Privacy Policy of the Service

Misja Travel Sp. z o.o., with its registered office in Poznań at ul. Śląska 10, entered in the National Court Register kept by the District Court Poznań-Nowe Miasto i Wilda in Poznań, VIII Economic Division, al. Marcinkowskiego 32, under KRS number 0000701301, NIP: 7831764689, REGON: 368252469, share capital of PLN 50,000.00 fully paid, hereinafter referred to as the Data Controller or Misja Travel Travel Agency, acts as the administrator of the data.
For better readability of the Privacy Policy, the term “User” is replaced by “You”, and “Joint Controllers” by “We”. The term “GDPR” means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
We respect your right to privacy and care about data security. To this end, we use, among other things, a secure communication encryption protocol (SSL). Personal data provided in forms on the website www.misjatravel.pl is treated as confidential and not visible to unauthorized persons.
In matters not regulated by the policy, the provisions of the Polish Civil Code, relevant Polish laws, and EU law, in particular GDPR, apply.

We are the administrator of our clients’ data. This means that if you fill out a form on our website, we process your data such as: name, surname, email address, phone number, residential address, date of birth, series and number of identity document, IP address.
We are also the administrator of persons subscribed to the newsletter and persons registered for a trip organized by Misja Travel Travel Agency.
Personal data is processed:
• in accordance with data protection regulations,
• in accordance with the implemented Privacy Policy,
• to the extent and purpose necessary to establish, shape the content of the Agreement, amend or terminate it, and properly provide services electronically,
• to the extent and purpose necessary to fulfill legitimate interests (legally justified purposes), without infringing the rights and freedoms of the data subject,
• to the extent and purpose consistent with the consent given by you, if you subscribed to the newsletter,
• to the extent and purpose consistent with the consent given by you, if you booked a trip organized by Misja Travel Travel Agency.
Every data subject has the right to access data, rectification, erasure or restriction of processing, objection, and to lodge a complaint with the supervisory authority.
Contact with the data protection officer at the Data Controller is possible via email at odo@misjatravel.pl.
We reserve the right to process your data after termination of the Agreement or withdrawal of consent only for the purpose of pursuing possible claims in court or if national or EU law or international law obliges us to retain data.
The Data Controller may disclose your personal data and other data to entities authorized under applicable law (e.g., law enforcement authorities).
Data erasure may occur upon withdrawal of consent or a legally permissible objection to data processing.
The Data Controller does not disclose personal data to entities other than those supporting the provision of ordered services or entities authorized under applicable law.
We have implemented pseudonymization, data encryption, and access control to minimize the effects of potential data security breaches.
Personal data is processed only by persons authorized by us or processors with whom we closely cooperate.

The website www.misjatravel.pl uses cookies. These are small text files sent by the www server and stored by the browser software. When the browser reconnects to the site, the website recognizes the type of device the user connects from. Parameters allow reading the information contained therein only by the server that created them. Cookies thus facilitate the use of previously visited sites. Collected information concerns the IP address, type of browser used, language, type of operating system, internet service provider, time and date information, location, and information sent to the site via the contact form.
Collected data is used to monitor and check how users use our sites to improve site functionality, ensuring more efficient and trouble-free navigation. We monitor user information using Google Analytics, which records user behavior on the site. Cookies identify the user, allowing tailoring of the site’s content to their needs. By remembering preferences, it enables appropriate matching of targeted ads. We use cookies to ensure the highest standard of convenience on our site, and collected data is used only within Misja Travel Travel Agency to optimize operations.
On our site, we use the following cookies:
• cookies for security, e.g., used to detect abuse in authentication within the service;
• “performance” cookies enabling collection of information on how the service’s websites are used;
• “functional” cookies enabling “remembering” user-selected settings and personalizing the user interface, e.g., selected language or region, font size, site appearance, etc.;
• “advertising” cookies enabling delivery of content more tailored to user interests.
At any time, you can disable or restore cookie collection by changing browser settings. Cookie management instructions are available at http://www.allaboutcookies.org/manage-cookies. Additional personal data, such as email address, is collected only where you expressly consent by filling out a form. The above data is retained and used only as necessary for the given function.

Information about certain user behaviors is recorded during connection (logging) to the server hosting the service. These data are used solely for service administration and to ensure the most efficient handling of hosting services provided by the server operator.
Viewed resources are identified by so-called URLs, i.e., the address of the page displayed in the browser. Additionally, the following may be recorded:
• request arrival time,
• response sending time,
• client station name – identification via HTTPS protocol,
• errors occurring during HTTPS transaction execution,
• URL address of the previously visited page (referer link) – if entering the service via a link,
• user browser information,
• user IP address information.
The above data are not associated with specific persons browsing the pages. They are used only for server administration purposes.