By using the website, you accept the following terms of the Cookie Policy and Privacy Policy.


This Cookie Policy and Privacy Policy sets out the rules for the processing and protection of personal data provided by Users and cookies, as well as other technologies appearing on the website In case of doubts as to the provisions and activities of this Cookie Policy and Privacy Policy, please contact the Administrator via the e-mail address: The administrator informs that any personal and address data provided by the user on the website will in no way be made available or sold to third parties.

The Administrator reserves the right to make changes to the privacy policy, and each User of the website is obliged to know the current privacy policy. The reason for the changes may be the development of internet technology, changes in generally applicable law or the development of the Website.


“Administrator” – Exflo Sp. z o.o., ul. Hutnicza 59, 81-061 Gdynia, NIP 588-23-94-296.
“User” – any entity visiting the website and using it.
“Website” – the website at


  1. The administrator of the User’s personal data is Przemysław Domagalski, CEO of Exflo Sp. z o.o. with its seat at Hutnicza 59, 81-061 Gdynia.
  2. The User voluntarily provides personal data using the forms on the Website, referred to below, for the purposes indicated by the forms.
  3. The User agrees to the processing of the personal data provided and to receive marketing information by means of electronic communication from the Administrator in order to contact the User or send other marketing information, e.g. about events or products offered by the Administrator.
  4. At any time, the User has the right to access their data and the possibility of correcting, rectifying or requesting restriction of their processing. The User’s consent may be revoked at any time, which will result in the removal of the e-mail address from the Administrator’s mailing list. The user has the right to transfer his personal data and submit a complaint to the President of the Personal Data Protection Office.
  5. The User’s data will not be transferred to any other entity, or outside the European Union.
  6. The Administrator stores the User’s data for an indefinite period.
  7. If the User does not provide his personal data, he will not be able to use the materials or services offered by the Administrator as part of the forms on the Website.
  8. By providing his personal data, the User agrees to their processing for the purposes of marketing the Administrator’s products and services, including profiling them for the purpose of preparing an individualized offer. The user may object to the processing of his personal data for marketing purposes and object to profiling for this purpose.
  9. Links to other websites may appear on the Website. They will open in a new browser window or the same window. The administrator is not responsible for the content provided by these websites. The user is obliged to read the privacy policy or the regulations of these websites.
  10. The user provides data voluntarily, however, it is necessary to achieve the goal or take actions related to their provision.
  11. The User’s personal data is stored and protected with due diligence, in accordance with the Administrator’s internal procedures implemented.
  12. The Personal Data Administrator hereby informs that the Personal Data Protection Inspector (ABI) has not been appointed and that he performs his duties under the Act of August 29, 1997 on the protection of personal data (Journal of Laws of 2016, item 922, hereinafter referred to as “UODO “).
  13. The data provided by the user will be used in accordance with the consent given by him.
  14. The legal basis for the processing of personal data provided by the User are:
    • provided by the User
    • consent to fulfill legally justified goals realized by the Administrator or data recipients, which are, in particular, direct marketing of own products and services.


  1. Pursuant to Art. 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC (hereinafter “GDPR”) and the Act of May 10, 2018 on the protection of personal data (Journal of Laws 2018. 1000), the Seller informs that the Administrator of the Buyer’s personal data is: EXFLO Sp. z o.o., ul. Hutnicza 59, 81-061 Gdynia, NIP 588-239-42-96 (hereinafter “Exflo”). In matters related to the protection of personal data, contact with the Administrator is possible via e-mail at:
  2. The scope of personal data processed by the Seller, in principle, includes only the data necessary to establish and support cooperation with the Buyer (e.g. names, surnames, names of positions held, e-mail addresses, telephone numbers of contact persons, and also NIP and REGON numbers, bank account numbers, business addresses)
  3. Personal data is obtained by the Seller directly from the data subjects; i.e. from the Buyer or from publicly available sources, such as CEIDG or KRS registers.
  4. The Seller adheres to the principle of collecting and processing only such personal data that is necessary to achieve the purposes for which they will be processed. With new orders requiring the processing of personal data from the Buyer, the Seller will make a thorough analysis of what data he needs to process them.
  5. The Buyer’s personal data is processed in accordance with the GDPR for the purposes of: analytical purposes, e.g. to select services to the needs of Users; optimization of products and services on the basis of reported comments, Users’ interests, application technical logs;
    • in order to optimize service processes based on the course of service processes, including complaints, which is the legitimate interest of the Service Provider (the basis of Article 6 (1) (f) of the GDPR);
    • for archival (evidence) purposes to secure information in the event of a legal need to prove facts, which is the legitimate interest of the Service Provider (the basis of Article 6 (1) (f) of the GDPR);
    • in order to possibly establish, investigate or defend against claims, which is the legitimate interest of the Service Provider (the basis of Article 6 (1) (f) of the GDPR);
    • in order to test Users’ satisfaction and determine the quality of the Service Provider’s services, which is its legitimate interest (the basis of Article 6 (1) (f) of the GDPR);
    • in order to offer Users products and services directly
  6. The Seller’s authorized employees have access to the Buyer’s personal data. In addition, access, in a strictly defined scope, will be available to entities with whom the Seller cooperates in the implementation of data processing purposes. These will be entities to which the Seller orders the implementation of specific services and entrusts the processing of personal data for this purpose. For example, such recipients of the Buyer’s personal data will be, for example: IT system suppliers;
    • data hosting service providers;
    • courier or postal service providers;
    • shipping and transport companies;
    • external law firms;
    • banks;
    • customs brokerage;
    • companies providing consulting or auditing services;
    • external accounting firm;
    • debt collection and intelligence agencies;
    • entities authorized to access the Buyer’s personal data on the basis of applicable law, including courts, bailiffs, insurers, KRD;
    • state or local government bodies and offices;
    • other parties to the transaction.
  7. Personal data will be processed in connection with the implementation of a civil law contract for the period in which it is possible to pursue claims in connection with the performance of the contract, for a maximum of 5 years from the date of contract performance. In addition, the data may be stored by the Seller for the purposes of preventing abuse and fraud, for statistical and archiving purposes for a period of 10 years from the date of termination of the contract or the event causing the need for such processing. At the same time, for the sake of accountability, the Seller will store data for the period in which we are obliged to keep data or documents containing them to document the fulfillment of legal requirements, including enabling control of their fulfillment by public authorities. In the case of marketing of own products or services or providing commercial information, personal data will be processed during the validity of the binding contract or until a valid objection to such processing is raised, whichever occurs first.
  8. The Buyer has the right to request access to his personal data and to rectify, delete or limit processing; the right to object to the processing (if it is possible under the law) and the right to transfer data.
  9. If the processing of the Buyer’s personal data takes place and based on consent, the Buyer has the right to withdraw this consent at any time. However, this will not affect the lawfulness of the processing which was carried out on the basis of consent before its withdrawal.
  10. The buyer also has the right to lodge a complaint with the supervisory body – the President of the Personal Data Protection Office with its seat in Warsaw, ul. Stawki 2, 00-193 Warsaw.
  11. When establishing business relationships, providing the Seller with personal data is not a statutory requirement, but is most often necessary to start cooperation and conclude a contract. The consequence of not providing some personal data may be the inability to accept the order or sign the contract. However, sometimes the law will require you to provide us with certain personal data, e.g. for accounting or tax reasons.


