The administrator of the website to which this Policy applies is ING Bank Hipoteczny S.A. (hereinafter referred to as the Bank) address: 40-101 Katowice, Chorzowska 50, website: www.inghipoteczny.pl, NIP 205-000-51-99, KRS no. 0000723965 District Court Katowice - Wschód, share capital and paid-in capital PLN 380,000,000.00.
What is a "cookie" file?
Cookies and other technologies (hereinafter referred to as cookies) are small files/programs saved on your device by websites you visit. Cookies contain information processed for the purposes specified below, including those necessary for the website to function properly. Cookies are encrypted in such a way that unauthorized persons do not have access to them. Information collected on the basis of cookies can only be read by the Bank and - for technical reasons - trusted partners that use the technologies we use.
For what purpose do we use cookies?
We divide cookies depending on the purpose for which we use them - technical, analytical and marketing.
Technical cookies - they are necessary for the website to function properly. The use of technical cookies does not require your consent. We use them to:
- ensure proper display of the page - taking into account the requirements of the device you are using,
- adapt our services to your choices that are technically important for the operation of the website, e.g. the selected language,
- remember whether you consent to the display of certain content.
Analytical cookies - are necessary to measure the effectiveness of our activities without identifying personal data and to improve the functioning of our website. They are installed on your device after obtaining your consent. We use them to:
- examine website traffic statistics and check traffic sources (redirections),
- limit some marketing activities, including: to protect users from seeing the same ad multiple times,
- measure - without identifying personal data - on this basis, settle the effectiveness of actions carried out for the bank, e.g. in the Google advertising network, in partner programs, on external websites.
Information about the processing time is available on the list of cookies that is part of the Policy.
Marketing cookies - installed on the user's device only if the user consents, using which:
- we profile advertisements displayed both on external websites and on the bank's websites, according to users' preferences regarding the selection of services, based on data held by the bank, including user behavior on the bank's websites.
What happens if you do not agree to the use of cookies?
You can refuse the use of analytical cookies or withdraw your previously granted consent. If you agree to analytical cookies, we will be able to use information about your behavior on the bank's websites for statistical purposes and to improve the operation of our website. If you would like us to stop collecting this information, simply delete cookies from your device, e.g. computer, smartphone or tablet. You can also change your consent settings at any time - click and adjust your cookie consents.
You can also refuse the use of cookies for marketing purposes or withdraw your previously granted consent. Then we will not be able to install marketing cookies on your device or have access to information already stored on your device, which means that we will not adapt our advertisements based on information collected by ING Bank Hipoteczny S.A. on the bank's website. However, you can still see our general advertising both on the bank's website and on other websites.
To display advertisements on the Internet, we use technology provided by Google, which in some cases may include the processing of your personal data. Information about Google's principles of operation and data processing on the Internet, including advertising profiling, can be found here.
Google Marketing Platform and Google Ads use cookies, for which these applications are referred to as: Google, Google Marketing Platform or Google Ads in the "detailed information about cookies".
Google Marketing Platform and Google Ads may process personal data worldwide, including in the USA. This may involve possible risks due to the lack of a decision confirming the appropriate level of protection and the lack of appropriate safeguards. The data may be used, for example, by state authorities for control purposes without the possibility of using legal remedies.
In the consent panel for individual optional cookies, i.e. analytical or marketing cookies, we use the setting consistent with your previously expressed consent. If you have agreed to save analytical or marketing cookies - they are marked as active (enabled) in the consent panel. You can change this decision at any time by turning them off by unchecking consent in the consent panel. In such a case, we will consider your consent to be invalid and we will not save and process information in the selected cookie area.
How long will we use cookies?
We will save your choice regarding cookie consent for a period of 400 days. After this time, we will ask you again for your consent to save analytical and marketing cookies. If we make changes to the operation, quantity, ownership or purpose of analytical or marketing cookies, we will consider your previous consents or their lack to be no longer valid and we will ask you to refer to them again. We will consider your updated consents valid for another 400 days. If the technical cookies we are required to save change, we will not inform you separately or extend the duration of your consents, unless the change affects the way your personal data is processed. You will always find an up-to-date list of all cookies on this page.
We also divide all cookies according to the time for which they are installed in the user's browser:
Session cookies - remain on the user's device until they leave the website or turn off the software (web browser). These are primarily technical cookies.
Permanent cookies - remain on the user's device for the time specified in the file parameters or until they are manually deleted by the user.
Detailed information about the cookies, systems and trusted partners we use can be found in the tables below.
