Privacy Policy sets out the rules for the processing and protection of personal data provided by Users of the website, hereinafter referred to as the Website.

  1. The administrator of personal data contained on the Website is the company Museum of Illusions l.l.c. (Muzeum iluzji sp. z o.o.) with registered office in Cracow, Straszewskiego Street 15, NIP 6762552646, REGON 380835747, hereinafter referred to as the Administrator.
  2. The website processes your personal data for the following purposes:
  1. The scope of the personal data processed: name and surname, e-mail address.
  2. The data provided is processed for the purpose related to the function of a specific form, e.g. to answer a given question, to register the User on the Website or to pay via the payment operator.
  3. In regard to the processing of personal data for the purposes set out in paras. 2-4, your personal data may be made available by the Online Store to other  recipients or categories of recipients of personal data, which may be:
    • ING Bank Śląski S.A.
    • Twisto Polska sp. z o.o.
  4. The User who has entered the data in the form has the right to:
  1. The User who has entered an agreement in accordance with the Website’s regulations has the right to:
  1. Personal data provided by the User in the form will be processed for a period no longer than it is necessary for the purposes which they were provided for, and until the Administrator’s legal, accounting and tax obligations exist, and until any claims are time-barred. If consent has been given to the processing of personal data – until the consent is withdrawn.
  2. The Administrator exercises due diligence in order to adequately secure the personal data provided, in particular, against the disclosure to unauthorized persons.
  3. Personal data provided may be made available only to entities that have a legal basis resulting from the provisions of Polish law.
  4. The entities collecting and processing personal data on the Website are largely from Poland and the countries of the European Economic Area (EEA). Some of the providers are based outside the EEA (e.g. Google Inc. is based in the USA and provides a website statistics service called Google Analytics). These entities are required to comply with the principles set out in the EU-US Privacy Shield program regarding the collection, use and storage of personal data of European Union citizens (Commission Implementing Decision (EU) 2016/1250 of 12 July 2016 on the adequacy of protection provided by the EU-US Privacy Shield) and contractual clauses adopted by the EU Commission.
  5. In the event that the personal data is provided for the entry into an agreement with the Website, provision of personal data is a requirement for the conclusion of such agreement. Providing personal data is voluntary. Notwithstanding, failure to provide the necessary personal data will result in the inability to conclude an agreement with the Website.
  1. Legal grounds regarding the processing of personal data:


Questions regarding the privacy policy should be addressed to: [email protected].
The Administrator reserves the right to change the privacy policy. Any changes will be made available on the Website without delay.

Cookies policy

Cookies are IT data stored on Users’ end devices, intended for the use of websites.

  1. The Website does not automatically collect any information, except for that contained in cookies. That includes: IP address, domain name, browser type, operating system type and data on the User’s navigation path and the time spent on specific subpages.
  2. The Administrator may use cookies to:
  1. Detailed information on managing cookies may be found in the web browser settings. With the help of these settings, it is possible to define the scope of the User’s consent to place such files in their browser. However, limiting or preventing the use of cookies may affect some of the functionalities of the Website.


Questions regarding the use of cookies should be addressed to: [email protected]. The Administrator reserves the right to change the cookies policy. Any changes will be made available on the Website without delay.

Safety rules

  1. Users should be mindful of the security of their devices with internet access. The device should have an anti-virus program with an up-to-date virus definition database, an up-to-date and secure version of the web browser and “firewall” enabled.
  2. It is advised to turn on anti-phishing filters (tools) in the web browser, which check whether the displayed website is authentic and is not intended to be phishing, e.g. by impersonating an institution or an economic entity.
  3. It is advised to take caution when opening attachments or clicking links in e-mail messages that the User did not expect, e.g. from unknown senders. In case of doubt, it is worth contacting the sender, e.g. by phone.
  4. Files should only be downloaded from trusted sources. Installing a software from an unverified source is very risky.The User using a home Wi-Fi network should set a strong and secure password to access the network.
  5. It is also advised to use the highest possible standards of encryption of Wi-Fi wireless networks, which are able to run on the User’s equipment, e.g. WPA2.