Polityka prywatności | Point of View | Payload Website Template

1. Data Controller

The controller of personal data is Point of View, registered office at Al. Jana Pawła II 22,
entered in the National Court Register (KRS) under number 0000483753, NIP 1231282909, REGON 146944038.
Contact with the data controller is possible via:

e-mail address: [biuro@pov.com.pl],

correspondence address: [ul. Julianowska 37, 05-500 Piaseczno],

For matters related to personal data protection, you can also contact the appointed Data Protection Officer at: [biuro@pov.com.pl].

2. Scope and Sources of Collected Data

Point of View processes personal data in accordance with the principle of data minimization. Data is collected only to the extent necessary for the provision of Solution Provider services in line with Amazon’s requirements.

Sources of data:

directly from users and clients (e.g. via contact forms, registrations, inquiries),

indirectly from the Amazon platform and its API, within cooperation and system integrations,

automatically – technical data and system logs generated while using our services,

from trusted partners (e.g. payment, hosting, accounting systems).

Categories of data:

identification data: first name, last name, e-mail address, phone number, company name, address, tax ID (NIP),

transactional data: order history, order numbers, invoices, payments,

technical data: IP address, device identifiers, system logs, API interaction data,

marketing data: communication preferences (newsletter, notifications, marketing consents).

3. Purposes of Data Processing

Personal data is processed for the following purposes:

Service delivery – enabling the provision of Point of View services within cooperation with Amazon and partners.

Amazon API integration – ensuring proper operation of integrations, reporting, and sales process management.

Customer support and technical assistance – handling technical, complaint-related, and informational issues.

Billing and accounting – issuing invoices, keeping financial records.

Security – monitoring activity, logging events, detecting misuse, penetration testing, applying AWS safeguards.

Service analysis and development – conducting statistical research, improving products and services.

Marketing and communication – sending commercial information, newsletters, educational materials (only with consent).

Fulfilling legal obligations – e.g. archiving documents, tax compliance.

4. Legal Basis for Processing

Art. 6(1)(b) GDPR – necessity for contract performance (e.g. Solution Provider services).

Art. 6(1)(c) GDPR – legal obligation (e.g. accounting, archiving).

Art. 6(1)(f) GDPR – legitimate interest of the controller (e.g. fraud prevention, defense of claims, system analysis).

Art. 6(1)(a) GDPR – consent (e.g. direct marketing, newsletter).

5. Data Sharing

Point of View may share data only with entities that ensure adequate protection, in line with Amazon and GDPR requirements.

Data recipients:

Amazon Services – as necessary to provide Solution Provider services,

IT and hosting providers (e.g. Amazon Web Services, Microsoft, Google),

technology and payment partners,

accounting and legal service providers working with Point of View,

public authorities, if required by law.

We do not disclose data to unauthorized parties nor sell personal data.

Data transfers outside the EEA:
If data is transferred to third countries (e.g. USA through AWS), we apply safeguards, including:

standard contractual clauses approved by the European Commission,

compliance with Amazon’s (AWS) data protection frameworks.

6. Security Measures

Point of View applies strict technical and organizational measures to ensure confidentiality, integrity, and availability of data:

encryption of data at rest and in transit,

authorization and access control,

event logging and security monitoring,

regular security testing and compliance audits,

compliance with ISO 27001, ISO 27017, ISO 27018 standards and AWS policies.

7. Data Retention

Data related to service provision is stored for the duration of the contract and up to 5 years after its termination (due to tax and accounting obligations).

Marketing data is stored until consent is withdrawn.

Technical data and system logs are stored up to 12 months from generation (unless longer retention is required for security or legal claims).

8. Data Subjects’ Rights

Every data subject has the right to:

access their data,

rectify their data,

erase their data (“right to be forgotten”),

restrict processing,

data portability,

object to processing,

withdraw consent at any time (if processing was based on consent).

To exercise these rights, please contact us at: [biuro@pov.com.pl].

9. Cookies and Tracking Technologies

Point of View websites may use cookies and similar technologies for:

essential site functions (e.g. login),

analytics and statistics,

marketing (with user consent).

Users can change cookie settings at any time in their browser. Detailed information is available in the “Cookie Policy”.

10. Marketing and Communication

We send commercial information and newsletters only to users who have given consent (opt-in).

Users may withdraw consent at any time by clicking the “unsubscribe” link or contacting us directly.

11. Policy Changes

Point of View’s Privacy Policy may be updated periodically. We will notify clients of material changes via e-mail or website notice.

Privacy policy