Detailed information about cookies
| Technical cookies |
| Cookie's name |
How it works |
App |
Usage time |
Property |
| cookiePolicyGDPR |
Contains the user's consent to the Cookie Policy |
ING |
Permanent, 400 days |
1st party |
| cookiePolicyGDPR__details |
Contains the date of the user's decision regarding the Cookie Policy |
ING |
Permanent, 400 days |
1st party |
| cookiePolicyINCPS |
The cookie is necessary to properly carry out the process of migrating the old solution with two options for selecting cookie types to a new one with more options for selecting cookie types. Without it, this operation cannot be performed correctly because we will not know which users require migration and which do not |
ING |
Permanent, 400 days |
1st party |
| JSESSIONID |
This is a cookie in a Web J2EE application, used for session tracking |
ING |
Sessional, until the end of the browser session |
1st party |
| tag |
Enables tags to work properly on the page |
ING |
Sessional, until the end of the browser session |
1st party |
| incap_ses_**_*** |
The cookie improves website performance and security |
Incapsula |
Sessional, until the end of the browser session |
1st party |
| visid_incap_**** |
The cookie improves website performance and security |
Incapsula |
Permanent, 1 year |
1st party |
| bizPEUSerID |
onStage Proactive Engagement (oSPE) monitors user behavior on the website as they navigate the site and introduces proactive messages based on defined logical rules. The data is used for analytical, user security and marketing purposes depending on the consent given |
oSPE |
Permanent, 1 year |
1st party |
| OSPESESSID |
Supports the operation of the oSPE application |
oSPE |
Sessional, until the end of the browser session |
1st party |
|
| Analytical cookies |
| Cookie's name |
How it works |
App |
Usage time |
Property |
| _ga |
Used to distinguish users. Contains a unique user ID along with a timestamp |
Google Analytics |
Permanent, 2 years |
1st party |
| _gid |
Used to distinguish users. Contains a unique user ID along with a timestamp |
Google Analytics |
Permanent, 1 day |
1st party |
| NID |
Contains a unique identifier that is used to remember user preferences and other information - e.g. preferred language, number of search results displayed on the page and enabling or disabling SafeSearch |
Google |
Permanent, 180 days |
3rd party |
| _ga_**** |
Used to store session state |
Google Analytics |
Permanent, 2 years |
1st party |
| last_visited_segment |
Contains information about the subpage node last viewed by the user |
ING |
Sessional, until the end of the browser session |
1st party |
| _gcl_au |
Contains information about ad clicks and stores it for conversion attribution through conversion linker functionality |
Google Tak Manager |
Permanent, 90 days |
1st party |
| _gcl_dc |
Contains information about ad clicks and stores it for conversion attribution through conversion linker functionality |
Google Tag Manager |
Permanent, 90 days |
1st party |
| _gcl_aw |
Contains information about ad clicks and stores it for conversion attribution through conversion linker functionality |
Google Tag Manager |
Permanent, 90 days |
1st party |
| s_vi_**** |
Contains a unique user ID along with a timestamp |
Adobe Analytics |
Permanent, 2 years |
3rd party |
| s_cc |
Stores information (value = 'true') whether cookies are enabled/enabled |
Adobe Analytics |
Sessional, until the end of the browser session |
1st party |
| s_fid |
Contains a randomly generated alternate unique user ID. Used when the s_vi cookie is blocked |
Adobe Analytics |
Permanent, 5 years |
1st party |
| Gdyn |
Gemius cookie, which collects information about visits to the website |
Gemius |
Permanent, 1 year |
1st party |
| AMCV_*****AdobeOrg |
Contains a unique user ID used within Adobe Experience Cloud |
Adobe Analytics |
Permanent, 2 years |
1st party |
| AMCVS_*****AdobeOrg |
Serves as a flag indicating that a session has been initiated. Its value is always 1 and ends when the session ends |
Adobe Analytics |
Sessional, until the end of the browser session |
1st party |
| TRADEDOUBLER |
Contains a unique user ID provided by Tradedoubler |
Tradedoubler |
Permanent, 1 year |
1st party |
| TradeDoublerGUID |
Contains a unique user ID provided by Tradedoubler |
Tradedoubler |
Permanent, 1 year |
3rd party |
|
| Marketing cookies |
| Cookie's name |
How it works |
App |
Usage time |
Property |
| bizPEUSerID |
onStage Proactive Engagement (oSPE) monitors user behavior on the website as they navigate the site and introduces proactive messages based on defined logical rules. The data is used for analytical, user security and marketing purposes depending on the consent given |
oSPE |
Permanent, 1 year |
1st party |
| OSPESESSID |
Supports the operation of the oSPE application |
oSPE |
