ProperSend Trust Center

Privacy policy, cookies, DPA, subprocessors, Art. 14 notice, and more — all in one place.

Go to Trust Center

Privacy Policy

Last updated: 13 June 2026

This Privacy Policy explains how ZORDON INTELLIGENCE Sp. z o.o. processes personal data in connection with the propersend.pl website, the waitlist (beta), contact forms, and B2B communication about the ProperSend SaaS platform. It is designed to comply with Regulation (EU) 2016/679 (GDPR) and applicable Polish data protection law.

1. Data controller

The controller of your personal data is ZORDON INTELLIGENCE Sp. z o.o., ul. Gdańska 129, 90-063 Łódź, Poland (“Controller”, “we”).

Registration: VAT (NIP) 7252358503, REGON 54254584300000, KRS 0001190915.

General contact: hello@propersend.pl. Privacy and data subject requests: privacy@propersend.pl (or hello@propersend.pl with “GDPR” in the subject).

We have not appointed a Data Protection Officer. The supervisory authority in Poland is the President of the Personal Data Protection Office (UODO), ul. Stawki 2, 00-193 Warsaw, uodo.gov.pl.

2. Our role in processing

Depending on context, ProperSend / ZORDON INTELLIGENCE acts as controller or processor:

  • As controller — for website visitors, waitlist subscribers, correspondence with us, and ProperSend’s own marketing.
  • As processor — for prospect, lead, and campaign data processed in the ProperSend SaaS platform on instruction of a B2B customer, who remains controller of that data.

3. Scope

This policy applies to website visitors, waitlist subscribers, business contacts, and other individuals whose data we process while developing and promoting ProperSend.

It does not replace separate SaaS terms or data processing agreements once the product is live — including our DPA (/umowa-powierzenia), subprocessors list (/subprocesorzy), and Art. 14 notice template (/klauzula-informacyjna-art14) for B2B customers.

4. Categories of data

We may process the following categories:

  • identification and contact data (name, business email, phone, company, role);
  • form data (waitlist, contact, sales inquiries);
  • technical data (IP address, cookie IDs, browser, device, visit time, referral);
  • on-site activity (page views, clicks — only if you consent to analytics);
  • correspondence content;
  • marketing data (consent status, communication preferences).

5. Purposes and legal bases

We process personal data for:

  • waitlist (beta) registration and launch-related email — Art. 6(1)(a) GDPR (checkbox consent; we record version and timestamp; scope: /zgody-marketingowe);
  • responding to contact requests — Art. 6(1)(b) or (f) GDPR;
  • direct B2B marketing outside the waitlist — Art. 6(1)(f) GDPR only after approved LIA; newsletter/promo require separate Art. 6(1)(a) consent;
  • website analytics (Google Analytics) — only after cookie consent — Art. 6(1)(a) GDPR;
  • security and abuse prevention — Art. 6(1)(f) GDPR;
  • legal claims — Art. 6(1)(f) GDPR;
  • legal obligations — Art. 6(1)(c) GDPR where applicable.

6. Recipients

Data may be shared with processors acting on our instructions, including:

  • hosting providers (e.g. Vercel Inc.);
  • email and mailing tools (e.g. MailerLite UAB for the waitlist; may receive email, signup source, consent version/time, locale, truncated IP, and user-agent);
  • Google Ireland Limited / Google LLC — Google Analytics (with consent);
  • professional advisers where necessary;
  • public authorities when required by law.

7. Transfers outside the EEA

Some providers may process data in the United States or other third countries. Transfers rely on appropriate safeguards under GDPR, including Standard Contractual Clauses and supplementary measures where required.

8. Retention

Retention depends on the processing purpose:

  • waitlist data — until consent is withdrawn or the beta ends, up to 24 months from last activity unless you agree to further contact;
  • sales correspondence — for the relationship and limitation periods (up to 6 years);
  • B2B marketing — until objection or withdrawal of consent;
  • technical logs — typically up to 12 months;
  • Google Analytics — per account settings and your consent, typically up to 14 months;
  • legal retention — as required by law.

9. Your rights

How to submit a request: /prawo-do-usuniecia · Templates: /wzory-wnioskow · Marketing consents: /zgody-marketingowe.

  • access (Art. 15);
  • rectification (Art. 16);
  • erasure (Art. 17);
  • restriction (Art. 18);
  • data portability (Art. 20) where applicable;
  • objection (Art. 21), including to direct marketing;
  • withdraw consent at any time;
  • lodge a complaint with a supervisory authority.

10. Voluntary provision

Providing data in forms is voluntary but necessary to fulfil the relevant request (e.g. joining the waitlist).

11. Automated decision-making

We do not make decisions based solely on automated processing, including profiling, that produce legal or similarly significant effects.

12. Cookies

We use cookies and similar technologies. Necessary cookies support core functionality (e.g. storing cookie choices). Analytics cookies (Google Analytics) run only after you consent via the cookie banner.

See our Cookie Policy and the cookie settings control in the website footer.

13. Security

We apply appropriate technical and organisational measures, including HTTPS, access controls, and vendor due diligence. Details: /bezpieczenstwo · /ochrona-danych.

14. B2B data specifics

Processing business contact data in ProperSend (e.g. work email from KRS/CEIDG) is typically based on legitimate interest for B2B outreach on the customer side, with Art. 14 notice (template: /klauzula-informacyjna-art14).

ProperSend’s own B2B marketing outside the waitlist may rely on Art. 6(1)(f) GDPR after approved LIA (/zgody-marketingowe). Newsletter, webinars, and promos require separate consent.

Data subjects may object to marketing and exercise rights described in section 9.

15. Changes

We may update this policy. Material changes will be published on this page with an updated date.