Privacy Policy

§2. Data we process

We process only the data necessary to provide the service.

In particular:

• contact person’s name and surname
• email address
• phone number
• company name
• registered address / billing address
• NIP / VAT ID
• data submitted through forms (e.g. materials provided after purchasing Stage 1)
• technical data: IP address, server logs, analytics data (if used)

We do not process sensitive data.

§3. Purposes and legal bases for processing

We process data for the following purposes:

1. Contract conclusion and performance (Stage 1 / Stage 2)

Legal basis: Art. 6(1)(b) GDPR

Retention: for the duration of the contract and until the expiry of limitation periods for claims.

2. Payment processing and invoicing

Legal basis: Art. 6(1)(b) and (c) GDPR

Retention: in accordance with tax and accounting regulations (at least 5 years).

3. Handling inquiries (contact form, Stage 2)

Legal basis: Art. 6(1)(b) or (f) GDPR

Retention: until the end of the correspondence and for the duration of applicable limitation periods.

4. Analytics and service improvement

Legal basis: Art. 6(1)(f) GDPR (legitimate interest of the controller)

Scope: technical data, visit statistics, and information about website usage.

5. Compliance with legal obligations

Legal basis: Art. 6(1)(c) GDPR

Includes, among others, tax and accounting obligations and — where applicable — obligations arising from the DSA.

§4. Stripe — payment processing

Payments are processed by:

Stripe Payments Europe Ltd.

1 Grand Canal Street Lower, Dublin, Ireland

Stripe processes data necessary for:

• payment processing
• subscription management
• invoice issuance
• tax verification (VAT)

The controller does not process payment card data.

Stripe acts as an independent data controller for payment processing in accordance with its privacy policy.

5. Data sharing

Data may be shared with entities supporting the controller’s operations, in particular:

• hosting and IT infrastructure providers
• software providers (e.g. email, analytics tools)
• accounting services
• legal advisors
• Stripe (payment processing)

Data is shared only to the extent necessary to fulfill its purpose.

6. Data transfers outside the EEA

If tools provided by entities outside the EEA are used (e.g. Google, Stripe Inc.), data may be transferred to third countries.

Such transfers are carried out:

• based on European Commission decisions (e.g. EU–US Data Privacy Framework), or
• using standard contractual clauses approved by the EU.

7. Data subject rights

Each individual has the right to:

• access their data
• rectify their data
• erase their data
• restrict processing
• object to processing
• data portability
• withdraw consent (where processing is based on consent)

Requests should be sent to: info@enter-china.com

Individuals also have the right to lodge a complaint with the competent data protection authority.

§8. Cookies and technical data

The website uses cookies for the following purposes:

• ensuring proper functioning of the service
• traffic analysis
• improving functionality

Users can change cookie settings in their browser.

Detailed information is available in the Cookie Policy (if published separately) or in the cookie banner settings.

9. Data security

The controller applies appropriate technical and organisational measures to protect data against:

• unauthorised access
• loss
• destruction
• modification

Access to data is granted only to authorised persons.

10. Changes to the Policy

This Policy may be updated in the event of:

• changes in legal requirements
• changes in the business model
• implementation of new functionalities

The current version is published on the website.