- General provisions
- Purpose and scope of data collection and data recipients
- Basis for data processing
- Right to control, access and amend the contents of own personal data
- Final provisions
1. General provisions
1.2 The Administrator of personal data collected via the Online Service Website is Boguslaw Mitro who operates a business enterprise under the business name GAVICKPRO Boguslaw Mitro , entered into the Central Registry and Information on Business of the Republic of Poland (PL- CEIDG) kept by the competent minister of economy, with an address of business operation and service address at: ul. Ludowa 22, 33-380 Krynica-Zdrój, Tax ID 7342553332, REGON 120494845, electronic mail address: – further called the „Administrator”, simultaneously fulfilling the role of Service Provider of the Online Service and Seller.
1.3 The personal data of the Service Users and Clients are processed in accordance with the 29th of August 1997 Personal Data Protection Act (Journal of Laws of 1997, No. 133, pos. 883 further amended) (further called the Personal Data Protection Act) and the 18th of July 2002 Act on Rendering of Electronic Services (Journal of Laws of 2002, No. 144, pos. 1204 further amended).
1.4 The administrator exercises particular care in order to protect the interests of persons, whom the collected data relates to, especially ensures, that the collected data is processed in accordance with the law; collected for specified, lawful purposes and not subjected to further processing not in line with those purposes; technically correct and adequate in regards to the purpose, for which it is processed and stored in a form which allows the identification of persons, whom it relates to, for no longer than is required to achieve the purpose of data processing.
1.5 Any words, phrases and acronyms which occur on this page beginning with a capital letter (e.g. Seller, Online Service, Electronic Service) should be interpreted according to their definition contained in the Online Service Terms and Conditions available on the Online Service’s website.
2. Purpose and scope of data collection and data recipients
2.1 Each time the purpose and scope of collection and recipients of data processed by the Administrator correspond to actions performed in the Online Service by the Service User or Client. For example, if a Client during placement of an Order selects the personal collection option instead of a courier parcel, the Client’s personal data will be processed in order to conclude and perform a Sales Agreement, but will not be further disclosed to the carrier who executes deliveries on behalf of the Administrator.
2.2 Possible purposes of Service User or Client personal data collection by the Administrator:
2.2.1 conclusion and performance of a Sales Agreement or Electronic Service provision agreement (e.g. Account).
2.2.2 direct marketing of the Administrator’s own products or services.
2.3 The Administrator may process the following personal data of Service Users or Clients using the Online Service: name and surname, e-mail address; contact telephone number; delivery address (street, building number, apartment number, postal code, town/city, country), residence address/business address/head office (if other than the delivery address). In the case of Service users or Customers who are not consumers, the Administrator may additionally process the name of the company and tax identification number (PL - NIP / ENG - VAT ID) of the Service User or Client.
2.4 The provision of personal data mentioned in the preceding point may be required in order to conclude and perform the Sales Agreement or agreement for the provision of Electronic Services on the Online Service website. Each time the scope of data required to conclude an agreement is indicated on the Online Service website and within the Online Service Terms and Conditions.
3. Basis for data processing
3.1 The provision of personal data by the Service User or Client is voluntary, however failure to provide the personal data indicated on the Online Service’s website and in the Terms and Conditions as essential to the conclusion and performance of the Sales Agreement or Electronic Service provision agreement shall result in the inability to conclude such agreements.
3.2 The basis for the processing of the Service User’s or the Client’s personal data is the necessity to perform the agreement, to which they are a party, or to undertake appropriate actions on their request before the conclusion of such agreement. In the case of personal data processing for the purposes of direct marketing of the Administrator’s own products or services, the basis for such processing is (1) the prior consent of the Service User or Client or (2) the fulfillment of legally justified goals realized by the Administrator (in accordance with art. 23 item 4 of the Personal Data Protection Act, legally justified goals are, in particular, direct marketing of the Administrator’s own products or services).
4. Right to control, access and amend the contents of own personal data
4.1 The Service User or Client has the right to access the contents of their personal data and its amendment.
4.2 Every person is entitled to control the processing of data related to them, contained in the Administrator’s database, especially to: request the supplementation, update or correction of personal data, temporary or permanent discontinuation of processing or removal of data, if such data is incomplete, outdated, untrue or was collected in violation of the law, or are no longer required to achieve the purpose, for which said data was collected.
4.3 In the event of the Service User or Client expressing consent to the processing of data for the purpose of direct marketing of the Administrator’s own products or services, such consent can be revoked at any time.
4.4 In the event, where the Administrator intends to process or is processing the Service User’s or Client’s data for the purposes of direct marketing of the Administrator’s own products or services, the person whom such data relates to is also authorized to (1) submit a written, motivated request to discontinue the processing of their data due to the person’s particular situation or to (2) submit an objection to the processing of their data.
5. Final provisions
5.2 The Administrator takes advantage of technical and organizational means which ensure protection of the processed personal data appropriate to the threats and categories of protected data, especially he secures data against their disclosure to unauthorized persons, take-over by an unauthorized person, processing in violation of currently applicable regulations, as well as change, loss, damage or destruction.
5.3 The Administrator correspondingly provides the following technical preventive measures against the acquisition and modification of electronically transmitted data:
5.3.1 Security of the data based against unauthorized access, including an SSL certificate.
5.3.2 Access to the Account only upon provision of the User’s individual login and password.