feat: Add unified "Moje konto" (My Account) section

New user account management section with: - /konto - Edit personal data (name, phone) - /konto/prywatnosc - Privacy settings - /konto/bezpieczenstwo - Security settings (2FA, password) - /konto/blokady - User blocks management Features: - Consistent sidebar navigation across all pages - Responsive layout (mobile-friendly) - Polish UI with clear section names Replaces scattered /settings/* routes with unified /konto/* structure. Menu link updated from "Ustawienia" to "Moje konto". Fixes user feedback issue #6: "Brak edycji profilu" Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
2026-01-30 19:52:00 +01:00 · 2026-01-30 19:52:00 +01:00 · 412745c875
commit 412745c875
parent 7c6379c815
6 changed files with 1521 additions and 4 deletions
--- a/app.py
+++ b/app.py
@ -4533,6 +4533,177 @@ def settings_blocks_remove(block_id):
    return redirect(url_for('settings_blocks'))


+# ============================================================
+# MOJE KONTO - User Account Settings (new unified section)
+# ============================================================
+
+@app.route('/konto')
+@login_required
+def konto_dane():
+    """User profile - edit personal data"""
+    return render_template('konto/dane.html')
+
+
+@app.route('/konto', methods=['POST'])
+@login_required
+def konto_dane_post():
+    """Save user profile changes"""
+    db = SessionLocal()
+    try:
+        user = db.query(User).filter_by(id=current_user.id).first()
+        if user:
+            name = sanitize_input(request.form.get('name', ''), 255)
+            phone = sanitize_input(request.form.get('phone', ''), 50)
+
+            user.name = name if name else None
+            user.phone = phone if phone else None
+            db.commit()
+
+            # Update current_user session
+            current_user.name = user.name
+            current_user.phone = user.phone
+
+            logger.info(f"Profile updated for user: {user.email}")
+            flash('Dane zostały zapisane.', 'success')
+    except Exception as e:
+        logger.error(f"Profile update error: {e}")
+        flash('Wystąpił błąd podczas zapisywania.', 'error')
+    finally:
+        db.close()
+
+    return redirect(url_for('konto_dane'))
+
+
+@app.route('/konto/prywatnosc', methods=['GET', 'POST'])
+@login_required
+def konto_prywatnosc():
+    """Privacy settings - control visibility of phone and email"""
+    db = SessionLocal()
+    try:
+        user = db.query(User).filter_by(id=current_user.id).first()
+
+        if request.method == 'POST':
+            user.privacy_show_phone = request.form.get('show_phone') == 'on'
+            user.privacy_show_email = request.form.get('show_email') == 'on'
+            user.contact_prefer_email = request.form.get('prefer_email') == 'on'
+            user.contact_prefer_phone = request.form.get('prefer_phone') == 'on'
+            user.contact_prefer_portal = request.form.get('prefer_portal') == 'on'
+            db.commit()
+
+            logger.info(f"Privacy settings updated for user: {user.email}")
+            flash('Ustawienia prywatności zostały zapisane.', 'success')
+            return redirect(url_for('konto_prywatnosc'))
+
+        return render_template('konto/prywatnosc.html',
+                               user=user,
+                               show_phone=user.privacy_show_phone if user.privacy_show_phone is not None else True,
+                               show_email=user.privacy_show_email if user.privacy_show_email is not None else True)
+    except Exception as e:
+        logger.error(f"Privacy settings error: {e}")
+        flash('Wystąpił błąd.', 'error')
+        return redirect(url_for('konto_dane'))
+    finally:
+        db.close()
+
+
+@app.route('/konto/bezpieczenstwo')
+@login_required
+def konto_bezpieczenstwo():
+    """Security settings - 2FA, password"""
+    return render_template('konto/bezpieczenstwo.html')
+
+
+@app.route('/konto/blokady')
+@login_required
+def konto_blokady():
+    """User blocks management"""
+    db = SessionLocal()
+    try:
+        blocks = db.query(UserBlock).filter_by(user_id=current_user.id).all()
+        blocked_ids = [b.blocked_user_id for b in blocks]
+        blocked_ids.append(current_user.id)
+
+        available_users = db.query(User).filter(
+            User.id.notin_(blocked_ids),
+            User.is_active == True
+        ).order_by(User.name).all()
+
+        return render_template('konto/blokady.html',
+                               blocks=blocks,
+                               available_users=available_users)
+    except Exception as e:
+        logger.error(f"Blocks page error: {e}")
+        flash('Wystąpił błąd.', 'error')
+        return redirect(url_for('konto_dane'))
+    finally:
+        db.close()
+
+
+@app.route('/konto/blokady/dodaj', methods=['POST'])
+@login_required
+def konto_blokady_dodaj():
+    """Block a user"""
+    db = SessionLocal()
+    try:
+        user_id = request.form.get('user_id', type=int)
+        if not user_id or user_id == current_user.id:
+            flash('Nieprawidłowy użytkownik.', 'error')
+            return redirect(url_for('konto_blokady'))
+
+        existing = db.query(UserBlock).filter_by(
+            user_id=current_user.id,
+            blocked_user_id=user_id
+        ).first()
+
+        if existing:
+            flash('Ten użytkownik jest już zablokowany.', 'info')
+            return redirect(url_for('konto_blokady'))
+
+        block = UserBlock(user_id=current_user.id, blocked_user_id=user_id)
+        db.add(block)
+        db.commit()
+
+        logger.info(f"User {current_user.id} blocked user {user_id}")
+        flash('Użytkownik został zablokowany.', 'success')
+    except Exception as e:
+        logger.error(f"Error blocking user: {e}")
+        flash('Wystąpił błąd.', 'error')
+    finally:
+        db.close()
+
+    return redirect(url_for('konto_blokady'))
+
+
+@app.route('/konto/blokady/usun/<int:block_id>', methods=['POST'])
+@login_required
+def konto_blokady_usun(block_id):
+    """Unblock a user"""
+    db = SessionLocal()
+    try:
+        block = db.query(UserBlock).filter(
+            UserBlock.id == block_id,
+            UserBlock.user_id == current_user.id
+        ).first()
+
+        if not block:
+            flash('Blokada nie istnieje.', 'error')
+            return redirect(url_for('konto_blokady'))
+
+        blocked_user_id = block.blocked_user_id
+        db.delete(block)
+        db.commit()
+
+        logger.info(f"User {current_user.id} unblocked user {blocked_user_id}")
