Privacy Policy
Last updated: May 24, 2026
This Privacy Policy describes how MLNATIVE sp. z o.o., operator of dockmind.ai, processes your personal data when you use our website.
Personal data controller
Your personal data controller is MLNATIVE sp. z o.o. (limited liability company) with its registered office in Gdańsk (registered office address: ul. Stefana Batorego 33/19, 80-251 Gdańsk), entered in the Register of Entrepreneurs of the National Court Register kept by the District Court for Gdańsk-Północ in Gdańsk, VII Commercial Division of the National Court Register under KRS number: 0001026089, holding NIP: 9571155976, REGON: 524788382, with share capital: PLN 5,000.00 (hereinafter: the "Controller").
Contact with the Controller
In all matters related to the processing of personal data, you may contact the Controller by e-mail at: hello@dockmind.ai.
Personal data protection measures
The Controller applies modern organizational and technical safeguards to ensure the best possible protection of your personal data, and processes it in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (the "General Data Protection Regulation" or "GDPR"), the Polish Data Protection Act of 10 May 2018, and other applicable data protection legislation.
Information on personal data processed
Using the dockmind.ai website (the "Website") may involve the processing of your personal data. The tables below describe what data we process, why, on what legal basis, and for how long.
A. Handling enquiries submitted through the Website
| Personal data processed | Purpose of processing | Legal basis |
|---|---|---|
| 1) name / company name 2) e-mail address 3) other data contained in the message to the Controller | Handling enquiries submitted by visitors and prospects | Article 6(1)(f) GDPR — processing is necessary for the Controller's legitimate interest, namely responding to enquiries received. |
Provision of the above-indicated personal data is voluntary but necessary to receive a response. The Controller will process the above personal data until an objection is successfully raised or the purpose of processing is achieved (whichever occurs first).
B. One-pager downloads and other marketing content
| Personal data processed | Purpose of processing | Legal basis |
|---|---|---|
| 1) e-mail address 2) optionally: name and company | Delivering requested marketing materials and informing about related products and services | Article 6(1)(b) GDPR — performance of a service requested by the data subject; and Article 6(1)(f) GDPR — Controller's legitimate interest in informing recipients about related products and services. |
Provision of the above personal data is voluntary but necessary to receive the requested materials. The Controller will process the data until an effective objection is raised or until the purposes are achieved.
C. Handling complaints
| Personal data processed | Purpose of processing | Legal basis |
|---|---|---|
| 1) name and surname / company name 2) e-mail address | Handling complaints | Article 6(1)(f) GDPR — Controller's legitimate interest, including the pursuit of or defence against potential claims. |
Provision of the above data is voluntary but necessary to receive a response to a complaint. The Controller will process the data for the duration of the complaint procedure.
D. Analysis of activity on the Website
| Personal data processed | Purpose of processing | Legal basis |
|---|---|---|
| 1) date and time of your visit 2) IP address 3) device operating system 4) approximate location 5) browser type 6) time spent on the Website 7) sub-pages visited and other actions taken | Analysis of activity on the Website to improve content and user experience | Article 6(1)(f) GDPR — Controller's legitimate interest in obtaining information about visitor activity on the Website. |
Provision of the above data is voluntary but necessary for the Controller to obtain insight into Website activity. The Controller will process the data until an objection is successfully raised or the purpose of processing is achieved.
E. Administration of the Website
| Personal data processed | Purpose of processing | Legal basis |
|---|---|---|
| 1) IP address 2) server date and time 3) browser information 4) operating system information (saved automatically in server logs each time the Website is used) | Administration of the Website | Article 6(1)(f) GDPR — Controller's legitimate interest in ensuring the proper functioning of the Website. |
The Controller will process the data until an objection is successfully raised or the purpose of processing is achieved.
F. Fulfillment of data protection obligations
| Personal data processed | Purpose of processing | Legal basis |
|---|---|---|
| 1) name and surname / company name 2) contact details you have provided (e-mail address; mailing address; telephone number) | Fulfillment of obligations under data protection legislation | Article 6(1)(c) GDPR — processing is necessary for compliance with a legal obligation to which the Controller is subject. |
Provision of the above data is voluntary but necessary for the Controller to properly perform its duties under data protection legislation. The Controller will process the data until the expiry of the statute of limitations for claims related to data protection breaches.