Sessional, until the end of the browser session |
1st party |
| cookieSEG |
Stores the identifiers of the segments to which the user/browser has been qualified |
oSPE |
Permanent, 90 days |
1st party |
| GAD |
Used in banner display settings on the website www.ing.pl |
Gemius AdOcean |
Permanent, 1 year |
1st party |
| _gcl_au |
Contains information about ad clicks and stores it for conversion attribution through conversion linker functionality |
Google Tag Manager |
Permanent, 90 days |
1st party |
| _gcl_aw |
Contains information about ad clicks and stores it for conversion attribution through conversion linker functionality |
Google Tag Manager |
Permanent, 90 days |
1st party |
| _gcl_dc |
Contains information about ad clicks and stores it for conversion attribution through conversion linker functionality |
Google Tag Manager |
Permanent, 90 days |
1st party |
| DSID |
It is used to identify a user logged in to Google services on non-Google websites. It also stores user settings for ad personalization |
Google Marketing Platform |
Permanent, 14 days |
3rd party |
| FLC |
Associated with Google services and used for advertising measurement and targeting |
Google Marketing Platform |
Permanent, 10 seconds |
3rd party |
| IDE |
It is used to display or retarget Google ads on non-Google sites |
Google Marketing Platform |
Permanent, 390 days |
3rd party |
| SIDCC |
Used to authenticate users, prevent fraudulent use of login credentials, and protect user data from unauthorized parties |
Google |
Permanent, 1 year |
3rd party |
| SSID, APISID, SAPISID |
Google uses these cookies to authenticate users, prevent fraudulent use of login credentials, and protect user data from unauthorized parties. |
Google |
Permanent, 2 years |
3rd party |
| HSID |
It contains digitally signed and encrypted data that identifies the user's Google account and indicates the last login time. Connection with SID allows you to block various attacks - e.g. attempts to intercept content from forms completed in Google services |
Google |
Permanent, 2 years |
3rd party |
| SID |
It contains digitally signed and encrypted data that identifies the user's Google account and indicates the last login time. Connection with HSID allows you to block various attacks - e.g. attempts to intercept content from forms completed in Google services |
Google |
Permanent, 2 years |
3rd party |
| NID |
Contains a unique identifier that is used to remember user preferences and other information - e.g. preferred language, number of search results displayed on the page and enabling or disabling SafeSearch |
Google |
Permanent, 180 days |
3rd party |
| 1P_JAR |
Related to Google Ads |
Google |
Permanent, 30 days |
3rd party |
| CONSENT |
Applies to consent statuses in Google services |
Google |
Permanent, 2 years |
3rd party |
| __Secure-1PAPISID |
It is used to store the IDs of users logged in to Google |
Google |
Permanent, 2 years |
3rd party |
| __Secure-1PSID |
It is used to store the IDs of users logged in to Google |
Google |
Permanent, 2 years |
3rd party |
| __Secure-3PAPISID |
It is used to store the IDs of users logged in to Google |
Google |
Permanent, 2 years |
3rd party |
| __Secure-3PSID |
It is used to store the IDs of users logged in to Google |
Google |
Permanent, 2 years |
3rd party |
| __Secure-3PSIDCC |
It is used to store the IDs of users logged in to Google |
Google |
Permanent, 2 years |
3rd party |
| .DDMMUI-PROFILE |
Associated with Google services, used to store DoubleClick Digital Marketing settings |
Google |
Permanent, 7 days |
3rd party |
| SEARCH_SAMESITE |
Related to Google services |
Google |
Permanent, 180 days |
3rd party |
| DV |
Related to Google services |
Google |
Permanent, 7-10 minutes |
3rd party |
| XSRF-TOKEN |
Linked to Google services, protects against CSRF attacks |
Google |
Sessional, until the end of the browser session |
3rd party |
| Conversion |
Related to Google services |
Google |
Permanent, 90 days |
3rd party |
| S |
Related to Google services |
Google |
Sessional, until the end of the browser session |
3rd party |
| OGP |
Associated with Google services, used to limit service messages |
Google |
Permanent, 30 days |
3rd party |
| OGPC |
Associated with Google services, used to limit service messages |
Google |
Permanent, 30 days |
3rd party |
| OTZ |
Associated with Google services, used to record time zone information |
Google |
Permanent, 30 days |
3rd party |
|
Detailed information about systems and trusted partners
| See details |
| System/Cookies |
Characteristics |
Trusted Partner |
Use category (purpose) |
| Cookie called "GDPR Policy Cookie" controlling consent to data processing for marketing purposes and other technical and analytical cookies |
The cookie records, among others: consents expressed by the visitor to the bank's website.
