1. GENERAL PROVISIONS
1.2. The Website Operator and the Administrator of personal data collected through it is DECORPROJECT sp. o.o. with its registered office at ul. Domaniewska 41 in Warsaw (02-606) – hereinafter referred to as “Administrator“, owner of the brand urzadzamypodklucz.pl.
1.3. The Personal Data of the Customer and the Customer shall be processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016. on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46/EC (General Data Protection Regulation, hereinafter referred to as the GDPR).
1.4. The controller shall take special care to protect the interests of data subjects and, in particular, to ensure that the data collected by him are processed lawfully; collected for designated legitimate purposes and not subjected to further processing incompatible with those purposes; substantively correct and adequate in relation to the purposes for which they are processed and stored in a form which allows the identification of the data subjects for no longer than is necessary to achieve the purpose of the processing.
2. PURPOSES AND TIME AND TYPE OF PROCESSING AND RECIPIENT OF THE DATA
2.1. Each time the purpose and scope of the data processed by the Administrator results from actions taken by the Customer or the Service Client.
2.2. The possible purposes of collecting personal data of Customers or Clients by the Administrator are:
2.2.1. The conclusion and performance of a contract pursuant to Article 10(1) of Regulation (EC) No 1782/ Whereas article 6 (2) of Regulation (EEC) No 1(.b the GDPR for the duration of the contract and until the time limits for redress expire;
2.2.2. The handling of complaints pursuant to Article 11(1) of Regulation (EC) No 1782/2003 shall Whereas article 6 (2) of Regulation (EEC) No 1(.c the GDPR for one year after the expiry of the warranty or settlement of the complaint;
2.2.3. Claims relating to a contract concluded pursuant to Article 10(1) of Regulation (EC) No 1782/2003 shall be carried Whereas article 6 (2) of Regulation (EEC) No 1 point (f) of the GDPR, where the legitimate purpose is to assert claims, until the proceedings including enforcement proceedings have been finally completed;
2.2.4. The archiving of settlement documents pursuant to Article 11(1) of Regulation (EC) No 1257/1 Whereas article 6 (2) of Regulation (EEC) No 1(b.c the GDPR until the limitation period for the tax liability expires;
2.2.5. Conducting marketing activities of own products and services without the use of electronic means of communication pursuant to Art. Whereas article 6 (2) of Regulation (EEC) No 1 point (f) of the GDPR, where the legitimate purpose is to carry out marketing activities promoting the activities carried out, until an objection is raised.
2.2.6. If you have given your consent, it is also for the purpose of conducting marketing activities of your own products and services using electronic means of communication, pursuant to Art. Whereas article 6 (2) of Regulation (EEC) No 1 point (f) of the GDPR and the provisions of other laws requiring consent to such actions, until the consent to such actions is withdrawn or an objection is raised, depending on which of the events will occur first.
2.2.7. For statistical purposes pursuant to Article 4(2) of Regulation (EC) No 1254 Whereas article 6 (2) of Regulation (EEC) No 1 point (f) gdpr, where the legitimate purpose is to have information about the statistics of our activities, which allows us to improve our business until we have an additional other legal basis for processing – in the event that we lose the basis, the data are anonymized.
2.2.8. Handling reports made using the contact form, other requests, including ensuring accountability of activities carried out, where the legitimate purpose is to respond to requests and inquiries made using the contact form or other form, including the storage of sensitive requests and answers given in order to preserve the principle of accountability, for a period of 3 years.
2.3. We may transfer data to recipients, i.e.:
2.3.1. Postal or courier operators;
2.3.2. banks, where clearing is necessary;
2.3.3. State authorities or other entities authorized by law;
2.3.4. Entities supporting us in our business on our behalf, in particular suppliers of external systems supporting our business, legal and accounting services.
2.4. The Administrator may process the following personal data of Customers or Clients using the Website: name, e-mail address, contact telephone number, IP address.
