Audit My Website

Privacy Policy

This Privacy Policy explains how we collect, use, and protect your personal information. If you have questions, contact us at contact@ariaworks.io

Data Practices

Who is the Data Controller?

The controller of your personal data is: Aria Works Jakub Makuch Żeromskiego 6/5 26-900 Kozienice, Poland VAT Number: PL8121924931 E-mail address: contact@ariaworks.io

What data do we collect?

We collect personal data only when you voluntarily provide it to us, specifically through our contact form or by emailing us directly. This includes:

  • First and Last Name
  • Email Address
  • Company Name (if provided)
  • Any information you choose to include in the "Description" field (e.g., details about your technology stack)

Why do we process your data?

We process your data for the following purposes:

  • Responding to inquiries: To answer your questions, estimate costs, and discuss potential cooperation regarding accessibility audits.
  • Legal Basis: Legitimate Interest (Article 6(1)(f) GDPR) - maintaining business relations and responding to potential clients.
  • Archiving and Defense of Claims: To keep a record of correspondence in case of future disputes.
  • Legal Basis: Legitimate Interest (Article 6(1)(f) GDPR).

Who receives your data (Processors)?

To run our technical infrastructure, we use specialized third-party processors. Your data is processed by:

  • Resend, Inc. (USA): Transactional email service. When you submit our contact form, the data is processed by Resend's API to deliver the message to our inbox.
  • NQ.pl Sp. z o.o. (Poland): Email hosting provider. The final email lands and is stored here.
  • Netlify, Inc. (USA): Website hosting and serverless function provider.
  • Hostido.pl (Poland): Domain registrar and DNS provider.

International Data Transfers

Our technical infrastructure involves transferring data to the United States (specifically via Resend and Netlify).

  • Legal Basis for Transfer: We ensure your data remains protected by relying on the EU-US Data Privacy Framework (DPF), to which both Resend and Netlify are certified.
  • Alternatively, where the DPF does not apply, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission, ensuring that these providers offer a level of security equivalent to EU standards.

Cookies

We do not use tracking, marketing, or analytics cookies (like Google Analytics or Facebook Pixel).

We use only "essential" technical cookies required for the website to function (e.g., security tokens to prevent spam on our contact form). Because these are strictly necessary, they do not require a consent banner.

Your Rights

Under GDPR (RODO), you have the right to:

  • Access your data.
  • Correct (rectify) your data.
  • Delete your data ("Right to be forgotten").
  • Restrict processing.
  • Object to processing.

To exercise any of these rights, please contact us at: contact@ariaworks.io