Privacy and security policy

This document contains general information related to the handling of information collected by entities who are customers of IdoBooking Sp. z.o.o. and who use the IdoBooking system. Detailed information regarding the processing of personal data can be found in the Privacy Policy of the IdoBooking Sp. z.o.o. websites and in the Terms of Service of IdoBooking.

IdoBooking Sp. z.o.o. with its registered office in Szczecin provides IdoBooking software for managing online bookings of accommodation facilities. We know that the information stored in our systems is the property of our customers, which is why we pay great attention and care to security and confidentiality. All customer data stored in the databases is considered confidential. Information collected through contact forms, orders for demonstration materials, etc. is used for marketing purposes and to prepare commercial offers.

All employees or persons cooperating with IdoBooking Sp. z.o.o., before gaining access to confidential data, sign personal Non-Disclosure of Confidential Information (NDA) agreements, which oblige them to keep the acquired information confidential forever, even after termination of cooperation. Under these agreements, it is prohibited for these persons to share confidential information themselves, under penalty of full legal and material liability for such acts. It is forbidden to duplicate data and to store it on the private media of employees and collaborators.

Selected employees of IdoBooking Sp. z.o.o. have access to IdoBooking administrative panels. Each access to a customer's administrative panel is recorded in an event log. It is internal policy to visit the administrative panels of supported customers for the sole purpose of commercial or technical advice. Selected employees of IdoBooking Sp.z.o.o. also have access to backups that they can use to restore lost data or undo harmful changes. If a particular IdoBooking module provides a history of changes to be saved, then changes made by support staff are marked as ‘Support IdoBooking’.

The data of different customers is stored in databases and directories independent of each other. Different customers do not have access to data stored by another entity. When dedicated servers are used, they use independent physical servers or virtualised dedicated servers obtained by dividing the full computing power of the server into fixed, smaller parts.

IdoBooking Sp. z.o.o. collects the history of events (logs) of customers using IdoBooking. We do so only for the purpose of proper server administration and statistical research, in particular - analysing statistics and measuring traffic generated by individual customers. The web server logs after the statistics are generated are not further collected or processed.

IdoBooking has the SSL protocol enabled, the use of which is enforced when using the administration panel. If the customer does not order their own, additionally paid SSL certificate then an SSL certificate is used. This certificate must be up-to-date (with no expired period) and signed by the authorisation centre. If you suspect that someone is using a dummy to intercept your password (so-called phishing), please check your SSL certificate details.

Employees of IdoBooking Sp. z.o.o. contact a guest of an accommodation facility only at the express request of the owner and in situations when the information provided by the customer is inconsistent or does not allow us to determine the source of the problem. If the contact is made in a form other than IdoBooking messages, the staff may request additional identification data or refuse to carry out a request made by a person other than the owner, e.g. a request for additional rights made by an employee over the phone.

IdoBooking Sp. z.o.o. may use the data provided to the contact at the BOK for marketing purposes, to present new products and solutions which, in the opinion of IdoBooking Sp. z.o.o. employees, may contribute to an increase in sales or are beneficial to the customer.

It is forbidden and technically impossible to provide access to the customer's administrative panel in such a way that the customer cannot see this in the log-in log and user database.

IdoBooking Sp. z.o.o. shall not be liable for the mistakes of persons using IdoBooking if, due to their fault, the rules of confidentiality of the collected information are not observed. In particular, we discourage the use of a single user account of the administrative panel, saving and giving the password to the public. We also do not recommend sending passwords via the Internet in the form of e-mails and using instant messengers.

The IdoBooking Sp. z.o.o. company may disclose the data of customers booking accommodation through IdoBooking only to duly authorised state authorities upon duly motivated request. Unless otherwise stipulated by the government authorities requesting information, the customer will be informed immediately upon receipt of the request.

IdoBooking Sp. z.o.o. is not responsible for the implementation and form of the privacy policy on third-party websites. In particular, we are not responsible for the collection of information by entities such as shopping arcades, price comparison engines, auction systems, payment intermediaries or offer aggregation systems. The use of third-party websites is based on the security policies of these companies and the owner's voluntary adherence to these systems.

IdoBooking Sp. z.o.o. advises users who share a computer with others to use the logout option after booking a selected place of accommodation, so that others will not be able to view the account settings in any way or use them in a manner contrary to the owner's will. In order to delete information stored in the browser's cache, we recommend deleting the history of pages opened and deleting files stored in the cache.