Privacy policy of Kozminski University


This Privacy Policy applies to all cases in which Kozminski University is a data controller. Below you will find information on the processing of your personal data. 

The purpose of the Privacy Policy is to enable you to become familiar with the most important information concerning the processing of personal data by Kozminski University. Thus, the fundamental information obligation referred to in Article 13 and Article 14 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the TYPE, is fulfilled. The information provided here will allow you to better control your personal data. 

The Privacy Policy will provide you with information about the purposes of data processing, the duration of data storage. You will learn about the categories of entities that may have access to your personal data, what rights you have and how you can exercise them. Here, you will also find information about the appointed Data Protection Inspector by the Kozminski University. Moreover, in the section entitled "Cookies Technology", you will gain knowledge about the information stored on your device while using the services in the * domain, hereinafter referred to as Services. 


The administrator of your personal data and the operator of the Services is Leon Kozminski Academy with its seat at 59 Jagiellonska Street, 03-301 Warsaw. The Administrator may be contacted by you in writing, by traditional mail, writing to our office address or by e-mail to:


The Data Protection Inspector appointed by the Administrator supervises the correctness of personal data processing. The Data Protection Inspector can be contacted by mail by writing to the address: Jagiellońska 59, 03-301 Warsaw or by e-mail:


Art. 6 of the GDR regulations defines the legal basis for processing personal data. For the sake of transparency of the following Policy, the following legal basis definitions have been used in the places where the prerequisites entitling the Administrator to process personal data have been indicated:

  1. Consent - Article 6 paragraph 1(a) of the GCRL - "the data subject has consented to the processing of his/her personal data for one or more specified purposes"; 
  2. Agreement - Article 6(1)(b) of the FAMILY - 'processing is necessary for the performance of a contract to which the data subject is a party or to take action at the request of the data subject before concluding a contract'; 
  3. the obligation arising from the provisions of the law - Article 6(1)(c) of the FAMILY - 'processing is necessary for the fulfilment of a legal obligation incumbent on the controller'; 
  4. Legitimate interest - Article 6.1.f of FAMILY - 'processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where the interests or fundamental rights and freedoms of the data subject requiring the protection of personal data, in particular when the data subject is a child, take precedence over these interests'. 


In relation to people participating in events organized by Kozminski University:

1. Your personal data will be processed for the purpose of registering, organizing, and holding the event (e.g. a conference, workshop or webinar). 

2. The legal basis for the processing of your personal data will be your consents given thereto (Article 6 (1)(a) of the GDPR).  

3. The recipients of your personal data are entities who are ordered by the Controller to perform activities involving a necessity for data processing (processors): operators of IT systems.  

4. Your personal data are transferred neither to Third Countries, i.e. outside the European Economic Area (EEA) nor to international organizations. 

5. The data in question will be stored for a period of time required for the purposes referred to above, but for no longer than until the given consent is revoked. To the extent your personal data are processed for the purpose of fulfilment of our legitimate interests, your data may be stored by the Controller to establish or exercise claims or to respond to claims until any such claims expire (Article 6 (1)(f) of GDPR).

6. Given the fact that your personal data are processed on the basis of the Controller’s legitimate interest, the Controller will cease the processing of them for the said purpose if you file an objection to such processing. You have the right to file an objection to the processing of your personal data anytime and free of charge when your personal data are processed on the basis of a legitimate interest and your objection is justified by the particular situation you are in.

7. You have the right to access your personal data and, save for the provisions of the law, to correct them, remove them, limit the processing thereof, transfer them, and object to the processing thereof.

8. You also have the right to revoke your consent at any time without any impact on the legal compliance of data processing having taken place on the basis of the given consent before it has been revoked.

9. You have the right to lodge a complaint to the Polish Data Protection Commissioner (PL: Prezes Urzędu Ochrony Danych Osobowych).

10. Provision of data is voluntary, but also necessary for the achievement of the purposes for which the data are to be collected.

11. Your personal data will not be processed in an automated manner - including based on profiling - without your express separate consent thereto.

12. You can learn more about the way your rights specified above may be exercised by contacting the Controller or the Data Protection Officer as described in Privacy Policy above.


The Administrator, bearing in mind your privacy, treats the issues of personal data security with the utmost care. We make every effort to ensure that all physical, technical and organizational measures are taken to protect your personal data against accidental or intentional destruction, loss, alteration, unauthorized disclosure, use or access, in accordance with all applicable laws. 

When designing the implementation of a new technology, we take into account the protection of personal data as early as at the stage of designing new processes, from the very beginning of their existence data protection is a component of them. 

We know how important role is played by a person in the proper functioning of the data protection system, that is why each person, before being authorized to process data, undertakes to keep it confidential and to obey the duties and rules functioning in the Security Policy of Personal Data Processing at Kozminski University. 


Kozminski University, pursuant to the provisions of Articles 173 and 174 of the Telecommunications Law of 16 July 2004 (as amended), informs that it uses the so-called "cookies" technology within the Services. 

What are cookie files? 

When using the Services, small files, especially text files, containing information necessary for proper use of the Service, so-called "cookies" are saved on your computer, smartphone or tablet. Thanks to their saving it is possible to ensure stability and security of the Services. Cookies are also used to collect statistical data in order to adjust the Service to your preferences. 

Are cookie files safe? 

These files are in no way harmful to your device and do not change its settings or the software installed on it. The content of these files can only be read by the server that created them. 

