Privacy policy

Cookie Policy

Entry into force: 01.09.2023

1. Introduction

Welcome to our website. The following "Cookie Policy" explains how we protect your personal data and how we use cookies, what types of cookies we use, why they are used, and what rights you have in relation to their processing.

The policy describes two situations in which we use cookies:

  • files we use on Gemius websites - including this website,
  • cookies used by our clients: if you want to find out our clients' cookie use rules, please see the section "Our cookies on third-party sites".

How do cookies work? Cookies are IT data placed and stored on your device when you visit our website. In addition to cookies, we may also use other information retrieval technologies on our website, but for clarity, we will refer to these as “cookies”.

We encourage you to read this policy. We are at your disposal if you have any questions or concerns about our processing of your personal data or cookies. Our contact details are in the " Information about the Data Controller " section.

2. Information about the Data Controller

This website is managed by Gemius S.A., a company based in Poland (address: 48 Domaniewska Street, 02-672 Warsaw, Poland). We are the controller of your personal data processed in connection with the use of this website.

If you have any questions or concerns about data processing, you can direct them to our postal address or email address: privacy[at]gemius.com. We have appointed a Data Protection Officer - Jacek Grabowski, whom you can contact at this address.

If you have any questions or concerns or would like to exercise your data protection rights, we encourage you to contact us.

3. Types of cookies used and data collected

We only use analytical and statistical cookies on our website. These cookies are used to collect information about how you use it. This information allows us to understand better what content is of most interest to our visitors and to compare our website with others, i.e., to determine, for example, what our reach is.

The cookies we use collect general data such as your IP address (we anonymize your IP address in our systems), the technical data of the device you are using (screen resolution, operating system, browser data), the time spent on the website and the pages viewed, the number of page views or the click data.

If you have completed the questionnaire of our media consumption research (generally called gemiusAudience) in your browser and have become our panelist, we also invite you to read the Privacy Policy for Panelists available on our website. We would like you to be aware that we may then attribute the data you provide to us as part of the gemiusAudience survey to the data collected via cookies.

If you would like to learn more about how cookies work or express your preferences regarding their use, please visit the "Cookie Management" section of this Policy.

4. Purpose and legal basis of the processing

We process your personal data using analytical cookies to learn how you use our website. These analytics allow us to improve our website, adapting it to your preferences and providing a better service.

The legal basis for processing your personal data is your consent. You give this consent by clicking the "I accept" button on the cookie information banner that appears when you first visit our website.

Your consent is a key element in protecting your rights and privacy. If at any time you change your mind or wish to withdraw your consent to the use of cookies, you have the right to do so. Please see the “Cookie Management” section for information on how you can manage your cookie preferences.

Please note that analytical cookies are for statistical and analytical purposes only. They do not collect any personal data in such a way that a specific user can be identified.

5. Data recipients

We process our data in the server rooms of our suppliers in Poland.

Your data may be made available to authorities entitled to receive them under the law.

6. Obligation to share data

You do not have to share your data. If you do not want to, you can always block the cookies in your browser or you can exercise your rights as described in the section "Your rights".

This situation (when you block the cookies) may result in receiving information and advertising that may not be of interest or importance to you.

7. Cookie Management

We understand that your cookie preferences may change, so we have created a "Gemius Privacy Tool" that allows you full control over the cookies used when using our website. With the "Gemius Privacy Tool" you can customize your cookie preferences according to your needs. To use this tool, click on the link below:

Link to Gemius Privacy Tool

We want you to be in control of our cookie processing. Our "Gemius Privacy Tool" gives you this opportunity in an easy and transparent way.

If you have questions or concerns about the “Gemius Privacy Tool” or cookie management, we encourage you to contact us using the contact details provided in the "Information about the Data Controller" section.

8. Data retention period

The complete data collected by us is kept for a period of 3 years, starting from the moment of their collection. Data older than three years is sampled (a very large proportion is deleted, and only representative data is retained) and stored for statistical purposes only, with appropriate safeguards.

9. Your rights

In respecting your personal rights, we support the protection of your personal data in accordance with current legislation. You have the right to:

  • withdraw your consent at any time;
  • data portability (change of data controller);
  • erasure of personal data which concerns you;
  • rectification of your data;
  • restriction of your data processing;
  • right to request access to the data which concerns you;
  • object to the processing of your data;
  • data portability of your data.
  • to object to processing your data and in connection with automated decision-making (profiling).

In order to realize them, use the Gemius Privacy Tool.

You also have the right to lodge a formal complaint with the competent data protection authority. You can find the addresses of these authorities in Europe at https://edpb.europa.eu/about-edpb/about-edpb/members_en.

10. Data security

The security of your personal data is a priority for us. Therefore, we have put technical, organizational, and administrative measures in place to protect your data against unauthorized access, loss, theft, or breach.

