Skip to main content

PRIVACY POLICY

Last updated: February 2026

1. WHO WE ARE

Aperionis is a cybersecurity consulting company providing penetration testing, security audits, and consulting services. Company address: [adres firmy]. Contact: kontakt@aperionis.pl

2. WHAT DATA WE COLLECT

We collect the following categories of personal data:

  • Contact form data: name, email address, company name, and message content — when you submit our contact form.
  • Technical data: IP address, browser type, operating system, pages visited, time of visit — collected automatically via server logs.
  • Cookie data: consent preferences stored locally in your browser (see Section 6).

We do NOT collect: payment data, sensitive personal data (health, biometrics, religion), or data from minors under 16.

3. WHY WE COLLECT YOUR DATA (LEGAL BASIS)

  • Contact form submissions: processed on the basis of your consent (Art. 6(1)(a) GDPR) and our legitimate interest in responding to business inquiries (Art. 6(1)(f) GDPR).
  • Technical/log data: processed on the basis of our legitimate interest in ensuring website security and performance (Art. 6(1)(f) GDPR).

4. HOW LONG WE KEEP YOUR DATA

  • Contact form submissions: up to 2 years from the date of submission, unless you request earlier deletion.
  • Server logs: up to 90 days.
  • Cookie consent preference: stored locally in your browser until you clear it.

5. WHO HAS ACCESS TO YOUR DATA

Your data is not sold or shared with third parties for marketing purposes. We may share your data with:

  • Email delivery provider (Resend) — for sending automated confirmation emails. Resend is GDPR-compliant and processes data within the EU/EEA.
  • Hosting provider — our server infrastructure provider for technical operation of the website.

We do not transfer your personal data outside the European Economic Area.

6. COOKIES

We use only technically necessary cookies and local storage for:

  • Cookie consent preference: stores your acceptance or rejection of analytics cookies. Key: cookie_consent. Stored in localStorage. Expires: never (until manually cleared).

We do NOT use: tracking cookies, advertising cookies, Google Analytics, Facebook Pixel, or any third-party analytics tools.

You can manage cookie preferences at any time using the cookie settings banner at the bottom of our website.

7. YOUR RIGHTS UNDER GDPR

You have the right to:

  • Access your personal data (Art. 15 GDPR)
  • Correct inaccurate data (Art. 16 GDPR)
  • Delete your data ("right to be forgotten") (Art. 17 GDPR)
  • Restrict processing (Art. 18 GDPR)
  • Data portability (Art. 20 GDPR)
  • Object to processing based on legitimate interest (Art. 21 GDPR)
  • Withdraw consent at any time without affecting lawfulness of prior processing (Art. 7(3) GDPR)

To exercise your rights, contact us at: kontakt@aperionis.pl
We will respond within 30 days.

8. COMPLAINTS

If you believe we are processing your data unlawfully, you have the right to lodge a complaint with your national data protection authority. In Poland: Urząd Ochrony Danych Osobowych (UODO), ul. Stawki 2, 00-193 Warsaw, www.uodo.gov.pl.

9. CHANGES TO THIS POLICY

We may update this policy to reflect changes in our practices or legal requirements. We will post the updated version on this page with a new "Last updated" date. We recommend reviewing this page periodically.

10. CONTACT

Data Controller: Aperionis
Email: kontakt@aperionis.pl
Address: [adres firmy]