3. THE POWERS OF THE DATA PROCESSED AND THE VOLUNTARY PROVISION OF DATA
3.1. Each data subject has the right to access the content of his data and the right to rectification, erasure, restriction of processing, the right to data portability, the right to object, the right to withdraw consent at any time without affecting the lawfulness of processing carried out on the basis of consent before its withdrawal (if the processing takes place on the basis of consent), lodge a complaint with the supervisory authority I.e. President of the Office for Personal Data Protection.
3.2. Providing data is necessary for the conclusion of contracts, settlement of conducted business, response to requests, handling of complaints and complaints. For the rest, providing data is voluntary.
4. PROCESSING OF PERSONAL DATA BY AUTOMATED MEANS
4.1. Personal data will not be processed by automated means (including profiling) in such a way that such automated processing could result in any decisions, other legal effects or otherwise have a material impact on our customers.
5. COOKIES AND OPERATIONAL DATA
5.1. Cookies are small text information in the form of text files, sent by the server and stored on the website visitor’s website (e.g. on the hard drive of a computer, laptop or on a smartphone memory card – depending on which device the visitor uses our Website). For details, see cookies, as well as the history of their creation can be found m.in. here: http://pl.wikipedia.org;
- Within the Service, two main types of cookies are used: session cookies and persistent cookies. Session cookies are temporary files that are stored on the User’s end device until the user logs out, leaves the website or disables the software (web browser). “Persistent” cookies are stored in the User’s end device for the time specified in the parameters of cookies or until they are deleted by the User.
5.2. The Administrator may process the data contained in cookies when using the Website by visitors for the following purposes of adapting the content of the website to the individual preferences of the Customer (e.g. regarding colors, font size, page layout) and optimizing the use of the Website, keeping anonymous statistics on how to use the Website.
5.5. Detailed information on how to change the settings for cookies and how to delete them on the most popular web browsers is available in the help section of your web browser.
5.6. The Administrator also processes anonymized operational data related to the use of the Website (IP address, domain) to generate statistics helpful in the administration of the Service. This data is aggregated and anonymous, i.e. it is not available to the public. do not contain features identifying visitors to the Service. This data is not disclosed to third parties.
5.7 Information about certain user behaviors is logged in to the server layer. This data is used solely for the purpose of administering the service and to ensure the most efficient service of the hosting services provided.
5.7.1 The resources viewed are identified by URLs. In addition, the following may be recorded:
- The time of arrival of the query,
- the time it was sent to send the response,
- client station name – identification carried out by HTTP protocol,
- Information about errors that occurred during the execution of http transactions,
- URL of the page previously visited by the user (referer link) – in case the access to the Website was made by a link,
- Information about the user’s browser
- IP address information.
- The above data is not associated with specific people browsing the pages.
- The above data is used only for the purposes of administering the server.
6. THE RIGHT TO CONTROL, ACCESS AND CORRECT THE CONTENT OF YOUR DATA
6.1. The Customer or the Customer has the right to access and correct the content of his/her personal data.
6.2. Each person has the right to control the processing of data concerning him or her contained in the Administrator’s data set, and in particular the right to: request the completion, updating, rectification of personal data, temporary or permanent suspension of their processing or their deletion, if they are incomplete, outdated, untrue or have been collected in violation of the Act or are no longer necessary for the purpose for which they were collected.
6.3. If the Customer or the Customer consents to the processing of data for the direct marketing of the Administrator’s own products or services, the consent may be revoked at any time.
6.4. In the event that the Administrator intends to process or process the data of the Customer or the Customer for the direct marketing of the Administrator’s own products or services, the data subject is also entitled to (1) make a written, reasoned request to stop processing his data due to his particular situation or to (2) object to the processing of his data.
7. FINAL PROVISIONS
7.1. The Controller shall take technical and organisational measures to ensure the protection of the personal data processed appropriate to the risks and categories of data covered by the protection, and in particular to protect the data against unauthorised access, removal by an unauthorised person, processing in violation of applicable laws and amendment, loss, damage or destruction.
7.2. The controller shall make the following technical measures in place to prevent unauthorised persons from obtaining and modifying personal data transmitted electronically.