The "cookiePolicyGDPR" cookie stores your consent/or lack thereof to the installation of marketing cookies. |
ING Bank Śląski S.A. |
Technical |
| Gemius AdOcean |
AdOcean allows you to manage banners displayed on the ing.pl website. System cookies are used to measure traffic generated from banners, manage the display logic (including limiting the number per user or disabling creatives after clicking in order to limit the generated spam). |
Gemius S.A. |
Analytical or marketing - depending on the consent expressed by the user and stored in the "cookiePolicyGDPR" cookie |
| Google Analytics |
Google Analytics allows you to measure traffic on websites |
Google Ireland Limited |
Analytical |
| Google Ads |
Google As allows you to purchase and customize ads and monitor their effectiveness by ING Bank Śląski (more information can be found at: http://support.google.com/adwords/answer/2407785 https://policies.google.com/privacy? hl=pl). |
Google Ireland Limited |
Marketing |
| Google Marketing Platform (DoubleClick Bid Manager, DoubleClick Campaign Manager, DoubleClick Search) |
The DoubleClick platform allows for advanced analysis of the activity of users who are shown bank advertisements. It also allows you to purchase and adapt ads to your needs. These files allow you to collect information regarding, among others: impressions, clicks, devices used, websites visited, browsers and the user's IP address (more information can be found at: https://policies.google.com/technologies/ads?hl=pl; https://adssettings.google. com/anonymous and https://privacy.google.com/businesses/processorterms/) |
Google Ireland Limited |
Marketing |
| TradeDoubler |
TradeDoubler system cookies are used to measure the effectiveness of activities carried out by ING Bank Śląski on the Internet, as well as to enable settlements with business partners. More information can be found at: http://www.tradedoubler.com/pl/privacy-policy/ |
TradeDoubler Sp. z o.o. |
Analytical |
| Adobe Analytics |
Adobe Analytics collects information about page views, browsers used, and the date and time of page visits. We use the collected information for statistical purposes (more information at http://www.adobe.com/privacy.html) |
Adobe Systems Software Ireland Ltd. |
Analytical |
| Khoros |
The Khoros system allows you to monitor traffic on the SpołecznośćING website. More information: https://community.khoros.com/t5/Policies-and-Guidelines/Khoros-Cookies-Datasheet-Community-Care-Marketing-CX-Insights/ta-p/236502 |
Khoros, LLC |
Technical |
| onStage Proactive Engagement (oSPE) |
onStage Proactive Engagement (oSPE) monitors user behavior on the website as they navigate the site and introduces proactive messages based on defined logical rules. The data is used for analytical, user security and marketing purposes depending on the consent given. |
ING Bank Śląski S.A. |
Technical or marketing - depending on the consent expressed by the user and stored in the "cookiePolicyGDPR" cookie |
| Google Firebase |
Firebase generates an identifier based on the ID (Android Advertising ID), which we use to register that you selected the "Create an account" option in the Moje ING mobile application on the screen before logging in. |
Google Ireland Limited |
Analytical |
|
Can I opt out of accepting cookies?
You can always change your browser settings and reject requests to install cookies. However, before you decide to change the settings, please note that cookies serve your convenience of using the website. Thanks to them, you will receive more relevant ads. Disabling cookies may affect how our website will be displayed in your browser. In some cases, the page may not display at all.
Other information related to the data processing process
| Aata administrator |
ING Bank Hipoteczny S.A.
ul. Chorzowska 50
40-101 Katowice |
| Data Protection Officer |
Lilianna Rother-Obrączka
ul. Chorzowska 50
40-101 Katowice
E: abi.bank.hipoteczny@inghipoteczny.pl |
In accordance with applicable regulations, in the event of a violation of the provisions on the protection of personal data, you have the right to submit a complaint to the President of the Office for Personal Data Protection.
How to disable/enable cookies?
You can change cookie settings in your browser at any time, including deleting cookies and blocking their reinstallation.
Depending on the browser you use, the option to delete or withdraw consent to the installation of cookies may vary. Below you will find links to sample instructions.
Chrome
Firefox
Opera
Safari
Microsoft Edge
You can also change your cookie consent settings at any time.
Read the Bank's Privacy Policy and the privacy policies of trusted partners:
Read the Bank's Privacy Policy.
Google
Adobe
Tradedoubler
Gemius
Khoros
