Home › Privacy Policy
Document

Privacy Policy

Last updated: March 1, 2026 · Rubicon Group Vladyslav Riadov

1. General information

This Privacy Policy describes the rules for collecting, using, processing, and protecting the personal data of users of the website rubicon-group.pl and its associated software service.

The data controller is:

  • Rubicon Group Vladyslav Riadov
  • NIP: 6972395549 · REGON: 526790012
  • Address: ul. Jana Ostroroga 1a/28, 64-100 Leszno, Poland
  • Email: support@rubicon-group.pl
  • Telegram: @rubicon_group

Personal data is processed in accordance with EU Regulation 2016/679 (GDPR) and applicable law of the Republic of Poland.

2. What data is collected

Account data:

  • Telegram user ID and username
  • user name or client name

Service usage data:

  • phone numbers of Telegram accounts within the service
  • account names and account group names
  • authorized session files of accounts
  • action logs and usage statistics
  • technical parameters of proxies and devices
  • message templates uploaded by the user

Website data: IP address, browser technical data, and localStorage value storing the user's cookie banner choice.

3. Payment information and Stripe

Payments are processed exclusively through the payment service Stripe (Stripe, Inc. / Stripe Payments Europe, Ltd.) on Stripe's secure servers — not on rubicon-group.pl.

Stripe collects and processes: payer name, billing address, payment card data (stored encrypted per PCI DSS), transaction data.

Rubicon Group does not have access to users' full payment card details.

Transaction data may be shared with accounting service inFakt.

4. Purpose of data processing

  • providing access to the service and technical user support
  • payment processing via Stripe and accounting
  • fulfilling legal and tax obligations
  • ensuring service security and fraud prevention
  • service analysis and improvement

5. Legal basis for processing

  • contract performance — Art. 6(1)(b) GDPR
  • fulfillment of legal obligations — Art. 6(1)(c) GDPR
  • legitimate interest of the controller — Art. 6(1)(f) GDPR

6. Third-party data processing

  • Stripe — payment processing
  • inFakt — accounting (may be accessed by an accountant)
  • Hosting providers — servers physically located in the European Union (Germany)

Rubicon Group does not sell or transfer personal data to third parties for marketing purposes.

7. User content and liability

The operator does not verify or moderate message templates and other content uploaded by users. The user bears full responsibility for the content of materials they upload and distribute through the service.

8. Security logs

Technical logs of system events and usage parameters are maintained to ensure stable service operation. Data is used exclusively for service security and stability.

9. Data retention period

Personal data is retained for the period necessary to provide services, fulfill legal and tax obligations, and protect the controller's legitimate interests.

10. User rights

Under GDPR you have the right to: access your personal data, request its correction or deletion, restrict or object to its processing, obtain a copy of your data (data portability), and lodge a complaint with a supervisory authority.

In Poland the supervisory authority is the Urząd Ochrony Danych Osobowych (UODO), uodo.gov.pl.

To exercise your rights, contact: support@rubicon-group.pl.

11. Data security

The controller applies appropriate technical and organizational measures to protect personal data from unauthorized access, loss, and destruction. Data transmission between the browser and the website uses the HTTPS protocol.

12. User age

The service is intended for persons aged 18 and over. Persons under 18 should not use the service.

13. Policy changes

The operator reserves the right to modify this Policy. The current version is always published at rubicon-group.pl. The date of last update is indicated in the document header.