Przejdź do treści
P
Prawnix
Sign up

Legal document

Privacy Policy

Effective 1 June 2026 — compliant with the GDPR (Regulation EU 2016/679)

1. Data Controller

The controller of your personal data is Solverte spółka z ograniczoną odpowiedzialnością, with its registered office at al. Bolesława Krzywoustego 4/1, 40-870 Katowice, VAT No.: 6343006519 (hereinafter: Controller).

For matters relating to personal data protection, you may contact us at: kontakt@prawnix.pl.

2. What Data We Process and Why

2.1 User account data

Scope: email address, first and last name (optional), password hash (stored by Supabase Auth).

Purpose: provision of services — registration, login, account management.

Legal basis: Art. 6(1)(b) GDPR (performance of a contract).

2.2 Document content (order data)

Scope: data provided by the User during document generation (e.g., names of parties, amounts, dates, case numbers). This data may include personal data of third parties involved in the proceedings.

Purpose: generating a document draft in accordance with the User's instructions.

Legal basis: Art. 6(1)(b) GDPR (performance of a contract) and Art. 6(1)(f) GDPR (legitimate interests — fulfilling the ordered service).

Note: The content of the order is transmitted to the Anthropic, Inc. API (USA) for document generation. See details in section 4.

2.3 Billing data

Scope: payment transaction data (amount, date, status) processed by Stripe Payments Europe, Ltd. The Controller does not store payment card data.

Purpose: processing payments, issuing VAT invoices, managing subscriptions.

Legal basis: Art. 6(1)(b) GDPR (performance of a contract) and Art. 6(1)(c) GDPR (legal obligation — tax and accounting regulations).

2.4 Technical data and logs

Scope: IP address, browser type, visit time, session identifiers, application error logs.

Purpose: ensuring Service security, error diagnostics, preventing abuse.

Legal basis: Art. 6(1)(f) GDPR (legitimate interests of the Controller — security and stability of the service).

3. Retention Periods

  • Account data: for the duration of the account + 3 years after deletion (for potential claims).
  • Document content (history): for the duration of the account. Free Plan — 7-day history. PRO Plan — unlimited.
  • Billing data and invoices: 5 years from the end of the tax year in which the invoice was issued (statutory accounting requirement).
  • Technical logs: up to 12 months.

4. Recipients — Data Processors

Your data may be transferred to the following processors acting under data processing agreements:

EntityProcessing purposeCountry / mechanism
Supabase, Inc.Database, authenticationUSA (SCC)
Anthropic, Inc.AI document generationUSA (SCC)
Stripe Payments Europe, Ltd.Payment processing, invoicesEU / USA (SCC)
Resend, Inc.Email deliveryUSA (SCC)

SCC — Standard Contractual Clauses approved by the European Commission (Art. 46(2)(c) GDPR) as a safeguard mechanism for data transfers to third countries.

5. Your Rights

You have the following rights regarding the processing of your personal data (Arts. 15–21 GDPR):

  • Right of accessyou may request information about the data being processed and obtain a copy (Art. 15 GDPR).
  • Right to rectificationyou may request correction of inaccurate or completion of incomplete data (Art. 16 GDPR).
  • Right to erasureyou may request deletion of your data ("right to be forgotten") in the cases set out in Art. 17 GDPR.
  • Right to restriction of processingin the situations specified in Art. 18 GDPR.
  • Right to data portabilityto receive your data in a structured, machine-readable format (Art. 20 GDPR).
  • Right to objectto processing based on legitimate interests (Art. 21 GDPR).

Right to lodge a complaint: you may file a complaint with the President of the Personal Data Protection Office (UODO), ul. Stawki 2, 00-193 Warsaw, Poland, uodo.gov.pl.

To exercise any of these rights, write to: kontakt@prawnix.pl. We respond within 30 days of receiving the request.

6. Cookies

  1. The Service uses cookies and similar tracking technologies.
  2. Necessary cookies (no consent required) — files required for the Service to function: authentication session, language preferences, Terms acceptance.
  3. Analytical and statistical cookies — require your consent. They allow us to analyse how the Service is used in order to improve it.
  4. You may manage cookie settings in your browser preferences. Disabling necessary cookies may prevent you from using the Service.
  5. Legal basis: Art. 5(3) of the ePrivacy Directive and Art. 6(1)(a) GDPR (consent) for optional cookies.

7. Data Security

We apply appropriate technical and organisational measures to protect your personal data, including: data transmission encryption (TLS/HTTPS), access controls, regular backups, and security monitoring.

8. Changes to This Privacy Policy

The Controller reserves the right to update this Policy. We will notify registered Users of material changes by email at least 14 days in advance. The current version is always available at prawnix.pl/privacy.

This Policy takes effect on 1 June 2026.