This Privacy Policy is an integral part of the Terms and Conditions of the KawePale Online Store dated March 01, 2019.
(Terms and Conditions).
Definitions of terms used in this Privacy Policy are provided in the Terms and Conditions.
The provisions of the Terms and Conditions shall apply accordingly.
PERSONAL DATA
- Personal data provided by the Customer are processed by the Seller KAWEPALE SP.
Z O.O. SPÓŁKA KOMANDYTOWA, ul.
SĘKOCIŃSKA 20/19, 02-313 WARSZAWA, MAZOWIECKIE, entered in the register of entrepreneurs under the KRS number 0000687611, using its assigned tax identification number (NIP) 527 281 36 36 and REGON statistical number 367850458, which is the administrator of personal data. - The scope of processed personal data is determined by the scope completed by the Customer.
This data is the information sent to the Vendor using the appropriate form.
The processing of the Customer’s personal data may concern his e-mail address.
In addition, also first and last name, telephone number, residential address and IP address of the computer. - Customers’ personal data will be processed for:
(a) the implementation of the law,
(b) the implementation of the Order, the provision of electronic services, the processing of submitted complaints
and other activities indicated in the Regulations,
(c) promotional and commercial activities of the Seller. - Provision of personal data is voluntary.
Failure to consent to the processing of personal data marked as mandatory will prevent the Seller from performing services and executing Sales Agreements. - The legal basis for the processing of personal data in the case referred to in paragraph.
3 lit.
(a) is the statutory authorization to process data necessary for lawful action.
In contrast, in the case referred to in para.
3 lit.
(b) and
(c), it is a statutory authorization for processing necessary for the performance of a contract when the data subject is a party to it, or when it is necessary to take action prior to the conclusion of a contract at the request of the data subject or the voluntary consent of the customer. - Customers’ personal data may be entrusted for processing only for the purpose of execution of Sales Agreements and contracts for provision of electronic services by the Seller.
In addition, also a hosting company, a company providing accounting services to the Seller and a courier company.
Personal data collected by the Seller may also be made available: to the relevant state authorities at their request under the relevant provisions of law, or to other persons and entities – in cases provided for by law. - Sharing of personal data with unauthorized parties according to this Policy, may only take place with the prior consent of the Customer to whom the data refers.
- Customers have the right to control the processing of the data concerning them contained in the datasets, in particular the right to:
a) to access their personal data, to complete and correct their data by submitting such a request to the Vendor,
b) to request temporary or permanent suspension of their processing or their deletion if they are incomplete, outdated, untrue or have been collected in violation of the Act or are already unnecessary for the purpose for which they were collected,
c) to object to the processing of their personal data – in cases provided for by law – and the right to request their deletion when they become unnecessary for the purpose for which they were collected. - In the event that the Seller becomes aware of the Customer’s use of a service provided electronically contrary to the Terms and Conditions or applicable regulations (unauthorized use), the Seller may process the Customer’s personal data to the extent necessary to determine the Customer’s liability.
- The Service may store http queries, and therefore, some information may be stored in the server log files.
Including the IP address of the computer from which the request came, the name of the Customer’s station – identification implemented by the http protocol, if possible, the date and system time of registration in the Store and arrival of the request, as well as the number of bytes sent by the server, the URL of the page previously visited by the Customer.
If the Customer entered through a link, information about the Customer’s browser, information about the errors that occurred during the http transaction.
Logs may be collected, as material for the proper administration of the Store.
Only persons authorized to administer the computer system have access to the information.
Log files may be analyzed to compile statistics of traffic in the Store and errors that occur.
Summary of such information does not identify the Customer. Legal basis for processing personal data:
Personal data in the store KAWEPALE SP.
Z O.O. SPÓŁKA KOMANDYTOWA are processed by the Administrator in accordance with applicable laws (Article 6(1) RODO) and in accordance with Regulation (EU)2016/679 of the European Parliament and of the Council of April 27, 2016.
on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46/EC (“RODO”)
INFORMATION SECURITY
- The Seller shall apply technical and organizational measures to ensure the protection of the processed personal data appropriate to the risks and categories of data under protection, and in particular shall technically and organizationally secure the data from being disclosed to unauthorized persons, from being taken by an unauthorized person, from being processed in violation of the Act, and from being altered, lost, damaged or destroyed, among others.
SSL (Secure Socket Layer) certificates are used.
The collection of collected Customers’ personal data is stored on a secured server and the data is also protected by the Seller’s internal procedures on personal data processing and information security policy.(2) At the same time, the Seller indicates that the use of the Internet and services provided electronically may be associated with specific ICT risks, such as: the presence and operation of Internet worms (worm), spyware or malware, including computer viruses, as well as the possibility of being exposed to cracing or phishing (password hunting), and others.
In order to obtain detailed and professional information regarding the preservation of security on the Internet, the Vendor recommends seeking it from entities specializing in such IT services.
COOKIES
- For the proper operation of the Store, the Seller uses the technology of cookies. Cookies are packages of information stored on the Customer’s device via the Store, usually containing information in accordance with the purpose of a given file, by means of which the Customer uses the Store – these are usually: service address, date of placement, expiration date, unique number and additional information in accordance with the purpose of a given file.
- The vendor uses two types of cookies: session cookies, which are deleted permanently when the customer’s browser session ends, and permanent cookies, which remain after the end of the browser session on the customer’s device until they are deleted.
- On the basis of Cookies, both session and permanent, it is not possible to determine the identity of the Customer. The mechanism of Cookies does not allow the collection of any personal data.
- Cookies of the Store are safe for the Customer’s device, in particular, they do not allow viruses or other software to enter the device.
- Cookies generated directly by the Store cannot be read by other services. External Cookies (i.e. Cookies placed by the Seller’s partners) can be read by an external server.
- The Customer may disable the storage of Cookies on his/her device, according to the instructions of the browser manufacturer, but this may result in the unavailability of some or all of the Store’s functions.
- The Seller uses its own Cookies for the following purposes: authenticating the Client in the Store and maintaining the Client’s session; configuring the Store and adjusting the content of the pages to the Client’s preferences, such as: recognizing the Client’s device, remembering the settings selected by the Client; ensuring the security of the data and the use of the Store; analyses and audience research; providing advertising services.
- The Seller uses External Cookies for the following purposes: to create statistics (anonymous) to optimize the usability of the Store, through analytical tools like Google Analytics; to use interactive features through social networks: Facebook, Twitter, Google+, YouTube and Instagram.
- The customer can independently change the settings for Cookies at any time, specifying the conditions for their storage, through the settings of the Internet browser or through the configuration of the service. The customer can also independently delete the Cookies stored on his device at any time, in accordance with the instructions of the browser manufacturer.
- Detailed information about the use of Cookies is available in the settings of the Internet browser used by the Customer.