Loading

Engineering Perfection
Back to homepage

Privacy Policy

Privacy policy and personal data processing notice

Last updated: June 8, 2026

1. Data Controller

The controller of personal data is:

RIGG Sp. z o.o.
ul. Starowiślna 95/5
31-052 Kraków, Poland
KRS: 0000672542, VAT-ID: PL6762526844, REGON: 366984197

Contact for data-related matters: contact@rigg.pl

2. Scope of data collected

The controller collects personal data only when the user voluntarily submits the contact form. The scope is:

  • name,
  • email address,
  • subject and content of the message.

The user's IP address is temporarily used by the server for abuse protection (rate-limiting); it is not permanently stored or linked to a specific person.

3. Purposes and legal bases of processing

Data is processed for the following purposes:

  • Handling contact-form inquiries — legal basis: Art. 6(1)(f) GDPR (controller's legitimate interest in communicating with parties interested in cooperation).
  • Abuse protection (rate-limiting, bot detection) — legal basis: Art. 6(1)(f) GDPR.

4. Retention period

Messages received through the contact form are stored on the controller's mail server for as long as necessary to complete the inquiry, but no longer than 3 years after the last correspondence. After this period they are permanently deleted, unless a longer retention obligation applies under separate provisions.

5. Recipients of data

Data may be transferred to the following categories of recipients acting as processors on behalf of the controller:

  • Vercel Inc. (website hosting and contact-form function runtime) — based in the USA; transfer is governed by the EU Standard Contractual Clauses.
  • seohost.pl / microhost.pl (mail server hosting for rigg.pl) — based in the EU.

The controller does not transfer data for marketing purposes and does not share it with other parties beyond those listed.

6. Data subject rights

Every person whose data is processed has the right to:

  • access (Art. 15 GDPR),
  • rectification (Art. 16 GDPR),
  • erasure ("right to be forgotten", Art. 17 GDPR),
  • restriction of processing (Art. 18 GDPR),
  • data portability (Art. 20 GDPR),
  • objection (Art. 21 GDPR),
  • lodging a complaint with the Polish Personal Data Protection Office (Urząd Ochrony Danych Osobowych, ul. Stawki 2, 00-193 Warszawa).

To exercise these rights please contact: contact@rigg.pl.

7. Cookies and browser local storage

rigg.pl does not use HTTP cookies. It uses only strictly necessary browser localStorage for the following purposes:

  • rigg-menu-side — remembers the chosen menu position in the mobile view (left / right edge).
  • rigg-cookie-ack — confirms the user has read this notice (so the banner doesn't reappear).

This storage is "strictly necessary" within the meaning of Art. 5(3) of the ePrivacy Directive — it serves solely to provide the requested interface functionality. It can be deleted at any time from the browser settings.

The site does not use Google Analytics, Meta Pixel, Hotjar or any other analytics, marketing, or third-party trackers.

8. Security

The site is delivered exclusively via encrypted HTTPS (TLS 1.3). Contact-form messages are transmitted to the controller's mail server over encrypted SMTP/SSL. Mailbox access is password-protected and limited to authorized personnel of the controller.

9. Changes

The controller reserves the right to update this policy following changes in applicable law or in data-processing practices. The current version is always available at rigg.pl/en/polityka-prywatnosci. The date of the latest update is indicated at the top of the document.

Back to homepage