Sinton Agency Logo
Sinton Agency Logo

Legal

Privacy Policy & Cookies Policy

GDPR information clause.

Last updated: 15 May 2026

§1. General provisions

  1. This Privacy Policy and Cookies Policy (the "Policy") sets out the rules for processing personal data of Users of the website available at www.sinton.agency (the "Website") and the rules for the use of cookies on the Website.

  2. The Policy fulfils the information duty referred to in Article 13(1) and (2) of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data ("GDPR").

  3. Use of the Website does not require acceptance of this Policy - the document is informational in nature.

§2. Personal data Administrator

  1. The Administrator of your personal data is Thomas Sinton, a sole proprietor (jednoosobowa działalność gospodarcza) conducting business activity under the trade name "Sinton Design Agency Thomas Sinton", registered in the Polish Central Registration and Information on Business (CEIDG), with its registered office at Wenus 53A/23, 05-500 Józefosław, Poland, NIP: 1231573481, VAT ID: PL1231573481, REGON: 540789593, tel: +48 789 430 369, e-mail: rodo@sinton.agency (hereinafter referred to as the "Administrator").

  2. The Administrator has not appointed a Data Protection Officer.

  3. All inquiries, requests, or complaints regarding the protection of personal data should be directed to the e-mail address: rodo@sinton.agency.

§3. Purposes and legal basis of data processing

Your personal data will be processed for the following purposes:

  • handling inquiries sent via the contact form and conducting correspondence (legal basis: Article 6(1)(f) GDPR, i.e., the legitimate interest of the Administrator);

  • scheduling, managing, and conducting online consultations or meetings via the booking calendar (legal basis: Article 6(1)(b) GDPR, i.e., taking steps at the request of the data subject prior to entering into a contract);

  • sending marketing information - only if you have given your voluntary consent (legal basis: Article 6(1)(a) GDPR);

  • establishing, exercising, or defending against potential legal claims (legal basis: Article 6(1)(f) GDPR);

  • collecting client feedback and reviews submitted via the review form, in order to improve the quality of services provided (legal basis: Article 6(1)(f) GDPR, i.e., the legitimate interest of the Administrator in gathering post-cooperation feedback);

  • publishing client reviews - including the client's name, company name, and review content - on the Administrator's website, social media, and other marketing materials, only if the client has given voluntary consent via the review form (legal basis: Article 6(1)(a) GDPR).

§4. Data retention period

  1. Your personal data will be stored for the period necessary to achieve the specific purpose (e.g., answering an inquiry or conducting a meeting), and thereafter for the period required by law or until the expiration of the statute of limitations for potential claims.

  2. Data processed on the basis of consent (e.g., marketing) will be processed until the consent is withdrawn.

  3. Data collected via the client review form will be stored for a period of 3 years from the date of submission. Published testimonials will be removed promptly upon withdrawal of consent.

  4. Withdrawal of consent does not affect the lawfulness of processing carried out before its withdrawal.

§5. Data recipients and transfer outside the EEA

  1. The recipients of your personal data may be external entities supporting the Administrator, in particular: hosting and IT service providers, providers of online meeting booking tools (e.g., Cal.com), communication and calendar service providers (e.g., Google Workspace - Google Calendar, Google Meet), providers of form and data collection tools (e.g., Google Sheets), providers of project and knowledge management tools (e.g., Notion), as well as accounting or law firms.

  2. Due to the use of tools such as Google or Cal.com, your personal data may be transferred outside the European Economic Area (EEA), including to the USA.

  3. The transfer of data takes place on the basis of appropriate legal safeguards, including decisions of the European Commission ensuring an adequate level of protection (e.g., Data Privacy Framework) or standard contractual clauses.

§6. Rights of the data subjects

You have the right at any time to:

  • access your data and receive a copy of it;

  • rectify (correct) your data;

  • erase your data (the right to be forgotten) or restrict its processing;

  • transfer your data;

  • object to the processing of your data (including for direct marketing purposes);

  • withdraw consent at any time (if processing is based on consent), without affecting the lawfulness of processing carried out before its withdrawal;

  • lodge a complaint with the President of the Personal Data Protection Office (PUODO) in Poland if you consider that the processing violates the GDPR.

§7. Requirement to provide data

  1. Providing personal data is voluntary, however, failure to do so may result in the inability to send an inquiry via the contact form or book an online meeting.

  2. Providing data in the client review form is voluntary. Consent to publish the review as a testimonial is optional and does not affect the ability to submit feedback.

§8. Security of personal data

  1. The Administrator applies appropriate technical and organisational measures to protect personal data against unauthorised access, loss, modification, disclosure, or destruction, in particular:

    • encryption of connections (HTTPS);

    • limiting access to data to authorised persons only;

    • regular software updates;

    • the selection of service providers that ensure an adequate level of data protection.

§9. No sale of personal data

  1. The Administrator does not sell, rent, or trade your personal data with third parties for commercial purposes.

  2. Data is shared only with the entities listed in §5 above, to the extent necessary to achieve the stated purposes.

§10. No automated decision-making

  1. Your personal data is not subject to automated decision-making, including profiling, within the meaning of Article 22 GDPR.

§11. Minors

  1. The Website is not directed at persons under 16 years of age.

  2. The Administrator does not knowingly collect personal data from minors. If such data is provided to the Administrator inadvertently, it will be deleted promptly.

§12. Cookies

What are cookies? Cookies are small text files sent by a website and saved on the end device (computer, smartphone) that you use while browsing pages.

Consent management via the Cookie Banner. During your first visit to our website, a banner informing you about cookies is displayed. You have the option to voluntarily consent to all cookies, reject them (except for essential ones), or adjust your preferences. Changing these settings is possible at any time from our website.

List of technologies and cookies used on the website:

  • Essential cookies: Necessary for the proper functioning of the website and remembering your cookie banner preferences.

  • Google Tag Manager + Google Analytics: Used to collect anonymous website traffic statistics. Google Analytics is loaded via the Google Tag Manager container.

  • Google Search Console: A tool used to monitor the website's position in Google search results. It does not set its own cookies in the User's browser.

  • Google Ads / Meta Pixel: Used to promote the company, tailor advertisements, and measure their effectiveness.

  • Hotjar: Used to analyze user behavior on the site (e.g., heatmaps, session recordings) to improve user experience.

  • Framer Analytics: Analytics built into the Framer platform, used to measure website performance.

  • Cal.com: Necessary for the proper loading and operation of the online meeting booking calendar.

How to disable cookies in your browser? Regardless of the banner on our website, you can manage cookies directly in your browser settings. Instructions for the most popular browsers can be found below:

You can find more information about cookies on the Internet - e.g. www.ciasteczka.org or http://wszystkoociasteczkach.pl.

§13. Changes to this Privacy Policy

  1. The Administrator reserves the right to amend this Privacy Policy.

  2. Users will be informed of changes through publication of the updated version on the Website together with the date of entry into force.

  3. We recommend periodic review of the Policy's content.

In the event of any discrepancy between the Polish and English versions, the Polish version shall prevail.

Tło Sinton Agency

Trusted by

Trusted by

Trusted by