G. Establishment, assertion of, or defence against claims
| Personal data processed | Purpose of processing | Legal basis |
|---|---|---|
| 1) name and surname / company name 2) e-mail address 3) address of residence / registered office 4) NIP / VAT ID | Establishment, assertion of, or defence against claims | Article 6(1)(f) GDPR — Controller's legitimate interest in establishing, asserting, or defending against claims arising from agreements concluded with the Controller. |
Provision of the above data is voluntary but necessary for the Controller to undertake the said activities. The Controller will process the data until the statute of limitations for the relevant claims expires.
Recipients of personal data
The following third parties working with the Controller may be recipients of personal data:
- the hosting and infrastructure provider (Vercel Inc.);
- e-mail and newsletter delivery providers;
- analytics tool providers (including Vercel Analytics, Google Analytics);
- providers of meeting-scheduling tools used to book discovery calls;
- the Controller's legal and accounting service providers.
In addition, personal data may be transferred to public or private entities where such an obligation arises from generally applicable law, a final and non-appealable court judgment, or a final and non-appealable administrative decision.
Transfer of personal data to a third country
In connection with the Controller's use of services provided by Google LLC and other US-based service providers, your personal data may be transferred to the following third countries: UK, Canada, USA, Israel, Japan, and South Korea, as well as countries covered by standard contractual clauses (including Brazil, Chile, Saudi Arabia, Qatar, India, China, Singapore, Taiwan, Indonesia, and Australia).
The legal basis for such transfers is:
- for the UK, Canada, Israel, Japan, and South Korea — European Commission decisions finding an adequate level of personal data protection;
- for the USA — Commission Implementing Decision (EU) 2023/1795 of 10 July 2023, finding an adequate level of protection under the EU-US Data Privacy Framework;
- for other listed countries — standard contractual clauses pursuant to Commission Implementing Decision (EU) 2021/914 of 4 June 2021.
You may obtain a copy of personal data transferred to a third country from the Controller.
Your rights
In relation to the processing of personal data, you have the following rights:
- 1. Right of access — the right to be informed which of your personal data is processed by the Controller and to receive a copy of such data. The first copy is free of charge; the Controller may charge a fee for subsequent copies.
- 2. Right to rectification — where the data processed becomes outdated, incomplete, or otherwise incorrect, you may request its correction.
- 3. Right to erasure — in certain situations you may request that the Controller delete your personal data, e.g. where the Controller no longer needs the data, you have withdrawn your consent, the processing is unlawful, or deletion is required by law.
- 4. Right to data portability — where the legal basis for processing is consent or performance of a contract, you have the right to transfer your data to another controller.
- 5. Right to withdraw consent — where the legal basis for processing is your consent, you may withdraw it at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.
- 6. Right to restriction of processing — in certain cases (e.g. where the data is inaccurate or processing is unlawful), you may request that the Controller restrict processing to mere storage.
- 7. Right to object— you may object to the processing of personal data based on the Controller's legitimate interests. If the objection is successful, the Controller will cease processing for the purpose objected to.
- 8. Right to lodge a complaint — you may lodge a complaint with the President of the Polish Personal Data Protection Office (Prezes Urzędu Ochrony Danych Osobowych) if you consider that the processing of your personal data violates the GDPR.
Cookies
The Website uses "cookies" — small text files stored on your device. They are used to:
- a) ensure the proper functioning of the Website;
- b) improve the user experience and detect issues on the Website;
- c) gather aggregated analytics on how visitors use the Website.
Both permanent cookies and temporary (session) cookies may be placed on your device. Session cookies are typically deleted when you close your browser; permanent cookies remain until expiration or manual deletion.
Information about cookies is presented in a consent banner displayed when you first visit the Website. You may enable or disable cookies of each category (except essential cookies) at any time.
The data collected through cookies do not allow the Controller to identify you directly. Through most browsers, you can inspect, delete, or block cookies; doing so may, however, affect the functioning of the Website.
Final provisions
To the extent not covered by this Privacy Policy, the generally applicable data protection regulations shall apply.
This Policy is effective as of the date indicated at the top of the page.