Skip to content
HeadPills
en

Legal

Privacy Policy

Last updated: 29 June 2026

This Privacy Policy explains how we collect, use, store and protect your personal data when you visit headpills.com (the “Site”), contact us, or use our services. We take your privacy seriously and process personal data in accordance with the EU General Data Protection Regulation (Regulation (EU) 2016/679, “GDPR”) and applicable Polish law.

1. Who we are (Data Controller)

The controller of your personal data is:

We have not appointed a Data Protection Officer, as we are not legally required to do so. For any privacy matter you can reach us directly at the email above.

2. What data we collect

We only collect what we need:

We do not collect special categories of data (e.g. health, political or religious data), and we do not knowingly process data of children under 16.

3. Why we use your data and our legal basis

4. Who we share your data with

We never sell your personal data. We share it only with trusted service providers (processors) who help us run the Site, and only as far as necessary:

Some of these providers are based outside the European Economic Area (e.g. in the United States). Where data is transferred internationally, it is protected by appropriate safeguards such as the EU Standard Contractual Clauses and/or the EU–US Data Privacy Framework.

5. How long we keep your data

We keep enquiry and contact data only as long as needed to handle your request and for a reasonable follow-up period — generally up to 24 months from our last contact — after which it is deleted. If you become a client, we keep contract and accounting records for as long as required by Polish tax law (generally 5 years). You can ask us to delete your data sooner at any time (see your rights below).

6. Your rights

Under the GDPR you have the right to:

To exercise any of these rights, just email us athello@headpills.com. You also have the right to lodge a complaint with the Polish supervisory authority — the President of the Personal Data Protection Office (Prezes Urzędu Ochrony Danych Osobowych, UODO), ul. Stawki 2, 00-193 Warsaw, Poland.

7. Cookies & consent

We group cookies and similar technologies into three categories:

When you first visit, a cookie banner lets you accept all,reject non-essential, or choose by category. Analytics and marketing tools are blocked until you opt in — we apply Google Consent Mode so that, by default, no analytics or advertising storage is used. You can change or withdraw your choice at any time via the “Cookie settings” link in the footer. Our cookieless analytics (Cloudflare Web Analytics) runs regardless, as it sets no cookies and does not identify you.

8. Data security

The Site is served over an encrypted HTTPS connection and is a static website with no public database or login, which keeps the attack surface small. We apply reasonable technical and organisational measures to protect your data, though no method of transmission over the internet is ever 100% secure.

9. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we’ll revise the “Last updated” date at the top of this page. Significant changes will be made clear on the Site.

10. Contact

Questions about this policy or your data? Email us athello@headpills.com or use ourcontact page. We’re based in Wrocław, Poland.