PRIVACY POLICY

PRIVACY POLICY ONLINE SHOP HURTOWNIASPORTOWA.EU FOR ENTREPRENEURS

 

CONTENTS:

1. GENERAL PROVISIONS

2. GROUNDS FOR DATA PROCESSING

3. PURPOSE, GROUNDS, PERIOD AND SCOPE OF DATA PROCESSING IN THE ONLINE STORE

4. DATA RECEIVERS IN THE ONLINE STORE

5. PROFILING IN THE ONLINE STORE

6. THE RIGHTS OF DATA SUBJECT

7. COOKIES IN THE ONLINE STORE, OPERATIONAL DATA AND ANALYTICS

8. FINAL PROVISIONS.

 

1.     GENERAL PROVISIONS

1.1.     This Online Store privacy policy is informative, which means that it is not a source of obligations for Recipients of Services or Customers of the Online Store. The privacy policy mainly contains rules for the processing of personal data by the Administrator in the Online Store, including the grounds, purposes and scope of processing personal data and the rights of persons whose data is stored, as well as information on the use of cookie files in the Online Store and on analytical tools.

1.2. The administrator of personal data collected via the Online Store is Artur Czajkowski running a business under the name markARTUR Artur Czajkowski, entered into the Central Register and Information on Economic Activity of the Republic of Poland, kept by the minister responsible for economy, address of the place of business and address for delivery : Melgiewska 30D, 20-234 Lublin, NIP 7120083908, REGON 430401306, e-mail address: sklep@meteor.pl, phone number: 81 745 09 10 - hereinafter referred to as the "Administrator" and being at the same time the Online Store Service Provider and the Seller.

1.3.     Personal data in the Online Store is processed by the Administrator in accordance with applicable law, in particular in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and the free flow of such data and the repeal of Directive 95/46 / EC (general regulation on data protection) - hereinafter referred to as "RODO" or "RODO Regulation". Official text of the RODO Regulation: http://eur-lex.europa.eu/legal-content/PL/TXT/?uri=CELEX%3A32016R0679 .

1.4. Using the Online Store, including making purchases is voluntary. Similarly, providing personal data by the User of the Online Store is voluntary, subject to two exceptions: (1) entering into agreements with the Administrator - failure to comply in cases and in the scope indicated on the Online Store website and in the Online Store Regulations and this privacy policy personal data necessary to conclude and execute the Sales Agreement or contract for providing Electronic Services with the Administrator results in the inability to conclude this contract. Providing personal data is in this case a contractual requirement and if the persons whose data is in question wants to conclude a given agreement with the Administrator, they are obliged to provide the required data. In every case, the scope of data required to conclude the contract is indicated on the Online Store website and in the Online Store Regulations; (2) statutory duties of the Administrator - providing personal data is a statutory requirement resulting from generally applicable legal provisions imposing an obligation on the Administrator to process personal data (e.g. data processing for the purpose of keeping tax or accounting books) and failure to provide them will prevent the Administrator from performing these duties.

1.5. The Administrator takes special care to protect the interests of persons whose personal data is processed, and in particular is responsible and ensures that the data collected by the Administrator is: (1) processed in accordance with the law; (2) collected for specified, legitimate purposes and not subject to further processing incompatible with those purposes; (3) factually correct and adequate in relation to the purposes for which they are processed; (4) kept in a form that permits identification of persons whom they concern, no longer than it is necessary to achieve the purpose of processing, and (5) processed in a manner that ensures adequate security of personal data, including protection against unauthorized or unlawful processing and accidental loss, destruction or damage, by appropriate technical or organizational measures.

1.6. Taking into account the nature, scope, context and purposes of processing as well as the risk of violating the rights or freedoms of natural persons with different probabilities and seriousness of risk, the Administrator implements appropriate technical and organizational measures for processing in accordance with this Regulation and to be able to prove it. These measures shall be reviewed and updated where necessary. The Administrator uses technical measures to prevent the acquisition and modification by unauthorized persons of personal data sent electronically.

