Privacy policy

§1

General provisions

  1. This document sets out the rules of the privacy policy in the online store www.felinoire.com , run by Dominik Franz, conducting business activity under MPH Dominik Franz, NIP: 6761588369 ul. Bolesława Brave 37,31-428 Krakow.

  2. The Privacy Policy regulates issues related to the protection of personal data and the security of information provided by customers as part of using the Online Store.

  3. This document is an integral part of the regulations of the online store www.felinoire.com .

§2

Definitions

The terms used in this document mean:

  1. Personal data administrator (administrator) - Dominik Franz, conducting business activity under MPH Dominik Franz, NIP: 6761588369 ul. Bolesława Brave 37,31-428 Krakow

  2. Online store/store - website available at www.felinoire.com and all its subpages.

  3. Customer - a natural person who uses the store and provides his personal data.

  4. Personal data - all information about a natural person who is identified or possible to identify on the basis of one or several factors determining his identity, including Name, surname, e-mail address, telephone number, delivery address, order information, as well as data collected using technologies such as cookies.

  5. Product - a movable item available in the online store, which is the subject of a sales contract between the customer and the seller.

  6. GDPR - Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of individuals in connection with the processing of personal data and in the case of the free flow of such data and repealing Directive 95/46/EC.

  7. Regulations - regulations of the online store www.felinoire.com .

§3

Personal data

  1. The administrator collects and processes personal data in accordance with applicable law, including primarily with the GDPR. The data is processed within the scope, time and purposes specified each time in the information provided at the forms used to collect them.

  2. The customer is informed about the processing of personal data at the time of its collection.

  3. The administrator may transfer personal data to its subcontractors, such as:

  1. courier companies,

  2. Product storage companies,

  3. Payment operators and banks,

  4. entities serving IT systems,

  5. accounting offices and law firms,

  6. Marketing agencies (in the field of promotional activities),

  7. Other entities providing programming and technological services.

  1. In justified cases, the Administrator may provide data with public authorities or third parties, if the applicable law requires it and there is an appropriate legal basis.

  2. The administrator provides adequate technical and organizational measures to protect the processed personal data. In the event of a violation of data security (e.g. their leakage or loss), if this could cause a high risk of violating the client's rights or freedom, the Administrator will immediately inform him of this fact in accordance with applicable regulations.

  3. The administrator makes every effort, both technical and organizational, to ensure the protection of clients' personal data. The actions taken are aimed at securing data against unauthorized access, accidental or intentional modification, loss and disclosure. Data processing and storage takes place in accordance with applicable law.

  4. Customer data is stored safely in secured data centers, to which only authorized persons have access. The administrator operates in accordance with legal requirements regarding data protection and regularly analyzes the risk associated with their processing. Only authorized employees have access to data to the extent necessary to perform their duties.

  5. The administrator undertakes to cooperate only with entities that provide an adequate level of data protection and apply adequate security measures.

§5

Principles of storing personal data

  1. Data on all visitors to the store, including IP addresses and information collected using cookies and similar technologies, is processed by the Administrator for:

  1. implementation of services provided electronically (legal basis: the need to perform the contract - Article 6 (1) (b) of the GDPR),

  2. conducting statistical analyzes and research (legal basis: consent - Article 6 (1) lit. a GDPR),

  3. protection of administrator rights, including establishing and pursuing claims or defense against them (legal basis: a legitimate interest of the administrator - Article 6 (1) (1) of the GDPR).

  1. By setting up an account or placing an order, the customer is asked to provide the required personal data. Failure to provide them will prevent your account from registering or placing an order. Personal data is processed for the following purposes:

  1. implementation of services electronically (legal basis: the need to perform the contract - Article 6 (1) (b), GDPR),

  2. conducting analyzes and statistics (legal basis: consent - Article 6 (1) lit.

  3. protection of administrator rights, including pursuing claims (legal basis: a legitimate interest of the administrator - Article 6 (1) lit. f GDPR).

  1. People who agree to this may receive marketing messages (e-mail, SMS) from the administrator. Providing data is not mandatory, but their lack will prevent the use of this service. Personal data is processed for:

  1. Newsletter shipping and SMS messages (legal basis: implementation of the contract - Article 6 (1) (b) of the GDPR, in the case of additional data - Customer consent - Article 6 (1) lit. and GDPR),

  2. Analysis of the effectiveness of marketing activities (legal basis: consent - Article 6 (1) lit. A GDPR),

  3. the protection of administrator's rights in the scope of pursuing claims (legal basis: a legitimate interest of the administrator - Article 6 (1) lit. f GDPR),

  4. implementation of marketing activities, such as advertising via e-mail, SMS messages (legal basis: legitimate interest of the administrator-Article 6 (1) lit. f GDPR, resulting from consent to the use of marketing services).

