Privacy Policy

Last updated: 9 czerwca 2026

At Kolabik, we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information in accordance with GDPR (General Data Protection Regulation).

1. Data Controller

The controller of your personal data is Konrad Szczepański operating as Kolabik (sole proprietorship), Tax ID (NIP): 7394006659, REGON: 529807486, registered address: ul. Wincentego Pstrowskiego 14D/17, 10-602 Olsztyn, Poland. Contact: contact@kolabik.com

2. Data We Collect

We collect the following categories of personal data:

Registration data

  • First and last name
  • Email address
  • Username
  • Password (stored in encrypted form)

Billing data

  • Company name or personal name
  • Tax ID (for companies)
  • Address (street, city, postal code, country)

Usage data

  • Data entered into calculators (amounts, dates, rates)
  • System and activity logs
  • Technical data (IP address, browser type, operating system)

Note: Data entered into calculators is not saved on our servers. It is used exclusively in real-time to perform calculations (provide the service) and is not archived.

Payment data

  • Transaction history
  • Invoice data
  • Payment status

3. Legal Basis for Processing

We process your data based on:

  • Contract performance - providing calculator services and financial tools (Art. 6(1)(b) GDPR)
  • Legal obligation - issuing invoices, tax settlements (Art. 6(1)(c) GDPR)
  • Legitimate interest - usage analysis, service improvement, security (Art. 6(1)(f) GDPR)
  • Consent - marketing, newsletter (Art. 6(1)(a) GDPR) - if provided

4. Purpose of Data Processing

We use your data to:

  • Provide financial calculator services
  • Manage user accounts
  • Process payments and issue invoices
  • Fulfill tax and accounting obligations
  • Ensure security and prevent abuse
  • Improve our services and user experience
  • Communicate about services and technical support

5. Data Sharing

We may share your data with:

  • Infakt - invoicing system (processing invoice data)
  • Payment service providers - for payment processing
  • Hosting and IT infrastructure providers - data storage
  • Government authorities - when required by law

All our subprocessors are obligated to protect data in accordance with GDPR.

6. Data Retention Period

We retain your data for:

  • Account data - until account deletion or consent withdrawal
  • Invoice data - 5 years from the end of the tax year (legal obligation)
  • Calculation data - until account deletion or upon request
  • System logs - up to 12 months

7. Data Security

We implement appropriate technical and organizational measures:

  • Data encryption in transit (SSL/TLS) and at rest
  • Access control and multi-factor authentication
  • Regular backups
  • Security monitoring and threat detection
  • Staff training on data protection

8. Your Rights

Under GDPR, you have the following rights:

  • Right of access - you can obtain a copy of your data
  • Right to rectification - you can correct inaccurate data
  • Right to erasure - you can request data deletion ('right to be forgotten')
  • Right to restriction of processing - you can limit how data is used
  • Right to data portability - you can receive data in a transferable format
  • Right to object - you can object to processing based on legitimate interest
  • Right to withdraw consent - at any time, if processing is based on consent

To exercise your rights, contact: contact@kolabik.com

You also have the right to lodge a complaint with the supervisory authority - the President of the Personal Data Protection Office (PUODO).

9. Cookies

Our website uses cookies for:

  • Ensuring basic functionality (user sessions)
  • Remembering preferences (language, settings)
  • Analyzing traffic and site usage
  • Improving security

You can control cookies through your browser settings. Disabling cookies may affect site functionality.

10. Third-Party Services

We use the following third-party services:

  • Infakt - invoicing system (infakt.pl)
  • Cloud hosting and infrastructure
  • Analytics tools

Each of these services has its own privacy policy, which we recommend reviewing.

11. International Data Transfers

Your data is primarily processed within the European Union. In case of data transfer outside the EEA, we ensure appropriate safeguards in accordance with GDPR (e.g., standard contractual clauses).

12. Minors

Our services are directed to adults. We do not knowingly collect data from persons under 18 years of age without parental/guardian consent.

13. Changes to Privacy Policy

We may update this Privacy Policy. We will notify you of significant changes via email or visible notification on the site. The date of the last update is at the beginning of this document.

14. Contact

If you have questions about this Privacy Policy or the processing of your data, please contact:

Email: contact@kolabik.com

Address: [Kolabik company address]

Privacy Policy | Kolabik