+        flash('Użytkownik został odblokowany.', 'success')
+    except Exception as e:
+        logger.error(f"Error unblocking user: {e}")
+        flash('Wystąpił błąd.', 'error')
+    finally:
+        db.close()
+
+    return redirect(url_for('konto_blokady'))
+
+
@app.route('/forgot-password', methods=['GET', 'POST'])
@limiter.limit("20 per hour")
 def forgot_password():
--- a/templates/base.html
+++ b/templates/base.html
@ -1152,12 +1152,11 @@
                                    <span class="user-menu-badge" id="userMenuUnreadBadge" style="display: none;">0</span>
                                </a>
                                <div class="user-menu-divider"></div>
-                                <a href="{{ url_for('settings_privacy') }}" class="user-menu-item">
+                                <a href="{{ url_for('konto_dane') }}" class="user-menu-item">
                                    <svg width="16" height="16" fill="none" stroke="currentColor" viewBox="0 0 24 24">
-                                        <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M10.325 4.317c.426-1.756 2.924-1.756 3.35 0a1.724 1.724 0 002.573 1.066c1.543-.94 3.31.826 2.37 2.37a1.724 1.724 0 001.065 2.572c1.756.426 1.756 2.924 0 3.35a1.724 1.724 0 00-1.066 2.573c.94 1.543-.826 3.31-2.37 2.37a1.724 1.724 0 00-2.572 1.065c-.426 1.756-2.924 1.756-3.35 0a1.724 1.724 0 00-2.573-1.066c-1.543.94-3.31-.826-2.37-2.37a1.724 1.724 0 00-1.065-2.572c-1.756-.426-1.756-2.924 0-3.35a1.724 1.724 0 001.066-2.573c-.94-1.543.826-3.31 2.37-2.37.996.608 2.296.07 2.572-1.065z"/>
-                                        <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M15 12a3 3 0 11-6 0 3 3 0 016 0z"/>
+                                        <path stroke-linecap="round" stroke-linejoin="round" stroke-width="2" d="M16 7a4 4 0 11-8 0 4 4 0 018 0zM12 14a7 7 0 00-7 7h14a7 7 0 00-7-7z"/>
                                    </svg>
-                                    Ustawienia
+                                    Moje konto
                                </a>
                                <a href="{{ url_for('release_notes') }}" class="user-menu-item">
                                    <svg width="16" height="16" fill="none" stroke="currentColor" viewBox="0 0 24 24">
--- a/templates/konto/bezpieczenstwo.html
+++ b/templates/konto/bezpieczenstwo.html
@ -0,0 +1,288 @@
+{% extends "base.html" %}
+
+{% block title %}Bezpieczeństwo - Moje konto - Norda Biznes Partner{% endblock %}
+
+{% block extra_css %}
+<style>
+    .konto-layout {
+        display: grid;
+        grid-template-columns: 240px 1fr;
+        gap: var(--spacing-xl);
+        max-width: 1000px;
+        margin: 0 auto;
+    }
+
+    .konto-sidebar {
+        background: var(--surface);
+        border-radius: var(--radius-lg);
+        padding: var(--spacing-lg);
+        box-shadow: var(--shadow);
+        height: fit-content;
+        position: sticky;
+        top: 100px;
+    }
+
+    .konto-sidebar-header {
+        display: flex;
+        align-items: center;
+        gap: var(--spacing-md);
+        padding-bottom: var(--spacing-md);
+        margin-bottom: var(--spacing-md);
+        border-bottom: 1px solid var(--border);
+    }
+
+    .konto-avatar {
+        width: 48px;
+        height: 48px;
+        border-radius: 50%;
+        background: linear-gradient(135deg, var(--primary), #1e40af);
+        color: white;
+        display: flex;
+        align-items: center;
+        justify-content: center;
+        font-size: 20px;
+        font-weight: 600;
+    }
+
+    .konto-sidebar-name {
+        font-weight: 600;
+        color: var(--text-primary);
+        font-size: var(--font-size-sm);
+    }
+
+    .konto-sidebar-email {
+        font-size: 11px;
+        color: var(--text-secondary);
+        word-break: break-all;
+    }
+
+    .konto-nav {
+        display: flex;
+        flex-direction: column;
+        gap: var(--spacing-xs);
+    }
+
+    .konto-nav a {
+        display: flex;
+        align-items: center;
+        gap: var(--spacing-sm);
+        padding: var(--spacing-sm) var(--spacing-md);
+        border-radius: var(--radius);
+        text-decoration: none;
+        color: var(--text-secondary);
+        font-size: var(--font-size-sm);
+        transition: all 0.2s;
+    }
+
+    .konto-nav a:hover {
+        background: var(--background);
+        color: var(--text-primary);
+    }
+
+    .konto-nav a.active {
+        background: var(--primary);
+        color: white;
+    }
+
+    .konto-nav a svg {
+        width: 18px;
+        height: 18px;
+        flex-shrink: 0;
+    }
+
+    .konto-content {
+        background: var(--surface);
+        border-radius: var(--radius-lg);
+        padding: var(--spacing-xl);
+        box-shadow: var(--shadow);
+    }
+
+    .konto-header {
+        margin-bottom: var(--spacing-xl);
+        padding-bottom: var(--spacing-lg);
+        border-bottom: 1px solid var(--border);
+    }
+
+    .konto-header h1 {
+        font-size: var(--font-size-2xl);
+        color: var(--text-primary);
+        margin-bottom: var(--spacing-xs);
+    }
+
+    .konto-header p {
+        color: var(--text-secondary);
+    }
+
+    .security-card {
+        background: var(--background);
+        border-radius: var(--radius);
+        padding: var(--spacing-lg);
+        margin-bottom: var(--spacing-lg);
+    }
+
+    .security-card h2 {
+        font-size: var(--font-size-lg);
+        color: var(--text-primary);
+        margin-bottom: var(--spacing-md);
+        display: flex;
+        align-items: center;
+        gap: var(--spacing-sm);
+    }
+
+    .security-card p {
+        color: var(--text-secondary);
+        font-size: var(--font-size-sm);
+        margin-bottom: var(--spacing-md);
+    }
+
+    .status-badge {
+        display: inline-flex;
+        align-items: center;
+        gap: var(--spacing-xs);
+        padding: 4px 12px;
+        border-radius: var(--radius-full);
+        font-size: var(--font-size-sm);
+        font-weight: 500;
+    }
+
+    .status-enabled {
+        background: #dcfce7;
+        color: #166534;
+    }
+
+    .status-disabled {
+        background: #fee2e2;
+        color: #991b1b;
+    }
+
+    .security-actions {
+        display: flex;
+        gap: var(--spacing-md);
+        margin-top: var(--spacing-md);
+    }
+
+    @media (max-width: 768px) {
+        .konto-layout {
+            grid-template-columns: 1fr;
+        }
+
+        .konto-sidebar {
+            position: static;
+        }
+
+        .konto-nav {
