PRIVACY POLICY OF THE WEBSITE
www.wasylteam.com
§ 1.
DEFINITIONS
Whenever the following capitalised terms are used in this document, they should be understood:
1) Administrator – the administrator of personal data, who for this Website is Mateusz Wasilewski running a business under the name Mateusz Wasilewski wasylteam, at the following address: ul. MC Skłodowskiej 1A lok. 7, 59-970 Zawidów, NIP 6152029320, REGON: 521680709.
2) Personal Data – information about an identified or identifiable natural person, the data subject, i.e. one who can be directly or indirectly identified, in particular on the basis of a feature such as: name and surname, identification number, location data, internet identifier or one or more characteristics of a natural person’s physical, physiological, genetic, mental, economic, cultural or social identity.
3) Newsletter – commercial information provided by the Service Provider via the Website, intended directly or indirectly to promote the goods, services or image of the Service Provider or other entities cooperating with the Service Provider.
4) Privacy Policy – this document;
5) GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC
6) Website – all functionalities of the website maintained by the Service Provider at www.wasylteam.com
7) Store – the functionality of the Website, through which you can place an order for the assortment offered through it;
8) Service Provider – Mateusz Wasilewski running a business under the name Mateusz Wasilewski wasylteam, at the following address: ul. MC Skłodowskiej 1A lok. 7, 59-970 Zawidów, NIP 6152029320, REGON: 521680709.
9) User – a natural person who provides his Personal Data, uses the functionality of the Website or makes purchases through the Store.
§ 2.
GENERAL PROVISIONS
- This document defines the rules for the processing and protection of personal data of Website Users.
- The administrator of the Users’ Personal Data (data subjects) of the Website is Mateusz Wasilewski running a business under the name Mateusz Wasilewski wasylteam, at the following address: ul. MC Skłodowskiej 1A lok. 7, 59-970 Zawidów. NIP 6152029320, REGON: 521680709.
- The Administrator processes the Personal Data of persons to whom they relate in accordance with applicable regulations, in particular Polish law and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on free movement such data and repealing Directive 95/46 / EC.
- Processing, within the meaning of the Privacy Policy, means an operation or a set of operations performed on Personal Data or sets of Personal Data in an automated or non-automated manner, such as collecting, recording, organising, storing, adapting or modifying, downloading, viewing.
§ 3.
THE SCOPE AND PURPOSE OF THE COLLECTED DATA
- Personal Data is processed by the Administrator as part of the Website in order to enable the use of the Website’s functionalities, including automatically when using the Website, i.e. in order to:
a) registration on the Website;
b) concluding contracts via the Website, in particular placing and executing orders in the Store;
c) efficient operation and functioning of the Website, including the Store, and ensuring the safety of using them, including for revealing abuses and making analyses;
d) fulfilling the Service Provider’s obligations, in particular complaints regarding contracts concluded on the Website or via the Website, and the functioning of the Website;
e) preparation and presentation of advertisements and offers and receiving commercial information tailored to the interests and needs of persons whose Personal Data are related, in particular sending by the Service Provider to the e-mail address of the ordered Newsletter provided by the User;
f) in order to publish content as part of the Website’s functionality and in messages sent to the User.
- For purposes:
a) registration on the Website – the following Personal Data are processed: name and surname, e-mail address, password, IP address, cookies;
b) concluding contracts via the Website, in particular placing and processing an order for goods ordered in the Store, the following Personal Data are processed: name and surname, address (street, house number, city and postal code), contact telephone number, e-mail address , order number, IP address, cookies, bank account number or other data necessary for the performance of the contract provided by the Service Provider on the Website or during contact with the User;
c) fulfilling the Service Provider’s obligations, in particular complaints regarding contracts concluded on the Website or via the Website, and the functioning of the Website – the following Personal Data are processed: name, surname, e-mail, telephone number, address (street, house number, city and postal code), IP address, cookies, order number, bank account number;
d) sending by the Service Provider to the e-mail address of the ordered Newsletter indicated by the User – the following Personal Data are processed: name, surname, e-mail address, IP address, cookies;
§ 4.
LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA
The legal basis for the processing of Personal Data is:
a) consent of the person whose Personal Data relates to their processing – where Personal Data relating to children are processed only if the child is 16 years of age or older;
b) indispensability to perform contracts concluded via the Website, or to take actions requested by the person whose Personal Data relates before concluding the contract;
c) indispensability to fulfill the legal obligation incumbent on the Service Provider;
d) legitimate interests pursued by the Service Provider or by a third party, which are electronic payment operators or other implemented in connection with the functionality of the Website, and this basis for the processing of Personal Data does not apply to children.
