Privacy Policy of zametagro.com

1. Information about the Data Controller

The controller of the personal data of users of the zametagro.com website is “Zamet” Zabielski Sp. J., with its registered office at: Łagiewniki 45, 09-470 Bodzanów, Poland, hereinafter referred to as the “Controller.”

The Controller can be contacted via:

  • Correspondence address: Łagiewniki 45, 09-470 Bodzanów, Poland
  • E-mail: biuro@zametagro.com
  • Telephone: +48 576-956-035

The Controller processes personal data in accordance with the provisions of the GDPR, including the information obligations arising from Article 13 of the GDPR, which require informing individuals about, among other things, the controller, the purposes and legal bases of processing, data recipients, retention periods, and the rights available to data subjects

2. Purposes and Legal Bases for Data Processing

Personal data may be processed for the following purposes:

  1. Handling inquiries submitted via the contact form, e-mail, or telephone – the legal basis is the Controller’s legitimate interest in conducting correspondence and responding to inquiries.
  2. Preparing quotations, fulfilling orders, or carrying out business cooperation – the legal basis is taking steps prior to entering into a contract or performing a contract.
  3. Accounting, bookkeeping, and fulfilling tax obligations – the legal basis is a legal obligation imposed on the Controller.
  4. Establishing, pursuing, or defending legal claims – the legal basis is the Controller’s legitimate interest.
  5. Ensuring the proper functioning of the website, website security, and website traffic analysis – the legal basis is the Controller’s legitimate interest.
  6. Marketing activities relating to the Controller’s own products or services – where applicable, the legal basis may be either the Controller’s legitimate interest or the user’s consent, depending on the nature of the activity.

3. Scope of Personal Data Processed

The Controller may process the following categories of personal data:

  • First and last name
  • Company name
  • E-mail address
  • Telephone number
  • Correspondence address or company registered address
  • Information provided in messages or contact forms
  • Information necessary for preparing quotations, fulfilling orders, or managing business cooperation
  • Accounting and tax-related information
  • IP address
  • Information relating to the use of the website, including cookie data

Providing personal data is voluntary; however, it may be necessary in order to receive a response, obtain a quotation, enter into a contract, or perform a contract

4. Cookies

The zametagro.com website may use cookies, which are small files stored on the user’s device.

Cookies may be used for the following purposes:

  • Ensuring the proper functioning of the website
  • Remembering user preferences
  • Compiling visitor statistics
  • Analyzing how the website is used
  • Ensuring website security
  • Conducting marketing activities, where applicable

Users may change their cookie settings at any time through their web browser settings. Restricting the use of cookies may affect the functionality of certain website features.

5. Data Recipients

Personal data may be shared with entities supporting the Controller in conducting its business activities, in particular:

  • Hosting and IT service providers
  • E-mail service providers
  • Accounting and bookkeeping service providers
  • Law firms and legal advisors
  • Courier and transport companies
  • Providers of analytical or marketing tools, where applicable

Personal data is disclosed only to the extent necessary to achieve a specific purpose and on the basis of appropriate agreements or legal provisions.

6. Transfers of Personal Data Outside the European Economic Area

As a rule, the Controller does not transfer personal data outside the European Economic Area (EEA).

However, if the Controller uses services provided by suppliers who may process data outside the EEA, such as Google, Meta, Microsoft, or other cloud service providers, personal data may be transferred outside the EEA only with appropriate safeguards required under the GDPR.

7. Data Retention Period

Personal data will be retained for the period necessary to achieve the purpose for which it was collected, in particular:

  • For the duration of correspondence and inquiry handling
  • For the duration of contract performance or business cooperation
  • For the period required by tax and accounting regulations
  • Until the expiration of applicable limitation periods for legal claims
  • Until consent is withdrawn, where processing is based on consent
  • Until a valid objection is raised, where processing is based on the Controller’s legitimate interest

8. User Rights

Data subjects have the rights granted under the GDPR, including:

  • The right of access to personal data
  • The right to obtain a copy of personal data
  • The right to rectification
  • The right to erasure
  • The right to restriction of processing
  • The right to data portability
  • The right to object to processing
  • The right to withdraw consent at any time, where processing is based on consent
  • The right to lodge a complaint with the President of the Personal Data Protection Office (UODO) in Poland

9. Voluntary Provision of Data

Providing personal data is voluntary; however, in some cases it is necessary to use certain website functions, receive a response to an inquiry, obtain a quotation, enter into a contract, or complete an order.

10. Automated Decision-Making and Profiling

Users’ personal data will not be used for automated decision-making, including profiling, which would produce legal effects concerning the user or similarly significantly affect the user.

If the Controller uses advertising or analytical tools, limited marketing profiling may occur, for example through analysis of user activity on the website. In such a case, this section should be supplemented to reflect the tools actually used.

11. Data Security

The Controller applies appropriate technical and organizational measures to protect personal data against loss, unauthorized access, disclosure, alteration, or destruction.

Such measures may include, in particular:

  • Server and hosting security measures
  • Access control procedures
  • Password protection and access authorization systems
  • Backup copies
  • Encryption of data transmission, including an SSL certificate, where applicable

12. Changes to the Privacy Policy

The Controller reserves the right to amend this Privacy Policy, in particular in the event of changes in legal regulations, technological developments, or changes to the operation of the website.

The current version of the Privacy Policy will always be published on this page.

13. Effective Date

This Privacy Policy is effective as of 12 May 2026.