Cookies and Privacy policy
Dear Clients,

We cordially inform you that IPSO FINANSE Spółka z ograniczoną odpowiedzialnością (hereinafter referred to as “the Controller”), processes information from public and publicly available sources (including the Internet) and from its own filing systems. This information may include data which, pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as “the GDPR”), is personal data.

Therefore, in accordance with the applicable provisions on the protection of personal data, the Controller is obliged to provide the data subjects with the information provided for in Articles 13 or 14 of the GDPR. The Controller, regardless of the fulfilment of the information obligation at the time of each data collection, therefore presents this Privacy Policy taking into account the main aspects related to the processing of the personal data of its Clients.

Detailed information on how to use cookies can be found in the Cookie-Policy section.

The Controller reserves the right to introduce changes to the Privacy Policy. Every Controller’s Client and user of the websites and services offered by it is bound by the current Privacy Policy.

What is personal data, and what is the processing of personal data?

According to the GDPR regulations, “personal data” means any information about an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

However, the processing of personal data should, in fact, be understood as any operation which is performed on personal data, whether or not by automated means. Examples of such operations include collection, storage, recording, structuring, alteration, consultation, use, making available, alignment or combination, restriction, erasure or destruction.

Information on the Data Controller

The Controller of your personal data, in accordance with the GDPR, is IPSO FINANSE Spółka z ograniczoną odpowiedzialnością with its registered office in Warsaw at ul. Łomiańskiej 5A, 01-685 Warsaw, entered into the Register of Entrepreneurs kept by the District Court for the Capital City of Warsaw, 13th Commercial Division under KRS number: 0000418221, NIP (Tax-Identification No.) 1182084309, REGON (National Business Registry No.) 146095556.

The Controller can be contacted at +48 22 833 07 10, or at the e-mail address: or at the correspondence address: ul. Łomiańska 5A, 01685 Warsaw. 

The purposes of personal data processing

Your personal data is or may be processed by the Controller for the following purposes:

  1. to provide legal assistance, in particular to take steps prior to entering into a contract, and to enter into and perform a contract in respect of same (in accordance with Article 6(1)(b) of the GDPR);
  2. to handle any complaints related to services provided (in accordance with Article 6(1)(b) and (f) of the GDPR);
  3. to answer any questions asked, in particular by e-mail (in accordance with Article 6(1)(b) of the GDPR);
  4. to establish written, telephone, or electronic contact, to conduct correspondence and communication, to establish identity, in particular in a situation where the data subject is a party to the proceedings or is an employee/associate of the Client or the Contractor of the Law Firm (in accordance with Article 6(1)(f) of the GDPR);
  5. to provide the Law Firm with legal protection, in particular for the purpose of pursuing or defending against claims (pursuant to Article 6(1)(f) of the GDPR),
  6. to make it possible to take part in the recruitment process; the legal basis for the processing is consent (Article 6(1)(a) of the GDPR).

Your personal data may also be processed for other purposes, in which case you will be informed in accordance with the information obligation to which the Controller is subject (Articles 13 and 14 of the GDPR).

Data recipients

Your personal data may be transferred to the following recipients

  1. the Controller’s authorised employees;
  2. entities processing personal data on behalf of the Controller: affiliated companies, IT-service providers, banks, entities providing postal and courier services, sole proprietors who have a permanent contract of mandate with the Controller.

Your personal data will not be transferred outside the European Economic Area.

The period of personal-data processing
Your personal data will be processed for as long as there is a purpose for its processing, as well as for the period which results from other applicable law, in particular:

  1. at least for the time necessary for the performance of the concluded contract, the statute of limitations on claims arising from it, and the period of storage of the related settlement documents (if such a contract were concluded);
  2. for as long as there is a legitimate interest of the Controller;
  3. with regard to personal data processed on the basis of consent, for the duration of the consent, until its withdrawal.
The rights in connection with the processing of data by the Controller
You have the right to require the Controller to access your personal data, to rectify, transfer, delete it, or limit its processing, and to object to its processing.

To the extent that processing takes place on the basis of consent, you may at any time, without giving reasons, withdraw your consent in any form, in particular by sending an e-mail to the data Controller. Withdrawing the consent will not affect the lawfulness of the processing which was carried out on the basis of the expressed consent before its withdrawal.

You have the right to lodge a complaint with the President of the Personal Data Protection Office.

Providing personal data is voluntary; however it is required in order to enter into and perform a contract, and to take part in the recruitment process.

The Controller does not make decisions by automated means, in particular in respect of profiling.


This Policy concerns cookies, and relates to the ways of using them on the websites owned by the Controller, i.e. on the Website

What are cookies?
Cookies are understood to mean IT data, in particular text files stored in the Users’ terminal devices intended for the use of websites. These files make it possible to recognise the Users’ device and accordingly display a website tailored to their individual preferences. Cookies usually contain the name of the website from which they originate, the duration of storage on the terminal device, and a unique number..

Cookies used on the Website do not allow the identification of natural persons, but, due to the Controller’s care for the protection of personal data of its Clients, appropriate protection measures are applied to them. Saving cookies in the browser’s memory does not adversely affect the User’s software or hardware. A cookie can only be used to read the information it contains on the server from which it originates.

What do we use cookies for?
Cookies are used to adapt website content to the User’s preferences and to optimise the use of websites. They are also used to create anonymous, aggregated statistics, which help us understand how Users use our websites. This makes it possible to improve the structure of websites and their content, while at the same time excluding the personal identification of the User.

The Controller uses cookies and other similar technologies for the following purposes:

  1. the recognition of Users’ devices and the appropriate display of a website adapted to their individual needs;
  2. the creation of statistics which help us understand how Users utilise websites and applications to improve their structure and content.

Merely storing cookies or accessing them does not cause any configuration changes in the User’s device.

Cookies sent via the website may also be used by partners cooperating with the operator of the website, i.e. Google Ireland Limited within the Google Analytics service.

What cookies do we use and how long are they stored?
Ciasteczka sesji – Session cookies – to keep the login status on the website and to maintain the session. These cookies operate during your visit to our website and are then automatically deleted.

Ciasteczka trwałe – Persistent Cookies – after your visit to our website, these will remain on your computer with stored information, e.g. about your configured computer set, and will reset the settings during your next visit, making it easier for you to use our website. These files are stored for a maximum of 2 years.

Deletion of cookies
By default, the software used for browsing websites allows cookies to be placed on the terminal device. These settings can be changed in such a way as to block the automatic use of cookies in the settings of the browser or to report on each time they are sent to the User’s device. Detailed information about the possibilities and methods of using cookies are available in the settings of the software (web browser).

Restrictions on the use of cookies can affect some of the functionalities available on the website.

How can you change the browser settings to manage cookies or to block them completely?