§5.
THE PERIOD OF PROCESSING PERSONAL DATA
Personal Data collected on the Website will be stored for billing purposes for a maximum period of 5 years, counting from the end of the calendar year in which the tax payment deadline related to the contract concluded on the Website or via the Website expired. In the remaining scope, for legitimate purposes of processing, Personal Data will be stored as long as there is a legal basis for their processing, unless applicable law would require a longer period of storage, e.g. for use in proceedings regarding the functioning of the Website. In particular, the data will be processed for the period in which claims related to the contract resulting from the provisions of the Civil Code and / or tax law may be disclosed. At the end of the storage period, personal data will be deleted or made anonymous.
§ 6.
VOLUNTARY PROVISION OF PERSONAL DATA
Providing Personal Data on the Website is voluntary, but necessary to achieve one or more purposes of processing Personal Data defined in §3 para. 1 and 2 of this Security Policy, which the Service Provider will not be able to implement in the event of failure to provide Personal Data on the Website, respectively for one or more purposes, defined in §3 para. 1 and 2 above.
§ 7.
PROFILING OF PERSONAL DATA
Personal Data may be processed in an automated manner, including by profiling, for which information about purchases, activities in the Service Provider’s sales channels (computer IP, cookies, preferred methods of purchase) is used, in order to help the User in choosing the preferred options for completing the order placed in Store, as well as adjusting marketing information to the individual preferences of the User. Any processing that will be carried out in an automated manner will not give rise to any legal consequences for the User, in particular, any binding decisions and consents expressed by the User will not be automated.
§ 8.
COOKIES
- The Service Provider informs that when using the Website, Personal Data is also collected automatically in the Website’s system logs, by cookies.
- The Service Provider informs that from the moment the User connects to the Website, information about the number (including IP) and type of the User’s end device from which the User connects to the Website appears in the Website’s system logs. The Service Provider informs that, in accordance with the law, it also processes data regarding the number (including IP) and type of the User’s end device, as well as the time of the User’s connection with the Website and other operational data regarding the User’s activity on the Website. The data described is processed for technical purposes to adapt the Website to the needs of Users and to collect general statistical information on the functioning of the Website.
- The Service Provider uses Cookies to collect information related to the use of the Website by the User. Cookies are IT data, in particular small text files, saved and stored on devices through which the User uses the Website, which enable:
a) maintaining the User’s session (after logging in), thanks to which the User does not have to re-enter the Login and Password on each subpage of the Website,
b) adjusting and optimising the Website to the needs of Users,
c) personalisation of marketing messages,
d) ensuring the safety and reliability of the Website.
- The Website uses session cookies, which are deleted after closing the web browser window, as well as persistent cookies, saved for a specified period of time in the devices through which the User uses the Website.
- The User may independently and at any time change the settings for Cookies, specifying the conditions for their storage and access to the User’s device via Cookies.
- Changes to the settings referred to in paragraph 5 above, the User can do it using the web browser settings or by using the service configuration. These settings can be changed in particular in such a way as to block the automatic handling of cookies in the web browser settings or to inform about each posting of Cookies on the User’s device. Detailed information on the possibilities and methods of handling cookies is available in the User’s software (web browser) settings.
- The user may at any time delete cookies using the functions available in the web browser he uses.
- Restricting the use of cookies may affect some of the functionalities available on the Website.
§ 9.
SERVICE PROVIDER’S RIGHTS AND OBLIGATIONS
- The Service Provider reserves the right to disclose selected Personal Data to the competent authorities or third parties who submit a request for such information, based on an appropriate legal basis, in accordance with the provisions of applicable law.
- The Service Provider declares that he entrusts the processing of Personal Data, on the basis of a written agreement concluded in accordance with applicable regulations, to entities providing the Service Provider with hosting, administration, maintenance and management services, as well as services in the field of optimisation of the message and management of promotional campaigns.
- The Service Provider declares that he entrusts the processing of the User’s Personal Data to entities providing services to the Service Provider or directly the User to the extent necessary to use the Website, including the implementation of contracts, in particular orders in the Store, delivery of goods to the User and consideration of complaints, on the basis of a written contract concluded in accordance with with applicable regulations. Users’ Personal Data may be entrusted, in particular, to entities providing accounting services to the Service Provider, a law firm, a payment service operator, a bank handling payment for an order.