1.7.     In order to protect the right to privacy and care for data security, the encryption of the website is carried out using the SSL protocol (Secure Socket Layer). All data sent between the Customer's browser and the website, used, among others, during registration, logging in and ordering are protected by an encryption algorithm using a 256-bit key (RSA 2048 Bits).

1.8. All words, expressions and acronyms appearing in this privacy policy and beginning with a capital letter (e.g. Seller, Online Shop, Electronic Service) should be understood in accordance with their definition contained in the Online Store Regulations available on the Online Store website.

2.     GROUNDS FOR DATA PROCESSING

2.1. The Administrator is authorized to process personal data in cases where - and to the extent that - at least one of the following conditions is met: (1) the data subject has consented to the processing of their personal data in one or more specific purposes ; (2) processing is necessary for the realization of a contract which the data subject is a party of or taking action at the request of the data subject prior to entering into the contract; (3) processing is necessary to fulfil the legal obligation of the Administrator; or (4) processing is necessary for purposes arising from legitimate interests pursued by the Administrator or by a third party, except when the interests or fundamental rights and freedoms of the data subject, requiring the protection of personal data, prevail over those interests , in particular when the data subject is a child.

2.2. The processing of personal data by the Administrator requires each time at least one of the grounds indicated in point. 2.1 of the privacy policy. The specific grounds for processing the personal data of Service Users and Customers of the Online Store by the Administrator are indicated in the next section of the privacy policy - in relation to a given purpose of personal data processing by the Administrator.

3.    PURPOSE, GROUNDS, PERIOD AND SCOPE OF DATA PROCESSING IN THE ONLINE STORE

3.1. In every case, the purpose, the ground, period and scope as well as the recipients of personal data processed by the Administrator result from actions taken by a given Recipient of Services or the Customer in the Online Store. For example, if the Customer decides to make purchases in the Online Store and chooses a collection in person of the purchased Product instead of a courier parcel, their personal data will be processed for the purpose of carrying out the Sales Agreement, but will no longer be available to the carrier realizing the shipment at the request of the Administrator.

3.2. The Administrator may process personal data in the Online Store for the following purposes, on the following grounds, in periods and in the following scope:

Purpose of data processing Legal Grodnu of processing and period of data storing Scope of data processing
Carrying out the Sales Agreement or contract of providing Electronic Services or taking action at the request of the data subject, before concluding the above agreements

Article 6 paragraph 1 lit. b) Regulations of the GDPR (carrying out the contract)

Data is stored for the period necessary to carry out, terminate or end otherwise the contract.

Maximum scope: name and surname; e-mail address; contact phone number; delivery address (street, house number, apartment number, zip code, city, country), address of residence / business / seat (if different from delivery address).

In the case of Recipients of Services or Customers who are not consumers, the Administrator may additionally process the company name and tax identification number (NIP) of the Recipient of Services or the Customer.

The specified scope is maximal - in the case of, for example, collection in person, it is not necessary to provide the delivery address.

Direct marketing

Article 6 paragraph 1 lit. f) Regulations of the GDPR (legally justified interest of the Administrator)

The data is stored for the duration of the legitimate interest realized by the Administrator, but no longer than during the period of limitation of claims against the data subject due to the business activity conducted by the Administrator. The limitation period is defined by the law, in particular the Civil Code (the basic period of limitation for claims related to running a business is three years, and for a contract of sale two years).

The administrator cannot process data for direct marketing purposes in case of effective opposition in this respect by the data subject. Name and surname; address of residence / business activity / registered office (if different from the delivery address), company name and tax identification number (NIP) of the Customer or Recipient of Services

Email address
Marketing

Article 6 paragraph 1 let. a) Regulations of the GDPR (consent)

Data is stored until the consent of the data subject to further data processing for this purpose is withdrawn.