+            flex-direction: row;
+            flex-wrap: wrap;
+        }
+
+        .security-actions {
+            flex-direction: column;
+        }
+    }
+</style>
+{% endblock %}
+
+{% block content %}
+<div class="konto-layout">
+    <aside class="konto-sidebar">
+        <div class="konto-sidebar-header">
+            <div class="konto-avatar">
+                {{ (current_user.name or current_user.email)[0].upper() }}
+            </div>
+            <div>
+                <div class="konto-sidebar-name">{{ current_user.name or 'Użytkownik' }}</div>
+                <div class="konto-sidebar-email">{{ current_user.email }}</div>
+            </div>
+        </div>
+        <nav class="konto-nav">
+            <a href="{{ url_for('konto_dane') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M16 7a4 4 0 11-8 0 4 4 0 018 0zM12 14a7 7 0 00-7 7h14a7 7 0 00-7-7z"/>
+                </svg>
+                Twoje dane
+            </a>
+            <a href="{{ url_for('konto_prywatnosc') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z"/>
+                </svg>
+                Prywatność
+            </a>
+            <a href="{{ url_for('konto_bezpieczenstwo') }}" class="active">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M9 12l2 2 4-4m5.618-4.016A11.955 11.955 0 0112 2.944a11.955 11.955 0 01-8.618 3.04A12.02 12.02 0 003 9c0 5.591 3.824 10.29 9 11.622 5.176-1.332 9-6.03 9-11.622 0-1.042-.133-2.052-.382-3.016z"/>
+                </svg>
+                Bezpieczeństwo
+            </a>
+            <a href="{{ url_for('konto_blokady') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M18.364 18.364A9 9 0 005.636 5.636m12.728 12.728A9 9 0 015.636 5.636m12.728 12.728L5.636 5.636"/>
+                </svg>
+                Blokady
+            </a>
+        </nav>
+    </aside>
+
+    <main class="konto-content">
+        <div class="konto-header">
+            <h1>Bezpieczeństwo</h1>
+            <p>Zarządzaj ustawieniami bezpieczeństwa Twojego konta</p>
+        </div>
+
+        <div class="security-card">
+            <h2>
+                <svg width="20" height="20" fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z"/>
+                </svg>
+                Weryfikacja dwuetapowa (2FA)
+            </h2>
+            <p>Dodatkowa warstwa zabezpieczeń. Po włączeniu, przy logowaniu będziesz musiał podać kod z aplikacji uwierzytelniającej.</p>
+
+            {% if current_user.totp_enabled %}
+            <span class="status-badge status-enabled">
+                <svg width="14" height="14" fill="currentColor" viewBox="0 0 20 20">
+                    <path fill-rule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zm3.707-9.293a1 1 0 00-1.414-1.414L9 10.586 7.707 9.293a1 1 0 00-1.414 1.414l2 2a1 1 0 001.414 0l4-4z" clip-rule="evenodd"/>
+                </svg>
+                Włączona
+            </span>
+            <div class="security-actions">
+                <a href="{{ url_for('settings_2fa') }}" class="btn btn-outline">Zarządzaj 2FA</a>
+            </div>
+            {% else %}
+            <span class="status-badge status-disabled">
+                <svg width="14" height="14" fill="currentColor" viewBox="0 0 20 20">
+                    <path fill-rule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zM8.707 7.293a1 1 0 00-1.414 1.414L8.586 10l-1.293 1.293a1 1 0 101.414 1.414L10 11.414l1.293 1.293a1 1 0 001.414-1.414L11.414 10l1.293-1.293a1 1 0 00-1.414-1.414L10 8.586 8.707 7.293z" clip-rule="evenodd"/>
+                </svg>
+                Wyłączona
+            </span>
+            <div class="security-actions">
+                <a href="{{ url_for('settings_2fa') }}" class="btn btn-primary">Włącz 2FA</a>
+            </div>
+            {% endif %}
+        </div>
+
+        <div class="security-card">
+            <h2>
+                <svg width="20" height="20" fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M15 7a2 2 0 012 2m4 0a6 6 0 01-7.743 5.743L11 17H9v2H7v2H4a1 1 0 01-1-1v-2.586a1 1 0 01.293-.707l5.964-5.964A6 6 0 1121 9z"/>
+                </svg>
+                Zmiana hasła
+            </h2>
+            <p>Regularnie zmieniaj hasło, aby zwiększyć bezpieczeństwo konta.</p>
+            <div class="security-actions">
+                <a href="{{ url_for('forgot_password') }}" class="btn btn-outline">Zmień hasło</a>
+            </div>
+        </div>
+
+        <div class="security-card">
+            <h2>
+                <svg width="20" height="20" fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M12 8v4l3 3m6-3a9 9 0 11-18 0 9 9 0 0118 0z"/>
+                </svg>
+                Historia logowań
+            </h2>
+            <p>Ostatnie logowanie: {% if current_user.last_login %}{{ current_user.last_login.strftime('%d.%m.%Y %H:%M') }}{% else %}Brak danych{% endif %}</p>
+            <p>Konto utworzone: {{ current_user.created_at.strftime('%d.%m.%Y') }}</p>
+        </div>
+    </main>
+</div>
+{% endblock %}
--- a/templates/konto/blokady.html
+++ b/templates/konto/blokady.html
@ -0,0 +1,357 @@
+{% extends "base.html" %}
+
+{% block title %}Blokady - Moje konto - Norda Biznes Partner{% endblock %}
+
+{% block extra_css %}
+<style>
+    .konto-layout {
+        display: grid;
+        grid-template-columns: 240px 1fr;
+        gap: var(--spacing-xl);
+        max-width: 1000px;
+        margin: 0 auto;
+    }
+
+    .konto-sidebar {
+        background: var(--surface);
+        border-radius: var(--radius-lg);
+        padding: var(--spacing-lg);
+        box-shadow: var(--shadow);
+        height: fit-content;
+        position: sticky;
+        top: 100px;
+    }
+
+    .konto-sidebar-header {
+        display: flex;
+        align-items: center;
+        gap: var(--spacing-md);
+        padding-bottom: var(--spacing-md);
+        margin-bottom: var(--spacing-md);
+        border-bottom: 1px solid var(--border);
+    }
+
+    .konto-avatar {
+        width: 48px;
+        height: 48px;
+        border-radius: 50%;
+        background: linear-gradient(135deg, var(--primary), #1e40af);
+        color: white;
+        display: flex;
+        align-items: center;
+        justify-content: center;
+        font-size: 20px;
+        font-weight: 600;
+    }
+
+    .konto-sidebar-name {
+        font-weight: 600;
+        color: var(--text-primary);
+        font-size: var(--font-size-sm);
+    }
+
+    .konto-sidebar-email {
+        font-size: 11px;
+        color: var(--text-secondary);
+        word-break: break-all;
+    }
+
+    .konto-nav {
+        display: flex;
