Privacy Policy
Last updated: 21 June 2026
This Privacy Policy explains how NEXTCENTURYIT Sp. z o.o. processes personal data in connection with this website, in accordance with Regulation (EU) 2016/679 (the General Data Protection Regulation, “GDPR”).
1. Data controller
The controller of your personal data is NEXTCENTURYIT Sp. z o.o., Aleja Wojska Polskiego 22, 80-277 Gdańsk, Poland, registered at the District Court Gdańsk-Północ in Gdańsk, 7th Commercial Division of the National Court Register, KRS 0001246129, NIP 5842885929, REGON 544958928, share capital 75,000 PLN. You can contact us at connect@nextcenturyit.pl in any data-protection matter.
2. What data we process and why
| Context | Data | Purpose | Legal basis (GDPR) |
|---|---|---|---|
| Contacting us (email / enquiry) | Name, email address, message content and anything you choose to provide | To respond to your enquiry and take steps before entering into a contract | Art. 6(1)(b) and Art. 6(1)(f) — our legitimate interest in answering enquiries |
| Providing our services | Contact and contractual data | Performance of a contract for IT services | Art. 6(1)(b) |
| Website operation & security | Server logs (IP address, browser, time of request) | To deliver the site securely and prevent abuse | Art. 6(1)(f) — legitimate interest |
| Optional analytics cookies | Usage statistics | To understand and improve how the site is used | Art. 6(1)(a) — your consent |
3. Recipients
We may share data with trusted processors acting on our behalf, such as our hosting/IT infrastructure provider and, where you consent, analytics providers. They process data only on our instructions under data-processing agreements.
4. International transfers
We aim to keep data within the European Economic Area. Where a provider transfers data outside the EEA, we rely on appropriate safeguards (e.g. Standard Contractual Clauses).
5. Retention
We keep correspondence for as long as needed to handle your matter and for a reasonable follow-up period; contractual data for the duration of the contract and as required by law (e.g. tax and accounting obligations); analytics data for the period set for the relevant cookies (see our Cookie Policy).
6. Your rights
Under the GDPR you have the right to: access your data; rectification; erasure; restriction of processing; data portability; and to object to processing based on legitimate interests. Where processing is based on consent, you may withdraw it at any time without affecting prior processing. To exercise any right, contact us at connect@nextcenturyit.pl.
You also have the right to lodge a complaint with the supervisory authority — in Poland, the President of the Personal Data Protection Office (Prezes Urzędu Ochrony Danych Osobowych, UODO), ul. Stawki 2, 00-193 Warsaw.
7. Automated decision-making
We do not make decisions producing legal or similarly significant effects based solely on automated processing, and we do not carry out profiling of that kind.
8. Changes
We may update this Policy. The current version is always available on this page with the date above.
This document is a template provided for convenience and should be reviewed and adapted by qualified legal counsel before publication.