Name, email address
Customer expressing opinion about Sales Agreement

Article 6 paragraph 1 lit. c) Regulations of the GDPR in connection with from art. 86 § 1 of the Tax Ordinance, i.e. on 17 January 2017 (Journal of Laws of 2017, item 201) or art. 74 par. 2 of the Accounting Act, i.e. of 30 January 2018 (Journal of Laws of 2018, item 395)

The data is stored for a period required by law ordering the Administrator to store tax books (until the tax liability period expires, unless tax laws state otherwise) or accounting (5 years, counting from the beginning of the year following the financial year which the data concerns).

Email address
Running tax and accounting books

Article 6 paragraph 1 let. a) Regulation of the GDPR

Data is stored until the data subject withdraws their consent for further processing of their data for this purpose. Article 6 paragraph 1 lit. c) Regulations of the GDPR in connection with from art. 86 § 1 of the Tax Ordinance, i.e. on 17 January 2017 (Journal of Laws of 2017, item 201) or art. 74 par. 2 of the Accounting Act, i.e. of 30 January 2018 (Journal of Laws of 2018, item 395). The data is stored for a period required by law ordering the Administrator to store tax books (until the tax liability period expires, unless tax laws state otherwise) or accounting (5 years, counting from the beginning of the year following the financial year which the data concerns).

First name and last name; address of residence / business activity / registered office (if different from the delivery address), company name and tax identification number (NIP) of the Customer or Recipient of Services
Establishment, pursuing or defence of claims that may be raised by the Administrator or which may be raised against the Administrator

Article 6 paragraph 1 lit. f) Regulations of the GDPR

Data is stored for the duration of the legitimate interest pursued by the Administrator, but no longer than during the period of limitation of claims in relation to the data subject, due to the economic activity conducted by the Administrator. The limitation period is defined by the law, in particular the Civil Code (the basic period of limitation for claims related to running a business is three years, and for a contract of sale two years).

First name and last name; contact phone number; e-mail address; delivery address (street, house number, apartment number, zip code, city, country), address of residence / business / seat (if different from delivery address).

In the case of Recipients of Services or Customers who are not consumers, the Administrator may additionally process the company name and tax identification number (NIP) of the Recipient of Services or the Customer.

4.     DATA RECEIVERS IN THE ONLINE STORE

4.1. For proper functioning of the Online Store, including for the implementation of Sales Agreements, it is necessary for the Administrator to use the services of external entities (such as, for example, software provider, courier or payment processing agent). The administrator uses only the services of such data processors who provide sufficient guarantees to implement the appropriate technical and organizational measures, so that the processing meets the requirements of the Regulation of the GDPR and protects the rights of the data subjects.

4.2. The transfer of data by the Administrator is not done in each case and not to all recipients indicated in the privacy policy - the administrator provides data only when it is necessary for the purpose of processing personal data and only to the extent necessary to achieve it. For example, if the customer uses collection in person, his data will not be transferred to the carrier cooperating with the Administrator.

4.3. The personal data of the Recipients of Services and Customers of the Online Store may be transferred to the following recipients or categories of recipients:

4.3.1. carriers / hauliers/ courier brokers - in the case of a Customer who uses the Online Store with the method of delivery of the Product by post or courier, the Administrator provides the Customer's collected personal data to the selected carrier, haulier or agent realizing the shipment at the request of the Administrator to the extent necessary to complete the delivery of the Product to Customer.

4.3.2. entities handling electronic payments or by credit card - in the case of the Customer who uses electronic payment or payment card in the Online Store the Administrator provides the Customer's collected personal data to the selected entity servicing the above payments in the Online Store at the request of the Administrator in the scope necessary to handle payments made by the customer.

4.3.3. lenders / lessors - in the case of a Customer who uses payment method in the instalment system or leasing payment in the Online Store. The Administrator provides the collected personal customer data to the selected lender or the lessor handling the above payments in the Online Store at the request of the Administrator to the extent necessary to handle payments made by the Customer.