  1. The administrator may process personal data to conduct marketing activities such as:

  1. adapting the content of the advertisements to the client's interests,

  2. sending commercial information by electronic means,

  3. Profiling, i.e. analyzing customer behavior in order to match marketing content to its preferences.

  1. The legal basis for data processing for marketing purposes is the consent of the client (Article 6 (1) lit. and GDPR), which can be withdrawn at any time.

  2. Customers can contact the Administrator via e -mail, contact form available in the store or traditional correspondence. Personal data provided in this communication is used only to respond to the inquiry and termination of the case to which contact relates. The basis for processing this data is:

  1. A reasonable interest of the administrator - art. 6 para. 1 lit. f GDPR (maintaining communication related to the conducted activity),

  2. The need to perform a contract or provision of services - art. 6 para. 1 lit. b of the GDPR (if the contact concerns the concluded contract or service).

  1. Data processing time depends on the purpose and legal basis:

  1. In the case of the provision of services, the data is stored by the duration of the contract or the performance of the order.

  2. When processing is based on consent, the data is stored until it is withdrawn.

  3. In the case of data processed on the basis of a legitimate interest of the administrator, storage continues until effective objection.

  1. The storage period may be extended if the data is necessary to determine, investigate or defend claims to the extent necessary by law. After this period, the data is permanently deleted or subjected to anonymization.

§6

Cookies policy

  1. The administrator uses cookies, i.e. small text files saved on the client's end device (e.g. computer, smartphone). These files are used to provide electronic services, improve the store's operation, conduct statistical analyzes, adapt its functionality to the individual needs of customers, personalize content and advertising, and information on using the store can be made available to trusted partners.

  2. As part of the store, two types of cookies are used:

  1. Session cookies - temporary files that remain on the customer's device until the session ends (e.g. logging out, leaving the page or closing the browser).

  2. Fixed cookies - files stored for a specified time, resulting from their settings, or until they are manually removed by the customer.

  1. The administrator uses the following cookies:

  1. Necessary: ​​enable the use of the basic functionality of the store (Article 6 (1) (b), GDPR),

  2. Functional: they remember customer choices (Article 6 (1) lit. AIF RODO).

  3. Analytical: collect data on the number of visits and traffic sources (Article 6 (1) lit. AIF RODO).

  4. Advertising: They allow the presentation of advertising content tailored to the customer's interests (Article 6 (1) lit. AIF RODO).

  5. The administrator obtains the consent of the client, granted using a dedicated form during the first visit to the store. The client has the right to withdraw or modify consent.

  1. The website can use the Hotjar tool that monitors and saves the user's behavior on the Website. This tool records data on users' behavior such as: navigation, page scrolling, cursor movement. Information on the location, device used, operating system, browser or cookies is also collected. Hotjar does not collect or store personal information (including personal data) of users. More information on the privacy policy Hotjar tool can be found at: https://www.hotjar.com/privacy. If you do not want your website's activity to be measured by Hotjar, use the link below: https://www.hotjar.com/opt-out.

§8

Logs

The administrator stores server logs that contain information about HTTP queries addressed to the server, including customer IP addresses, the time of accepting the query and time to send answers. Logs also include the name of the customer station identified by the HTTP protocol, customer browser data, the URL of the previously visited website (Referer Link) and possible errors that occurred during the implementation of queries. The collected data is used to administer the store and are stored for an indefinite period, without disclosing them to unauthorized persons. Logs can also be used to create statistics helping to manage the store, while these statistics do not contain data to identify customers. The information contained in the logs is processed for administrative and technical purposes related to ensuring system security and for analytical and statistical purposes. The legal basis for data processing is the legitimate interest of the administrator in accordance with Article 6 para. 1 lit. F GDPR.

§8

Transmitting data outside EEA

  1. In connection with the use of tools supporting ongoing activities, e.g. provided by Google, clients' personal data may be transferred to countries outside the European Economic Area (EEA).

  2. The administrator provides personal data outside EEA only if it is necessary.

§10

Final provisions

  1. The Privacy Policy may be subject to updates resulting from the current analysis of technical and legal conditions related to the processing of personal data.

  2. The customer may contact the Administrator in matters related to the processing of personal data:

  3. Correspondence address: MPH Dominik Franz, NIP: 6761588369 ul. Bolesława Brave 37,31-428 Krakow

  4. E-mail address: info@felinoire.com.