physiological, genetic, mental, economic, cultural or social identity, including device IP, internet identifier and information collected through cookies and other similar technologies.
1.3. Policy – this Privacy Policy.
1.4. GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
1.5. Website – the website operated by the Controller at www.adshift.com
1.6. User – any natural person visiting the Website or using one or more services or functionalities described in the Policy.
In connection with the User's use of the Website, the Administrator collects data to the extent necessary to provide the individual services offered. The detailed rules and purposes of processing Personal Data collected during the User's use of the Website are described below.
3.1.1. for the purpose of providing electronic services in the scope of making the content collected on the Website available to Users – in this case, the legal basis for processing is the necessity of processing for the performance of a contract (Article 6(1)(b) of the GDPR);
3.1.2. in order to establish and pursue claims or defend against claims – the legal basis for processing is the legitimate interest of the Administrator (Article 6(1)(f) of the GDPR), consisting in the protection of its rights.
The Controller provides the possibility to contact him using an electronic contact form. Using the form requires providing Personal Data necessary to contact the User and respond to the enquiry. The User may also provide other data to facilitate contact or handling of the enquiry. Providing data marked as mandatory is required in order to accept and handle the enquiry, and failure to provide such data will result in the inability to handle the enquiry. Providing other data is voluntary.
3.3. Personal data is processed for the purpose of identifying the sender and handling their enquiry sent via the form provided – the legal basis for processing is the necessity of processing for the performance of a service contract (Article 6(1)(b) of the GDPR); with regard to optional data, the legal basis for processing is consent (Article 6(1)(a) of the GDPR).
The User's personal data may also be used by the Controller to send marketing content to the User through various channels, i.e. by e-mail, MMS/SMS. Such activities are undertaken by the Controller only if the User has given their consent, which they may withdraw at any time.
3.5.1. for the purpose of sending the requested commercial information – the legal basis for processing, including the use of profiling, is the Administrator's legitimate interest (Article 6(1)(f) of the GDPR) in connection with the consent given;
3.5.2. for analytical and statistical purposes – the legal basis for processing is the legitimate interest of the Administrator (Article 6(1)(f) of the GDPR), consisting in analysing the activity of Users on the Website in order to improve the functionalities used.
The Controller uses cookies on the Website. The purposes and rules for the use of cookies are set out in the Cookie Policy.
The period of data processing by the Administrator depends on the type of service provided and the purpose of processing. As a rule, data is processed for the duration of the service, until the consent is withdrawn or an effective objection to data processing is raised in cases where the legal basis for data processing is the Administrator's legitimate interest.
The period of data processing may be extended if processing is necessary to establish and pursue possible claims or defend against claims, and after that time only if and to the extent required by law. After the processing period has expired, the data is irrevocably deleted or anonymised.
The User has the right to access the content of the data and request its rectification, deletion, restriction of processing, the right to transfer the data and the right to lodge a complaint with the supervisory authority dealing with the protection of Personal Data.
The User also has the right to object to the processing of data based on the legitimate interest of the Controller.
To the extent that the User's data is processed on the basis of consent, this consent may be withdrawn at any time by contacting the Controller via privacy@adshift.com
In connection with the provision of services, Personal Data will be disclosed to external entities, including in particular IT service providers enabling the proper use of the Website.
If the User's consent is obtained, their data may also be made available to other entities for their own purposes, including marketing purposes.
The Administrator reserves the right to disclose selected information about the User to competent authorities or third parties who request such information, based on an appropriate legal basis and in accordance with applicable law.
The level of protection of Personal Data outside the European Economic Area (EEA) differs from that provided by European law. For this reason, the Controller transfers Personal Data outside the EEA only when necessary and with an adequate level of protection, primarily through:
8.1.1. cooperation with entities processing Personal Data in countries for which the European Commission has issued an appropriate decision confirming the adequate level of protection of Personal Data;
8.1.2. using standard contractual clauses issued by the European Commission;
8.1.3. applying binding corporate rules approved by the competent supervisory authority.
The Controller shall always inform you of its intention to transfer Personal Data outside the EEA at the stage of its collection.
The Controller shall conduct ongoing risk analysis to ensure that Personal Data is processed by it in a secure manner, ensuring, above all, that only authorised persons have access to the data and only to the extent necessary for the performance of their tasks. The Controller ensures that all operations on Personal Data are recorded and performed only by authorised employees and associates.
The Controller takes all necessary measures to ensure that its subcontractors and other cooperating entities also guarantee the application of appropriate security measures in each case when they process Personal Data on behalf of the Controller.
The Controller can be contacted via privacy@adshift.com
The Policy is reviewed on an ongoing basis and updated as necessary.
The current version of the Policy was adopted and has been in force since 2025-09-15.