Protecting the privacy of users of the online information service is very important for the Bank. Below we present information concerning the data collected and the rules for its storage and use. The use and collection of information about users of the online service is limited to the minimum required for the Bank to provide services of the highest quality.

This section contains information concerning the tools used by the Bank to ensure the greatest possible ease of use of the online information service (cookies, system logs) and on the data collected by entities that conduct analysis.

The Bank protects user data, so before opening the online information service, the user’s browser will provide information on what data are collected.
We process data in order to:

  • tailor content to users’ needs and interests,
  • present information on products and services offered by the Bank, tailored to the user’s needs and interests,
  • collect certain metrics to help improve the Bank’s products and services.

What data do we collect?

The Bank makes every effort to make the online information service easy to use. To increase its efficiency, anonymous cookies are used, and statistical data are collected on the phrases most commonly entered into the search engine, on the basis of which the service’s navigation is continuously updated, so that searches for content are convenient and intuitive.

  • Cookies
    Cookies are small text files from websites, recorded by the information service user’s browser.
    Cookies contain only information about the user’s activity in the online information service, from which they were sent. Switching off the cookie function in the user’s browser may make it difficult or impossible to use certain functions of the service.

    Cookies are used only to collect anonymous statistical data on users to improve the ease of using the online information service. Financial data are not collected, nor are data identifying or allowing the identification of users of the service.
    Online information service uses cookies that are recorded in the memory of the device of the end-user’s device to improve navigation and tailor the service to the user’s preferences. Blocking the recording of cookies on the end-user’s device, or removing them, is possible after configuring the browser settings. If the user’s mobile device runs iOS, it is essential to enable the use of cookies to be able to use the full version of the online information service. The online information service uses two anonymous cookies, exclusively for the use of that service.

    Browsers allow a distinction between the following types of cookie:

    • session cookies, also called transient cookies, are stored in temporary memory and are needed to track the user’s session; they are very often used by various services due to the specifics of the HTTP protocol by which websites are transmitted,
    • persistent cookies - which aren’t erased after the browser is closed and can be used by the service in the future; they include in particular:
      - first-party cookies: the service configures cookies only for its own needs,
      - third-party cookies: the service places a cookie so that it can be used by other services.
  • System logs
    System logs, or registers of events, are chronological records of events and actions related to a website. They contain data such as the IP address from which a given sub-page was accessed, the address of that page and the time of the connection. System logs are used by the Bank in particular for statistical purposes. Analysis of system logs also makes it possible to tailor the content of a website to the user’s preferences.

  • Links to other websites
    The Bank is not responsible for the privacy protection rules applied by the owners of pages to which links are found in the online information service. Users are requested to familiarise themselves with the content of privacy protection notices on those websites.

  • Floodlight
    Some of the service’s pages use Floodlight technology, which is used to create aggregate statistics on the use of the website. A Floodlight tag is an electronic single-pixel or transparent image.
    A Floodlight tag may recognise certain information on users’ computers such as the number of a cookie file, the time and date a page was accessed and the description of the page on which the tag is placed.

  • Entities that perform analysis of the service
    During visits to the pages of the online information service, cookies or Floodlight tags from entities working for the Bank that perform analysis, are recorded on the user’s computer. This makes it possible to recognise users of the information service during future visits and collecting statistics as part of the information service.

    A list of the entities that perform analysis that the Bank works with can be found on the Bank’s website at

Changes in the privacy policy of the Bank’s Online Information Service

Changes in the privacy policy of the online information service may be affected by the development of Internet technology; changes in the generally applicable provisions of the law, including in the area of personal data protection; and the development of the online information service.
We will announce such changes on the website of the Bank’s online information service. (


Only continuously updated software and support from the producer for the operating system provide increased security. This is why the Bank recommends that users of the online information service use operating systems covered by full technical support from their producers, and update of the operating system to newer versions of Windows or change to another operating system that can be systematically updated. 



Enabling/removing/blocking cookies

The Bank’s online information service uses cookies according to the user’s individual settings on the browser installed on their device. In many browsers, the use of cookies is enabled by default. The user of the online information service may at any time change the settings in their browser or switch off the use of cookies, though this may cause the service to function improperly. Using the online information service with cookies enabled means these files will be recorded in the memory of the user’s device. More information about cookies is available in the “Help” section of the menu of the user’s browser, or on the following pages:

Users who, after familiarising themselves with the information available online, do not want cookies to remain in their device’s browser should delete them from the browser after concluding their visit to the online information service.

When entering the Bank’s website, the user may not agree for the use of cookies for statistical purposes by the Bank.



Data Controller

The personal data controller is PKO Bank Hipoteczny Spółka Akcyjna with its registered office in Warsaw, address: ul. Puławska 15, 02-515 Warsaw, registered in the Capital City of Warsaw District Court in Warsaw, XIII Commercial Division of the National Court Register, under the number KRS 0000528469; NIP taxpayer ID No. 204-000-45-48; REGON: 222181030; share capital (paid-up capital) 1,611,300,000 złoty; telephone +48 22 521 57 50 (secretariat), e-mail:

Data Protection Officer

A Data Protection Officer was appointed in PKO Bank Hipoteczny S.A., address: Data Protection Officer, address, ul. Puławska 15, 02-515 Warsaw, e-mail address: