Ładowanie...
Ładowanie...
Last updated: 12 June 2026
These Terms of Service set out the rules for using the Easy-Way CMS Panel. They apply both to Clients who have concluded a separate Agreement with the Service Provider and to Clients using an Account created without a signed Agreement. In the latter case, these Terms together with the CMS Privacy Policy form the basis for using the Service. This English version is provided for convenience only; in the event of any discrepancy, the Polish version of this document prevails.
1.1. Service Provider — DOT DOT sp. z o.o., with its registered office at ul. Ludwika 17, 40-176 Katowice, Poland, entered in the National Court Register (KRS) under number 0001246224, Tax ID (NIP) 9542909898, owner of the Easy-Way.io brand. Contact: [email protected].
1.2. Client — a legal person, an organisational unit with legal capacity, or a natural person running a business, who uses the CMS Panel.
1.3. Administrator — a person authorised by the Client to use an Account in the CMS Panel.
1.4. CMS Panel (Service) — a web application for managing maps, points and areas of interest (POI), Wayfinder configuration and the administration of the navigation system.
1.5. Wayfinder — a web application that allows end users to navigate inside a building after scanning a QR code.
1.6. Account — an Administrator’s individual access to the CMS Panel secured with a login and password. The Account may additionally be protected with two-factor authentication (2FA). Each Administrator accepts the Terms and the CMS Privacy Policy in accordance with § 14.
1.7. Agreement — a separate agreement concluded between the Client and the Service Provider, setting out, among other things, the scope of the Service, the duration of cooperation and financial terms.
1.8. DPA (Data Processing Agreement) — an agreement concluded in accordance with Article 28 GDPR governing the entrustment of personal data processing. If the parties have not concluded a separate DPA, these Terms and the CMS Privacy Policy apply.
1.9. CMS Privacy Policy — the document describing the rules for processing Administrators’ data.
1.10. List of Subprocessors — the current list of entities processing data in connection with the provision of the Service.
1.11. Terms — these Terms of Service for the electronic provision of services.
1.12. Contact Point — the email address [email protected] intended for contact with Clients, European Union authorities and the European Commission.
1.13. GDPR Contact — the address [email protected] intended for matters relating to the protection of personal data. Data Protection Officer: Tomasz Budzyński, contact: [email protected].
2.1. The Terms set out the rules for providing the Service electronically and meet the requirements arising from the provisions on the electronic provision of services.
2.2. The Terms are available free of charge before the Agreement is concluded and before the Account is activated. Users may download, save and reproduce them.
2.3. Acceptance of the Terms takes place during Account activation by ticking the relevant checkbox. The procedure is described in detail in § 14.
2.4. The Client is responsible for ensuring that each Administrator accepts the Terms and the CMS Privacy Policy before their first login.
2.5. In matters not regulated by the Terms, the applicable provisions of Polish and EU law apply, in particular:
2.6. The Service Provider designates a Contact Point for Clients, EU authorities and the European Commission. Communication may take place in Polish or English.
3.1. The CMS Panel may be used only by Clients with an active Account.
3.2. The Account is created by the Service Provider. The Administrator receives an email with an activation link valid for 72 hours.
3.3. During Account activation, the Administrator:
The Service Provider recommends using 2FA. In some cases, the obligation to use 2FA may arise from a separate Agreement.
3.4. The Client is responsible for the security of its Administrators’ access credentials and for actions carried out using their Accounts.
3.5. An Account is assigned to a single person. Sharing login credentials with others is prohibited.
3.6. A user session expires after 60 minutes of inactivity. When using 2FA, the system may require re-authentication, in particular after changing the device or browser.
3a.1. The Service Provider may also make an Account available to Clients who have not signed a separate Agreement, for example to demonstrate the functionality of the CMS Panel.
3a.2. In such cases, the basis for using the Service and for entrusting data processing is these Terms and the CMS Privacy Policy.
3a.3. The Account may have a limited scope of functions or a limited duration. The Service Provider may suspend or delete the Account after notifying the Client in advance.
3a.4. The provisions of § 6, § 8, § 9 and § 9a apply accordingly to such Accounts.
3a.5. Using an Account created without a separate Agreement is free of charge and does not constitute the conclusion of a commercial Agreement.
4.1. Using the CMS Panel requires:
4.2. The maximum size of a single SVG file is 15 MB. The available storage space may depend on the terms set out in the Agreement.
4.3. The Service Provider is not responsible for problems resulting from improper configuration of the Client’s devices or the quality of the internet connection.
5.1. The CMS Panel allows, among other things:
5.2. The scope of available functions may be extended or specified in a separate Agreement.
5.3. The Service Provider may develop, change or withdraw functionality in accordance with the rules described in § 13.
6.1. The Client undertakes to enter only true, current and complete data.
6.2. The Client confirms that it holds the rights to the materials uploaded to the CMS Panel, in particular architectural maps.
6.3. The Client is responsible for ensuring that the published content complies with applicable law and the rights of third parties.
