Skip to content

Privacy Policy

Last updated: 13 June 2026

This policy describes what personal data we collect through the spedly.eu website, for what purpose and on what legal basis we process it, and what rights you have under the GDPR (Regulation (EU) 2016/679). The website currently serves as an information page for the Spedly platform and collects the email addresses of people interested in its launch.

1. Data controller

The controller of your personal data is Recode Software Przemysław Szejna, ul. Popiełuszki 11/20, 94-052 Łódź, NIP: 8883076795, REGON: 385011293 (hereinafter: the “Controller”).

Contact regarding personal data: kontakt@spedly.eu.

The Controller has not appointed a Data Protection Officer (DPO).

2. What data we collect, for what purpose and on what basis

Below we describe each category of data: its scope, purpose, legal basis and retention period.

A. Waiting list (newsletter). Scope: email address. Purpose: notifying you of the launch of the Spedly platform and inviting you to early access. Legal basis: Art. 6(1)(a) GDPR (consent). Retention: until consent is withdrawn (the “unsubscribe” link in every message) or the contact is deleted at your request.

B. Form protection (Google reCAPTCHA v3). Scope: IP address and information about browser behaviour, processed by Google in order to distinguish humans from bots. Purpose: protecting forms against spam and abuse. Legal basis: Art. 6(1)(f) GDPR (the Controller's legitimate interest – website security).

C. Analytics (Google Analytics 4). Scope: anonymised data about how the website is used (with IP address anonymisation). Purpose: traffic statistics and improving the website. Legal basis: Art. 6(1)(a) GDPR (consent given via the cookie banner). Without your consent, only anonymous, cookieless signals are collected (Google Consent Mode v2). Retention: in accordance with the Google Analytics policy (14 months by default).

3. Who we share data with (processors)

To provide our services, we use trusted providers who process data solely on our instructions:

  • MailerLite (MailerLite Limited, Ireland) – managing the waiting list and sending messages. MailerLite Privacy Policy.
  • Google (Google Ireland Limited / Google LLC) – Google Analytics 4 and reCAPTCHA v3. Google Privacy Policy.

4. Transfers of data outside the EEA

As a rule, we process data within the European Economic Area (EEA). For Google services, data may be transferred outside the EEA – this takes place on the basis of standard contractual clauses (SCC) approved by the European Commission, ensuring an adequate level of protection.

5. Cookies and similar technologies

The website uses cookies and browser storage in two categories:

  • Essential – including the record of your consent decision (`spedly-consent` in browser storage) and Google reCAPTCHA files (`_GRECAPTCHA`). They are always active and do not require consent, as they are necessary for the operation and security of the website.
  • Analytics – Google Analytics (`_ga`, `_ga_*`). Loaded only after you have given your consent.

6. Your rights

In connection with the processing of your data, you have the following rights:

  • the right to access your data and obtain a copy of it;
  • the right to rectification (correction) of your data;
  • the right to erasure of your data (the “right to be forgotten”);
  • the right to restriction of processing;
  • the right to object to processing;
  • the right to data portability;
  • the right to withdraw consent at any time – without affecting the lawfulness of processing carried out before its withdrawal;
  • the right to lodge a complaint with the supervisory authority – the President of the Personal Data Protection Office (UODO), ul. Stawki 2, 00-193 Warszawa.

7. Managing cookie consent

You can give, limit or withdraw your consent to analytics cookies at any time – click “Cookie settings” in the website footer or change the settings in your browser. Withdrawing consent does not affect the lawfulness of processing carried out before its withdrawal.

8. Data security

We apply technical and organisational measures appropriate to the risks: encryption of connections (HTTPS/TLS), hosting on the Controller's own server located in Poland (European Union), and restricting access to data exclusively to authorised persons.

9. Changes to the privacy policy

We may update this policy, e.g. in connection with the development of the website or changes in legislation. The current version is always available at this address, and we will inform people on the waiting list of any significant changes by email.

10. Contact

For matters concerning personal data and privacy, write to: kontakt@spedly.eu. We respond within 30 days.