top of page

Privacy and Cookie Policy
iCreaLab LTD

1. The privacy and cookie policy outlines the rules for collecting and processing personal data applicable on the website - hereinafter referred to as the service.
2. The administrator of your personal data, meaning the entity deciding on the purposes and means of processing, is: iCreaLab LTD, hereinafter referred to as the Administrator.
3. For matters related to the processing of personal data, you can also contact us via email at:
4. If you do not agree with the Privacy and Cookie Policy, please cease using the Service and the products it offers, including the services of the Administrator's business partners.
5. Personal data placed in the Service database by Service Users are collected, stored, processed, and secured by the Administrator in accordance with applicable legal provisions, especially in compliance with the personal data protection act and the GDPR regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC).
6. Providing any personal data is voluntary but necessary for the Administrator to properly perform services. At any time, the customer has the right to access the content of their data and correct it.

Purpose of processing:
Legal basis and data retention period:
Legitimate interest (Art. 6(1)(f) of the GDPR), if applicable:

Actions aimed at concluding and performing a contract with a customer or contractor.
Art. 6(1)(b) (concerning customers); Art. 6(1)(f) GDPR (concerning persons cooperating with us on behalf of a customer/contractor).
The need to contact employees/cooperators of customers and contractors in relation to actions taken to conclude or perform a contract.

Handling complaints, requests, and claims. Art. 6(1)(b, c, and f) GDPR For the duration of the contract or until the warranty expires or claims are settled.
The need to contact employees/cooperators of customers in relation to handling complaints, requests, and claims.

Determining, pursuing, and defending claims. Art. 6(1)(f) GDPR For the period until the expiry of the limitation periods for claims arising from the contract – in accordance with applicable legal provisions. Processing data of customers or contractors and their employees/cooperators in relation to determining, pursuing, and defending claims.

Conducting settlements, accounting, and financial reporting.
Art. 6(1)(c) GDPR For the period until the obligations concerning data retention, arising from legal provisions, especially the retention of accounting documents (in principle for 5 years after the year in which the legal event that required issuing the accounting document occurred), expire.

Conducting statistics Art. 6(1)(f) GDPR For the duration of another operation of processing indicated in this table. We do not store personal data solely for statistical purposes. Improving the conducted activities thanks to conclusions drawn based on statistical actions. Conducting marketing activities (including the use of electronic communication means).

Art. 6(1)(f) GDPR In the case of marketing using a phone number or email address, the administrator will obtain consent for the communication channel in accordance with the act on providing services by electronic means or the Telecommunications Law act. Until the objection is made, which is showing us in any way that you do not want to stay in contact with us or receive information about our actions, or until the expiration of claims.

Data processing within the Administrator's profile on the social networking site Facebook. Art. 6(1)(f) GDPR Data is co-administered by the Administrator and the Facebook portal. Data will be processed until an objection against data processing is made.

Conducting current correspondence using tools provided by the Facebook portal, including the Messenger communicator, and conducting other marketing activities.

Processing of cookies. Art. 6(1)(f) GDPR Data will be processed for the periods indicated in the Cookie Policy below, or until an objection against data processing is made. An objection can only be made by changing the end-user's browser settings, which will prevent the collection of information using cookies.

Adapting website content to users' needs, including for marketing purposes, optimizing the use of internet services. defense, pursuit, or determination of claims related to the contract, Art. 6(1)(f) GDPR, data will be processed until the expiration of any claims of the contract parties

Appearance in any disputes between the Client and the Administrator, participation in court, administrative, and economic disputes.

Data recipients

In connection with the conducted activity, the Administrator will disclose your personal data to the following entities:
1. state authorities or other entities authorized under the law,
2. billing system provider
3. law firm, including lawyers and legal advisors, cooperating with the Administrator in consulting services,

 legal service,
4. hosting provider
5. e-learning platform provider containing CRM systems, mailing system.
6. entities supporting us in our conducted activity on our behalf, in particular: providers of external IT systems supporting our activity, including Microsoft, entities auditing our activity, entity providing accounting services or entities cooperating with the Administrator within marketing campaigns, provided such entities will process data based on an agreement with the Administrator and solely in accordance with our instructions,
7. banks in case of the necessity to conduct settlements,

Rights regarding processed data and the voluntariness of their provision

Each person whose data is processed by the Administrator has the right to:
1. access their data and receive a copy of it,
2. rectify (correct) their data,
3. delete their data,
4. limit the processing of their data,
5. transfer their data - if the legal basis for their processing is consent (Art. 6(1)(a) or Art. 9(2)(a) of the GDPR) or a contract (Art. 6(1)(b) of the GDPR),
6. object to the processing of their personal data - if the legal basis for their processing is a legitimate interest (Art. 6(1)(f) of the GDPR).
More information on the rights of data subjects is contained in Articles 12–23 of the GDPR.

The collection and processing of personal data in the Service are limited exclusively to data necessary for the realization of services in the Service. Personal data collected by the Administrator serve the fulfillment of obligations towards Service Users.
The Service Administrator is not responsible for the possible registration in the Service of minors or the actions taken by them. The legal responsibility for such actions rests solely on the legal guardians of the minor.