Permission to use cookies technology 

The condition for cookies to work is always that your browser accepts them and does not delete them from the disk. By changing the settings of your browser, which is used to visit our Services, you can delete or block cookies. Most web browsers have a default setting to allow the use of cookies. 

Types of files used 

Kozminski University uses the following types of cookies: 


  1. Session cookies - files that are stored on the device and remain there until the end of the session of a given browser. After the session is over, the stored information is then permanently deleted from the device memory; 
  2. Permanent cookies - files that are stored on the device and remain there until they are deleted. Ending a browser session or switching off the device does not delete them from your device; 
  3. External cookies - information coming from e.g. advertising servers, servers of companies and service providers e.g. search or maps placed on the website, cooperating with the owner of a given website. 


Objectives of cookie collection 

If you use the Services with settings that allow the use of cookie technology and if you provide us with your personal data, e.g. by means of an electronic form, cookies will become possible to associate them with your person and can be processed: 

Based on the legitimate interest of the administrator: 

  • For marketing purposes Use of user behavioural history and personal data provided through electronic forms to segment the data subjects according to criteria such as: preferences, place of residence, level of education, interests and others. The purpose of the above is to send users who have consented to receive commercial information - only the information that they may potentially be interested in. 
  • For statistical purposes, e.g. creating statistics that help to understand how the users of the Services use the websites of the Services, which allows to improve their structure and content. 
  • For purposes essential for the functioning of the Site necessary to ensure security, stability, functionality of the Site 

It is worth knowing that the information stored in cookies on your devices facilitates the use of the Services. Apart from our own cookies, third party cookies may be placed and used on our Websites, which belong in particular to advertisers, operators of systems analyzing and reporting viewership. 

Third party cookies are used for the following purposes: 

  • collecting statistical data about the popularity and usefulness of particular websites of the Services or their elements; 
  • displaying behavioural advertisements - adjusted to users' interests; 
  • creating behavioural profiles of users, in particular to avoid multiple presentations to the same recipient of the same advertisement and to present behavioural advertisements taking into account the interests of recipients; 
  • technological support for third party components, such as Adobe Flash or Facebook Connect. 

For uniform font representation, we use so-called internet fonts provided by Google. When you call up our Services, your browser loads the required Internet fonts into your browser's cache in order to correctly display the font types we have selected and thus the texts contained on the site, in order to do so, your browser must connect to Google servers. As a result, Google learns that on your device with a unique identifier one of the addresses of our services was called up. 

The legal basis for the processing of personal data in terms of the unique identifier of the browser or device is the legitimate interest of the controller to maintain a consistent and attractive presentation of our online services, using Google Fonts internet fonts. 

You have the option to configure your browser so that the fonts are not loaded by Google servers (for example by installing add-ons). If your browser does not support Google fonts or you block access to Google servers, the text will be displayed using a standard system font. Please note that our website will then no longer be compatible with our screen design.DISABLING COOKIES 

More information about Google services can be found in the company's Privacy Policy:


It is up to you to decide whether cookies will be saved and stored on your device. You can make all changes to your browser settings yourself.

Detailed information about the possibilities and ways of handling cookies is available in your settings and in the "Help" section of your web browser. Please note, however, that restrictions on the use of cookies may make it difficult or impossible to use our Websites. 


We also use geolocation, i.e. we check from which location (continent, country, province and town) you visit our Services.

Kozminski University also uses standard log files of the network server to count the number of visitors and to assess the technical capabilities of our Services. The Google Analytics cookies used by us are used to create website statistics provided by Google. The information generated by these cookies relates to users' use of our sites (including their IP address and computer's location on the Internet) and is transmitted to and stored by Google on servers in the United States. Google uses this information for the purpose of evaluating your use of our websites, compiling reports on website activity and providing other services relating to website activity and internet usage. 

Our Services also use a Google Tag Manager tool to manage the analytical codes placed on the site. They are used to analyze user traffic on the website in order to optimize it. Hotjar is used to analyze anonymized user behavior on the site. It allows you to optimize website usability. Facebook Pixel is used to measure the effectiveness of advertisements based on the analysis of actions taken by users on the website.


The name of the cookie file: __utma  Expires after (validity period): 730 days  Description of the cookie file: User ID - Google Analytics tracking service - used by most websites; a "persistent" cookie, tracks how many times a user has visited a given domain when they first visited it and when they last visited it. It allows you to determine the number of unique users (defined as a specific browser on a specific computer) who visit the site. 

The name of the cookie: __utmb  Expires after (expiry date): Expires after 30 minutes of inactivity  Description of the cookie file: Session ID - Google Analytics tracking service - used by most websites. Cookie file in cooperation allows you to calculate how long a visit lasts. __utmb retrieves a timestamp at the moment when the user goes to the site, while utmc __ retrieves a timestamp at the moment when the user leaves the site. __utmb expires at the end of the session. __utmc, waits 30 minutes and then expires. 

The name of the cookie: __utmc  Expires after (validity period): At the end of the session 

Name of the cookie: __utmz  Expires after (validity period): 182 days  Description of the cookie file: Campaign identifier - Google Analytics tracking service - used by most websites. _utmz tracks where the visitor comes from, which search engine he uses, which links he clicked, which keywords he used and where he was in the world when he accessed the website. It expires after 15,768,000 seconds - or 6 months. 



The Privacy Policy may be supplemented or updated according to the Administrator's current needs in order to provide users with up-to-date and reliable information about their personal data and information about them. Any changes to the Privacy Policy are made on this page.