Cookie policy


We have prepared this cookie policy to explain, among other things:

  1. What are cookies?
  2. What types of cookies do we use and why?
  3. How do they affect your privacy?
  4. What rights you have under the GDPR (Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)) and under the Telecommunications Law (the Act of 16 July 2004 on Telecommunications Law (Dz.U. /Journal of Laws/ 2004 No 171, item 1800, as amended).

What are cookies

  1. Cookies are small text files that are stored on your computer or smartphone when you view our website. There are different types of cookies. We have divided them into two groups:
    cookies essential for the use of our website;
    other cookies.
  2. The cookies that are essential for the use of our website are used, among other things, to ensure the stability of the website (they measure traffic, protecting us against traffic congestion), to remember your selected privacy preferences, to fill in online forms we provide, to save the content of your shopping cart and to monitor your login status. We use these cookies by default, i.e. we store them on your computer or smartphone when you access our website (pursuant to Art. 173 sec. 3 of the Telecommunications Act).
  3. We only use other cookies if you have given your consent to them. You will read more about them in the next section of our Policy.

What cookies do we use

  1. Necessary cookies – ensure the proper operation of our website and its basic functions. Without them, you will not be able to use our online services properly. These cookies are exempt from the requirement to obtain your consent (Art. 173 sec. 3 of the Telecommunications Act).



    ExpireDescription                  Purpose  
    test_cookie 1 day Used to check if the user's browser supports cookies.  
    1.gif      Session Used to count the number of sessions to the website, necessary for optimizing CMP product delivery.  
    CookieConsent  1 year Stores the user's cookie consent state for the current domain.  
    PHPSESSID Session Used to provide functions across pages.  

  2. Marketing cookies – we use these cookies to personalise the content you are shown. Marketing cookies may be used in our advertising campaigns that are run on third-party websites. If you consent to the use of marketing cookies, you may receive information about the websites of our trusted partners where you have responded to our advertising. If you disable marketing cookies, you will be shown generic and non-personalised advertisements. As with analytical cookies, if you refuse to save marketing cookies on your computer or smartphone, this will not restrict any functionality on our website for you.


    Provider ExpireDescription                                                       Purpose


    Store the origin of the last external referral event.
    lastExternalReferrerTime Persistent Store the timestamp of the last External referral event.
    IDE 1 year Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.
    pagead/landing Session Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement – This also allows the website to limit the number of times that they are shown the same advertisement.
    ads/ga-audiences Session Used to detect whether the user intends to leave the page via cursor movements. This allows the website to trigger certain pop-ups to keep the user on the website or convert them to customer.
    _fbp 3 months Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers.
    _ga 2 years Registers a unique ID that is used to generate statistical data on how the visitor uses the website.
    _ga_# 2 years Used by Google Analytics to collect data on the number of times a user has visited the website as well as dates for the first and most recent visit.
    _gcl_au 3 months Used by Google AdSense for experimenting with advertisement efficiency across websites using their services.

Consent to the installation of cookies

  1. When you visit our website, you will be shown a banner informing you that it uses cookies. If you select the "Allow all" option, this will mean that you accept all cookies on our website and confirm that you have read the information about cookies and the purposes for which they are used, as well as the cases in which data collected with the help of cookies is transferred to our partners.
  2. Please note that your consent is not required for essential cookies, as cookies of this type ensure the full and uninterrupted functioning of our website. These cookies are exempt from the requirement to obtain your consent pursuant to Art. 173 sec. 3 of the Telecommunications Act.


No consent for the installation of cookies

If you do not want our cookies to be stored on your device, you can select the "Reject all" option. By selecting this option you will reject all the cookies we use on our website, except for the technically necessary ones.

Consent to selected cookies

You can manage your cookie preferences in detail by selecting the "Allow selected" box on the cookie banner displayed to you.

Personal data

Some of the cookies we use constitute personal data and therefore you have the right to:

  1. The controller of your personal data, i.e. the entity that decides on the purposes and means of processing, is the POLIN Museum of the History of Polish Jews with its registered office in (00-157) Warsaw, 6 Anielewicza Street. You can contact the Controller by sending a letter by post to our registered office address.
  2. A Data Protection Officer appointed by the Controller supervises the correctness of the processing of personal data. The Data Protection Officer may be contacted in writing, by post, using the address: ul. Anielewicza 6, 00-157 Warszawa, via an e-mail: or over the phone: 22 471 03 41.
  3. Your personal data will be processed to provide the basic functions of our website. If you have given the relevant (voluntary) consent, your data will also be processed in order to provide you with services, offers and communications tailored to your preferences and to analyse website traffic and provide social media functions (depending on the preferences you have indicated).
  4. The recipients of your personal data are the entities to which the Controller subcontracts the performance of activities that require data processing (processors). Pursuant to applicable law, the Administrator may transfer data to entities processing them on behalf of the Administrator on the basis of contracts for the outsourcing of personal data processing (e.g. consultants, auditors, IT service providers) and to other entities authorised on the basis of applicable regulations (e.g. courts, law enforcement agencies) – upon a legally binding request.
  5. As a rule, personal data will not be transferred outside the European Economic Area (hereinafter: "EEA"). However, given the provision of services by our subcontractors in the delivery of support for ICT services and IT infrastructure, the Museum may outsource certain activities or IT tasks to recognised subcontractors operating outside the EEA, which may result in the transfer of your data outside the EEA. According to the European Commission's decision, recipient countries outside the EEA shall ensure an adequate level of protection of personal data in accordance with EEA standards. For recipients in the territory of countries not covered by the European Commission's decision, in order to ensure an adequate level of this protection, the data exporter (controller or processor acting on the controller's instructions) shall conclude contracts with the recipients of the personal data, which shall be based on the standard contractual clauses issued by the European Commission in accordance with Art. 46 sec. 2 letter c of the GDPR.
  6. The data will be stored for the period necessary to fulfil the purposes specified above or, in the case of consent, no longer than until the withdrawal of the consent given, and thereafter until the statute of limitations for possible claims or until the expiry of data retention obligations under the law.
  7. You have the right of access to the content of your data and, unless otherwise provided by law, the right to rectification, erasure, restriction of processing, the right to data portability and the right to object to data processing.
  8. If your personal data is processed on the basis of your consent, you have the right to withdraw your consent at any time without affecting the lawfulness of the processing carried out on the basis of your consent prior to its withdrawal.
  9. As your personal data is processed on the basis of the controller's legitimate interest, the controller will no longer process it for the indicated purpose if you object to such processing. You have the right to object at any time, free of charge, to the processing of personal data concerning you where the processing of your personal data is carried out on the basis of a legitimate interest and the objection is based on your particular situation.
  10. You have the right to lodge a complaint with the data protection supervisory authority, i.e. the President of the Personal Data Protection Office.
  11. The provision of data is voluntary, but necessary for the provision of services.
  12. Your personal data will not be used for the purpose of automated decision-making (including in the form of profiling) in such a way that such automated processing could result in any decision that would produce legal effects or similarly have any effect on you.
  13. You can obtain more information on how to exercise your rights, as set out above, by contacting the Controller or the Data Protection Officer as set out in sections 1 and 2.
  14. The controller shall make every effort to ensure that all physical, technical and organisational measures are in place to protect personal data against accidental or intentional damage, loss, alteration, unauthorised disclosure, use or access, in accordance with all applicable regulations.

Withdrawal of consent

You can change your consent at any time by clicking on the "paper clip" icon in the bottom left-hand corner of our website.

Changes to the cookie policy

We shall have the right to change this cookie policy at any time. Any changes to the cookie policy will be published on