Privacy Policy

This Privacy Policy outlines the rules regarding the processing of your personal data and the use of cookies.

1. General Information

This policy applies to the website operating under the URL: oreihealth.com

The operator of the website and the Data Controller is:
Orei Health sp. z o. o., ul. Wojska Polskiego 9, 39-300 Mielec, Poland

Contact email address: contact@oreihealth.com

The Operator is the Controller of your personal data provided voluntarily through the website.

The website uses personal data for the following purposes:

  • Handling inquiries via contact forms
  • Delivering requested services
  • Presenting offers or information

The website collects information about users and their behavior in the following ways:

  • Through data voluntarily entered in forms, which are stored in the Operator’s systems
  • By storing cookies (so-called “cookies”) on end-user devices

2. Selected Data Protection Methods Used by the Operator

  • Areas where personal data is entered and transmitted are protected with SSL encryption. This ensures that the data is encrypted on the user’s device and can only be read by the target server.
  • The Operator performs regular data backups for protection.
  • The Operator regularly updates all software used to process personal data, especially development components.

3. Hosting

The website is technically maintained on servers provided by: cyberFolks.pl

The hosting provider maintains server-level logs for technical reliability, which may include:

  • Requested resources (URLs of visited pages/files)
  • Time of the request and response
  • Client device name (as per HTTP protocol)
  • Information about errors during HTTP transactions
  • Referrer URL (previous page)
  • Browser information
  • IP address
  • Diagnostics related to self-service orders
  • Email-related logs (incoming and outgoing messages)

4. Your Rights and Additional Information on Data Usage

In certain situations, the Administrator may share your personal data with other entities if required to fulfill contractual obligations or legal duties. This includes:

  • Hosting providers (data processing on behalf of the Administrator)
  • Marketing service providers

Personal data will be stored no longer than necessary, as defined by relevant regulations (e.g., accounting laws). For marketing data, it will not be kept longer than 3 years.

You have the right to request from the Administrator:

  • Access to your personal data
  • Correction of your data
  • Deletion of your data
  • Limitation of data processing
  • Data portability

You may object to the processing of your data for legitimate interests of the Administrator, including profiling. However, your objection may be overridden by compelling legal grounds (e.g., legal claims).

You have the right to lodge a complaint with the President of the Personal Data Protection Office (PUODO), ul. Stawki 2, 00-193 Warsaw, Poland.

Providing personal data is voluntary but necessary to use the website’s services.

Automated decision-making, including profiling, may be applied in providing services and for direct marketing purposes.

Personal data is not transferred outside the European Union.

5. Information in Forms

The website collects information voluntarily provided by users, including personal data (if provided).

The site may store information about connection parameters (timestamp, IP address).

In some cases, the site may store information linking form data to the user’s email address. The email may appear in the URL of the page containing the form.

Form data is processed for the purposes stated in the form (e.g., support requests, business inquiries, service registration). Each form clearly states its intended purpose.

6. Administrator Logs

User behavior on the website may be logged. These logs are used for site administration purposes.

7. Important Marketing Techniques

  • The Operator uses Google Analytics (Google Inc., USA) to analyze website traffic. Only anonymized data is shared with Google. Users can manage their cookie preferences here:
    https://www.google.com/ads/preferences/
  • Remarketing techniques are used to tailor advertising content to user behavior. No personal data is transferred to advertising providers.
  • Facebook Pixel is used to inform Facebook (Facebook Inc., USA) that a logged-in user visited the site. No personal data is shared by the Operator.
  • The website uses heatmaps and session recording tools to study user behavior. These are anonymized before being shared with service providers and do not include passwords or personal information.

8. Cookie Information

The website uses cookies.

Cookies are IT data, particularly text files, stored on the User’s end device to support the use of the website. They typically include:

  • Website name
  • Duration of storage
  • Unique identifier

Cookies are placed and accessed by the Website Operator.