Privacy Policy

Thank you for visiting our website. Your privacy and the security of your personal data are very important to us. This Privacy Policy provides clear and transparent information about how we collect, use, and protect your data. 

This Privacy Policy describes how DELICDAY Sp. z o.o. (“DelicDay”, “we”, “us”, “our”) collects, uses, stores, and protects your personal data when you visit our website, www.delicday.com (the “Website”), contact us, or interact with our brand. 

We are committed to processing personal data in a lawful, transparent, and secure manner, in accordance with the General Data Protection Regulation (GDPR) and all applicable Polish and EU data protection laws.

1. Data Controller

  • DELICDAY Sp. z o.o. 
  • Dyrekcyjna 1/142 
  • 50-528 Wroclaw, Poland 
  • VAT: PL899302052 
  • Email: hello@delicday.com 

We are the controller of your personal data. You may contact us at any time regarding privacy-related matters.

2. Definitions

For this Privacy Policy:

  • “Personal data” means any information relating to an identified or identifiable natural person.
  • “Processing” means any operation performed on personal data, such as collection, storage, use, disclosure, or deletion.
  • “Controller” means the entity determining the purposes and means of data processing, in this case, DELICDAY Sp. z o.o.
  • “Processor” means a service provider that processes data on our behalf (e.g., hosting providers, analytics tools).
  • “Website” means www.delicday.com.
  • “User” or “you” means any person accessing or interacting with our website.

3. Personal Data We Collect

We may collect and process the following categories of personal data:

  1. Data You Provide Directly

    This includes data submitted voluntarily through: 

    • Contact forms or email inquiries: 
      • Name 
      • Email address 
      • Phone number (optional) 
      • Any information contained in your message

    • Newsletter subscription (if available): 
      • Email address 
      • Marketing preferences

    We may also record the date and time you subscribed or withdrew consent.

  2. Data Collected Automatically

    When you visit our Website, we automatically collect:

    • IP address
    • Browser type and version
    • Device type (mobile, desktop, tablet)
    • Operating system
    • Date and time of access
    • Time spent on pages
    • Pages viewed and navigation paths
    • Referrer URL
    • Click and interaction data
    • Cookies and similar tracking technologies (see Cookie Policy).

    This data is used to operate and secure the website and to analyze performance.

  3. Data From Third Parties

    We may receive limited information from: 

    • Analytics providers (e.g., Google Analytics) 
    • Newsletter service providers 
    • Hosting and security tools

    These services do not give us access to your full identity unless you provide it directly.

4. Purposes of processing

We process personal data for the following purposes:

  1. Communication and Customer Support: To respond to messages, inquiries, or business correspondence.
  2. Website Functionality: To ensure proper operation, display, security, and stability of the Website.
  3. Analytics and Performance Monitoring: To understand how users interact with the Website and improve user experience.
  4. Marketing (With Consent): If you sign up for the newsletter, we may send you promotional information about our  brand, products, content, or events.
  5. Compliance and Protection: To comply with legal obligations and defend against potential legal claims.

5. Legal basis for processing

We process data on the following legal bases: 

  • Consent – Art. 6(1)(a) GDPR (e.g., newsletter, analytics cookies, marketing cookies)
  • Legitimate Interests – Art. 6(1)(f) GDPR (e.g., site functionality, security, analytics, replying to inquiries)
  • Legal Obligation – Art. 6(1)(c) GDPR (e.g., compliance with applicable regulations, record-keeping)

6. Cookies and tracking technologies

Our Website uses cookies to ensure functionality, analyze performance, and deliver personalized content. 

Details are described in our Cookie Policy

You may manage cookie preferences via your browser or cookie banner.

7. Disclosure of personal data

We may share your data with trusted third parties (“processors”), including: 

  • Website hosting providers 
  • Analytics providers (e.g., Google Analytics) 
  • Email marketing tools 
  • Security and monitoring tools 
  • IT service providers

Processors act only according to our instructions and are contractually bound to maintain confidentiality and security. 

We do not sell personal data.

8. International transfers

Some processors may be located outside the EEA. 

In such cases, we ensure that adequate safeguards are implemented, such as: 

  • Standard Contractual Clauses (SCCs) 
  • EU-U.S. Data Privacy Framework where applicable
  • GDPR-compliant data protection agreements

9. Data retention

We retain your data only for as long as necessary: 

  • Contact inquiries: up to 24 months 
  • Newsletter data: until you unsubscribe 
  • Analytics and cookie data: according to cookie settings and browser configuration
  • Security logs: up to 12 months 

Once data is no longer required, it is securely deleted or anonymized.

10. Your rights

Under GDPR, you have the following rights: 

  • Right of access – obtain a copy of your data 
  • Right to rectification – correct inaccurate information 
  • Right to erasure – request deletion of your data 
  • Right to restrict processing 
  • Right to object – e.g., to profiling or legitimate interests 
  • Right to data portability 
  • Right to withdraw consent at any time 
  • Right to lodge a complaint with the Polish Data Protection Authority (UODO): https://uodo.gov.pl/

To exercise your rights, email us: hello@delicday.com

We may require proof of identity before processing certain requests.

11. Data security

We use appropriate technical and organizational measures to protect data, including:

  • SSL encryption
  • Secure servers and hosting 
  • Access control and authentication 
  • Monitoring of security events 
  • Regular updates and patches 
  • Data minimization and pseudonymization where possible 

No system is entirely secure, but we take all reasonable steps to reduce risks.

12. Children’s privacy

Our Website is not intended for individuals under 16 years of age. We do not knowingly collect personal data from children. 

If you believe a child has provided us with data, contact us so we can delete it.

13. Links to other websites

Our Website may contain links to external websites. 

We are not responsible for their privacy practices or content. 

We encourage you to read their privacy policies separately.

14. Changes to this Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements, including improvements to our Website.

The current version will always be available at www.delicday.com/privacy-policy.

15. Contact

For any questions related to this Privacy Policy or your personal data, contact: