PERSONAL DATA ADMINISTRATOR


The Administrator of personal data is SPORT MODA MITKIEWICZ SP.J. with registered office 34-500 Zakopane, ul. Krupówki 29 entered into the Register of Entrepreneurs of the National Court Register maintained by the District Court for Cracow - Śródmieście in Cracow, XII Commercial Department of the National Court Register, under number: 0000684750, tax identification number NIP: 7360007999, REGON: 492930090, hereinafter referred to as the Administrator.

The terms appearing in this Privacy Policy - Shop, Customer should be understood in accordance with their definition contained in the Store Regulations. This privacy policy is informative, it is not a source of obligations for the Customers of the store.



AIM AND SCOPE OF PROCESSING OF PERSONAL DATA


Personal data means any information about the Customer that identifies him, such as name, contact details, order number, payment details and information about access to our website. Customer's personal data is collected when he places an order, creates an account, uses our website or contacts the Store's service.
In particular, information belonging to the following categories is collected:
- name and surname, address of residence / business activity, e-mail address, telephone number, delivery address (street, house number, apartment number, zip code, city, country), company name and tax identification number (NIP) of the Customer, number bank account, required when returning the account, details of the credit / debit card or other payment details;
- information on the purchase of products;
- information on the use of our website;
- communication with the client via e-mail, e-mail, social media and by phone;
- location, including geolocation of the client's computer or device in real time via GPS, Bluetooth and IP address, if the user uses location-based functions and activates location services on his device or computer.
Customer data can be used for the following purposes:
- ensuring the implementation of the contract for the sale of products ordered by the Customer, in particular the operational implementation of the order, shipment or delivery of ordered products, performance of obligations under the warranty and granted guarantees, recovery of receivables
- contacting the Customer in case of the need to change the order, for example due to the lack of availability of certain products;
- validation / control of a credit card or other payment card: payment information is used for accounting purposes, invoicing and to detect any dishonest action and / or prevent such activities;
- for administrative or legal purposes: the Customer's data may be used to respond to claims or complaints and to exercise other rights and obligations under applicable laws;
- marketing: from time to time, the Customer may receive information about promotions including products offered for sale by e-mail; The Customer has the right to accept or resign from receiving this type of message, and each electronic message sent by us will contain the possibility to indicate that the user does not wish to continue to receive direct marketing materials from us.



SHARING PERSONAL DATA


The Customer's personal data may be made available for the purposes described in this Privacy Policy to third parties with appropriate technical and organizational security in order to protect the Customer's personal data in accordance with Polish and EU law:
- entities participating in the implementation of the sales contract, for the purpose of its proper implementation, e.g. Poczta Polska SA, courier companies;
- companies that handle payment transactions, this concerns:
• the transfer of personal data to the company eCARD S.A. in the case of making payments using the on-line payment system; the transfer of data concerns only personal data necessary to make the payment by eCARD S.A., as well as verification of payments for possible irregularities and ensuring the security of transactions;
• transaction and personal data, can be transferred for the benefit of PayLane Sp. z o.o. located in Gdańsk at Norwida 4, zip code: 80-280, KRS: 0000227278, on the terms that it will beneficial on in service connected to order Apple Pay payments.



SECURITY OF PERSONAL DATA


The Customer's personal data is processed in accordance with the Personal Data Protection Act of 29 August 1997 (Journal of Laws 1997 No. 133, item 883, as amended) (hereinafter: the Personal Data Protection Act) and the Act on the provision of services by e-mail of July 18, 2002 (Journal of Laws 2002 No. 144, item 1204, as amended). The Administrator takes special care to protect the interests of the data subjects, and in particular ensures that the data they collect are processed in accordance with the law; collected for specified, legitimate purposes and not subject to further processing incompatible with these purposes; factually correct and adequate in relation to the purposes for which they are processed and stored in a form allowing identification of persons they concern, no longer than it is necessary to achieve the purpose of processing.
The data is protected in accordance with the security procedures for the storage and disclosure of your personal data, which also aims to protect data against accidental loss, destruction or damage. The data is protected using SSL (Secure Socket Layer) technology. SSL is a standard for encrypting personal information and credit card data, allowing them to be securely transferred on the Internet.

Customer's personal data is processed only if:
- when the Customer has consented to the use of his personal data (e.g. for marketing purposes);
- in order to fulfill a statutory obligation;
Data are not stored for a longer period than is necessary to achieve the purposes for which they are processed, taking into account the periods during which we must store data in order to comply with statutory requirements or to consider complaints, inquiries and to protect our rights in the event of a claim being made. When Customer personal details are no longer needed, they are safely removed or destroyed.



