Privacy Policy

Yellow Boson

Privacy Policy

In accordance with the provisions of data protection law, including Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter “RODO”, Yellow Boson S.A. informs that the controller of your personal data is: Yellow Boson Joint Stock Company with its registered office in Warsaw, 53 Rzymowskiego Street, 01-001 Warsaw, KRS No. 0000746465, NIP 5213838356, REGON 381139441. In any matter concerning the processing of your personal data, you may contact the controller at:

Your personal data may be processed accordingly to the purpose for which they were collected on the basis of:

Article 6(1)(a) of the RODO for one or more of the specified purposes for the performance of which you have given your consent to the processing of your personal data – to the extent covered by the content of the consent, insofar as the processing of personal data is not carried out on another of the following grounds (e.g. consent to the newsletter, registration for stationary/remote events organised by Yellow Boson S.A., e.g. training courses, and the provision of certificates/certificates confirming participation in the event);

Article 6(1)(b) of the RODO for the purpose and to the extent necessary for the conclusion and performance of the contract to which the data subject is a party (applies only to cases of conclusion of a contract with Yellow Boson S.A. or taking action at the request of the data subject prior to conclusion of a contract), including in particular the provision of services concerning the dispatch of ordered goods, preparation of accounting and customs documents, execution of payments, handling of complaints;

Article 6(1)(c) of the RODO in order to fulfil legal obligations incumbent on the controller, including obligations arising from tax law or other specific laws (e.g. requirements for approval and installation of gas installations, requirements for archiving documents, obligation to issue and store accounting documents);

Article 6(1)(a) and (f) RODO in order to respond to your enquiry, call you back or deal with the matter you have addressed to the administrator, e.g. via a contact form, Facebook chat or e-mail, to conduct information and marketing activities, including direct marketing of the administrator’s products and services, also by means of automated calling systems (in particular, sending marketing and commercial information about products, competitions, promotions, training courses, etc.), as well as invitations to events organised by the administrator, It also includes, among other things, direct marketing of the administrator’s products and services, including automated calling systems (in particular, sending marketing and commercial information about products, competitions, promotions, training courses, etc., as well as invitations to events organised by the administrator, promoting the administrator’s fanpage), providing technical support for the administrator’s products and services, verifying your payment reliability and creditworthiness e.g. when making decisions on cooperation or granting a credit limit, as well as in order to secure payments due (surety agreements and other legal forms of security);

Article 6(1)(f) RODO for analytical and statistical purposes in line with the legitimate interest of the controller, consisting in particular of the need to conduct commercial and market analyses, as well as to collect information on the preferences of business partners, inter alia for the purpose of developing or improving products and services provided, ensuring the possibility to display correctly the content of the administrator’s website or profile on social networking sites, to ensure security and the possibility to eliminate possible technical faults, to control and analyse the traffic on the website or Facebook fanpage, to prepare personalised offers and advertisements, to include the data of entities with which the administrator cooperates on the administrator’s website, including marking their location on the map, to register visits of third parties to the company’s premises as part of preventive measures, e.g. to prevent the spread of the COVID-19 epidemic;

Article 6(1)(f) of the RODO in order to protect the rights of Yellow Boson S.A., including the assertion of potential claims or the defence against such claims, in particular the assertion of outstanding payments as part of debt collection and court processes.


If justified by the purpose of the processing referred to above, your personal data may be transferred to third parties with whom the controller cooperates, such as: providers of IT systems, hosting, cloud or other services related to IT systems and software, entities involved in the maintenance and technical operation of the controller’s website or e-mail, controlling and analysing website traffic, administrators of social networks used by the controller, such as: Facebook, Instagram, LinkedIn, Twitter, entities providing services to Yellow Boson S.A.: e.g. accounting, legal, advisory, marketing, financial, accounting, tax, auditing, training, document archiving, etc., postal operators and couriers, banks in the execution of payments, debt collection companies, regional technical and commercial advisors, sales representatives, subcontractors (e.g. performing the installation of photovoltaic panels), financial institutions offering financing to the Company’s clients for the purchase of Yellow Boson S.A. goods or services. (banks, leasing companies), as well as to bodies entitled to receive your data on the basis of legal provisions. As a rule, your personal data shall be stored for the time necessary to achieve the purposes for which they are collected, for no less than the period required by the obligations imposed on the controller by law, or until the expiry of the limitation period for potential claims, if the processing of personal data is necessary for the controller to establish, assert or defend against such claims. Subject to the above, data processed on the basis of consent shall, in principle, be processed until the consent is withdrawn or the controller ceases the activity to which the consent relates, unless the controller has a valid legal interest in their further processing overriding the interests, rights and freedoms of the data subject.

The provision of personal data by you is obligatory to the extent required by law, and in the remaining scope it is voluntary, although necessary to achieve the objectives set out above.

You may withdraw your consent to the processing of personal data at any time. The withdrawal of consent does not affect the lawfulness of processing carried out before its withdrawal, as well as the controller’s ability to process the data on another basis. Please kindly withdraw your consents, if any, in writing or by e-mail to:

In cases provided for by the applicable law, you have the right to request from the controller access to the content of your personal data, the right to demand its rectification, erasure or restriction of processing, the right to object to the processing, the right to data portability, at any time. You also have the right to lodge a complaint to the competent supervisory authority dealing with personal data protection – i.e. the President of the Office for Personal Data Protection, if you consider that the processing of your personal data violates the provisions of the RODO.

In order to provide services at the highest level, the administrator uses cookies. Using the administrator’s website means that cookies will be placed on your device. In addition, using the administrator’s website means that you accept the processing of personal data provided electronically. When entering the website for the first time, you will be asked to accept the use of cookies by the administrator. At any time, you can change the settings of your web browser or mobile device, including the settings concerning cookies, specifying the conditions for their storage and scope of use.

The administrator uses two types of cookies:

– performance cookies (collecting information on how visitors use the site, e.g. most frequently visited pages or error messages, etc.)

– functional (storing user settings, e.g. language, consent given, etc.), such as

o cookies – used to provide statistics for the website;

o cookies – used to determine how users use the website;

o session cookies – these are temporary information stored in the memory of a browser until the session ends, i.e. it is closed.

Third party websites, to which the administrator’s website sometimes refers, may also use other cookies than those listed above, including in particular those enabling logging in and delivery of advertisements corresponding to the user’s preferences and behaviour. Such cookies are e.g:

– on – containing user preferences and click count;

– and – to allow you to log in, and cookies placed by advertisers to tailor the content and form of advertisements.


Most web browsers allow you to: erase cookies from your computer’s hard drive (via browser settings), block all cookies sent to you or set a warning before a cookie is stored. However, please note that changing the settings of these files by restricting their use may affect some of the functionality available on websites that use them, e.g. by preventing login to your email account. Failure to change these settings means that you accept the use of cookies.

Write to us

Contact form