NextCenturyIT

Privacy Policy

Last updated: 21 June 2026

This Privacy Policy explains how NEXTCENTURYIT Sp. z o.o. processes personal data in connection with this website, in accordance with Regulation (EU) 2016/679 (the General Data Protection Regulation, “GDPR”).

1. Data controller

The controller of your personal data is NEXTCENTURYIT Sp. z o.o., Aleja Wojska Polskiego 22, 80-277 Gdańsk, Poland, registered at the District Court Gdańsk-Północ in Gdańsk, 7th Commercial Division of the National Court Register, KRS 0001246129, NIP 5842885929, REGON 544958928, share capital 75,000 PLN. You can contact us at connect@nextcenturyit.pl in any data-protection matter.

2. What data we process and why

ContextDataPurposeLegal basis (GDPR)
Contacting us (email / enquiry)Name, email address, message content and anything you choose to provideTo respond to your enquiry and take steps before entering into a contractArt. 6(1)(b) and Art. 6(1)(f) — our legitimate interest in answering enquiries
Providing our servicesContact and contractual dataPerformance of a contract for IT servicesArt. 6(1)(b)
Website operation & securityServer logs (IP address, browser, time of request)To deliver the site securely and prevent abuseArt. 6(1)(f) — legitimate interest
Optional analytics cookiesUsage statisticsTo understand and improve how the site is usedArt. 6(1)(a) — your consent

3. Recipients

We may share data with trusted processors acting on our behalf, such as our hosting/IT infrastructure provider and, where you consent, analytics providers. They process data only on our instructions under data-processing agreements.

4. International transfers

We aim to keep data within the European Economic Area. Where a provider transfers data outside the EEA, we rely on appropriate safeguards (e.g. Standard Contractual Clauses).

5. Retention

We keep correspondence for as long as needed to handle your matter and for a reasonable follow-up period; contractual data for the duration of the contract and as required by law (e.g. tax and accounting obligations); analytics data for the period set for the relevant cookies (see our Cookie Policy).

6. Your rights

Under the GDPR you have the right to: access your data; rectification; erasure; restriction of processing; data portability; and to object to processing based on legitimate interests. Where processing is based on consent, you may withdraw it at any time without affecting prior processing. To exercise any right, contact us at connect@nextcenturyit.pl.

You also have the right to lodge a complaint with the supervisory authority — in Poland, the President of the Personal Data Protection Office (Prezes Urzędu Ochrony Danych Osobowych, UODO), ul. Stawki 2, 00-193 Warsaw.

7. Automated decision-making

We do not make decisions producing legal or similarly significant effects based solely on automated processing, and we do not carry out profiling of that kind.

8. Changes

We may update this Policy. The current version is always available on this page with the date above.

This document is a template provided for convenience and should be reviewed and adapted by qualified legal counsel before publication.