Donji Karin Silesia Camp LOGO

Donji Karin Silesia Camp

Privacy Policy – Silesia Camp Donji Karin

This Privacy Policy outlines the principles for collecting, processing, and using personal data by F.H.U Max Robert Wesołowski, with its registered office at ul. Myszkowska 12, 42-350 Koziegłówki, Poland (hereinafter: “Silesia Camp Donji Karin” or “Controller”), in connection with the use of the website https://silesiakarincamp.pl and the services provided through it, particularly accommodation and other services offered by Silesia Camp Donji Karin.

The purpose of this policy is to provide transparent information on how we collect personal data, the legal basis for doing so, how long we store it, who we share it with, and what rights users have regarding their data. Understanding these principles is key to building trust and ensuring data security and transparency.

Silesia Camp Donji Karin is committed to safeguarding privacy and ensuring full compliance with personal data protection standards, in particular with Regulation (EU) 2016/679 (General Data Protection Regulation – “GDPR”) and the Polish Data Protection Act of May 10, 2018 (Journal of Laws 2018, item 1000).

All personal data processed by Silesia Camp Donji Karin is protected using appropriate technical and organizational measures to prevent loss, unauthorized access, modification, or destruction. More details on these measures are provided in the following sections.

2. Definitions

Personal Data – any information relating to an identified or identifiable natural person, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier (e.g., IP address, cookie ID), or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.

Data Processing – any operation or set of operations performed on personal data, whether or not by automated means, including but not limited to: collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.

User – any natural person using the services offered by Silesia Camp Donji Karin or visiting the website https://silesiakarincamp.pl, regardless of whether they have made a reservation or used the services.

Data Controller – the entity that determines the purposes and means of processing personal data and is responsible for its security and compliance with applicable laws. In this document: F.H.U Max Robert Wesołowski, owner of the Silesia Camp Donji Karin brand.

Data Processor – an entity that processes personal data on behalf of the Controller under a data processing agreement.

Consent of the Data Subject – any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of their personal data.

GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data.

3. Scope of Data Processed

The Controller may process the following categories of personal data:

  • Full name
  • Email address
  • Phone number
  • Residential address
  • Date of birth
  • Travel preferences (e.g., type of trip, preferred destinations, experience level)
  • Information related to bookings and payments
  • IP address
  • Technical information (e.g., browser type, operating system, access time)
  • Reviews and testimonials
  • Customer service communication history
  • Marketing and communication consents
  • Data related to participation in contests and promotional campaigns
  • Website activity data (clicks, visited pages)
  • Event registration form data
  • Cookies and analytics data (e.g., Google Analytics)
  • Data related to the exercise of User rights (e.g., GDPR requests)

4. Purposes and Legal Bases for Data Processing

Purpose of ProcessingLegal Basis
Booking and service deliveryArticle 6(1)(b) GDPR (contract)
Handling inquiries and customer communicationArticle 6(1)(b) or (f) GDPR
Direct marketing (newsletters, promotions)Article 6(1)(a) GDPR (consent)
Compiling statistics and analyzing website trafficArticle 6(1)(f) GDPR
Ensuring IT system securityArticle 6(1)(f) GDPR
Establishment, exercise, or defense of legal claimsArticle 6(1)(f) GDPR
Fulfillment of legal obligations (e.g. accounting, taxes)Article 6(1)(f) GDPR
Organizing contests and promotional campaignsArticle 6(1)(a) or (b) GDPR
Content personalization and recommendationsArticle 6(1)(f) GDPR
Monitoring customer service qualityArticle 6(1)(f) GDPR
Conducting satisfaction surveys and questionnairesArticle 6(1)(a) or (f) GDPR
Managing user accounts (where applicable)Article 6(1)(b) GDPR
Supporting remarketing activitiesArticle 6(1)(a) GDPR

4. Data Recipients

Users’ personal data may be shared with the following categories of recipients:

  • IT service providers – entities responsible for managing servers, reservation systems, CRM tools, mailing systems, and analytics platforms (e.g., Google, Meta, Hotjar, MailerLite, Cookiebot).
  • Payment operators – providers enabling online payment processing (e.g., Stripe, PayU).
  • Accommodation and service partners – third parties cooperating with Silesia Camp Donji Karin to provide lodging and related services.
  • Marketing and advertising companies – providers of remarketing tools and advertising campaign platforms (e.g., Facebook Ads, Google Ads).
  • Customer support providers – call centers and external companies delivering client communication services.
  • Legal and accounting service providers – to the extent necessary to fulfill legal obligations and assert or defend legal claims.

In the case of transferring personal data to third countries (outside the European Economic Area), Silesia Camp Donji Karin ensures appropriate safeguards, such as:

  • Signing standard contractual clauses (SCCs) approved by the European Commission.
  • Cooperation with entities certified under compliance programs (e.g., the EU-U.S. Data Privacy Framework).

