Privacy Policy

The Privacy Policy (hereinafter referred to as the “Policy”) specifies how the personal data of persons (hereinafter referred to as the “User”, “Users”) using the website www.mushika.pl (hereinafter referred to as the “Portal”) are processed, what rights Users have in relation to processing and how the Administrator uses cookies and similar technologies.

The Policy also constitutes the fulfillment of the information obligation arising from Articles 13 and 14 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as the “GDPR”).

1. Data controller

The administrator of Users’ personal data is the Mushika Foundation with its registered office in Włoszczowa, address: ul. Jędrzejowska 79c, 29-100 Włoszczowa.

You can contact the Administrator by writing to the following postal address: ul. Jędrzejowska 79c, 29-100 Włoszczowa or by sending an e-mail to: info@mushika.pl.

2. DATA PROCESSING

The Administrator processes personal data for the following purposes and on the following legal bases:

2.1. Functioning of the Website and statutory activities of the Foundation

The Administrator processes personal data necessary for the proper functioning of the Website and the implementation of the statutory activities of the Mushika Foundation, in particular those of an educational, informational, social and advocacy nature.

Personal data may be obtained in particular through:

  • contact form available on the Website,
  • newsletter subscription forms,
  • petition signing forms,
  • donation forms,
  • e-mail correspondence,
  • correspondence conducted via traditional mail.

The scope of data processed may include, among others:

  • identification and contact details (e.g. name, surname, e-mail address, mailing address),
  • data provided voluntarily in the content of forms, petitions or correspondence,
  • data regarding donations made (e.g. amount, date, form of payment),
  • technical data, including IP address and data collected using cookies.

Personal data are processed for the purpose of:

  • providing access to the content of the Website,
  • implementation of the Foundation’s information, educational and social activities,
  • handling contact forms, notifications and petitions,
  • handling donations and fulfilling accounting and reporting obligations,
  • communicating with people supporting the Foundation’s activities.

Legal basis for processing:

  • Article 6, paragraph 1, letter f) of the GDPR – the legitimate interest of the Controller consisting in conducting statutory activities, achieving the social goals of the Foundation and maintaining and developing the Website,
  • Article 6, paragraph 1, letter b) of the GDPR – if processing is necessary to take action at the request of the data subject or to provide a specific service (e.g. processing a form, donation).

2.2. Contact and cooperation

The Administrator processes the data of persons contacting the Mushika Foundation by electronic means, telephone or traditional means, including via the contact form, e-mail and traditional mail.

Personal data are processed for the purpose of:

  • conducting correspondence and responding to inquiries,
  • establishing, implementing and settling cooperation,
  • conducting further communication related to the Foundation’s activities,
  • establishing, defending or pursuing possible claims.

Legal basis for processing:

  • Article 6(1)(b) of the GDPR – necessity to take action at the request of the data subject,
  • Article 6(1)(f) of the GDPR – the legitimate interest of the Controller consisting in communication, organisation of cooperation and protection of the Foundation’s rights.

2.3. Newsletter

The Administrator processes the personal data of newsletter subscribers, obtained via the subscription form or otherwise, in order to send information about the Mushika Foundation’s activities, social campaigns, petitions, publications, events and statutory initiatives.

Legal basis for processing:

  • Article 6(1)(b) of the GDPR – provision of the newsletter service,
  • Article 6(1)(f) of the GDPR – the Controller’s legitimate interest in analysing the effectiveness of communication and improving the Foundation’s information activities.

Personal data are processed until you unsubscribe from the newsletter or the purpose of processing no longer applies.

2.4. Social media

The Administrator maintains the Mushika Foundation’s social media profiles (including Facebook, LinkedIn, and Instagram). As part of these activities, the Administrator may process the personal data of users who interact with the Mushika Foundation’s profiles (e.g., through comments, private messages, and reactions).