+        flex-direction: column;
+        gap: var(--spacing-xs);
+    }
+
+    .konto-nav a {
+        display: flex;
+        align-items: center;
+        gap: var(--spacing-sm);
+        padding: var(--spacing-sm) var(--spacing-md);
+        border-radius: var(--radius);
+        text-decoration: none;
+        color: var(--text-secondary);
+        font-size: var(--font-size-sm);
+        transition: all 0.2s;
+    }
+
+    .konto-nav a:hover {
+        background: var(--background);
+        color: var(--text-primary);
+    }
+
+    .konto-nav a.active {
+        background: var(--primary);
+        color: white;
+    }
+
+    .konto-nav a svg {
+        width: 18px;
+        height: 18px;
+        flex-shrink: 0;
+    }
+
+    .konto-content {
+        background: var(--surface);
+        border-radius: var(--radius-lg);
+        padding: var(--spacing-xl);
+        box-shadow: var(--shadow);
+    }
+
+    .konto-header {
+        margin-bottom: var(--spacing-xl);
+        padding-bottom: var(--spacing-lg);
+        border-bottom: 1px solid var(--border);
+    }
+
+    .konto-header h1 {
+        font-size: var(--font-size-2xl);
+        color: var(--text-primary);
+        margin-bottom: var(--spacing-xs);
+    }
+
+    .konto-header p {
+        color: var(--text-secondary);
+    }
+
+    .info-banner {
+        background: #fef3c7;
+        border: 1px solid #fbbf24;
+        border-radius: var(--radius);
+        padding: var(--spacing-md);
+        margin-bottom: var(--spacing-lg);
+        font-size: var(--font-size-sm);
+        color: #92400e;
+    }
+
+    .block-card {
+        background: var(--background);
+        border-radius: var(--radius);
+        padding: var(--spacing-lg);
+        margin-bottom: var(--spacing-lg);
+    }
+
+    .block-card h2 {
+        font-size: var(--font-size-lg);
+        color: var(--text-primary);
+        margin-bottom: var(--spacing-md);
+    }
+
+    .add-block-form {
+        display: flex;
+        gap: var(--spacing-md);
+        align-items: flex-end;
+        flex-wrap: wrap;
+    }
+
+    .add-block-form .form-group {
+        flex: 1;
+        min-width: 200px;
+    }
+
+    .add-block-form label {
+        display: block;
+        font-size: var(--font-size-sm);
+        color: var(--text-secondary);
+        margin-bottom: var(--spacing-xs);
+    }
+
+    .add-block-form select {
+        width: 100%;
+        padding: var(--spacing-sm);
+        border: 1px solid var(--border);
+        border-radius: var(--radius);
+        font-size: var(--font-size-base);
+    }
+
+    .blocked-list {
+        list-style: none;
+        padding: 0;
+        margin: 0;
+    }
+
+    .blocked-item {
+        display: flex;
+        justify-content: space-between;
+        align-items: center;
+        padding: var(--spacing-md);
+        border-bottom: 1px solid var(--border);
+    }
+
+    .blocked-item:last-child {
+        border-bottom: none;
+    }
+
+    .blocked-info {
+        display: flex;
+        align-items: center;
+        gap: var(--spacing-md);
+    }
+
+    .blocked-avatar {
+        width: 40px;
+        height: 40px;
+        border-radius: 50%;
+        background: var(--background);
+        display: flex;
+        align-items: center;
+        justify-content: center;
+        font-weight: 600;
+        color: var(--text-secondary);
+    }
+
+    .blocked-name {
+        font-weight: 500;
+        color: var(--text-primary);
+    }
+
+    .blocked-date {
+        font-size: var(--font-size-sm);
+        color: var(--text-secondary);
+    }
+
+    .btn-unblock {
+        background: var(--background);
+        border: 1px solid var(--border);
+        color: var(--text-secondary);
+        padding: var(--spacing-xs) var(--spacing-md);
+        border-radius: var(--radius);
+        cursor: pointer;
+        font-size: var(--font-size-sm);
+        transition: all 0.2s;
+    }
+
+    .btn-unblock:hover {
+        background: var(--error);
+        color: white;
+        border-color: var(--error);
+    }
+
+    .empty-state {
+        text-align: center;
+        padding: var(--spacing-xl);
+        color: var(--text-secondary);
+    }
+
+    @media (max-width: 768px) {
+        .konto-layout {
+            grid-template-columns: 1fr;
+        }
+
+        .konto-sidebar {
+            position: static;
+        }
+
+        .konto-nav {
+            flex-direction: row;
+            flex-wrap: wrap;
+        }
+
+        .add-block-form {
+            flex-direction: column;
+            align-items: stretch;
+        }
+    }
+</style>
+{% endblock %}
+
+{% block content %}
+<div class="konto-layout">
+    <aside class="konto-sidebar">
+        <div class="konto-sidebar-header">
+            <div class="konto-avatar">
+                {{ (current_user.name or current_user.email)[0].upper() }}
+            </div>
+            <div>
+                <div class="konto-sidebar-name">{{ current_user.name or 'Użytkownik' }}</div>
+                <div class="konto-sidebar-email">{{ current_user.email }}</div>
+            </div>
+        </div>
+        <nav class="konto-nav">
+            <a href="{{ url_for('konto_dane') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M16 7a4 4 0 11-8 0 4 4 0 018 0zM12 14a7 7 0 00-7 7h14a7 7 0 00-7-7z"/>
+                </svg>
+                Twoje dane
+            </a>
+            <a href="{{ url_for('konto_prywatnosc') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z"/>
+                </svg>
+                Prywatność
+            </a>
+            <a href="{{ url_for('konto_bezpieczenstwo') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M9 12l2 2 4-4m5.618-4.016A11.955 11.955 0 0112 2.944a11.955 11.955 0 01-8.618 3.04A12.02 12.02 0 003 9c0 5.591 3.824 10.29 9 11.622 5.176-1.332 9-6.03 9-11.622 0-1.042-.133-2.052-.382-3.016z"/>
+                </svg>
+                Bezpieczeństwo
+            </a>
+            <a href="{{ url_for('konto_blokady') }}" class="active">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M18.364 18.364A9 9 0 005.636 5.636m12.728 12.728A9 9 0 015.636 5.636m12.728 12.728L5.636 5.636"/>
+                </svg>
+                Blokady
+            </a>
+        </nav>
+    </aside>
+
+    <main class="konto-content">
+        <div class="konto-header">
+            <h1>Blokady</h1>
+            <p>Zarządzaj listą zablokowanych użytkowników</p>
+        </div>
+
+        <div class="info-banner">
+            Zablokowany użytkownik nie może wysyłać Ci wiadomości, a Ty nie możesz wysyłać wiadomości do niego.
