1. GENERAL PROVISIONS
1.2. The controller of personal data collected through the Online Shop is “MARITEX” LESZEK ŁOSIN SPÓŁKA JAWNA with registered office in Gdynia (address of the registered office and address for service: ul. Rdestowa 53D, 81-577 Gdynia), entered into the Register of Entrepreneurs of the National Court Register under number KRS 0000880720; registry court, in which the company’s documentation is kept: District Court for Gdańsk-Północ in Gdańsk, 8th Commercial Division of the National Court Register; 9581659572; REGON 221578676; e-mail address: firstname.lastname@example.org – hereinafter referred to as the “Controller”, being at the same time the Service Provider within the Online Shop and the Seller.
1.3. Personal data of Customers and Clients are processed in conformity with the Personal Data Protection Act of 29 August 1997 (Journal of Laws of 1997, No. 133, item 883, as amended) (hereinafter referred to as: the Personal Data Protection Act) and the Act of 18 July 2002 on the provision of services by electronic means (Journal of Laws of 2002, No. 144, item 1204, as amended).
1.4. The Controller exercises due diligence in order to protect interests of persons to whom the data refer and, in particular, ensures that the data collected by the Controller are processed in conformity with the law; gathered for specified, lawful purposes and not subjected to further processing inconsistent with these purposes; correct and adequate to purposes, for which they are processed and stored in a form allowing to identify persons to whom they refer for no longer than necessary to achieve the purpose of processing.
1.5. All words, expressions and acronyms used at this website and beginning with a capital letter (e.g. Seller, Online Shop, Electronic Service) shall be understood in accordance with their definition included in the Rules of the Online Shop available at websites of the Online Shop.
2. PURPOSE AND SCOPE OF DATA COLLECTION AND DATA RECIPIENTS
2.1. Every time the purpose, scope and recipients of data processed by the Controller result from actions undertaken by the Client or Customer in the Online Shop. For example, if the Customer chooses personal collection instead of courier while placing their Order, their personal data will be collected in order to execute and perform the Sales Agreement, but they will not be made available to the carrier transporting parcels for the Controller.
2.2. Possible purposes of collection of Clients or Customers’ personal data by the Controller are as follows:
2.2.1. conclusion and performance of a Sales Agreement or agreement on the provision of Electronic Service (e.g. Account).
2.2.2. direct marketing of the Controller’s own products or services.
2.3. Possible recipients of personal data of Online Shop’s Customers:
2.3.1. If a Customer of the Online Shop chooses delivery by post or by courier, the Controller provides collected personal data of the Customer to the selected carrier or intermediary transporting parcels for the Controller.
2.3.2. If a Customer of the Online Shop chooses electronic payment or card payment, the Controller provides collected personal data of the Customer to the selected entity servicing the foregoing payments in the Online Shop.
2.4. The Controller may process the following personal data of Clients or Customers using the Online Shop: first and last name; e-mail address; contact phone number; delivery address (street, house number, flat number, postal code, town/city; country), address of residence/registered office/business address (if it is different than the delivery address). In the case of Clients or Customers not being consumers, the Controller may additionally process their company name and tax identification number (NIP).
2.5. Provision of personal data referred to in the point above may be indispensible for the conclusion and performance of a Sales Agreement or an agreement on Electronic Service provision in the Online Shop. The data required for the conclusion of an agreement are specified every time at the website of the Online Shop and in the Rules of the Online Shop.
3. COOKIES AND OPERATING DATA
3.1. Cookies are small portions of text information in the form of text files sent via a server and saved on the side of a person visiting the website of the Online Shop (e.g. on a hard drive of a computer, laptop, or on a smartphone’s memory card – depending on the device used by the visitor of our Online Shop). Detailed information concerning Cookies, as well as the history of their creation, may be found e.g. here: http://en.wikipedia.org/wiki/HTTP_cookie.
3.2. The Controller may process the data contained in Cookies when visitors use the website of the Online Shop for the following purposes:
3.2.1. identifying Clients as logged-in the Online Shop and showing them, that they are logged-in;
3.2.2. storing data from filled Order Forms, surveys or data used to log in to the Online Shop;
3.2.3. keeping anonymous statistics presenting the manner in which the website of the Online Shop is used.
3.5. Detailed information on how to change the settings regarding Cookies and how to individually delete them in the most popular Internet browsers are available in the help section of a given browser and on the following websites (it is sufficient to click on the selected link):
• in the Chrome browser
• in the Firefox browser
• in the Internet Explorer browser
• in the Opera browser
• in the Safari browser
3.6. The Controller processes also anonymised operational data related to the use of the Online Shop (the so-called logs – IP address, domain) to generate statistics which help to administer the Online Shop. These are collective and anonymous data, which means they do not contain features allowing to identify the person visiting the Online Shop. Logs are not disclosed to third persons.
4. BASIS FOR PERSONAL DATA PROCESSING
4.1. Provision of personal data by the Client or Customer is voluntary, although failure to provide personal data indicated on the website of the Online Shop and in the Rules of the Online Shop which are indispensible to execute and perform a Sales Agreement or an agreement on Electronic Service provision results in the lack of possibility to conclude such an agreement.
4.2. The basis for the processing of personal data of the Client or Customer is the necessity to perform an agreement to which the Client of Customer is a party or to undertake actions, at their request, before the conclusion of the agreement. If personal data are processed for the purposes of direct marketing of the Controller’s own products or services, the basis for such a processing is (1) prior consent of the Client or Customer or (2) fulfuilment of legally justified purposes implemented by the Controller (under Article 23 (4) of the Personal Data Protection Act, legally justified purpose is, in particular, direct marketing of the Controller’s own products or services).
5. RIGHT TO ACCESS THE CONTENT OF ONE’S PERSONAL DATA AND TO RECTIFY THEM
5.1. The Client or Customer has the right to access the content of their personal data and to rectify them.
5.2. Everyone is authorised to control the processing of data which refer to them and are contained in the Controller’s set of data, and especially to: request supplementation, update or correction of personal data, temporary or permanent cessation of their processing or their deletion if they are incomplete, outdated, incorrect, if they were collected in violation of the Act or if they are no longer required for the purpose for which they were collected.
5.3. If the Client or Customer gives their consent to have their data processed for the purposes of direct marketing of the Controller’s own products or services, the consent may be withdrawn at any time.
5.4. If the Controller is planning to process or processes data of the Client or Customer for the purposes of direct marketing of the Controller’s own products or services, the person to whom the data refer is also authorised to (1) submit a written, motivated request for cessation of processing of their data due to their special situation or (2) to object to the processing of their data.
6. FINAL PROVISIONS
6.2. The Contractor shall be obliged to employ technical and organisational means ensuring the protection of processed data adjusted to threats and categories of protected data, and especially to protect the data against disclosure to unauthorised persons, collection by an unauthorised person, processing which violates applicable provision, as well as against any change, loss, damage or destruction.
6.3. The Controller appropriately makes available the following technical means preventing unauthorised persons from accessing and modifying personal data sent by electronic means:
6.3.1. Protection of data sets against unauthorised access, including SSL certificate.
6.3.2. Access to the Account only after the provision of an individual login and password.
Zdjęcie poglądowe – produkt zgodny z opisem może się różnić od przedstawionego na zdjęciu (kształt, kolor, inne cechy)