Legal

Privacy Policy

Polish version
Last updated: 2026-03-13Controller: REL8 PIOTR SLABOSZ

Controller / Operator

The data controller is REL8 PIOTR SLABOSZ. For privacy-related matters, you can contact us at privacy@siadajcie.pl.

Information We Collect

Depending on how you use the service, we may process information you provide directly, data related to your account and reservations, and technical data needed to operate the application.

  • email address, account identifiers, and session metadata needed for sign-in or account maintenance
  • data related to reservations, operational communication, and support
  • technical analytics data such as event data, browser and device data, and pseudonymous session identifiers

Authentication and User Management

We use Clerk Inc. as our passwordless authentication service and user account provider. Clerk supports sign-in with Magic Link and maintains the user session required to complete reservations and access account-related features.

For this purpose, Clerk may process your email address, account identifiers, and session metadata. The legal basis is the performance of a contract or steps taken at your request before entering into a contract.

Behavioral Analytics and Optimization

We use PostHog Inc. for event analytics, behavioral analytics, and optimization of the reservation flow. PostHog helps us understand where users encounter friction, which paths convert best, and how the product can be improved.

If enabled, session recording is configured with sensitive data masking, including masked form inputs. Analytics data may include event data, page and session metadata, browser information, device information, and pseudonymous identifiers.

PostHog is configured to use the EU host and store data on EU-based servers in the Frankfurt region.

How We Use Information

We do not sell personal data. However, we may disclose data to trusted service providers acting on our behalf for hosting, infrastructure, analytics, security, and account support.

  • to provide the service, maintain user accounts, handle reservations, and enable the features you use
  • to maintain security, prevent abuse, diagnose issues, and keep the service available
  • to understand how the service is used and improve product features, user journeys, and performance

Legal Bases for Processing

The applicable legal basis depends on why the data is used and how you interact with the service. We apply separate legal bases for authentication, reservation handling, and analytics.

  • performance of a contract, or steps taken at your request before entering into a contract, where processing is necessary to operate your account, passwordless sign-in, reservations, or requested features
  • legitimate interests, including security, abuse prevention, service improvement, and certain analytics or diagnostic activities
  • consent, where required for cookies or similar technologies and other optional features, including PostHog analytics cookies

Cookies and Similar Technologies

The service uses cookies and similar technologies for session management, security, remembering settings, and analytics.

Strictly necessary cookies related to Clerk authentication and session handling may operate without optional consent because the service would not function properly without them.

PostHog analytics starts only after you grant consent in the cookie banner. If you reject analytics cookies, PostHog is not initialized and does not collect analytics data about your activity.

We store your cookie choice under the key cookie_consent in localStorage and, as a fallback, in a cookie with the same name.

Data Retention

Account and operational data is retained for as long as you use the service and afterward as needed for settlements, legal claims, and compliance with legal obligations.

Analytics data is retained for up to 90 days from the time it is collected, unless a longer retention period is necessary for security or incident analysis.

Technical and security logs may be retained for up to 180 days in order to ensure system security, detect abuse, and investigate incidents.

Third-Party Services

  • Clerk Inc. for Authentication and User Management, including Magic Link sign-in
  • PostHog Inc. for Behavioral Analytics and Optimization, including session recording with sensitive data masking
  • Vercel and other hosting or cloud infrastructure providers supporting service operation
  • security and monitoring providers
  • other processors supporting service operation

International Data Transfers

Where a provider may process data outside the EEA or access data from outside the EEA, we rely on appropriate safeguards such as Standard Contractual Clauses, a Data Processing Addendum (DPA), or another lawful transfer mechanism, where applicable.

For PostHog, the production configuration uses the EU region with data stored on servers located in Frankfurt.

Your Rights

You may have the right to:

  • access your data
  • rectify your data
  • erase your data
  • restrict processing
  • object to processing
  • data portability, where applicable
  • withdraw consent at any time where processing is based on consent
  • lodge a complaint with the competent supervisory authority

Data Deletion

You may request deletion of your data at any time by contacting us at privacy@siadajcie.pl.

A deletion request covers data held by the controller, except for data that must be retained for legal, security, settlement, or legal-claims purposes.

Contact

If you have questions about this Privacy Policy or the processing of personal data, contact us at privacy@siadajcie.pl.

(c) siadajcie.pl

Contact

privacy@siadajcie.pl