5. Methods of Data Collection

Personal data is collected both directly from the User and indirectly through the use of the website, with the help of analytical and marketing tools. The main data collection channels include:

  • Contact forms (e.g., inquiry forms, reservation forms)
  • Booking forms (including data necessary to provide accommodation and related services)
  • Newsletter sign-ups and other marketing communication forms
  • User activity on the website
  • Automatically collected data via cookies, tracking pixels, tags, and tools such as Google Analytics, Facebook Pixel, etc.
  • Phone or email contact (including the content of messages and notes from conversations)
  • Data provided through participation in contests, promotions, or special campaigns (if applicable)
  • Information shared during a stay at Silesia Camp Donji Karin (e.g., room preferences, special requests)
  • Data from social media if the User uses login functions or contacts us via such platforms (e.g., Messenger, Instagram, comments, direct messages)

6. Data Storage and Retention Periods

Users’ personal data is stored for the period necessary to achieve the purposes for which it was collected, in accordance with the following principles:

  • Data related to contract performance – for the duration of the contract and for 5 years after its termination (for tax and accounting purposes)
  • Marketing data – until consent is withdrawn or an objection is raised
  • Technical and analytical data (cookies) – in accordance with browser settings and the Cookie Policy
  • Correspondence and complaint data – up to 3 years after the end of contact
  • Data necessary for the defense against legal claims – until the statute of limitations for potential claims expires
  • Data may be stored for longer if required by applicable legal provisions.

7. User Rights

Users have the following rights regarding their personal data:

Right to withdraw consent – at any time, without affecting the lawfulness of processing based on consent before its withdrawal

Right to lodge a complaint – with the President of the Personal Data Protection Office (UODO)

Right of access – to obtain information about the personal data we process

Right to rectification – to correct or supplement incomplete or inaccurate data

Right to erasure – also known as the “right to be forgotten,” if the data is no longer needed

Right to restriction of processing – e.g., when the accuracy of the data is contested

Right to data portability – to receive data in a structured, commonly used format and transmit it to another controller

Right to object – to data processing based on legitimate interests or for marketing purposes

8. Cookies and Tracking Technologies

Our website uses the following types of cookies:

  • Essential cookies – enable core website functionality
  • Functional cookies – remember User preferences (e.g., language, currency)
  • Analytical cookies – collect statistical data on how the website is used (e.g., Google Analytics, Hotjar)
  • Marketing cookies – support advertising and remarketing campaigns (e.g., Facebook Pixel)
  • Performance cookies – measure site performance and optimize its efficiency

Users can change their cookie settings at any time through their web browser. Most browsers accept cookies by default. However, users can modify their browser settings to reject all cookies or to notify them when cookies are being sent. Instructions on how to adjust cookie settings can be found in your browser’s help documentation.

Please note that disabling cookies may affect the functionality of the website.

For more detailed information, please refer to our Cookie Policy.

Other Tracking Technologies

In addition to cookies, Silesia Camp Donji Karin may use other tracking technologies, such as:

  • Web beacons – small graphic files embedded in web pages to monitor user behavior
  • Tracking pixels – similar to web beacons, used for collecting behavioral data
  • Local Storage Objects – allow data to be stored directly in the user’s browser
  • Tags – HTML code fragments that enable behavioral tracking and data collection
  • SDKs (Software Development Kits) – tools and components used for tracking activity within mobile apps (if applicable)

9. Security Measures

Silesia Camp Donji Karin implements appropriate technical and organizational measures to ensure the security of Users’ personal data, including:

  • Implementation of procedures for responding to security incidents
  • SSL (HTTPS) encryption of the website connection
  • Protection of servers against unauthorized access, including the use of firewalls and intrusion detection systems (IDS), if applicable
  • Regular creation of data backups
  • Restriction of access to personal data to authorized personnel only
  • Employee training on personal data protection
  • Use of strong system access passwords
  • Regular vulnerability scans (if applicable)
  • Physical security of locations where data is processed

10. Automated Decision-Making

The Controller does not make decisions based solely on automated processing that would produce legal effects concerning the User or similarly significantly affect them.
Silesia Camp Donji Karin does not use profiling as defined in Article 22 of the GDPR.

11. External Links

The website of Silesia Camp Donji Karin may contain links to other websites.
Silesia Camp Donji Karin is not responsible for the content or privacy policies of those external websites.
We recommend reviewing the privacy policy of each website you visit.

12. Changes to the Privacy Policy

The Controller reserves the right to make changes to this Privacy Policy.
Users will be informed of any significant updates either by email (if we have their email address) or via a notice posted on the website https://silesiakarincamp.pl.
The most current version of the Privacy Policy will always be available at:
https://silesiakarincamp.pl/en/privacy-policy/

13. Contact with the Data Controller

For matters related to the processing of personal data, you may contact the Data Controller at:

Email: in**@**************mp.pl

Last updated: May 8, 2025
Effective date: May 8, 2025

Scroll to Top