Privacy Policy
How Voldeno sp. z o.o. processes personal data in connection with this website and your contact with us.
# 1. Introduction
This Privacy Policy explains how Voldeno sp. z o.o. ("Controller", "we", "us") processes personal data in connection with operating this website, handling enquiries, and our business activities related to Smart Home solutions.
Use of the website is voluntary. If you do not accept these rules, please do not submit personal data to us (for example through contact forms), noting that some features may then be unavailable.
This document is for information only and does not replace individual legal advice.
# 2. Data Controller
The controller of your personal data is:
Voldeno sp. z o.o.
Ogrodowa 8, Lobby B, 3p.
91-062 Łódź, Poland
Tax ID (NIP): PL7252346262
KRS: 0001123648
REGON: 52946949200000
General contact: contact@voldeno.com.
# 3. Data Protection Officer
The Controller has appointed a Data Protection Officer (DPO). You may contact the DPO on all matters relating to the processing of your personal data and the exercise of your rights:
Email: dpo@voldeno.com
# 4. Categories of Data We Process
Depending on how you interact with us, we may process in particular:
- Identity and contact data – e.g. name, company name, email address, phone number, and the content of your message or enquiry.
- Technical data – e.g. IP address, browser type, approximate location (country/region level), session or cookie identifiers, visit time and referrer, where recorded by the tools described in this policy.
We do not ask you to provide special categories of personal data (such as health or political opinions). Please do not include such information in your messages.
# 5. Purposes and Legal Bases
We process data for the purposes below, relying on the legal bases indicated (under Article 6 GDPR):
| Purpose | Legal basis (summary) | Is providing data mandatory? |
|---|---|---|
| Responding to enquiries sent via forms or email | Steps at your request prior to a contract, and/or our legitimate interests (communication with prospective customers or partners) | Voluntary; without contact details we cannot reply |
| Establishing and performing a contract, after-sales support | Performance of a contract or pre-contractual steps | Necessary to enter into and perform the contract |
| Establishing, exercising or defending legal claims | Legitimate interests of the Controller | — |
| Accounting and statutory record-keeping | Legal obligation | Required by law |
| Website traffic analysis, statistics and service stability | Legitimate interests of the Controller (aggregated analytics, IT security) | — |
Where we rely on consent for specific marketing or a newsletter, you may withdraw consent at any time without affecting the lawfulness of processing before withdrawal.
The Controller does not use automated decision-making or profiling within the meaning of Article 22 GDPR.
# 6. Recipients and Transfers Outside the EEA
We may share data with processors acting on our behalf (e.g. hosting, email, analytics or IT support providers), only as necessary and under appropriate data processing agreements.
Categories of recipients include in particular:
- server infrastructure and hosting providers,
- email and communication tool providers,
- web analytics providers (Umami – EU servers, data processed within the European Union),
- accounting and legal service providers,
- public authorities – only where required by law.
We use Umami Analytics in its cloud version with servers located in the European Union. Analytics data is not transferred outside the EEA. For any other services where a transfer outside the EEA would be necessary, we use safeguards provided for under the GDPR (e.g. Standard Contractual Clauses approved by the European Commission).
# 7. Retention
We keep data for:
- as long as needed for the purpose for which it was collected (e.g. until an enquiry is closed),
- any period required by law (e.g. tax and accounting rules – generally 5 years from the end of the financial year),
- as long as necessary to establish, exercise or defend legal claims – typically until applicable limitation periods expire (generally up to 6 years for pecuniary claims).
After that, data are deleted or anonymised.
# 8. Your Rights
You have the right to:
- access your data and obtain a copy (Article 15 GDPR),
- rectify inaccurate or incomplete data (Article 16 GDPR),
- erasure ("right to be forgotten") where applicable (Article 17 GDPR),
- restrict processing (Article 18 GDPR),
- data portability where applicable (Article 20 GDPR),
- object to processing based on legitimate interests (Article 21 GDPR),
- withdraw consent at any time where processing is consent-based, without affecting the lawfulness of processing before withdrawal,
- lodge a complaint with a supervisory authority – in Poland, the President of the Personal Data Protection Office (uodo.gov.pl).
To exercise your rights, email dpo@voldeno.com or contact@voldeno.com.
# 9. Cookies and Analytics
Our site may use cookies and similar technologies to run the service, remember preferences and measure traffic.
Cookie categories:
| Category | Purpose | Legal basis |
|---|---|---|
| Necessary | Service operation, session security | Legitimate interests |
| Analytics | Traffic measurement and visit statistics (Umami) | Legitimate interests (aggregated data, no individual identification) |
For website analytics we use Umami Analytics (cloud version, EU servers). The tool collects aggregated statistical data (page views, approximate traffic source, device type) and does not identify individual users or use cookies for cross-session tracking.
You can control cookies in your browser settings (e.g. block or delete cookies). Restricting cookies may affect some site features.
# 10. Contact Form and Communication Channels
If you use our contact form or write to addresses such as support@voldeno.com, sales@voldeno.com or partners@voldeno.com, we process the data you provide to respond and to continue correspondence related to your enquiry.
Providing data is voluntary, but we may be unable to handle your request without a way to contact you.
# 11. Security
We apply organisational and technical measures appropriate to the risk to protect data against unauthorised access, loss or alteration. No internet transmission is completely secure.
# 12. Changes to This Policy
We may update this document when the law or our website changes. The current version will remain at this URL. For material changes we may add a notice on the site.
Last updated: 4 April 2026.