GDPR Compliance

How we comply with the EU General Data Protection Regulation (GDPR): purposes, legal bases, rights, retention, and safeguards.

Last updated:

Data Controller

The data controller for this website is Oborski Przemyslaw. For any questions regarding this notice or how we process personal data, contact matt@oborski.co.

Scope

This notice applies to personal data processed through this website for the purposes of content delivery, audience analytics, and direct communications (e.g., replies to messages you send us or newsletter sign-ups).

Purposes & Legal Bases

  • Website operation & security (IP address, logs, essential cookies) — legitimate interest (GDPR Art. 6(1)(f)).
  • Analytics & performance (aggregated usage data, non-essential cookies) — consent where required (GDPR Art. 6(1)(a)).
  • Communications (data you provide when contacting us or subscribing) — contractual necessity or consent (GDPR Art. 6(1)(b)/(a)).

Categories of Data

  • Usage data (pages viewed, time on page, device/browser type, coarse location, referral source).
  • Identification & contact data (name, email) if you choose to provide it via forms or email.
  • Cookies/identifiers used for essential features and, with consent, analytics or preferences.

Processors & Recipients

We may share data with reputable service providers acting as data processors (e.g., hosting, analytics, email). They process data on our behalf under contracts that include confidentiality and security obligations. A list of key categories:

  • Hosting & infrastructure providers
  • Analytics platforms (aggregated usage reporting)
  • Email delivery or newsletter services (if subscribed)

Data Retention

We retain personal data only as long as necessary for the purposes described in this notice, or as required by law. Contact data is kept until you unsubscribe or request deletion. Aggregated analytics may be retained for trend reporting.

International Transfers

Where data is processed outside the European Economic Area (EEA), we rely on appropriate safeguards recognized by the GDPR (e.g., Standard Contractual Clauses) and require processors to implement adequate security measures.

Security

We implement reasonable technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. No method of transmission or storage is 100% secure, but we continuously review and improve our safeguards.

Cookies & Consent

Essential cookies are used to ensure the site functions properly. Non-essential cookies (e.g., analytics) are used only with your consent where required. You can withdraw consent at any time or manage cookies via your browser settings. For details, see our Privacy Policy.

Your GDPR Rights

  • Access your personal data and obtain a copy.
  • Request correction of inaccurate or incomplete data.
  • Request deletion (“right to be forgotten”) where applicable.
  • Object to or restrict processing in certain circumstances.
  • Data portability where technically feasible.
  • Withdraw consent at any time (for consent-based processing).

To exercise your rights, email matt@oborski.co. We will respond within a reasonable timeframe and in accordance with applicable law.

Complaints

If you believe your data protection rights have been infringed, you can lodge a complaint with your local data protection authority. We would appreciate the opportunity to address your concerns first—please contact us at the email above.

Updates to this Notice

We may update this page periodically to reflect changes in our processing or applicable law. Material changes will be reflected by the “Last updated” date at the top of this page.

Contact

Data protection questions? Contact matt@oborski.co.