Next Draft

Privacy Policy of the Next Draft Foundation

Dear User, we know how important the privacy of your personal data and online security are. The Next Draft Foundation operates in full compliance with GDPR regulations and applies the required data protection standards.

1. Who is the controller of your data?

The controller of your personal data is FUNDACJA NEXT DRAFT, with its registered office in Warsaw, Al. Jerozolimskie 85/21, 02-001 Warsaw, entered into the register of associations, other social and professional organizations, foundations, and independent public healthcare institutions of the National Court Register under number: 0001204161, Tax ID (NIP): 7011286156, Statistical ID (REGON): 543226904.

The controller processes only such data as is permitted by law and to the extent necessary to achieve the purpose of processing. Personal data is processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR).

2. What data do we process, for what purpose, and for how long?

The type of processed data depends on how you use our educational services.

  • Browsing the website: the purpose is to review the Foundation's training offer; data: browsing history, preferences, cookies; legal basis: Article 6(1)(f) GDPR; retention period: until you leave the website or delete cookies.
  • Webinar registration: the purpose is to deliver the online training and access to the platform; data: first name, last name, email, role (coach, player, parent), payment data; legal basis: Article 6(1)(b) GDPR; retention period: for the duration of the service and up to 6 years after its completion (tax purposes).
  • Newsletter: the purpose is to inform you about new training sessions and educational content; data: first name, last name, email; legal basis: Article 6(1)(a) GDPR; retention period: until consent is withdrawn.
  • Payment processing: the purpose is to complete transactions for paid webinars through the payment operator; data: identification data, billing data, card data (through the operator); legal basis: Article 6(1)(b) and (c) GDPR; retention period: 6 years from issuing the proof of sale.

3. Who may have access to your data? (Recipients of data)

To ensure the highest quality of training, we use services provided by trusted external providers.

  • Stripe Payments Europe Ltd. — online payment processing — transfer outside the EEA: yes (standard contractual clauses).
  • Easy Tools / webinar platforms — training delivery and streaming — transfer outside the EEA: depending on the selected platform.
  • Zoom Video Communications, Inc. — delivery of live webinars — transfer outside the EEA: yes (standard contractual clauses).
  • Google Ireland Limited — traffic analytics and marketing — transfer: EEA (Google Ireland) / outside the EEA (Google LLC).
  • Meta Platforms Ireland Limited — marketing and remarketing (Meta Pixel) — transfer: EEA (Meta Ireland) / outside the EEA (Meta Inc.).
  • MailerLite UAB — newsletter and notification delivery — transfer outside the EEA: yes (standard contractual clauses).
  • SEOHOST Sp. z o.o. — website server hosting — transfer outside the EEA: no (EEA).

4. Your rights

In connection with the Foundation's processing of data, you have the following rights:

  • The right to access your data.
  • The right to rectify inaccurate data or complete incomplete data.
  • The right to erasure ("the right to be forgotten") in cases provided by law, subject to exceptions (e.g. data necessary for pursuing claims).
  • The right to object to profiling or marketing.
  • The right to lodge a complaint with the President of the Personal Data Protection Office if you believe that the processing of your data violates legal provisions.

5. Profiling and cookies

Our website uses cookies, i.e. small text data stored on your device. We use analytical and functional cookies to tailor website content to your preferences, improve usability, and better align content and educational offers.

You may manage cookies through your browser settings at any time. You may accept or reject them; however, please note that rejecting cookies may limit certain website functions.

We use, among others, the following cookies:

  • essential cookies (functionality and authentication),
  • security cookies (abuse detection),
  • performance cookies (website usage statistics),
  • functional cookies (interface personalization, e.g. language).

6. Contact

For matters related to personal data protection, you may contact us by email at: fundacja@nextdraft.pl or by post to the Foundation's registered office address.