PERSONAL DATA PROTECTION RIGHTS


The Customer has the right to:
- information on whether his personal information is stored, and if so, what information is stored and for what purpose we store / use it.
- access to your personal information (so-called 'request of the data subject for data sharing'). Thanks to this, it is possible to obtain a copy of personal information we have about you and to check whether we process it in accordance with the law.
- rectification of the user's personal information stored by us. The user can complete any incomplete data or correct incorrect information that pertains to it and which we store.
- deletion of personal information. The User may request the deletion or deletion of personal information if there are no reasons justifying further processing. In addition, you have the right to ask us to delete or delete personal information if you have opted out of the right to object (see below).
- objection to the processing of your personal information if we process it based on our legitimate interest (or third party interest), and in the specific situation of a given user there will be any reason why he wishes to object to the processing on this basis. In addition, the user has the right to object if we process his personal information for direct marketing purposes.
- Objection to automated decision-making, including profiling, i.e. opposition to automated decision-making regarding the user using his personal information or opposition to user profiling.
- restrictions on the processing of personal information. The user may request to suspend the processing of personal information about the user, for example, when the user wants us to determine their correctness or the reason for their processing.
- transfer of personal information in an electronic and structured form to a user or other person (the so-called right to "transfer data"). This allows you to download from us data in a format that allows their use in electronic form and transfer of user data to another person in a format that allows their use in electronic form.
- withdrawal of consent. In limited circumstances, when the user has agreed to the collection, processing and transfer of personal information for a specific purpose, he has the right to withdraw consent to such processing at any time. As soon as we receive information about the withdrawal of consent, we will cease processing your information for the purposes or purposes for which it initially agreed, unless we have other legitimate interests related to such processing.



COOKIES POLICY


Cookies are used to:
- adjusting the content of the store to your preferences and optimizing the use of websites; these files allow to recognize the User's device and properly display the website, tailored to his individual needs;
- creating statistics
- maintaining the Website User's session (after logging in), thanks to which the User does not have to re-enter his login and password;

The Website uses two basic types of cookies: persistent cookies and session cookies. Persistent cookies are stored on the User's device for the time specified in the cookie file parameters or until they are deleted by the User. Session cookies are temporary files that are stored on the User's end device until logging out, leaving the website or turning off the web browser.

 The Website uses the following types of cookies: - "necessary" cookies, enabling the use of services available on the Website, e.g. authentication cookies used for services that require authentication on the Website; - cookies used to ensure security, e.g. used to detect fraud in the field of authentication on the Website; - "functional" cookies, allowing "remembering" the settings selected by the User and personalizing the User's interface, eg in the scope of the selected language or region of the User, font size, website appearance, etc .;

In most cases, software used for browsing websites (web browser) allows cookies to be stored by default. Store users can at any time change the settings for cookies in the browser so that they block the automatic handling of cookies in the settings of the web browser or inform about their every posting in the user's device. Detailed information about cookie files is available in the software (web browser) settings.

Store Administrator informs that limiting the use of cookies may affect some of the functionalities available on the store's websites.
The Customer's personal data is processed in accordance with the Personal Data Protection Act of 29 August 1997 (Journal of Laws 1997 No. 133, item 883, as amended) (hereinafter: the Personal Data Protection Act) and the Act on the provision of services by e-mail of July 18, 2002 (Journal of Laws 2002 No. 144, item 1204, as amended). The Administrator takes special care to protect the interests of the data subjects, and in particular ensures that the data they collect are processed in accordance with the law; collected for specified, legitimate purposes and not subject to further processing incompatible with these purposes; factually correct and adequate in relation to the purposes for which they are processed and stored in a form allowing identification of persons they concern, no longer than it is necessary to achieve the purpose of processing.
The data is protected in accordance with the security procedures for the storage and disclosure of your personal data, which also aims to protect data against accidental loss, destruction or damage. The data is protected using SSL (Secure Socket Layer) technology. SSL is a standard for encrypting personal information and credit card data, allowing them to be securely transferred on the Internet.

Customer's personal data is processed only if:
- when the Customer has consented to the use of his personal data (e.g. for marketing purposes);
- in order to fulfill a statutory obligation;
Data are not stored for a longer period than is necessary to achieve the purposes for which they are processed, taking into account the periods during which we must store data in order to comply with statutory requirements or to consider complaints, inquiries and to protect our rights in the event of a claim being made. When Customer personal details are no longer needed, they are safely removed or destroyed.