Personal data are processed for the purpose of:

  • conducting social and information communication,
  • promoting the statutory activities of the Foundation,
  • budowania zaangażowania społecznego wokół inicjatyw Fundacji.

Legal basis:

  • Article 6(1)(f) of the GDPR – the legitimate interest of the Controller consisting in social communication and promotion of statutory activities.

The Administrator and social media platform operators may act as joint data controllers – detailed information can be found in the privacy policies of individual websites.

3. DATA PROCESSING PERIOD

The data processing period depends on the purpose and legal basis for processing. Typically, we process data for the duration of the collaboration or correspondence.

If the processing is based on consent, the data is processed until it is withdrawn or until it becomes obsolete. However, if the processing is based on our legitimate interests, we process the data for as long as that interest lasts or until an effective objection is filed.

In some situations, the processing period may be longer than indicated above. This applies to cases where processing is necessary to establish, defend, or pursue legal claims, or where required by law (e.g., tax or accounting).

4. DATA RECIPIENTS

The recipients of personal data processed by the Administrator for the above purposes may be, in particular:

  • entities cooperating with the Controller (including as part of the performance of contracts for the provision of IT, hosting, accounting, legal and marketing services),
  • entities providing support and operation of IT tools and systems,
  • entities providing legal/tax advisory services,
  • entities to which the Administrator transfers personal data in order to fulfill the obligations provided for by law.

5. DATA TRANSFER

As a rule, Users’ personal data will be processed within the European Economic Area (EEA). However, the Controller may, in exceptional circumstances, transfer personal data to partners processing it outside the EEA, but only to the extent necessary for the provision of services by these partners to the Controller. In such cases, the Controller ensures the protection of personal data, in particular through the use of standard data protection clauses adopted by decision of the European Commission or transfer to countries for which the European Commission has issued a decision confirming an adequate level of protection. In such cases, Users have the right to obtain a copy of the applied safeguards, which can be obtained by contacting the Controller directly (contact details provided in point 1).

6. AUTOMATED DECISION MAKING / PROFILING

The Administrator does not make decisions based on automated processing of personal data, including profiling.

7. OBLIGATION TO PROVIDE DATA

Providing data is generally voluntary, but may be necessary to achieve the purposes of processing. In some cases, providing data is mandatory – but only when required by law. Refusal to provide data may result in, among other things: inability to contact the Administrator, sign a petition or receive information from the newsletter.

8. RIGHTS OF DATA SUBJECTS

Under the terms and conditions of the law, the User has the following rights regarding the processing of his/her personal data:

  • the right to access data, including the right to obtain a copy thereof,
  • the right to request their rectification,
  • the right to delete or limit processing,
  • the right to object to processing based on the legitimate interest of the Controller or a third party,
  • the right to transfer personal data to another controller,
  • the right to lodge a complaint with the President of the Personal Data Protection Office.

If the Administrator processes Users’ personal data based on consent, it is possible to withdraw it at any time. Withdrawal of consent does not affect the lawfulness of processing carried out before its withdrawal.

In order to implement the above. rights, you can contact the Administrator using the details indicated in point 1 of the Policy.

9. COOKIES AND OTHER SIMILAR TECHNOLOGIES

The Portal uses cookies and other similar technologies (hereinafter referred to as “cookies”). The cookies used may be both those of the Administrator and those of third parties, and their list is available as part of the functionality thanks to which you can choose your consent settings.

Cookies are small text files stored on the user’s end device when using a given website. They include, among others: name of the website from which they originate, storage time on the device and a unique identifier. In addition to cookies, we may also use similar technologies to collect and store information, such as local storage, session storage, and tracking pixels. They work in a similar way to cookies and allow, among other things, analyze user activity on websites, adapt content and improve its functioning.

Information collected using cookies and similar technologies generally does not allow for the identification of users and does not constitute personal data. W pewnych przypadkach – w zależności od ich zawartości oraz sposobu wykorzystania – mogą jednak zostać powiązane z konkretną osobą i wówczas będą uznane za dane osobowe.

