Privacy Policy

Last updated: November 2025

ROI & Shine is committed to protecting your privacy. This Privacy Policy explains how we collect, use, share, and protect your personal data when you visit our website roiandshine.com, contact us, or use our services.

1. Who We Are

Zofia Zak ROI & Shine (short name: ROI and Shine)
Address: Złota 75A/7, 00-819 Warsaw, Poland
NIP: 5214159338
REGON: 544359270
Website: https://roiandshine.com
Email: zak@roiandshine.com
(EU-based business — GDPR applies)

2. What Personal Data We Collect

We collect the following types of personal data:

2.1. Data you provide directly

  • Name
  • Email address
  • Phone number (optional)
  • Company name
  • Information shared in forms or messages

2.2. Automatically collected data

When you visit our website, we automatically collect:

  • IP address
  • Device information
  • Browser type
  • Pages viewed
  • Time spent on the site
  • Cookies and tracking data (through analytics and performance tools)

2.3. Cookies

We use essential, functional, and analytical cookies to improve website performance.

You can disable cookies in your browser settings at any time.

3. How We Use Your Data

We use personal data for the following purposes:

  • To respond to your messages and inquiries
  • To deliver consulting, digital, or AI services
  • To schedule calls or consultations
  • To send updates, proposals or follow-ups (only when requested)
  • To analyze website performance and improve user experience
  • To maintain the security and operation of the site

We never sell personal data.

4. Legal Basis for Processing (GDPR)

We process your data based on:

  • Legitimate interest (communication, analytics, website security)
  • Contract performance (when you hire us)
  • Consent (newsletter or marketing communications)
  • Legal obligation (tax or accounting records)

5. How Long We Keep Your Data

We retain personal data only as long as necessary:

  • Contact form messages: up to 12 months
  • Analytics data: according to tool settings (e.g., Google Analytics)
  • Client records: up to 5 years (for accounting & legal reasons)

You can request deletion at any time.

6. Sharing Your Data

We share data only with trusted service providers necessary to operate our business, such as:

  • Web hosting (SiteGround)
  • Email provider
  • Analytics tools (e.g., Google Analytics)
  • CRM or automation tools (if used)

All third-party providers comply with GDPR/industry standards.

We never sell or rent your data.

7. International Data Transfers

Some tools we use may store data outside the EU (e.g., Google Services).
We only work with providers that offer GDPR-compliant safeguards such as:

  • Standard Contractual Clauses (SCC)
  • Adequacy decisions

8. Your Rights (GDPR)

You have the right to:

  • Access your data
  • Correct your data
  • Request deletion
  • Restrict processing
  • Withdraw consent
  • Object to processing
  • Request portability of your data

To exercise these rights, email us at:
zak@roiandshine.com

9. Data Security

We use industry-standard measures to protect your information:

  • SSL/HTTPS encrypted website
  • Secure hosting environment
  • Limited access to data
  • Regular updates and security checks

However, no online system is 100% secure.

10. External Links

Our website may contain links to other websites.
We are not responsible for the privacy practices of those third parties.

11. Changes to This Policy

We may update this Privacy Policy when needed.
The latest version will always be available on this page.

12. Contact

If you have questions about this Privacy Policy or want to exercise your rights, contact us at:

zak@roiandshine.com