سياسة الخصوصية

Privacy Policy
Privacy Policy of the Website
For the Owner of this website, the protection of Users’ personal data is of utmost importance. The Owner makes every effort to ensure that Users feel safe when entrusting their personal data while using the website.


A User is a natural person, legal entity, or organizational unit without legal personality, which the law grants legal capacity and who uses the electronic services available on the website.


This Privacy Policy explains the principles and scope of processing Users’ personal data, their rights, the obligations of the data controller, and provides information on the use of cookies.


The Administrator applies the latest technical and organizational measures to ensure a high level of protection for processed personal data and safeguard them from unauthorized access.


I. PERSONAL DATA ADMINISTRATOR
The administrator of personal data is Roman Bondarenko, based at: Krakow, 31-137, ul. Siemiradzkiego 19/1, NIP: 6762522119, REGON: 521941475 (hereinafter: the “Owner”).
II. PURPOSE OF PROCESSING PERSONAL DATA
The Administrator processes the User's personal data for the following purpose:
Processing orders for products and services. We collect and store personal data voluntarily provided to us in connection with the use of our websites and services. We use the contact and payment information provided to deliver the products and services ordered through our websites.


This means the data is particularly necessary for:
a. concluding a contract;
b. settling payments;
c. delivering the goods or providing the services ordered by the User.


The User may also consent to receive information about news and promotions. In this case, the Administrator will also process personal data to send commercial information regarding, for example, new products or services, promotions, or sales.


Personal data is also processed to fulfill legal obligations imposed on the data controller and to carry out tasks in the public interest, such as matters related to safety, defense, or storing tax documentation.


Personal data may also be processed for the purposes of direct marketing of products, securing and pursuing claims or defending against claims from the User or third parties, as well as for marketing services and products of third parties or the Owner’s own non-direct marketing.


III. TYPE OF DATA
The Administrator processes the following personal data, which are necessary for:
a. making purchases through the website:
– first and last name;
– gender;
– delivery address;
– phone number;
– email address;

b. Optionally provided by the User:
– date of birth;
– PESEL number (in case of requesting an invoice);
– NIP number (for business invoice requests).


IV. LEGAL BASIS FOR PERSONAL DATA PROCESSING
Personal data is processed in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (General Data Protection Regulation, "GDPR").


The Administrator processes personal data only after obtaining the User’s consent when confirming a transaction on the website.


Giving consent to the processing of personal data is entirely voluntary; however, refusal will prevent purchases via the website.


V. USER RIGHTS
The User can request information at any time about the scope of processing their personal data.


The User can request the correction or rectification of their personal data at any time.


The User may withdraw their consent to data processing at any time without providing a reason. This may apply to a specific processing purpose (e.g., receiving commercial information) or all purposes. Full withdrawal will result in account deletion along with all processed personal data. Withdrawal does not affect prior actions.


The User may request the deletion of their data at any time. This will also delete their account and all processed data. Deletion does not affect prior actions.


The User may object to data processing, either completely or for specific purposes. Objection will result in the deletion of their account and processed data. It does not affect prior actions.


The User may request restriction of data processing for a specific time or purpose, which the Administrator must fulfill. This does not affect prior actions.


The User may request their data to be transferred to another entity. This requires a written request specifying the recipient (name, address) and the specific data to be transferred. The Administrator will confirm and then send the data electronically.


The Administrator informs the User of any actions taken within one month of receiving such a request.


VI. DATA RETENTION PERIOD
Personal data is stored only as long as necessary to fulfill contractual or legal obligations. Once no longer needed, it will be deleted unless required for legal or evidentiary purposes.


Contract-related information is retained for three years from the end of the business relationship, for evidentiary purposes. After this period, it is deleted in accordance with statutory limitation periods.


The Administrator may retain archived information related to transactions for warranty or claim purposes.


If no contract was concluded, the User’s data is stored until account deletion, either upon the User's request, withdrawal of consent, or objection to processing.


VII. DATA SHARING WITH THIRD PARTIES
The Administrator may share personal data with third parties necessary for processing transactions (e.g., product preparation, delivery, or sending commercial information to consenting Users).


Aside from the purposes listed in this Privacy Policy, Users’ personal data will not be shared with third parties or used for third-party marketing purposes.


Personal data is not transferred outside the European Union.


This Privacy Policy complies with Article 13(1) and (2) of the GDPR.