4.3.4. suppliers of the opinion-giving survey system - in the case of the Customer who agreed to express an opinion on the concluded Sales Agreement, the Administrator provides the Customer's collected personal data to the selected entity providing a system of surveys expressing the concluded Sales Agreement in the Online Store on the Administrator's request to the extent necessary to express an opinion by the Customer using a system of opinion surveys.

4.3.5. service providers supplying the Administrator with technical, IT and organizational solutions enabling the Administrator to conduct business, including the Online Store and Electronic Services provided through it (in particular, computer software suppliers to run an Online Store, electronic mail and hosting provider and management software vendors) company and providing technical assistance to the Administrator) - the Administrator provides the collected personal data of the Customer to a selected supplier acting on his behalf only in the case and to the extent necessary to achieve a given purpose of data processing in accordance with this privacy policy.

4.3.6. providers of accounting, legal and advisory services providing the Administrator with accounting, legal or advisory support (in particular accounting office, law firm or debt collection company) - The administrator provides the collected personal data of the client to a selected supplier acting on his behalf only in the case and to the extent necessary to carry out given purpose of data processing in accordance with this privacy policy.

5.     PROFILING IN THE ONLINE STORE

5.1. The GDPR Regulation imposes on the Administrator an obligation to inform about automated decision-making, including profiling referred to in art. 22 point 1 and 4 of the GDPR Regulation, and - at least in these cases - relevant information about the rules of decision taking, as well as the significance and possible consequences of such processing for the data subject. With this in mind, the Administrator provides information on possible profiling in this section of the privacy policy.

5.2. The Administrator may use profiling for direct marketing purposes in the Online Store, but the decisions made on its basis by the Administrator do not concern the conclusion or refusal to conclude a Sales Agreement or the possibility of using Electronic Services in the Online Store. The effect of using profiling in the Online Store may be, for example, granting a given person a discount, sending a discount code, reminding about unfinished purchases, sending a Product proposal that may correspond to the interests or preferences of a given person, or offering better terms compared to the standard offer of the Online Store . Despite profiling, a given person makes a free decision whether they will want to use the discount received in this way, or better conditions and make a purchase in the Online Store.

5.3. Profiling in the Online Store consists in an automatic analysis or prediction of a given person's behaviour on the Online Store website, e.g. by adding a specific Product to the shopping cart, browsing a specific Product page in the Online Store, or by analyzing the previous history of purchases in the Online Store. The condition of such profiling is the Administrator having personal data of a given person in order to be able to send it, e.g. a discount code.

5.4. The data subject has the right not to be subject to a decision which is based solely on automated processing, including profiling, and has legal effects or substantially affects the person.

6.     THE RIGHTS OF DATA SUBJECT

6.1. The right of access, rectification, restriction, deletion or transfer - the data subject has the right to request the Administrator to access their personal data, rectify it, remove ("the right to be forgotten") or limit the processing and has the right to object to processing and has the right to transfer their data. Detailed conditions for the exercise of the abovementioned rights are indicated in art. 15-21 of the GDPR Regulation.

6.2. The right to withdraw consent at any time - the person whose data is processed by the Administrator on the basis of expressed consent (according to Article 6 paragraph 1 letter a) or art. 9 par. 2 let. a) Regulation of the GDPR), has the right to withdraw consent at any time without affecting the legality of the processing which was carried out on the basis of consent before its withdrawal.

6.3. The right to lodge a complaint to the supervisory body - the person whose data is processed by the Administrator, has the right to lodge a complaint to the supervisory body in the manner and mode specified in the provisions of the Regulation of the GDPR and Polish law, in particular the Act on the Protection of Personal Data. The supervisory body in Poland is the President of the Office for Personal Data Protection.

6.4. Right to object - the data subject has the right to object at any time - for reasons related to his particular situation - to the processing of their personal data based on art. 6 par. 1 let. e) (public interest or tasks) or f) (legitimate interest of the Administrator), including profiling based on these provisions. In such a case, the Administrator may no longer process such personal data unless he demonstrates the existence of important legally valid grounds for processing superior to the interests, rights and freedoms of the data subject or the grounds for determining, investigating or defending claims.

