DOC SERWIS

Company Documents

Privacy Policy

We value your privacy and explain what data we collect, how we use it and how we protect it.

Last updated: January 31, 2026Doc Serwis

1. Introduction

This privacy policy describes the rules for processing personal data of clients and visitors to the Doc Serwis Pro website.

By using the website or submitting a request, you agree to the data processing terms set out below.

Who this policy applies to:

  • Visitors to our website
  • Clients who book or use our services
  • Anyone who contacts us via the website, phone or in person

Legal framework:

  • Regulation (EU) 2016/679 (GDPR)
  • Polish data protection law
  • Other applicable EU and Polish legislation

We process your data only where we have a legal basis and in line with the purposes described below.

2. Data controller

The controller of your personal data is:

Name

Doc Serwis Pro

Address

Łopuszańska 36, 02-220 Warszawa, Poland

Phone

+48 504 778 755

Email

doc.serwis@gmail.com

As the controller, we decide the purposes and means of processing your data.

For questions about data protection or to exercise your rights, contact us using the details above.

3. Principles

  • Lawfulness, fairness and transparency
  • Purpose limitation — we collect data only for specified purposes
  • Data minimisation — we collect only what is necessary
  • Accuracy — we keep data up to date
  • Storage limitation — we retain data only as long as needed
  • Integrity and confidentiality — we protect data with appropriate measures

4. Sources of data

Data you provide

  • Contact form: name, phone, email, message
  • Booking or service request: contact details, car information, service description
  • Phone or in-person: the same categories as above

Data collected automatically

  • Technical data: IP address, browser type, device type
  • Cookies and similar technologies (see the Cookies section)

5. Categories of data

We process the following categories of personal data:

Contact data

Examples: Name, phone, email

Context: Provided when you contact us, book a service or request a quote.

Service-related data

Examples: Car details, service history, repair notes

Context: Needed to perform the service and honour warranty obligations.

Technical data

Examples: IP address, browser, device

Context: Collected when you use the website; used for security and analytics (where consent is given).

6. Purposes and legal basis

We process your data for the following purposes:

Handling requests and bookings

Legal basis: Contract (Art. 6(1)(b) GDPR) or your consent

Data used: Contact data, service-related data

Retention: For the duration of the request/contract and any legal retention period.

Service provision and warranty

Legal basis: Contract (Art. 6(1)(b) GDPR)

Data used: Contact data, service-related data

Retention: For the duration of the contract and warranty, plus legal retention.

Website operation and analytics

Legal basis: Legitimate interest or consent (Art. 6(1)(f) or (a) GDPR)

Data used: Technical data, cookies

Retention: As set out in the Cookies section; session data as needed.

Marketing (if you consent)

Legal basis: Consent (Art. 6(1)(a) GDPR)

Data used: Contact data, preferences

Retention: Until you withdraw consent or object.

7. Automated decision-making

We do not use your data for automated decision-making or profiling that has legal or similarly significant effects.

8. Recipients of data

We may share your data with:

Service partners

  • Parts suppliers (where necessary for your repair)
  • IT and hosting providers (for website and systems)

Authorities

  • Where required by law (e.g. tax, law enforcement)

We use data processing agreements where required so that processors act only on our instructions and protect your data.

9. Transfers outside the EEA

We mainly process data within the European Economic Area (EEA).

If we use services that transfer data outside the EEA (e.g. some cloud or analytics providers), we ensure appropriate safeguards are in place.

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions where the country is recognised as providing adequate protection
  • Other mechanisms permitted under GDPR

10. Your rights

Under GDPR you have the right to:

Access

Request a copy of your personal data and information about how we process it.

Rectification

Request correction of inaccurate or incomplete data.

Erasure

Request deletion of your data where there is no overriding reason to keep it.

Restriction

Request that we limit processing in certain situations.

Data portability

Receive your data in a structured, machine-readable format where the legal basis is contract or consent.

Object

Object to processing based on legitimate interests or for direct marketing.

Withdraw consent

Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal.

You also have the right to lodge a complaint with a supervisory authority (in Poland: Prezes Urzędu Ochrony Danych Osobowych).

11. Cookies and similar technologies

We use cookies and similar technologies on our website for session management, preferences and, where you consent, analytics and marketing.

Details of the cookies we use, their purposes and how to manage them are set out in our Cookie Policy.

  • Strictly necessary — required for the website to function
  • Functional — e.g. language or region preferences
  • Analytics — anonymous usage statistics (with consent)
  • Marketing — e.g. retargeting (with consent)

12. Security

We apply technical and organisational measures to protect your data.

Technical measures

  • Secure connections (HTTPS)
  • Access controls and authentication
  • Regular updates and security monitoring

Organisational measures

  • Limited access to personal data on a need-to-know basis
  • Confidentiality obligations for staff and processors
  • Procedures for handling incidents and breaches

In the event of a data breach that poses a risk to your rights, we will notify the supervisory authority and, where required, you.

13. Liability

We are responsible for the processing we carry out as controller. Where we use processors, we choose them carefully and bind them by contract to protect your data.

14. Changes to this policy

We may update this policy from time to time. Changes may be made for example:

  • To reflect changes in our practices or services
  • To comply with new legal or regulatory requirements
  • To improve clarity

If changes are significant, we will inform you where possible (e.g. by notice on the website or by email where we have your contact details).

The current version is always available on this page.

Continued use of the website or our services after changes are published constitutes acceptance of the updated policy, where applicable.