Privacy policy

This policy explains how INFUZE Sp. z o.o. (“INFUZE,” “we”) collects, uses, and protects personal data when you visit infuze.pl or use our services. We follow the EU General Data Protection Regulation (GDPR) and Polish data-protection law.

Who is the controller

The data controller is INFUZE Sp. z o.o., Franciszka Klimczaka 8A, 02-797 Warsaw, Poland. Contact: contact@infuze.pl.

What we collect

• Booking and intake data — name, email, phone, date of birth, and any health context you provide.
• Health data — limited to what is required to deliver treatment safely and to document your case.
• Site analytics — anonymous, aggregated usage data (no third-party advertising cookies).

Why we collect it

• To deliver the treatment you have booked (contract, GDPR Art. 6(1)(b)).
• To meet medical record-keeping obligations (legal obligation, Art. 6(1)(c)).
• To process special-category health data with your explicit consent (Art. 9(2)(a)).
• To improve the website and services (legitimate interest, Art. 6(1)(f)).

How long we keep it

Medical records are retained for the period required by Polish health law. Marketing and analytics data is retained for no longer than 24 months. You may request earlier deletion at any time.

Your rights

Under the GDPR you have the right to access, rectify, erase, restrict, port, and object to processing of your personal data. You may also withdraw consent at any time and lodge a complaint with the Polish supervisory authority (UODO).

Contact

Questions or requests: contact@infuze.pl.