Privacy Policy

Privacy Policy

Last updated: 1 September 2025

Straight to the point: I don’t track you for ads, I don’t use Google Analytics 4, and I don’t sell your data. Clients come in organically.

1) Data Controller

The controller of your personal data is MIŁOSZ KOWALSKI , registered at Wołyńska 5/45, 35-505 Rzeszów, Polska VAT/NIP: 8133886596 (the “Controller” or “I”). Contact: contact@skuadx.online.

2) What data I process and why

I only process data you provide or that is technically necessary to run the site, e.g.:

  • identification data (name, company name),
  • contact details (e‑mail, phone),
  • the content of messages/quotes,
  • basic technical data tied to website use (e.g., IP address in server logs).

Purposes and legal bases (GDPR):

  • Replying to your message / preparing a quote – Art. 6(1)(b) GDPR (steps prior to a contract) and/or Art. 6(1)(f) GDPR (legitimate interest – communication),
  • Concluding and performing a contract – Art. 6(1)(b) GDPR,
  • Accounting and legal obligations – Art. 6(1)(c) GDPR (legal obligation),
  • Security and service maintenance (server logs, abuse prevention) – Art. 6(1)(f) GDPR.

I do not make automated decisions about you, including profiling.

3) Cookies & similar technologies

  • This website does not use GA4 and does not use advertising tools.
  • If any cookies appear, they are strictly necessary/technical (e.g., security or core functionality). You can block cookies in your browser, though some features may stop working.
  • Standard server logs may be generated by the hosting provider (IP address, timestamp, etc.) to keep the service secure and diagnose issues.

4) Data retention

  • correspondence and sales inquiries – up to 12 months after the conversation ends or until potential claims expire,
  • contractor/client data (during cooperation) – for the term of the agreement and up to 6 years after it ends (limitation period),
  • accounting documentation – 5 years counting from the end of the calendar year.

5) Data recipients (processors)

I share data only when necessary, on the basis of data‑processing agreements, with:

  • hosting and e‑mail provider(s),
  • IT/maintenance providers,
  • accounting office,
  • other subcontractors strictly as needed to deliver services (data minimization applies).

I do not share data with third parties for their marketing.

6) Transfers outside the EEA

As a rule, I do not transfer personal data outside the European Economic Area. If exceptionally needed (e.g., an IT tool with servers outside the EEA), I will apply safeguards required by GDPR (e.g., Standard Contractual Clauses) and ensure an adequate level of protection.

7) Your rights

You have the right to:

  • access, rectify, erase, or restrict processing of your data,
  • data portability (Art. 20 GDPR),
  • object to processing based on legitimate interest,
  • lodge a complaint with the supervisory authority: President of the Personal Data Protection Office (UODO), ul. Stawki 2, 00‑193 Warsaw, Poland (uodo.gov.pl).

To exercise your rights, write to [contact e‑mail]. I’ll respond without undue delay.

8) Providing data

Providing data is voluntary, but without it I may not be able to respond, prepare a quote, or conclude a contract.

9) Data security

I use technical and organizational measures appropriate to risk, including encrypted connections (TLS/SSL), access controls, data minimization, and cooperation only with providers that meet GDPR requirements.

10) Changes to this Policy

If something changes (tools, law, or the website), I’ll update this document. The newest version will always be published on the site.

11) Contact

For privacy matters, write to: contact@squadx.online. Promise: no marketing fluff—just clear answers.

Admin tip: Replace the bracketed placeholders with your actual details (name, address, VAT/NIP, e‑mail, phone). If you later add forms, a newsletter, or third‑party tools (e.g., CRM), list them here with the legal basis and retention period.