6.5. Right to object to direct marketing - if personal data is processed for direct marketing purposes, the data subject has the right to object at any time to the processing of his personal data for such marketing purposes, including profiling, to the extent that the processing is related to such direct marketing.

6.6. In order to exercise the rights referred to in this point of the privacy policy, you can contact the Administrator by sending a relevant message in writing or by e-mail to the Administrator's address indicated at the beginning of the privacy policy or using the contact form available on the Online Store website.

7. COOKIES IN THE ONLINE STORE, OPERATIONAL DATA AND ANALYTICS

7.1. Cookies (cookies) are small text information in the form of text files, sent by the server and saved on the side of the person visiting the website of the Online Store (e.g. on the hard drive of the computer, laptop or on the Smartphone’s memory card - depending on which device is used to visit our Online Shop). Detailed information about cookies as well as the history of their creation can be found here: http://en.wikipedia.org/wiki/City.

7.2. The Administrator may process data contained in Cookies collected while visiting the Online Store website for the following purposes:

7.2.1. identification of the Registered Users as logged in to the Online Store and showing that they are logged in;

7.2.2. storing information about Products added to the trolley in order to place an Order;

7.2.3. storing data from completed Order Forms, surveys or login details to the Online Store;

7.2.4. adjusting the content of the Online Store's website to the individual preferences of the Service Recipient (e.g.  regarding colours, font size, page layout) and optimizing the use of Online Store websites;

7.2.5. keeping anonymous statistics showing how the Online Store website is used.

7.3. By default, most web browsers available on the market accept cookies by default. Everyone has the possibility to define the terms of using cookies using the own browser's settings. This means that you can, for example, partially restrict (e.g. temporarily) or completely disable the option of saving cookies - in the latter case, however, it may affect some functionalities of the Online Store (for example, it may not be possible to pass the order path through the Order Form due to inability to save the information about the Products in the trolley in following steps of placing the Order).

7.4. Browser settings concerning cookies are important in regard to the consent to using cookies by our Online Store - in accordance with the law, such consent can also be expressed through the settings of the web browser. In the absence of such consent, the browser's settings regarding cookies should be changed accordingly.

7.5. Detailed information on changing cookies settings and their self-removal in the most popular web browsers is available in the help section of the web browser and on the following websites (click the link): o    in Chrome web browser o    in Firefox web browser o    in  Internet Explorer web browser o    in  Opera web browser o    in  Safari web browser o    in  Microsoft Edge web browser.

7.6. The Administrator may use Google Analytics, Universal Analytics provided by Google Inc. in the Online Store. (1600 Amphitheater Parkark, MountainView, CA 94043, USA) and from the Facebook Pixel service provided by Facebook Ireland Limited (4 Grand Canal Square, Grand Canal Harbor, Dublin 2, Ireland). These services help the Administrator analyze the traffic in the Online Store. The data collected is processed as part of the aforementioned services in an anonymised way (these are so-called operating data that prevent the identification of a person) to generate statistics helpful in administering the Online Store. This data is aggregate and anonymous in nature, i.e. it does not contain identification features (personal data) of visitors to the Online Store. Administrator using the above services in the Online Store collects such data as the source and means of obtaining visitors to the Online Store and how they act on the Online Store website, information on devices and browsers which they use to visit the website, IP and domain, geographic data and demographic data (age , sex) and interests.

7.7. It is possible to easily block Google Analytics from sharing information about its activity on the Online Store website - you can install the browser plug-in provided by Google Inc. for this purpose. available here: https://tools.google.com/dlpage/gaoptout?hl=pl .

8. FINAL PROVISIONS

The Online Store may contain links to other websites. The administrator urges that after going to other websites, read the privacy policy established there. This privacy policy applies only to the Administrator's Online Store.                        

This page uses cookie files to provide its services in accordance to Cookies Usage Policy. You can determine conditions of storing or access to cookie files in your web browser.
Close
pixel