+        </div>
+
+        <div class="block-card">
+            <h2>Zablokuj użytkownika</h2>
+            <form method="POST" action="{{ url_for('konto_blokady_dodaj') }}" class="add-block-form">
+                <input type="hidden" name="csrf_token" value="{{ csrf_token() }}">
+                <div class="form-group">
+                    <label for="user_id">Wybierz użytkownika</label>
+                    <select id="user_id" name="user_id" required>
+                        <option value="">-- Wybierz --</option>
+                        {% for user in available_users %}
+                        <option value="{{ user.id }}">{{ user.name or user.email.split('@')[0] }}</option>
+                        {% endfor %}
+                    </select>
+                </div>
+                <button type="submit" class="btn btn-primary">Zablokuj</button>
+            </form>
+        </div>
+
+        <div class="block-card">
+            <h2>Lista zablokowanych ({{ blocks|length }})</h2>
+
+            {% if blocks %}
+            <ul class="blocked-list">
+                {% for block in blocks %}
+                <li class="blocked-item">
+                    <div class="blocked-info">
+                        <div class="blocked-avatar">
+                            {{ (block.blocked_user.name or block.blocked_user.email)[0].upper() }}
+                        </div>
+                        <div>
+                            <div class="blocked-name">{{ block.blocked_user.name or block.blocked_user.email.split('@')[0] }}</div>
+                            <div class="blocked-date">Zablokowano: {{ block.created_at.strftime('%d.%m.%Y') if block.created_at else '-' }}</div>
+                        </div>
+                    </div>
+                    <form method="POST" action="{{ url_for('konto_blokady_usun', block_id=block.id) }}" style="margin: 0;">
+                        <input type="hidden" name="csrf_token" value="{{ csrf_token() }}">
+                        <button type="submit" class="btn-unblock" onclick="return confirm('Czy na pewno chcesz odblokować tego użytkownika?')">
+                            Odblokuj
+                        </button>
+                    </form>
+                </li>
+                {% endfor %}
+            </ul>
+            {% else %}
+            <div class="empty-state">
+                <p>Nie masz zablokowanych użytkowników</p>
+            </div>
+            {% endif %}
+        </div>
+    </main>
+</div>
+{% endblock %}
--- a/templates/konto/dane.html
+++ b/templates/konto/dane.html
@ -0,0 +1,345 @@
+{% extends "base.html" %}
+
+{% block title %}Twoje dane - Moje konto - Norda Biznes Partner{% endblock %}
+
+{% block extra_css %}
+<style>
+    .konto-layout {
+        display: grid;
+        grid-template-columns: 240px 1fr;
+        gap: var(--spacing-xl);
+        max-width: 1000px;
+        margin: 0 auto;
+    }
+
+    .konto-sidebar {
+        background: var(--surface);
+        border-radius: var(--radius-lg);
+        padding: var(--spacing-lg);
+        box-shadow: var(--shadow);
+        height: fit-content;
+        position: sticky;
+        top: 100px;
+    }
+
+    .konto-sidebar-header {
+        display: flex;
+        align-items: center;
+        gap: var(--spacing-md);
+        padding-bottom: var(--spacing-md);
+        margin-bottom: var(--spacing-md);
+        border-bottom: 1px solid var(--border);
+    }
+
+    .konto-avatar {
+        width: 48px;
+        height: 48px;
+        border-radius: 50%;
+        background: linear-gradient(135deg, var(--primary), #1e40af);
+        color: white;
+        display: flex;
+        align-items: center;
+        justify-content: center;
+        font-size: 20px;
+        font-weight: 600;
+    }
+
+    .konto-sidebar-name {
+        font-weight: 600;
+        color: var(--text-primary);
+        font-size: var(--font-size-sm);
+    }
+
+    .konto-sidebar-email {
+        font-size: 11px;
+        color: var(--text-secondary);
+        word-break: break-all;
+    }
+
+    .konto-nav {
+        display: flex;
+        flex-direction: column;
+        gap: var(--spacing-xs);
+    }
+
+    .konto-nav a {
+        display: flex;
+        align-items: center;
+        gap: var(--spacing-sm);
+        padding: var(--spacing-sm) var(--spacing-md);
+        border-radius: var(--radius);
+        text-decoration: none;
+        color: var(--text-secondary);
+        font-size: var(--font-size-sm);
+        transition: all 0.2s;
+    }
+
+    .konto-nav a:hover {
+        background: var(--background);
+        color: var(--text-primary);
+    }
+
+    .konto-nav a.active {
+        background: var(--primary);
+        color: white;
+    }
+
+    .konto-nav a svg {
+        width: 18px;
+        height: 18px;
+        flex-shrink: 0;
+    }
+
+    .konto-content {
+        background: var(--surface);
+        border-radius: var(--radius-lg);
+        padding: var(--spacing-xl);
+        box-shadow: var(--shadow);
+    }
+
+    .konto-header {
+        margin-bottom: var(--spacing-xl);
+        padding-bottom: var(--spacing-lg);
+        border-bottom: 1px solid var(--border);
+    }
+
+    .konto-header h1 {
+        font-size: var(--font-size-2xl);
+        color: var(--text-primary);
+        margin-bottom: var(--spacing-xs);
+    }
+
+    .konto-header p {
+        color: var(--text-secondary);
+    }
+
+    .form-group {
+        margin-bottom: var(--spacing-lg);
+    }
+
+    .form-label {
+        display: block;
+        font-weight: 500;
+        margin-bottom: var(--spacing-sm);
+        color: var(--text-primary);
+    }
+
+    .form-input {
+        width: 100%;
+        padding: var(--spacing-md);
+        border: 1px solid var(--border);
+        border-radius: var(--radius);
+        font-size: var(--font-size-base);
+        font-family: var(--font-family);
+        transition: var(--transition);
+    }
+
+    .form-input:focus {
+        outline: none;
+        border-color: var(--primary);
+        box-shadow: 0 0 0 3px rgba(37, 99, 235, 0.1);
+    }
+
+    .form-input:disabled {
+        background: var(--background);