Provision of personal data

The provision of personal data is voluntary.
The provision of personal data takes place during registration in the Service.
The provision of specific data is necessary for you to fully utilize the services provided by the Administrator within the Service. This means that if you want to use the services offered by us, you must provide your personal data.
At any time, you can resign from using any service provided in the Service.
In case you express the will that you do not want to leave your personal data, you have the right to delete them and not use the Service.
We ask you not to provide information of special categories of personal data through the Service (such as information about race or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, information concerning physical or mental health, genetic data, biometric data, information about sexual life or sexual orientation, and criminal history). In case of providing such information for any reason, it will mean explicit consent to collect and use such information in the manner specified in this document or specified in the place where such information was disclosed.

Transfer of data to third countries

Personal data will not be transferred outside the European Economic Area (EEA) as a rule. However, considering the provision of services by our subcontractors in supporting IT services and IT infrastructure, the Administrator may commission the performance of specific IT tasks or activities to recognized subcontractors operating outside the EEA, which may involve transferring your data outside the EEA area. In accordance with the European Commission's decision, recipient countries outside the EEA ensure an adequate level of personal data protection consistent with EEA standards. In the case of recipients in the territory of countries not covered by the European Commission's decision, to ensure an adequate level of this protection, the administrator concludes agreements with data recipients, which are based on standard contractual clauses issued by the European Commission in accordance with Art. 46(2)(c) of the GDPR. A copy of the standard contractual clauses can be obtained from the administrator - his contact details are provided above. The method of securing your data applied by the administrator is consistent with the principles provided in Chapter V of the GDPR. You can request further information about the applied safeguards, obtain a copy of these safeguards, and learn where they are made available.

Automated processing of personal data

The information we collect in connection with the use of the Service may be processed in an automated manner (including profiling), however, this will not have any legal consequences for the individual or similarly significantly affect their situation. We pay special attention to profiling and indicate that:
1. for the purposes of profiling, we do not process any sensitive data;
2. for the purposes of profiling, we usually process data that has previously been anonymized or such data that has been aggregated by us;
3. if we cannot achieve the goal otherwise than by profiling personal data not anonymized or aggregated, we use typical data: email address and IP or cookies
4. we profile to analyze or predict personal preferences and interests of persons using our Services or products or services and to adjust the content found in our Services or products to these preferences
5. we profile for marketing purposes, i.e., adjusting the marketing offer to the abovementioned preferences.
Based on the obtained personal data, collective, general statistical compilations may be prepared

, disclosed to third parties.


The Service uses the mechanism of so-called cookies (cookies).

What are cookies?

Cookies (so-called "cookies") are computer data, in particular text files, that are stored in the Service User's end device and are intended for the use of the Service's websites. Cookies usually contain the name of the website from which they originate, the time they are stored on the end device, and a unique number.
We use cookies based on your consent, except when cookies are necessary for the proper provision of electronic services to you.

How do we use cookies?

Information collected based on cookies is used to properly optimize the operation of the website, provide services to you, and for statistical and advertising purposes.
The cookie mechanism is responsible for:
1. creating statistics that help understand how Service Users use websites, which allows improving their structure and content,
2. maintaining the Service User's session, thanks to which the Service User does not have to re-enter the login and password on each subpage of the Service.
3. adapting the content of the Service's websites to the Service User's preferences and optimizing the use of websites. In particular, these files allow recognizing the Service User's device and appropriately displaying the website, tailored to their individual needs.
Within the Service, two basic types of cookies may be used: "session" (session cookies) and "persistent" (persistent cookies). "Session" cookies are temporary files that are stored in the Service User's end device until logging out, leaving the website, or disabling the software (web browser). "Persistent" cookies are stored in the Service User's end device for the time specified in the cookies' parameters or until they are deleted by the User.
The following types of cookies are used in the Service:
1. "necessary" cookies, enabling the use of services available within the Service, e.g., authentication cookies used for services that require authentication within the Service, and necessary to ensure security (e.g., used to detect fraud in the area of authentication within the Service);
2. "functional" cookies, enabling "remembering" the settings selected by the visitor and personalizing the interface, e.g., in terms of the selected language or region from which the person logged in on the page, font size, website appearance, etc.;
3. "performance" cookies, enabling the collection of information on how the Service's websites are used.
4. "advertising" cookies, enabling the delivery of advertising content to Service visitors more tailored to their interests.
In many cases, the software used to browse websites (web browser) by default allows storing cookies in the Service User's end device.
External providers, including Google, use cookies to display ads based on the user's previous visits to this website. Service Users may opt-out of Google's cookie by visiting Google's ad opt-out page -
Service Users may change cookie settings at any time. These settings can be changed in such a way as to block the automatic handling of cookies in the web browser's settings or inform about their placement in the Service User's device each time.
Detailed information about the possibilities and ways of handling cookies is available in the software settings (web browser).
The Administrator informs that restrictions on the use of cookies may affect some functionalities available on the Service's websites.

What are my privacy options?

The user can delete cookies at any time using the features available in the web browser they are using.
Most browsers automatically accept cookies, but you can change your browser settings to reject cookies. To do this, you should consult the technical support articles for the given browser.

bottom of page