Privacy Policy
This Privacy Policy explains how I collect, use, store, and protect your personal data when you visit my website, contact me, or work with me.
I am committed to handling personal data responsibly, transparently, and in line with UK data protection law, including the UK GDPR.
Last updated: 19 January 2026
Who I am
I operate under the trading name CMYSZ.
Data Controller:
Cezary Myszkowski (trading as CMYSZ)
Edinburgh, Scotland, United Kingdom
If you have any questions about this policy or how your data is handled, you can contact me directly via the details on this website.
What data I collect
Depending on how you interact with me, I may collect:
- Contact information (such as your name, email address, phone number)
- Business or project information you choose to share
- Technical data such as IP address, browser type, and device information
- Communications between us (emails, messages, meeting notes)
- Account access details or credentials, where required for agreed work
I only collect data that is necessary for legitimate business, legal, or operational purposes.
How I use your data
Your data may be used to:
- Respond to enquiries or booking requests
- Deliver agreed services
- Manage projects, billing, and administration
- Improve how I work and communicate
- Meet legal, regulatory, or tax obligations
I do not sell personal data or use it for unrelated marketing purposes.
Legal basis for processing
I process personal data under one or more of the following lawful bases:
- Performance of a contract or steps taken prior to entering one
- Legitimate interests in operating and improving my services
- Legal obligations
- Consent, where explicitly given
Confidentiality and data security
All client data is treated as confidential.
Reasonable technical and organisational measures are used to protect data against loss, misuse, unauthorised access, or disclosure. Access to sensitive information is limited to what is strictly necessary to deliver services.
Where third-party tools or platforms are used, they are selected with care and used in line with their own data protection obligations.
Data retention
Personal data is only retained for as long as necessary to:
- Fulfil the purpose for which it was collected
- Meet legal, regulatory, or insurance requirements
- Resolve disputes or enforce agreements
When data is no longer required, it is securely deleted or anonymised.
Sharing data with third parties
Your data may be shared only where necessary, for example with:
- Service providers supporting delivery of agreed work
- Accountants, insurers, or legal advisers where required
- Technology platforms used to manage communication or collaboration
Data is never shared unnecessarily or for unrelated purposes.
Your rights
You have the right to:
- Access your personal data
- Request correction of inaccurate data
- Request deletion of your data, where applicable
- Object to or restrict processing in certain circumstances
- Withdraw consent where consent is the lawful basis
Requests can be made by contacting me directly.
Cookies & Analytics
This website does not use cookies for tracking or advertising purposes.
I use a privacy-friendly analytics tool to understand how visitors interact with the website (for example, which pages are visited and how the site is used). This analytics tool operates without setting cookies and does not track users across websites.
The data collected is aggregated and anonymised and is used solely to help improve the performance, usability, and content of the website. No personally identifiable information is collected through this process.
Because no cookies are used for analytics, a cookie consent banner is not required.
Changes to this policy
This Privacy Policy may be updated from time to time. The latest version will always be published on this website.