Legal

Privacy Policy

Last updated: 29 April 2026

Northleigh Media Sp. z o.o. ("Northleigh", "we", "us") operates the website northleigh.eu. This policy explains what personal data we collect, why, and how it is handled. It applies to all visitors and corresponds to the requirements of Regulation (EU) 2016/679 (GDPR) and the Polish Act on Personal Data Protection of 10 May 2018.

1. Data controller

Northleigh Media Sp. z o.o.
ul. Marszałkowska 84/92, 00-514 Warsaw, Poland
NIP: PL7010123456 | KRS: 0000789123
Email: contact@northleigh.eu

2. Data we collect

2.1 Contact form data

When you submit the contact form on northleigh.eu, we collect the phone number, name and email address you provide, along with the message content and a timestamp. This data is used solely to respond to your enquiry and is not shared with third parties.

2.2 Server logs

Our hosting provider automatically records standard server log data: IP address, browser type, referring URL, pages visited and timestamps. These logs are retained for up to 90 days and are used only for security monitoring and diagnosing technical errors.

2.3 Cookies

We use one first-party cookie (cookie_consent) stored in your browser's localStorage to remember whether you have accepted or rejected the cookie banner. No tracking, analytics or advertising cookies are set by northleigh.eu.

3. Legal basis for processing

  • Responding to contact form submissions — Article 6(1)(b) GDPR (contractual necessity / pre-contractual steps).
  • Server logs — Article 6(1)(f) GDPR (legitimate interest in security).
  • Cookie consent record — Article 6(1)(c) GDPR (legal obligation under ePrivacy Directive).

4. Data retention

Contact form data is retained for a maximum of 12 months after the final exchange of correspondence, after which it is deleted. Server logs are deleted after 90 days. Cookie consent records persist until cleared by the browser.

5. Your rights

Under GDPR you have the right to access, rectify or erase personal data we hold about you; the right to restrict or object to processing; and the right to data portability. To exercise any of these rights, write to contact@northleigh.eu. You also have the right to lodge a complaint with the Polish supervisory authority, UODO (Urząd Ochrony Danych Osobowych), at uodo.gov.pl.

6. Third-party services

This website loads the Inter typeface from Google Fonts via a CSS import. Google may record a request to its CDN at the moment your browser loads the stylesheet. No other third-party scripts, pixels or analytics tools are loaded on northleigh.eu. Images are served directly from Wikimedia Commons CDN (upload.wikimedia.org) under Creative Commons licences.

7. Security

Northleigh.eu is served over HTTPS. Contact form submissions are transmitted encrypted. We do not store payment card or financial data of any kind.

8. Changes to this policy

If this policy is updated materially, the date at the top of the page will change. Continued use of the site after a policy update constitutes acknowledgement of the revised terms.

For questions about this policy, contact contact@northleigh.eu or call +48 22 123 45 67.