Privacy policy
Oto tłumaczenie tekstu polityki prywatności na język angielski:
1. GENERAL PROVISIONS
1.1. This Privacy Policy of the Online Store is for informational purposes only, which means it does not constitute a source of obligations for Service Recipients or Customers of the Online Store.
1.2. The Administrator of personal data collected through the Online Store is Klaudia Wcisło conducting business under the name Klaudia Wcisło Moi Mili, registered in the Central Registration and Information on Business of the Republic of Poland maintained by the minister responsible for the economy, with: business address at Bronowska 7d, 03-995 Warsaw and delivery/magazine address: Moi Mili Klaudia Wcisło, ul. I. Mościckiego 228, 33-100 Tarnów, NIP (Tax ID): 9930439924, REGON: 146627846, e-mail address: contact@rawroomdesign.com – hereinafter referred to as the "Administrator", who is also the Service Provider and Seller of the Online Store.
1.3. Personal data of the Service Recipient and Customer is processed in accordance with the Personal Data Protection Act of 29 August 1997 (Journal of Laws 1997 No. 133, item 883, as amended) and the Act on Providing Services by Electronic Means of 18 July 2002 (Journal of Laws 2002 No. 144, item 1204, as amended).
1.4. The Administrator takes special care to protect the interests of data subjects, and in particular ensures that the data it collects is:
– processed in accordance with the law;
– collected for specified, lawful purposes and not further processed in a manner incompatible with those purposes;
– factually correct and adequate in relation to the purposes for which they are processed;
– stored in a form that allows identification of data subjects for no longer than necessary to achieve the purpose of processing.
1.5. All words, expressions, and acronyms used in this Privacy Policy and beginning with a capital letter (e.g. Seller, Online Store, Electronic Service) shall be understood according to their definitions in the Terms and Conditions of the Online Store available on the Store’s website.
2. PURPOSE AND SCOPE OF DATA COLLECTION AND DATA RECIPIENTS
2.1. The purpose, scope, and recipients of data processed by the Administrator are determined by the actions taken by the Service Recipient or Customer in the Online Store. For example, if the Customer selects in-store pickup instead of courier delivery, their data will be processed to conclude and fulfill the Sales Agreement, but will not be shared with the shipping provider.
2.2. Possible purposes of collecting personal data of Service Recipients or Customers:
a) Conclusion and execution of the Sales Agreement or Electronic Service Agreement (e.g. Account).
b) Direct marketing of the Administrator’s own products or services.
c) Possible recipients of the Customers' personal data:
– If the Customer uses postal or courier delivery, the Administrator shares the collected personal data with the chosen carrier or intermediary handling deliveries on the Administrator’s behalf.
– If the Customer uses electronic payment or payment card methods, the Administrator shares the collected data with the entity handling those payments.
– Transaction data, including personal data, may be transferred to pay pal, and shopify payments to the extent necessary to process payments. The Customer has the right to access and correct their data. Providing data is voluntary but necessary for using the service.
2.3. The Administrator may process the following personal data of Service Recipients or Customers: full name; email address; contact phone number; delivery address (street, house number, apartment number, postal code, city, country); residence/business address (if different). For business customers, the Administrator may also process company name and tax ID (NIP).
2.4. Providing personal data mentioned above may be necessary to conclude and fulfill the Sales Agreement or Electronic Service Agreement. The required scope of data is specified in advance on the Store’s website and in the Store's Terms and Conditions.
3. COOKIES AND OPERATIONAL DATA
3.1. Cookies are small text files sent by a server and stored on the visitor’s device (e.g., hard drive, smartphone memory card). For detailed information about Cookies, see: http://pl.wikipedia.org/wiki/Ciasteczko.
3.2. The Administrator may process data contained in Cookies when visitors use the Online Store website for the following purposes:
a) Identifying logged-in users;
b) Remembering products added to the cart;
c) Remembering form data from orders, surveys, or login fields;
d) Customizing website content to user preferences;
e) Creating anonymous statistics on website usage.
3.3. Most browsers by default allow cookies. Users can modify these settings to limit or block cookie storage, although this may affect some functionalities of the Online Store (e.g., saving products in the cart).
3.4. Browser settings related to cookies are significant for consent. Consent may also be expressed through browser settings. To withdraw consent, change your browser settings.
3.5. The Administrator also processes anonymized operational data (IP address, domain) to generate statistics for managing the Online Store. These are aggregate, anonymous data and not shared with third parties.
4. LEGAL BASIS FOR DATA PROCESSING
4.1. Providing personal data is voluntary, but necessary to conclude and fulfill the Sales Agreement or Electronic Service Agreement. Failure to provide such data may prevent the conclusion of the agreement.
4.2. The legal basis for processing is the necessity to perform the agreement or take actions prior to its conclusion at the user's request. In the case of direct marketing, the basis is either (1) prior consent or (2) the legitimate interest of the Administrator (as defined in Article 23(4) of the Personal Data Protection Act).
5. RIGHT TO CONTROL, ACCESS, AND CORRECT PERSONAL DATA
5.1. The Service Recipient or Customer has the right to access and correct their personal data.
5.2. Any individual has the right to control their data processing, including the right to: request supplementation, updating, rectification, temporary or permanent suspension, or deletion if the data is incomplete, outdated, incorrect, unlawfully collected, or no longer necessary.
5.3. If consent was given for direct marketing, it may be withdrawn at any time.
5.4. If the Administrator processes data for direct marketing purposes, the data subject may (1) request to stop processing based on their situation or (2) object to such processing.
5.5. To exercise these rights, contact the Administrator by post or email using the contact details provided at the beginning of this privacy policy.
6. FINAL PROVISIONS
6.1. The Online Store may contain links to other websites. The Administrator encourages users to read the privacy policies of those websites. This policy applies only to this Online Store.
6.2. The Administrator applies technical and organizational measures appropriate to the risks and types of data being protected, including preventing unauthorized access, data theft, unlawful processing, alteration, loss, or destruction.
6.3. The Administrator implements the following safeguards to prevent unauthorized access or modification of electronically transmitted personal data:
a) Protection of the data set from unauthorized access.
b) Account access only via individual login and password