lionsec logo
Contact

Privacy policy

1. General Information

  1. This Privacy Policy applies to the website available at: https://lionsec.pl (hereinafter referred to as the “Service”).
  2. The operator of the Service and the controller of personal data is LionSec – Wiktor Szymanik, conducting business activity with its registered address at Bałtycka 30A/51, 05-825 Grodzisk Mazowiecki, Poland (hereinafter referred to as the “Controller”).
  3. The Controller is responsible for the processing of users’ personal data in accordance with applicable legal regulations, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR).
  4. The Operator is the Administrator of your personal data with respect to data provided voluntarily on the Website.
  5. The Website uses personal data for the following purposes:
    • Operating an internet forum
    • Operating a comment system
    • Operating online chat conversations
    • Presenting user profiles to other users
    • Handling inquiries via forms
    • Presenting offers or information
  6. The Website performs user information acquisition functions and their behavior in the following manner:
    1. Through voluntarily entered data in forms, which is entered into the Operator’s systems.
    2. Through saving cookie files on end-user devices (so-called “cookies”).

2. Selected Data Protection Methods Used by the Operator

  1. Login and personal data entry areas are protected at the transmission layer (SSL certificate). Thus, personal data and login data entered on the site are encrypted on the user’s computer and can only be read on the target server.
  2. Personal data stored in the database is encrypted in such a way that only the Operator holding the key can read it. This protects the data in case of database theft from the server.
  3. User passwords are stored in hashed form. The hashing function works one-way – it cannot be reversed, which is the current standard for storing user passwords.
  4. The Operator periodically changes administrative passwords.
  5. To minimize the risk of unauthorized access to data, the Operator uses complex passwords containing lowercase and uppercase letters, numbers, and special characters, no shorter than 8 characters.
  6. Two-factor authentication is used on the site, providing an additional form of login protection to the Website.
  7. A key element of data protection is the regular updating of all software used by the Operator for processing personal data, particularly regular updates of programming components.
  8. To protect data, the Operator regularly performs backups.

3. Hosting

  1. The Website is hosted (technically maintained) on the Operator’s server: ovh.pl
  2. The hosting company, to ensure technical reliability, keeps server-level logs. The following may be recorded:
    • Resources specified by URL identifier (addresses of requested resources – pages, files),
    • Time of request arrival,
    • Time of response sending,
    • Client station name – identification via HTTP protocol,
    • Information about errors occurring during HTTP transaction processing,
    • URL address of the previously visited page by the user (referer link) – if entering the Website occurred via a link,
    • Information about the user’s browser,
    • Information about the IP address,
    • Diagnostic information related to the self-ordering service process via recorders on the site,
    • Information related to handling email directed to the Operator and sent by the Operator.

4. Your Rights and Additional Information on Data Usage

  1. In certain situations, the Administrator has the right to transfer your personal data to other recipients if necessary to perform the contract concluded with you or to fulfill obligations incumbent on the Administrator. This concerns such recipient groups:
    • Hosting company on the basis of entrustment
    • Authorized employees and collaborators who use the data to achieve the site’s operational purpose
  2. Your personal data processed by the Administrator no longer than necessary to perform related activities specified by separate regulations (e.g., accounting). Marketing data will not be processed longer than 3 years.
  3. You have the right to request from the Administrator:
    • Access to your personal data,
    • Their rectification,
    • Deletion,
    • Restriction of processing,
    • And data portability.
  4. You have the right to object to the processing indicated in point 3.3 c) regarding the processing of personal data for the purpose of the Administrator’s legally justified interests, including profiling, whereby the right to object cannot be exercised if there are valid legally justified grounds for processing overriding your interests, rights, and freedoms, particularly determining, pursuing, or defending claims.
  5. You have the right to lodge a complaint against the Administrator’s actions with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
  6. Providing personal data is voluntary but necessary for Website operation.
  7. Actions consisting of automated decision-making, including profiling, may be taken towards you to provide services under the concluded contract and for the Administrator to conduct direct marketing.
  8. Personal data is transferred to third countries within the meaning of personal data protection regulations. This means we send it outside the European Union.

