In this Policy, the following terms have the meaning below: - Administrator - Subforma s.c. Tomasz Jedynak, Kamil Kogut, 32-540 Trzebinia, ul. Przemysłowa 8, tax identification number (NIP): 628-225-78-12; - Web Service - an online store Wallcolors, which is available on the internet domain www.wallcolors.pl - Website - www.wallcolors.pl website as well as all its subpages. - Parties - Administrator and the User - User - a natural person, who registers on the Web Service according to the Regulation and as a result receives an access to the User’s account.
The Administrator is a personal data administrator within the meaning of the General Data Protection Regulation (GDPR) of 27th April 2016.
Using the Web Service is connected with providing personal data of the User.
The Administrator shall obtain and process the following personal data:
- name and surname - postal address - telephone number - e-mail address - company name - tax identification number - business address Personal data is processed in order to place the order and maintain the User’s account but also to execute the order by the online store. Personal data shall be stored for 2 years, since the day when the User’s account is finally deleted or until extinction of right of action between the Administrator and the User depending on whichever date is later. The basis for the processing of personal data is the implementation of the agreement towards the User.
The Administrator processes personal data of Users in order to provide the service by the store and to enable the User to purchase products and implementation of services.
If the User orders the Newsletter service, personal data is processed for marketing purposes on the basis of art. 6 (1) of the General Data Protection Regulation (GDPR) of 27th April 2016. The User may order the Newsletter service voluntarily by entering personal data, however, its lack unable the Web Service to send any information. Personal data is stored until the User resigns from the Newsletter service.
Personal data may be disclosed solely trusted subcontractors providing the Administrator with IT service, accountancy offices, delivery and postal services and electronic payment service providers.
Profiling personal data may be carried out in an automated form in order to adapt the store’s offer in possibly the best form, target advertising and analysing the web traffic.
In case of change of personal data, the User shall update the User’s profile.
Each user has the right to demand the access, rectification, erasure his personal data as well as to limit the data processing. Furthermore, the User has the right to withdraw the consent to the processing of personal data, at any time, without affecting the legality of the processing, the right to data portability and the right to raise an objection to the data processing.
The User has the right to file a complaint to the President of the Personal Data Protection Office.
Providing personal data is voluntary, but consent to the data processing is necessary for using the Web Service.
The Administrator may refuse to delete the personal data of the User if legal provisions oblige the Administrator to retain it.
The Administrator undertakes to encrypt the data transmission to protect the User’s personal data which is stored in the system.
Each connection between the User and the Web Service is encrypted and confidential.
The Administrator shall undertake to store the backup copies which contain the User’s personal data.
The entrusted data is stored on the high-class hardware and the server which are properly secured in the storage centre, accessible only to authorised persons.
All tasks connected with personal data processing are conducted by the Administrator in accordance with legal and technical requirements, imposed by the regulations regarding the protection of personal data.
The Web Service uses cookie files in order to customize the content of the service to the User preferences and for statistical purposes. Cookies are small text files sent by an internet service, which is visited by a user to the user’s device.
The Service uses two basic types of cookie files: session (non-persistent) cookies and persistent cookies. Session (non-persistent) cookies are temporary files that expire at the end of a user’s session, when leaving the website or once the browser is closed. Persistent cookies are stored on the user’s end device for the time specified in the cookie parameters or until they are deleted by the user.
The Web Service uses following types of cookie files:
It is possible to change cookie settings in the browser. Lack of adjustment of these settings means the User’s consent for cookie files used on.
In accordance with the standard practice for most websites, we store all HTTP requests sent to our server (the server logs). Therefore, we store:
- IP addresses, from which users browse the content of the Service; -the time of a request; - the time of the answer; - the name of the client’s station- identification carried out by HTTP protocol; - information about the errors that occurred during HTTP transactions; - URL addresses of websites visited earlier by the User (referer link); - information about the User’s browser. Data gathered in the log entries are used solely to maintain the Web Service.
Recorded logs are retain for indefinite time as auxiliary material, used for the Service maintenance. The information contained therein will not be disclosed to any person other that authorised to maintain the Web Service. Log files may be used to generate statistical data used for the Web Service administration. Cumulative statistical reports do not include any characteristics identifying the Website visitors.
The User may contact the Administrator at any time in order to obtain the information on if and how personal data is used.
The User may also request the Administrator to delete partially or completely his personal data.
It is possible to contact the Administrator by sending a message by mail at: firstname.lastname@example.org