The provisions of the Personal Data Policy apply to such information. The basis for their processing is the legitimate interest of the Controller or the interest of a third party (Article 6 paragraph 1 letter f) of the GDPR), consisting in particular in ensuring the proper functioning of the Portal and conducting analyses and statistics. In some situations, e.g. when it results from the requirements of the cookie provider (third party), the basis for processing personal data may be the User’s consent. Please note that these providers may, in certain cases, act as independent controllers of your personal data.

Within the Portal, the User can set his/her preferences regarding cookies. The user decides which cookies will be enabled and which will not. Some cookies are necessary for the Portal to function properly, but others can be disabled. However, the Administrator points out that disabling certain cookies may affect the comfort of using the Portal or limit access to certain functions.

The Portal may use various types of cookies, including:
a) session cookies – temporary files that are stored on the User’s end device until the User leaves the website or closes the web browser;
b) persistent cookies – files stored on the User’s end device for the time specified in the cookie parameters or until the User deletes them.

Furthermore, cookies used can be divided according to their purpose:
a) necessary (always active) – they are necessary for the proper functioning of the Portal. They ensure the operation of basic functions such as page navigation and form handling. Without these cookies, using the website would be impossible or significantly limited;
b) analytical cookies – they help the Administrator understand how Users use the Portal. They provide information, among others: information about the number of visits and traffic sources, which allows the Administrator to analyze statistics and improve the operation of the Portal;
c) functional – they help perform certain functions. For example, they enable remembering information that changes the appearance or functioning of the Portal, i.e. preferowany język, a także pozwalają na udostępnianie zawartości Portalu na platformach mediów społecznościowych;
d) marketingowe – służą do wyświetlania reklam oraz treści dopasowanych do zainteresowań Użytkownika. They may also be placed by the Administrator’s advertising partners via the Portal.

10. EMBEDDED CONTENT FROM OTHER SITES

Articles on this site may include embedded content (e.g. videos, graphics, articles). Embedded content from other websites behaves in the same way as if the user had visited that website directly. These websites may collect data about you, use their own cookies, employ third-party tracking systems, and monitor your interaction with that embedded content, even if you are logged in to that website. Mushika Foundation has no control over the cookies used by these external sites.

11. CHANGES TO THE PRIVACY POLICY

This version of the Policy is effective from February 11, 2026. If necessary, the Administrator may change the provisions of the Policy.

Adjust your consent preferences
Below, you can set your preferences for cookies and similar technologies. You decide which ones to enable and which not. Some are necessary for the website to function properly, but you can disable others if you wish. Disabling some cookies may affect your experience or limit access to certain features. For analytical and marketing purposes, we may also use third-party cookies – these files originate from a domain other than the domain of the website you are visiting. You can change your settings at any time or withdraw your consent using the appropriate functionality available on the website. Some cookies (tracking technologies) involve the processing of your personal data. The Mushika Foundation is the data controller. More information about cookies and other tracking technologies, as well as the principles of data processing and your rights, can be found in the Privacy Policy.
Essential cookies
Necessary cookies are essential for the website to function properly. They enable basic functions such as page navigation and form processing. Without these cookies, your experience with the website would be impossible or severely limited.
Analytical cookies
Analytical cookies help us understand how users use the site. They provide information such as visitor numbers and traffic sources, which allows us to analyze statistics and improve site performance.
Advertising cookies
These cookies are used to display advertisements and measure their effectiveness. They allow for the personalization of advertising content and remarketing activities. Refusing consent may result in the display of generic advertisements or their absence.
Functional cookies
Functional cookies help perform certain functions. For example, they allow the website to remember information that changes the appearance or functionality of the site, such as your preferred language, and they also allow you to share site content on social media platforms.
Marketing cookies
Marketing cookies are used to display ads and content tailored to your interests. They may also be placed by our advertising partners through our website.
Privacy Policy