6.4. It is prohibited to publish content that:
6.5. The Client must inform the Service Provider without delay, and no later than within 24 hours, of:
6.6. In the event of a breach of the provisions of point 6.4, the Service Provider may remove the prohibited content. Repeated breaches may result in the immediate deletion of the Account or termination of the Agreement in accordance with § 16.
7.1. Using the CMS Panel within the scope described in these Terms is free of charge.
7.2. Services beyond the scope of the Terms, in particular custom implementations, extended functionality or additional services, may be provided on the basis of a separate Agreement. The terms of cooperation, scope of services, remuneration and settlement rules are set out in that Agreement.
7.3. If the provisions of the Terms and a separate Agreement differ as regards commercial or financial terms, the provisions of the Agreement prevail.
8.1. The CMS Panel is provided in its current functional state. The Service Provider exercises due diligence in providing the Service but cannot guarantee its uninterrupted availability where the causes of an outage are beyond its control.
8.2. The Service Provider takes action to ensure high availability of the Service. The Terms do not set a guaranteed service level (SLA). Such parameters may be agreed in a separate Agreement.
8.3. To the extent permitted by applicable law, the Service Provider’s liability is limited. The Service Provider is not liable for:
8.4. The limitations described in point 8.3 do not apply:
8.5. The Service Provider is not liable for damage resulting from the Client’s acts or omissions, nor for the effects of force majeure.
9.1. The rules for processing Administrators’ personal data are described in the CMS Privacy Policy.
9.2. The Client is the controller of the data published in the CMS Panel, in particular data contained in maps, descriptions and points and areas of interest (POI). The Client decides on the scope and purpose of the published data. DOT DOT sp. z o.o., owner of the Easy-Way brand, acts as a processor in this respect and processes data solely on the Client’s instructions. The Service Provider may use further processors (subprocessors) listed in the current List of Subprocessors.
9.3. Data processed as part of the Service is stored on servers located within the European Union.
9.4. In healthcare facilities, navigation to specific offices or wards, such as “Oncology” or the “Emergency Department”, may indirectly relate to health data. Wayfinder mitigates this risk through:
A Client operating in the healthcare sector carries out a data protection impact assessment (DPIA) in accordance with the GDPR, supported by its own Data Protection Officer. The Service Provider provides assistance to the extent required by Article 28 GDPR.
9.5. The feature that records the content entered in the Wayfinder search, used for analytics purposes, may be enabled or disabled by the Client. As a controller, the Client assesses on its own whether using this feature complies with the regulations and procedures applicable to it. Entities subject to enhanced data protection requirements, in particular medical facilities, may disable this feature in the CMS Panel.
9.6. If a personal data breach occurs on the Service Provider’s side, the Service Provider will notify the Client without undue delay, and no later than within 48 hours of detecting the breach.
9a.1. The provisions of § 9 and the CMS Privacy Policy concerning the entrustment of data processing apply where the parties have not concluded a separate Data Processing Agreement (DPA).
9a.2. If a separate DPA has been signed between the Client and the Service Provider, its provisions take precedence over the Terms and the documents available in the CMS Panel. In the event of any discrepancy, the content of the signed DPA is binding.
9a.3. For Accounts created without a separate Agreement, these Terms together with the CMS Privacy Policy form the basis for entrusting data processing. For Clients processing special categories of data, including medical entities, the provisions of a signed DPA take precedence.
10.1. The Service Provider may use processors responsible, among other things, for:
Data is processed primarily within the European Union region. The CMS Panel and Wayfinder do not use Google Analytics.
10.2. The current List of Subprocessors, containing the names of the entities, the locations where data is processed and the bases for data transfers, is published and kept up to date.
10.3. The Service Provider notifies the Client of a planned change of subprocessor at least 30 days in advance. This period may be shortened only where the change is necessary for security reasons.
10.4. The Client may raise a justified objection to a new subprocessor within 30 days of being notified of the change. In such a case, the Client has the right to terminate the Agreement.
10.5. If data is to be transferred outside the European Economic Area, the transfer will take place only in accordance with the requirements of the GDPR, in particular on the basis of:
11.1. The Service Provider applies the technical and organisational measures required by the GDPR and generally accepted information security standards.
11.2. In particular, the Service Provider applies:
11.3. Clients subject to the requirements of the national cybersecurity system, in particular essential and important entities, may request additional security documentation or extended contractual provisions.
11.4. The Service Provider is developing its information security management system and is working towards obtaining relevant certifications.
12.1. All materials provided by the Client, in particular SVG maps, descriptions, logos and POI content, remain the property of the Client. The Client grants the Service Provider a non-exclusive and non-transferable licence solely to the extent necessary to provide the Service for the duration of the Agreement.
12.2. The CMS Panel, Wayfinder, source code, documentation, methodology and algorithms remain the property of the Service Provider. The Client receives a non-exclusive, non-transferable and revocable licence to use the Service.
12.3. Without the Service Provider’s consent, the Client may not:
12.4. The Service Provider may use anonymous and aggregated technical data to develop and improve the Service. The Client’s data and materials are not used to train artificial intelligence models or for any other purposes beyond providing the Service without the Client’s prior written consent.
12.5. The Client confirms that it holds the rights to all materials it provides and is responsible for any infringement of third-party rights.