Privacy Policy
Last updated: April 24, 2026
1. Data Controller
The controller of your personal data is Linux Polska Sp. z o.o., with its registered office at Al. Jerozolimskie 100, 00-807 Warsaw, Poland, entered in the National Court Register under KRS number 0000326158, NIP (Tax ID) 7010181018, REGON 141791601 (hereinafter: "Controller" or "we").
For data protection matters, contact us at: riskbow@linuxpolska.pl.
2. Scope and Purposes of Data Processing
We process personal data only to the extent necessary for the following purposes:
| Purpose | Legal Basis | Retention Period |
|---|---|---|
| Processing demo/contact form requests | Art. 6(1)(b) and (f) GDPR | Up to 12 months after last contact |
| Providing RISKBOW platform services | Art. 6(1)(b) GDPR | Duration of contract + 5 years |
| Website analytics (anonymized) | Art. 6(1)(f) GDPR | Up to 26 months (aggregated data) |
| Direct marketing (with consent) | Art. 6(1)(a) GDPR | Until consent is withdrawn |
| Compliance with legal obligations | Art. 6(1)(c) GDPR | As required by applicable law |
3. Categories of Data Processed
- •Identification data: first name, last name, job title
- •Contact data: email address, phone number, organization name
- •Technical data: IP address, browser type, operating system, session identifiers
- •Usage data: pages visited, visit duration, traffic source
4. Data Recipients
Personal data may be shared with the following categories of recipients:
- •Hosting and IT infrastructure providers (EU/EEA)
- •Analytics tool providers (anonymized data only)
- •Entities authorized by law (supervisory authorities, courts)
We do not transfer personal data to third countries (outside the EEA) without appropriate safeguards in accordance with Chapter V of the GDPR.
5. Your Rights
Under the GDPR, you have the following rights:
Right of Access
Obtain information about the processing of your data and a copy of the data (Art. 15 GDPR).
Right to Rectification
Request correction of inaccurate or completion of incomplete data (Art. 16 GDPR).
Right to Erasure
Request deletion of data in cases specified in Art. 17 GDPR ("right to be forgotten").
Right to Restriction
Restrict processing in the situations set out in Art. 18 GDPR.
Right to Data Portability
Receive your data in a structured format and transfer it to another controller (Art. 20 GDPR).
Right to Object
Object to processing based on legitimate interest (Art. 21 GDPR).
To exercise your rights, contact us at riskbow@linuxpolska.pl. You also have the right to lodge a complaint with the President of the Personal Data Protection Office (PUODO) in Poland, or your local supervisory authority.
6. Cookies
The riskbow.io website uses cookies for the following purposes:
| Type | Purpose | Retention |
|---|---|---|
| Essential | Website functionality, language preferences | Session / up to 12 months |
| Analytics | Visit statistics, user behavior analysis | Up to 26 months |
| Functional | Remembering settings (e.g., theme, language) | Up to 12 months |
You can manage cookie settings in your browser. Disabling essential cookies may affect website functionality.
7. Data Security
We implement appropriate technical and organizational measures to protect personal data, including:
- •Encryption of data in transit (TLS 1.3)
- •Encryption of data at rest (AES-256)
- •Role-based access control (RBAC)
- •Regular security audits and penetration testing
- •Least privilege access policy
8. Changes to This Policy
The Controller reserves the right to update this Privacy Policy. We will notify you of material changes via the website or by email. The current version is always available at riskbow.io/en/privacy.html.
9. Contact
Linux Polska Sp. z o.o.
Al. Jerozolimskie 100, 00-807 Warsaw, Poland
Email: riskbow@linuxpolska.pl