Privacy Policy
Last updated: February 2026
I. General Information
This Privacy Policy defines the rules for processing personal data of users of the next2.info website and the Next2 mobile app (collectively: the "Platform"). The data controller is Next2 sp. z o.o. based in Władysławów, ul. Radosna 17, registered in the KRS under number 0001216264, VAT 1231595471, REGON 543698690 (the "Controller"). Contact: contact@next2.info. This Policy complies with GDPR and applicable Polish and EU law.
II. Scope of Data Processed
Account data: first name or nickname, email address, phone number, profile photo (optional). Location data: approximate location (city, district, street) used to match local content. Users can manage location permissions in device settings. Activity data: content of listings, interactions with other users. Technical data: IP address, OS version, error logs and performance data.
III. Purposes and Legal Bases
Performance of contract (Art. 6(1)(b) GDPR): account management, publishing listings, enabling contact between users. Consent (Art. 6(1)(a) GDPR): processing of precise location, sending push notifications and use of optional analytics cookies. Legitimate interest (Art. 6(1)(f) GDPR): security (content moderation, abuse prevention), statistical analysis and improvement of Platform features, pursuit of or defence against potential claims.
IV. Profiling
The Platform performs technical profiling to match displayed content (listings, events) to the user's location. This profiling does not involve automated decision-making that would produce legal or similarly significant effects for the user.
V. Recipients of Data
Data may be transferred only to trusted entities supporting the Platform: hosting and cloud infrastructure providers, and providers of analytical and technical tools (e.g. Google Firebase, Google Analytics). Data is not sold or shared with third parties for their own marketing purposes.
VI. Transfers Outside the EEA
When using service providers outside the European Economic Area (e.g. Google), the Controller ensures that transfers take place on the basis of European Commission adequacy decisions or Standard Contractual Clauses.
VII. Retention Periods
Account data: for the duration of the account. Data after account deletion: up to 24 months to secure claims and ensure security. Analytics data and technical logs: up to 12 months.
VIII. User Rights
Users have the right to: access and rectification of their data; erasure ('right to be forgotten'); restriction of processing and data portability; objection to processing based on legitimate interest; withdrawal of consent (location, notifications) at any time; lodge a complaint with the President of the Personal Data Protection Office (ul. Stawki 2, 00-193 Warsaw, Poland).
IX. Children's Privacy
The Next2 Platform is not directed at children under 16. If the Controller becomes aware that personal data of a person under this age has been collected without parental consent, it will be immediately deleted.
X. Cookies and Tracking Technologies
The next2.info website uses necessary cookies (for site functionality) and optional cookies (analytics). Users can manage cookies through browser settings. Details are set out in the Cookie Policy.
XI. Policy Changes
Any change to this Privacy Policy will be announced on https://next2.info and, in the case of material changes, communicated to users within the Platform.
Contact
For data protection matters, please contact us at: contact@next2.info