Privacy Policy

The controller of your personal data is:

• Business name: Mateusz Ciesielski
• Address: ul. Górki 19C/47, 60-204 Poznań
• Tax ID (NIP): PL6722029950
• Contact: Contact form

For matters related to data processing, you can contact us via the contact form.

We collect the following types of data:

• Data provided voluntarily: When you create an account, we collect your email address. When you ask questions to our AI fortune teller, we process the content of those questions in order to generate a response.
• Automatically collected data: Like most websites, we use cookies and similar technologies to collect information about your activity, such as IP address, browser type, pages visited, and time spent on the site.

We use your data for the following purposes, along with the corresponding legal basis under the GDPR:

• Providing services, including personalisation of Tarot readings and horoscopes — legal basis: Art. 6(1)(b) GDPR (performance of a service contract).
• Managing your user account — legal basis: Art. 6(1)(b) GDPR (performance of a service contract).
• Communicating with you on service-related matters — legal basis: Art. 6(1)(b) GDPR (contract performance) and Art. 6(1)(f) GDPR (legitimate interest of the controller in maintaining communication with users).
• Analysing and improving the performance of our website — legal basis: Art. 6(1)(f) GDPR (legitimate interest of the controller in improving services) and Art. 6(1)(a) GDPR (consent — for analytics tools requiring consent, such as Google Analytics).
• Ensuring security and preventing abuse — legal basis: Art. 6(1)(f) GDPR (legitimate interest of the controller in securing systems and preventing unauthorised access).

Your questions to the AI are processed solely to generate a response and are not permanently linked to your account in a way that would allow third parties to identify you.

In order to provide services and ensure the proper functioning of the platform, your personal data may be shared with the following categories of recipients:

• Cloud and hosting service provider: Microsoft Azure — application hosting, databases, and technical infrastructure.
• Analytics service provider: Google (Google Analytics) — website traffic analysis and usage statistics, only after you have given your consent.
• Artificial intelligence service provider: OpenAI (via Azure OpenAI Service) — processing the content of questions asked to the AI fortune teller in order to generate responses.

All data recipients act as data processors on our behalf and are contractually bound to maintain confidentiality and process data only in accordance with our instructions and applicable data protection law.

Due to our use of providers such as Microsoft (Azure), Google (Google Analytics), and OpenAI, your personal data may be transferred to and processed in the United States of America (USA) or other countries outside the European Economic Area.

Transfers of data to third countries are carried out only with appropriate safeguards in accordance with the GDPR, in particular:

• Participation of providers in the EU–US Data Privacy Framework (DPF), which ensures an adequate level of protection for personal data meeting European requirements.
• Use of Standard Contractual Clauses (SCCs) approved by the European Commission, which guarantee an adequate level of protection for your data.

You can obtain more information about the safeguards applied to data transfers outside the EEA by contacting us via the contact form.

The platform collects information using the following types of cookies:

• Session cookies: Temporary files stored on the user's device until they log out, leave the website, or close the browser. They ensure the correct functioning of the platform.
• Persistent cookies: Stored on the user's device for the period specified in the cookie parameters, or until deleted by the user. They are used to remember your preferences and settings for future visits.
• Necessary cookies: These files are required for the proper functioning of the platform (e.g. login, user preferences) and do not require consent.
• Analytics cookies (Google Analytics): We use Google Analytics to analyse website traffic and collect statistics on visits and user behaviour. These cookies are activated only after you have given your voluntary consent by clicking the "Accept" button on the cookie consent banner.

Managing consent: You may withdraw your consent to analytics cookies at any time by:

• Changing settings in the cookie consent panel available on the platform.
• Deleting cookies in your browser settings.
• Blocking analytics cookies in your browser settings.

Cookie collection supports the correct provision of services on the platform and serves statistical purposes. Withdrawing consent to analytics cookies does not affect your ability to use the core features of the platform.

We retain your personal data for the following periods:

• User account data (email address, preferences): For the entire duration of your account, and after deletion — for the period required by law or until claims expire.
• Reading and Tarot history: For the entire duration of your account, or until deleted by you.
• Google Analytics data: For 14 months from the date of collection, in accordance with the data retention settings in Google Analytics.
• System logs and security data: Up to 12 months from the date of creation, to ensure platform security and defend against claims.
• Marketing consent data: Until consent is withdrawn or for 3 years from the last interaction with the user.

After the above periods have elapsed, data is permanently deleted or anonymised in a way that prevents identification of the user.

We are aware that questions directed to the AI fortune teller (Tarot, horoscopes) may contain personal or sensitive information (e.g. relating to health, private life, or emotions).

Principles for processing such data:

• The content of your questions is processed solely to generate a response from the AI system (legal basis: Art. 6(1)(b) GDPR — performance of a service contract).
• Questions are processed in an automated manner by the AI system and are not used to build a personal profile of the user for purposes other than delivering the fortune-telling service.
• Question content is not shared with third parties other than AI service providers (OpenAI via Azure OpenAI Service) acting as processors on our behalf.
• You can delete your reading history at any time from within your account.

We encourage you to be thoughtful when formulating questions and to avoid sharing particularly sensitive information that is not necessary to obtain an answer.

You have the right to:

• Access your personal data.
• Rectify your data.
• Erase your data ("right to be forgotten").
• Restrict processing of your data.
• Data portability.
• Object to the processing of your data.
• Withdraw consent at any time (where processing is based on consent).

To exercise your rights, please contact us via the contact form. We will respond to your request within one month of receipt.

Right to lodge a complaint: You have the right to lodge a complaint with the President of the Personal Data Protection Office (UODO) if you believe that the processing of your data violates your rights and freedoms under Regulation (EU) 2016/679 (GDPR).

User data is not processed in an automated manner in a way that would result in decisions producing legal effects or similarly significantly affecting users.

User data may be profiled to tailor content and personalise offers, only after users have given their consent to such processing.

The controller reserves the right to amend this Privacy Policy, provided that user rights will not be restricted. Notice of any changes will be published as an announcement on the platform.

Matters not governed by this Privacy Policy are subject to the provisions of Regulation (EU) 2016/679 (GDPR) and applicable Polish law.