5. Information in Forms

  1. The Website collects information provided voluntarily by the user, including personal data if provided.
  2. The Website may record information about connection parameters (time stamp, IP address).
  3. In some cases, the Website may record information facilitating linking form data to the email address of the user filling the form. In such a case, the user’s email address appears inside the URL address of the page containing the form.
  4. Data provided in the form is processed for the purpose resulting from the specific form’s function, e.g., handling service requests or commercial contact, service registration, etc. Each time, the form’s context and description clearly informs what it is for.

6. Administrator Logs

  1. Information about user behavior on the site may be subject to logging. This data is used for site administration.

7. Key Marketing Techniques

  1. The Operator applies statistical analysis of site traffic via Google Analytics (Google Inc. based in the USA). The Operator does not transfer personal data to this service operator, only anonymized information. The service is based on using cookies on the user’s end device. Regarding user preferences collected by the Google advertising network, the user can view and edit cookie-related information using the tool: https://www.google.com/ads/preferences/
  2. The Operator uses the Facebook Pixel. This technology causes the Facebook service (Facebook Inc. based in the USA) to know that a registered person is using the Website. It is based on data for which it is itself the administrator; the Operator does not transfer any additional personal data to the Facebook service. The service is based on using cookies on the user’s end device.
  3. The Operator applies remarketing techniques allowing tailoring of advertising messages to user behavior on the site, which may give the illusion that user personal data is used for tracking, but in practice, no personal data is transferred from the Operator to advertising operators. The technological condition for such actions is enabled cookie handling.
  4. The Operator applies a solution examining user behavior by creating heat maps and recording behavior on the site. This information is anonymized before being sent to the service operator so that it does not know which natural person it concerns. In particular, entered passwords and other personal data are not subject to recording.
  5. The Operator may apply profiling within the meaning of personal data protection regulations.

8. Cookie Information

  1. The Website uses cookies.
  2. Cookie files (so-called “cookies”) constitute IT data, particularly text files, stored on the Website User’s end device and intended for using the Website’s internet pages. Cookies usually contain the name of the website they come from, storage time on the end device, and a unique number.
  3. The entity placing cookies on the Website User’s end device and obtaining access to them is the Website Operator.
  4. Cookies are used for the following purposes:
    1. Maintaining the user’s session (after logging in), so the user does not have to re-enter login and password on each Website subpage;
    2. Realizing the purposes specified above in the “Key Marketing Techniques” section.
  5. Two main types of cookies are used within the Website: “session” (session cookies) and “persistent” (persistent cookies). “Session” cookies are temporary files stored on the User’s end device until logging out, leaving the website, or disabling the software (web browser). “Persistent” cookies are stored on the User’s end device for the time specified in the cookies’ parameters or until deleted by the User.
  6. Web browsing software (web browser) usually allows storing cookies on the User’s end device by default. Website Users can change these settings. The web browser enables deleting cookies. It is also possible to automatically block cookies. Detailed information on this is in the browser’s help or documentation.
  7. Restrictions on cookie use may affect some functionalities available on the Website’s internet pages.
  8. Cookies placed on the Website User’s end device may also be used by entities cooperating with the Website Operator, particularly: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).

9. Cookie Management – How to Express and Withdraw Consent in Practice?

  1. If the user does not want to receive cookies, they can change browser settings. We reserve that disabling cookies necessary for authentication, security, and maintaining user preferences may hinder, and in extreme cases prevent, using www pages.
  2. To manage cookie settings, select the web browser you use from the list below and follow the instructions:

    Mobile devices:

This privacy policy template was generated for free, for informational purposes, based on our knowledge, industry practices, and laws applicable as of 2018-08-14. We recommend checking the policy template before using it on the site. The template is based on the most common situations on websites but may not reflect the full and exact specifics of your www site. Read the generated document carefully and adjust it to your situation if needed or seek legal advice. We are not responsible for the consequences of using this document, as only you influence whether all information it contains is true. Also note that the Privacy Policy, even the best one, is just one element of your care for personal data and user privacy on the www site.

Collaboration

Menu

information

lionsec logo

Bridging offensive and defensive cybersecurity expertise

Linkedin Github

LionSec 2026 © Copyright | Powered by Ad4k

Cookies
We serve cookies. If you think that's OK, just click "Accept all". You can also choose what kind of cookies you want by clicking "Settings". Read our cookie policy
Settings Accept all
Cookies
Choose what kind of cookies to accept. Your choice will be saved for one year. Read our cookie policy
Save Accept all