The administrator uses two types of form within the Website:
  1. Contact form – allows you to send a message to the Administrator.
  2. Free consultation – it is used to contact our employee regarding a product or service of Exflo/
The data is processed by the Administrator in accordance with this Privacy Policy in order to contact the User.


  1. The Administrator uses the following technologies to observe the actions taken by the User within the Website: 1.1. Facebook conversion pixel – to manage Facebook ads and conduct re-marketing activities,
    • Built-in Google Analytics code – to analyze Website statistics. Google Analytics uses its own cookies to analyze the activities and behavior of the Website Users. These files are used to store information, e.g. from which side the User has come to the current website. They help to improve the Site.
    • Google Ads code – to manage ads in the Google search engine and conduct re-marketing activities.
    • Linked Insights code – to manage ads on LinkedIn.
    • Hotjar code – To measure and analyze website traffic.
    • Messenger – to communicate with users.
  2. In order to use the website it is necessary to have:
    • Devices with access to the Internet
    • An active electronic mailbox that receives e-mails
    • A web browser that allows you to view websites.


The Administrator is not responsible for the use of the content on the Website or for actions or omissions made on their basis.
All content on the Website is subject to the Administrator’s copyright. The administrator does not agree to copy the content of the blog in whole or in part without his express prior consent.


  1. The website may collect information automatically.
  2. Cookie files (so-called “cookies”) are IT data, in particular text files, which are stored on the Website User’s end device and are intended for the use of the Website. Cookies usually contain the name of the website they come from, the storage time on the end device and a unique number.
  3. Cookies are used for the following purposes:
    • adjusting the content of the Website pages to the User’s preferences and optimizing the use of websites; in particular, these files allow to recognize the device of the Website User and properly display the website, tailored to his individual needs
    • creating statistics that help to understand how Users use the Website, which allows improving its structure and content;
  4. The Website uses two basic types of cookies: session cookies and persistent cookies. Session cookies are temporary files that are stored on the User’s end device until logging out, leaving the website or turning off the software (web browser). Persistent cookies are stored on the User’s end device for the time specified in the cookie file parameters or until they are deleted by the User.
  5. The Website uses two basic types of cookies: session cookies and persistent cookies. Session cookies are temporary files that are stored on the User’s end device until logging out, leaving the website or turning off the software (web browser). Persistent cookies are stored on the User’s end device for the time specified in the cookie file parameters or until they are deleted by the User.
  6. The Website uses the following types of cookies: “necessary” cookies, enabling the use of services available on the Website, eg authentication cookies used for services that require authentication on the Website;
    • cookies used to ensure security, e.g. used to detect fraud in the field of authentication within the Website;
    • performance “cookies, enabling the collection of information on how to use the Website;
    • “Functional” cookies, enabling “remembering” the settings selected by the User and personalization of the User’s interface, eg in terms of the selected language or region of the User’s origin, font size, website appearance, etc .;
    • “Advertising” cookies, enabling the delivery of advertising content to Users more tailored to their interests.
  7. In many cases, the software used for browsing websites (web browser) allows cookies to be stored on the User’s end device by default. The Website Users can change their cookie settings at any time. These settings can be changed in particular in such a way as to block the automatic handling of cookies in the web browser settings or to inform about their every posting in the device of the Website User. Detailed information on the possibilities and methods of handling cookies is available in the software (web browser) settings.
  8. The administrator informs that restrictions on the use of cookies may affect some of the functionalities available on the Website’s websites.

Information about services presented on the website is valid from 09 July 2020.