+        color: var(--text-secondary);
+        cursor: not-allowed;
+    }
+
+    .form-help {
+        font-size: var(--font-size-sm);
+        color: var(--text-secondary);
+        margin-top: var(--spacing-xs);
+    }
+
+    .form-row {
+        display: grid;
+        grid-template-columns: 1fr 1fr;
+        gap: var(--spacing-md);
+    }
+
+    .info-box {
+        background: #f0f9ff;
+        border: 1px solid #bae6fd;
+        border-radius: var(--radius);
+        padding: var(--spacing-md);
+        margin-bottom: var(--spacing-lg);
+        font-size: var(--font-size-sm);
+        color: #0369a1;
+    }
+
+    .info-box a {
+        color: #0369a1;
+        font-weight: 500;
+    }
+
+    .form-actions {
+        display: flex;
+        gap: var(--spacing-md);
+        padding-top: var(--spacing-lg);
+        border-top: 1px solid var(--border);
+    }
+
+    .badge-row {
+        display: flex;
+        gap: var(--spacing-sm);
+        margin-top: var(--spacing-sm);
+    }
+
+    .profile-badge {
+        display: inline-flex;
+        align-items: center;
+        gap: var(--spacing-xs);
+        padding: 4px 10px;
+        border-radius: var(--radius-full);
+        font-size: var(--font-size-xs);
+        font-weight: 500;
+    }
+
+    .badge-verified {
+        background: #dcfce7;
+        color: #166534;
+    }
+
+    .badge-member {
+        background: #dbeafe;
+        color: #1e40af;
+    }
+
+    @media (max-width: 768px) {
+        .konto-layout {
+            grid-template-columns: 1fr;
+        }
+
+        .konto-sidebar {
+            position: static;
+        }
+
+        .konto-nav {
+            flex-direction: row;
+            flex-wrap: wrap;
+        }
+
+        .form-row {
+            grid-template-columns: 1fr;
+        }
+
+        .form-actions {
+            flex-direction: column;
+        }
+    }
+</style>
+{% endblock %}
+
+{% block content %}
+<div class="konto-layout">
+    <aside class="konto-sidebar">
+        <div class="konto-sidebar-header">
+            <div class="konto-avatar">
+                {{ (current_user.name or current_user.email)[0].upper() }}
+            </div>
+            <div>
+                <div class="konto-sidebar-name">{{ current_user.name or 'Użytkownik' }}</div>
+                <div class="konto-sidebar-email">{{ current_user.email }}</div>
+            </div>
+        </div>
+        <nav class="konto-nav">
+            <a href="{{ url_for('konto_dane') }}" class="active">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M16 7a4 4 0 11-8 0 4 4 0 018 0zM12 14a7 7 0 00-7 7h14a7 7 0 00-7-7z"/>
+                </svg>
+                Twoje dane
+            </a>
+            <a href="{{ url_for('konto_prywatnosc') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z"/>
+                </svg>
+                Prywatność
+            </a>
+            <a href="{{ url_for('konto_bezpieczenstwo') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M9 12l2 2 4-4m5.618-4.016A11.955 11.955 0 0112 2.944a11.955 11.955 0 01-8.618 3.04A12.02 12.02 0 003 9c0 5.591 3.824 10.29 9 11.622 5.176-1.332 9-6.03 9-11.622 0-1.042-.133-2.052-.382-3.016z"/>
+                </svg>
+                Bezpieczeństwo
+            </a>
+            <a href="{{ url_for('konto_blokady') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M18.364 18.364A9 9 0 005.636 5.636m12.728 12.728A9 9 0 015.636 5.636m12.728 12.728L5.636 5.636"/>
+                </svg>
+                Blokady
+            </a>
+        </nav>
+    </aside>
+
+    <main class="konto-content">
+        <div class="konto-header">
+            <h1>Twoje dane</h1>
+            <p>Zarządzaj swoimi danymi osobowymi</p>
+            <div class="badge-row">
+                {% if current_user.is_verified %}
+                <span class="profile-badge badge-verified">
+                    <svg width="12" height="12" fill="currentColor" viewBox="0 0 20 20">
+                        <path fill-rule="evenodd" d="M10 18a8 8 0 100-16 8 8 0 000 16zm3.707-9.293a1 1 0 00-1.414-1.414L9 10.586 7.707 9.293a1 1 0 00-1.414 1.414l2 2a1 1 0 001.414 0l4-4z" clip-rule="evenodd"/>
+                    </svg>
+                    Zweryfikowany
+                </span>
+                {% endif %}
+                {% if current_user.is_norda_member %}
+                <span class="profile-badge badge-member">
+                    <svg width="12" height="12" fill="currentColor" viewBox="0 0 20 20">
+                        <path d="M9.049 2.927c.3-.921 1.603-.921 1.902 0l1.07 3.292a1 1 0 00.95.69h3.462c.969 0 1.371 1.24.588 1.81l-2.8 2.034a1 1 0 00-.364 1.118l1.07 3.292c.3.921-.755 1.688-1.54 1.118l-2.8-2.034a1 1 0 00-1.175 0l-2.8 2.034c-.784.57-1.838-.197-1.539-1.118l1.07-3.292a1 1 0 00-.364-1.118L2.98 8.72c-.783-.57-.38-1.81.588-1.81h3.461a1 1 0 00.951-.69l1.07-3.292z"/>
+                    </svg>
+                    Członek NORDA
+                </span>
+                {% endif %}
+            </div>
+        </div>
+
+        <form method="POST" action="{{ url_for('konto_dane') }}">
+            <input type="hidden" name="csrf_token" value="{{ csrf_token() }}">
+
+            <div class="form-group">
+                <label for="name" class="form-label">Imię i nazwisko</label>
+                <input type="text" id="name" name="name" class="form-input"
+                       value="{{ current_user.name or '' }}"
+                       placeholder="Jan Kowalski"
+                       maxlength="255">
+                <p class="form-help">Twoje imię i nazwisko widoczne dla innych użytkowników</p>
+            </div>
+
+            <div class="form-group">
+                <label for="phone" class="form-label">Numer telefonu</label>
+                <input type="tel" id="phone" name="phone" class="form-input"
+                       value="{{ current_user.phone or '' }}"
+                       placeholder="+48 123 456 789"
+                       maxlength="50">
+                <p class="form-help">Opcjonalnie - ułatwi kontakt z innymi członkami. Możesz ukryć telefon w ustawieniach prywatności.</p>
+            </div>
+