Our activities include, for example:

  • ISO 27001 certification:our systems and data protection practices are certified to ISO 27001, which means that we meet international information security standards.
  • Data encryption: personal data is stored and transmitted in an encrypted manner, further increasing its protection against unauthorized access.
  • Systems monitoring: we regularly monitor our systems to detect and prevent potential threats.
  • Access control: we restrict access to your personal data to authorized employees or third parties who need to access the data to provide services.
  • Employee training: our employees are regularly trained in data protection and the safeguards in place.

Despite our best efforts, please remember that no system is completely risk-free. If you discover any suspicious or unauthorized activity regarding your personal data or use of our site, please contact us immediately.

If you have questions about data security, ISO 27001 certification, or our privacy practices, please contact us using the contact details in the "Information about the Data Controller" section.

11. Our cookies on third-party sites

Where data is collected with the use of our cookies from our customers' websites, the controllers of the personal data are actually our customers (e.g., website owners; they may be indicated in the respective website's privacy policy). They are the ones who decide on the purposes and legal basis of the data processing. We encourage you to contact them directly to clarify the exact purposes of the use of our cookies.

What can cookies be used for by our customers

We are a research provider. We use cookies and other technologies to collect data on our clients' websites. The purpose for which we collect data on behalf of our clients is determined by the privacy policies published on their websites and applications. The services we provide may be used for statistical and sometimes advertising purposes. If you wish to know the details of a specific situation, please contact our specific client. Below we indicate only general descriptions of selected research and services provided to our clients:

  • Site-centric research: Our clients can use cookies to understand their users' needs better and optimize their services.
  • gemiusAudience study (survey of media consumption in a given market). Our clients can participate in this research so that an independent company (i.e., we) can compare the statistical indicators of various websites in a given market. You can read more about this study in our website's Privacy Policy for Panelists.
  • Statistical research on ad impressions: Our clients may use cookies in order, for example, to measure the reach of an advertising campaign to measure your interaction with the ads displayed to you. They do not build your interest profile or serve you ads based on such a profile. For this reason, this purpose is still a statistical purpose.
  • Advertising emissions. Our clients may use cookies to serve you adverts based on your marketing profile. This may be based on your interactions with the adverts shown to you or, for example, your browsing history, where you have consented to the processing of data for marketing purposes. Information about click-throughs or ad impressions may be used to tailor the ads you see or what you see on websites to your interests.

Guarantee of purpose invariability

We guarantee that we do not change the purpose for which the data was collected on the Clients’ pages. This means, for example, that data collected for statistical purposes will not be used for marketing purposes. We make this guarantee because your trust in us, the trust of our customers, and legal compliance come into play.

Our clients in many countries allow us to construct general statistics and reports on the basis of the data collected from them. The result is anonymous statistical data. An example of such data you can see at https://ranking.gemius.com.

Management of cookies on customer websites

You can manage the cookies used on the Clients' websites according to the mechanisms and rules implemented on their websites. Details are set out in their privacy policies.

If you wish to manage only our cookies by bypassing their mechanisms, you can do so using the Gemius Privacy Tool, which we describe above in the "Cookie Management” section. If you bypass the Client mechanisms and use this tool, for example, to revoke your consent to our cookies, this revocation will apply to all our Clients but only to our cookies. This, therefore, means that other cookies (e.g., analytical or advertising cookies) implemented on their websites will continue to work.

Cookie Matching

When our clients participate in the media consumption survey in a given market, their websites may use their own cookies. We can analyze these using our computational method called Cookie Matching. This involves analyzing data, e.g., we examine the association of a cookie with a specific IP address and the time of its activity. Using this method, we can determine with some probability that different cookies from our Clients’ websites correspond to the same person visiting several different websites.

We use this method in our internal systems. Through it, we guarantee that your privacy is respected. For example, this method does not allow anyone to create your online profile or provide you with personalized content or advertisements. It is a strictly statistical method. It allows us to ensure the high quality of the gemiusAudience survey results.

In carrying out this method, we use cookies assigned by our clients' websites. You can manage these cookies according to the mechanisms implemented on their websites. Details are set out in their privacy policies. In order to exercise your rights, we encourage you to contact the website owner that assigned the cookie directly.

12. We comply with European standards

We confidently declare our compliance with the IAB Europe Transparency & Consent Framework standard. We are a member of this standard, and our identification number is 328.

This is an initiative to provide internet users with transparent information about cookies and the ability to consent to their use. By participating in this standard, we want to ensure that you have choices and decisions about your privacy. We work with Clients who provide you with a transparent choice regarding your decision to use cookies. Our Customers can communicate your preferences to us using this standard.

If you would like more information on our compliance with the IAB Europe Transparency & Consent Framework standard, we encourage you to contact us using the contact details provided in the "Information about the Data Controller" section.

13. Changes to the Cookie Policy

Our Cookie Policy is subject to change due to the development of our services, technological changes, and legislation. We will update it to reflect our data protection activities.

When we make changes to our Cookie Policy, we undertake to inform you of these changes in a transparent and understandable manner. We may do this, for example, by displaying a message on the website.

If you have questions about changes to the Cookie Policy or other aspects of data protection, please contact us using the contact details provided in the "Information about the Data Controller" section.