§ 10.
PROCESSING OF PERSONAL DATA BY PROCESSORS
- Processors within the meaning of the Privacy Policy are the entities referred to in §9 para. 2 and 3 of this Security Policy, which process Personal Data on behalf of the Service Provider.
- The processor is authorised and has the right to process Personal Data only for the purposes and to the extent specified in the Privacy Policy.
- Personal Data may be processed only in the territory of Poland, a European Union (EU) Member State or in the territory of the signatory to the European Economic Area (EEA) Agreement.
- The Processor processes the entrusted Personal Data in accordance with applicable law, in particular the Processor:
a) uses technical and organisational measures required by law, in particular in the field of security of Personal Data processing.
b) takes measures to ensure: (i) the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services; ii) the ability to quickly restore the availability and access to personal data in the event of a physical or technical incident; iii) regularly testing, measuring and evaluating the effectiveness of technical and organisational measures to ensure the security of processing.
c) applies security measures for Personal Data at a level not lower than that used by the Service Provider.
- The processor may change, delete or block the processed Personal Data only at the request of the Data Administrator. If the data subject requests the Processor directly to change or delete their Personal Data, the Processor shall immediately, no later than 5 business days, submit such a request to the Service Provider.
- The processor should not process Personal Data for any purpose other than the performance of the obligations set out in the Privacy Policy. The Processor may not disclose Personal Data to third parties.
- The Processor is liable to the person whose Personal Data relates to the damage that this person may suffer as a result of the Processor’s actions and omissions.
§ 11.
THE RIGHTS AND OBLIGATIONS OF THE PERSON TO WHOM THE PERSONAL DATA RELATES
- Each User has the right to:
a) access to your Personal Data, the right to rectify it, delete it and the right to request restriction of processing.
b) object to the processing of Personal Data, withdraw consent to the processing of Personal Data for one or more purposes for which it was granted, at any time without affecting the lawfulness of the processing which was carried out on the basis of consent before its withdrawal, as well as the right to transfer your Data Personal.
- In order to exercise the rights referred to in para. 1 lit. a) above, please send an email to the following address: wasylteam@wp.pl, or send the request in writing to the address of the Service Provider: Mateusz Wasilewski wasylteam, ul. MC Skłodowskiej 1A lok. 7, 59-970 Zawidów.
- In order to exercise the rights referred to in para. 1 lit. b) above, please send an e-mail to wasylteam@wp.plby entering the word “objection” or “withdrawal of consent” in the title or describe your request in the text of the message and inform about the objection or withdrawal of consent, click on the link that causes withdrawal of consent in the text of the commercial information or send a written notice about the withdrawal of consent to receive commercial information on the Service Provider’s address indicated in §2 para. 2 of this Security Policy.
- If the User places any personal data of other persons on the Website (including their first and last name, address, telephone number or e-mail address), they may do so only on condition that they do not violate applicable law and personal rights of these persons.
- The User is entitled to use Personal Data and content provided by other persons on the Website only in connection with the use of the Website and with their consent in a manner consistent with the provisions of applicable law, unless they obtain consent from these other persons to process their Personal Data and their content to the extent or purpose provided for in the Privacy Policy and beyond the use of the Website.
- Each User has the right to lodge a complaint with the authority supervising the processing of Personal Data.
§ 11.
PROTECTION OF PERSONAL DATA
- The Service Provider declares that he makes efforts to provide Users with a high level of security in the use of the Website and for this purpose:
a) uses technical and organisational measures required by law, in particular with regard to the security of Personal Data processing;
b) takes measures to ensure: (i) the ability to ensure the ongoing confidentiality, integrity, availability and resilience of processing systems and services; ii) the ability to quickly restore the availability and access to Personal Data in the event of a physical or technical incident; iii) regularly testing, measuring and evaluating the effectiveness of technical and organisational measures to ensure the security of processing.
- Any events affecting the security of information and data transmission, including the suspicion of sharing files containing viruses and other files of a similar nature or other than files of destructive mechanisms, should be reported to the Service Provider at the email address: wasylteam@wp.pl
§ 12.
FINAL PROVISIONS
In matters not regulated in this Privacy Policy, the provisions of law regarding the processing of Personal Data shall apply, including the provisions of the GDPR and the Act of May 10, 2018. on the protection of personal data (Journal of Laws of 2018, item 1000, as amended).