+            <div class="form-group">
+                <label for="email" class="form-label">Adres email</label>
+                <input type="email" id="email" class="form-input"
+                       value="{{ current_user.email }}"
+                       disabled>
+                <p class="form-help">Adres email nie może być zmieniony</p>
+            </div>
+
+            {% if current_user.company %}
+            <div class="info-box">
+                <strong>Powiązana firma:</strong> {{ current_user.company.name }}<br>
+                <a href="{{ url_for('company_detail', slug=current_user.company.slug) }}">Zobacz profil firmy →</a>
+            </div>
+            {% endif %}
+
+            <div class="form-actions">
+                <button type="submit" class="btn btn-primary">
+                    Zapisz zmiany
+                </button>
+                <a href="{{ url_for('index') }}" class="btn btn-outline">
+                    Anuluj
+                </a>
+            </div>
+        </form>
+    </main>
+</div>
+{% endblock %}
--- a/templates/konto/prywatnosc.html
+++ b/templates/konto/prywatnosc.html
@ -0,0 +1,357 @@
+{% extends "base.html" %}
+
+{% block title %}Prywatność - Moje konto - Norda Biznes Partner{% endblock %}
+
+{% block extra_css %}
+<style>
+    .konto-layout {
+        display: grid;
+        grid-template-columns: 240px 1fr;
+        gap: var(--spacing-xl);
+        max-width: 1000px;
+        margin: 0 auto;
+    }
+
+    .konto-sidebar {
+        background: var(--surface);
+        border-radius: var(--radius-lg);
+        padding: var(--spacing-lg);
+        box-shadow: var(--shadow);
+        height: fit-content;
+        position: sticky;
+        top: 100px;
+    }
+
+    .konto-sidebar-header {
+        display: flex;
+        align-items: center;
+        gap: var(--spacing-md);
+        padding-bottom: var(--spacing-md);
+        margin-bottom: var(--spacing-md);
+        border-bottom: 1px solid var(--border);
+    }
+
+    .konto-avatar {
+        width: 48px;
+        height: 48px;
+        border-radius: 50%;
+        background: linear-gradient(135deg, var(--primary), #1e40af);
+        color: white;
+        display: flex;
+        align-items: center;
+        justify-content: center;
+        font-size: 20px;
+        font-weight: 600;
+    }
+
+    .konto-sidebar-name {
+        font-weight: 600;
+        color: var(--text-primary);
+        font-size: var(--font-size-sm);
+    }
+
+    .konto-sidebar-email {
+        font-size: 11px;
+        color: var(--text-secondary);
+        word-break: break-all;
+    }
+
+    .konto-nav {
+        display: flex;
+        flex-direction: column;
+        gap: var(--spacing-xs);
+    }
+
+    .konto-nav a {
+        display: flex;
+        align-items: center;
+        gap: var(--spacing-sm);
+        padding: var(--spacing-sm) var(--spacing-md);
+        border-radius: var(--radius);
+        text-decoration: none;
+        color: var(--text-secondary);
+        font-size: var(--font-size-sm);
+        transition: all 0.2s;
+    }
+
+    .konto-nav a:hover {
+        background: var(--background);
+        color: var(--text-primary);
+    }
+
+    .konto-nav a.active {
+        background: var(--primary);
+        color: white;
+    }
+
+    .konto-nav a svg {
+        width: 18px;
+        height: 18px;
+        flex-shrink: 0;
+    }
+
+    .konto-content {
+        background: var(--surface);
+        border-radius: var(--radius-lg);
+        padding: var(--spacing-xl);
+        box-shadow: var(--shadow);
+    }
+
+    .konto-header {
+        margin-bottom: var(--spacing-xl);
+        padding-bottom: var(--spacing-lg);
+        border-bottom: 1px solid var(--border);
+    }
+
+    .konto-header h1 {
+        font-size: var(--font-size-2xl);
+        color: var(--text-primary);
+        margin-bottom: var(--spacing-xs);
+    }
+
+    .konto-header p {
+        color: var(--text-secondary);
+    }
+
+    .settings-card {
+        background: var(--background);
+        border-radius: var(--radius);
+        padding: var(--spacing-lg);
+        margin-bottom: var(--spacing-lg);
+    }
+
+    .settings-card h2 {
+        font-size: var(--font-size-lg);
+        color: var(--text-primary);
+        margin-bottom: var(--spacing-md);
+        padding-bottom: var(--spacing-sm);
+        border-bottom: 1px solid var(--border);
+    }
+
+    .setting-item {
+        display: flex;
+        justify-content: space-between;
+        align-items: center;
+        padding: var(--spacing-md) 0;
+        border-bottom: 1px solid var(--border);
+    }
+
+    .setting-item:last-child {
+        border-bottom: none;
+    }
+
+    .setting-info {
+        flex: 1;
+    }
+
+    .setting-label {
+        font-weight: 500;
+        color: var(--text-primary);
+        margin-bottom: var(--spacing-xs);
+    }
+
+    .setting-description {
+        font-size: var(--font-size-sm);
+        color: var(--text-secondary);
+    }
+
+    .toggle-switch {
+        position: relative;
+        width: 50px;
+        height: 26px;
+        flex-shrink: 0;
+        margin-left: var(--spacing-md);
+    }
+
+    .toggle-switch input {
+        opacity: 0;
+        width: 0;
+        height: 0;
+    }
+
+    .toggle-slider {
+        position: absolute;
+        cursor: pointer;
+        top: 0;
+        left: 0;
+        right: 0;
+        bottom: 0;
+        background-color: #ccc;
+        transition: 0.3s;
+        border-radius: 26px;
+    }
+
+    .toggle-slider:before {
+        position: absolute;
+        content: "";
+        height: 20px;
+        width: 20px;
+        left: 3px;
+        bottom: 3px;
+        background-color: white;
+        transition: 0.3s;
+        border-radius: 50%;
+    }
+
+    input:checked + .toggle-slider {
+        background-color: var(--success);
+    }
+
+    input:checked + .toggle-slider:before {
+        transform: translateX(24px);
+    }
+
+    .form-actions {
+        padding-top: var(--spacing-lg);
+    }
+
+    @media (max-width: 768px) {
+        .konto-layout {
+            grid-template-columns: 1fr;
+        }
+
+        .konto-sidebar {
+            position: static;
+        }
+
+        .konto-nav {
+            flex-direction: row;
+            flex-wrap: wrap;
+        }
+
+        .setting-item {
+            flex-direction: column;
+            align-items: flex-start;
+            gap: var(--spacing-sm);
+        }
+
+        .toggle-switch {
+            margin-left: 0;
+        }
+    }
+</style>
+{% endblock %}
+
+{% block content %}
+<div class="konto-layout">
+    <aside class="konto-sidebar">
+        <div class="konto-sidebar-header">
+            <div class="konto-avatar">
+                {{ (current_user.name or current_user.email)[0].upper() }}
+            </div>
+            <div>
+                <div class="konto-sidebar-name">{{ current_user.name or 'Użytkownik' }}</div>
+                <div class="konto-sidebar-email">{{ current_user.email }}</div>
+            </div>
+        </div>
+        <nav class="konto-nav">
+            <a href="{{ url_for('konto_dane') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M16 7a4 4 0 11-8 0 4 4 0 018 0zM12 14a7 7 0 00-7 7h14a7 7 0 00-7-7z"/>
+                </svg>
+                Twoje dane
+            </a>
+            <a href="{{ url_for('konto_prywatnosc') }}" class="active">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M12 15v2m-6 4h12a2 2 0 002-2v-6a2 2 0 00-2-2H6a2 2 0 00-2 2v6a2 2 0 002 2zm10-10V7a4 4 0 00-8 0v4h8z"/>
+                </svg>
+                Prywatność
+            </a>
+            <a href="{{ url_for('konto_bezpieczenstwo') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M9 12l2 2 4-4m5.618-4.016A11.955 11.955 0 0112 2.944a11.955 11.955 0 01-8.618 3.04A12.02 12.02 0 003 9c0 5.591 3.824 10.29 9 11.622 5.176-1.332 9-6.03 9-11.622 0-1.042-.133-2.052-.382-3.016z"/>
+                </svg>
+                Bezpieczeństwo
+            </a>
+            <a href="{{ url_for('konto_blokady') }}">
+                <svg fill="none" stroke="currentColor" stroke-width="2" viewBox="0 0 24 24">
+                    <path d="M18.364 18.364A9 9 0 005.636 5.636m12.728 12.728A9 9 0 015.636 5.636m12.728 12.728L5.636 5.636"/>
+                </svg>
+                Blokady
+            </a>
+        </nav>
+    </aside>
+
+    <main class="konto-content">
+        <div class="konto-header">
+            <h1>Prywatność</h1>
+            <p>Kontroluj, które Twoje dane są widoczne dla innych użytkowników</p>
+        </div>
+
+        <form method="POST" action="{{ url_for('konto_prywatnosc') }}">
+            <input type="hidden" name="csrf_token" value="{{ csrf_token() }}">
+
+            <div class="settings-card">
+                <h2>Widoczność danych kontaktowych</h2>
+
+                <div class="setting-item">
+                    <div class="setting-info">
+                        <div class="setting-label">Pokaż numer telefonu</div>
+                        <div class="setting-description">
+                            Twój numer telefonu ({{ user.phone or 'nie podano' }}) będzie widoczny dla innych członków
+                        </div>
+                    </div>
+                    <label class="toggle-switch">
+                        <input type="checkbox" name="show_phone" {% if show_phone %}checked{% endif %}>
+                        <span class="toggle-slider"></span>
+                    </label>
+                </div>
+
+                <div class="setting-item">
+                    <div class="setting-info">
+                        <div class="setting-label">Pokaż adres email</div>
+                        <div class="setting-description">
+                            Twój adres email ({{ user.email }}) będzie widoczny dla innych członków
+                        </div>
+                    </div>
+                    <label class="toggle-switch">
+                        <input type="checkbox" name="show_email" {% if show_email %}checked{% endif %}>
+                        <span class="toggle-slider"></span>
+                    </label>
+                </div>
+            </div>
+
+            <div class="settings-card">
+                <h2>Preferowane kanały kontaktu</h2>
+
+                <div class="setting-item">
+                    <div class="setting-info">
+                        <div class="setting-label">Email</div>
+                        <div class="setting-description">Preferuję kontakt przez email</div>
+                    </div>
+                    <label class="toggle-switch">
+                        <input type="checkbox" name="prefer_email" {% if user.contact_prefer_email != False %}checked{% endif %}>
+                        <span class="toggle-slider"></span>
+                    </label>
+                </div>
+
+                <div class="setting-item">
+                    <div class="setting-info">
+                        <div class="setting-label">Telefon</div>
+                        <div class="setting-description">Preferuję kontakt telefoniczny</div>
+                    </div>
+                    <label class="toggle-switch">
+                        <input type="checkbox" name="prefer_phone" {% if user.contact_prefer_phone != False %}checked{% endif %}>
+                        <span class="toggle-slider"></span>
+                    </label>
+                </div>
+
+                <div class="setting-item">
+                    <div class="setting-info">
+                        <div class="setting-label">Wiadomości w portalu</div>
+                        <div class="setting-description">Preferuję kontakt przez system wiadomości w portalu</div>
+                    </div>
+                    <label class="toggle-switch">
+                        <input type="checkbox" name="prefer_portal" {% if user.contact_prefer_portal != False %}checked{% endif %}>
+                        <span class="toggle-slider"></span>
+                    </label>
+                </div>
+            </div>
+
+            <div class="form-actions">
+                <button type="submit" class="btn btn-primary">Zapisz ustawienia</button>
+            </div>
+        </form>
+    </main>
+</div>
+{% endblock %}