- For the Owner of this website, the protection of Users’ personal data is of the utmost importance. It makes great efforts to ensure that Users feel safe when entrusting their personal data when using the website.
- User is a natural person, legal person or organizational unit without legal personality, which the law grants legal capacity, using electronic services available on the website.
- The administrator uses the most modern technical measures and organizational solutions that ensure a high level of protection of personal data being processed and protection against access by unauthorized persons.
I. PERSONAL DATA ADMINISTRATOR
The administrator of personal data is Boske Barber sp. z o.o. with its registered office at: Rakowicka 10B/4, entered into the Register of Entrepreneurs kept by the District Court for Kraków Śródmieście in Kraków, 11th Commercial Division, under KRS number: 0000790867, NIP: 9452228367 (hereinafter referred to as: “Owner”).
II. PURPOSE OF PERSONAL DATA PROCESSING
- The Administrator processes the User’s personal data in order to: Sell the company’s products and services.
- This means that this data is needed in particular for
- conclusion of the contract;
- make settlements;
- delivery of goods ordered by the User or performance of services;
- The User may also agree to receive information about new products and promotions, which will cause the administrator to also process personal data in order to send commercial information to the User regarding, among others, new products or services, promotions or sales.
- Personal data is also processed as part of the fulfillment of legal obligations incumbent on the data controller and the performance of tasks in the public interest, e.g. to perform tasks related to security and defense or to store tax documentation.
- Personal data may also be processed for the purposes of direct marketing of products, securing and pursuing claims or protecting against claims of the User or a third party, as well as marketing of services and products of third parties or own marketing, which is not direct marketing.
III. TYPE OF DATA
- The administrator processes the following personal data, the provision of which is necessary for:
- making purchases via the website:
- first name and last name;
- delivery address;
- phone number;
- e-mail adress;
- Data provided by the User optionally:
- date of birth;
- PESEL number (if an invoice is requested);
- NIP number (in case of requesting an invoice for the entrepreneur).
- In addition, the administrator also processes the following data:
- Dedication data on prepaid products, cards, vouchers, vouchers.
- making purchases via the website:
IV. LEGAL BASIS FOR PROCESSING PERSONAL DATA
- Personal data is processed in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), OJ L 119, 4.5.2016, p. 1-88, hereinafter referred to as: “GDPR Regulation”.
- The Administrator processes personal data only after obtaining the User’s consent at the time of confirming the transaction made on the website.
- Expressing consent to the processing of personal data is completely voluntary, however, the lack of consent makes it impossible to make purchases via the website.
V. YOUR RIGHTS
- The user may at any time request information from the administrator about the scope of personal data processing.
- The user may at any time request correction or rectification of his personal data.
- The user may withdraw his consent to the processing of his personal data at any time, without giving any reason. The request not to process data may relate to a specific purpose of processing indicated by the User, e.g. withdrawal of consent to receive commercial information, or apply to all purposes of data processing. Withdrawal of consent for all purposes of processing will result in the User’s account being deleted from the website, along with all the User’s personal data previously processed by the administrator. Withdrawal of consent will not affect the actions already performed.
- The user may at any time request, without giving any reason, that the administrator remove his data. The request to delete data will not affect the activities already performed. Deletion of data means simultaneous deletion of the User’s account, along with all personal data saved and processed so far by the administrator.
- The User may at any time object to the processing of personal data, both in terms of all the User’s personal data processed by the administrator, as well as only to a limited extent, e.g. as to the processing of data for a specific purpose. The objection will not affect the actions already taken. Filing an objection will result in the deletion of the User’s account, along with all personal data saved and processed so far by the administrator.
- The user may request the restriction of the processing of personal data, either for a specific period of time or without a time limit, but within a specific scope, which the administrator will be obliged to comply with. This request will not affect the activities already performed.
- The User may request that the administrator transfer the User’s processed personal data to another entity. For this purpose, he should write a request to the administrator, indicating to which entity (name, address) the User’s personal data should be transferred and what specific data the User wishes the administrator to provide. After the User confirms his wish, the administrator will provide the User’s personal data in electronic form to the indicated entity. Confirmation of the request by the User is necessary due to the security of the User’s personal data and to ensure that the request comes from an authorized person.
- The Administrator informs the User about the actions taken within a month of receiving one of the requests listed in the previous points.
VI. PERIOD OF STORAGE OF PERSONAL DATA
- In principle, personal data is only stored as long as necessary to fulfill the contractual or statutory obligations for which it was collected. These data will be deleted immediately when their storage is no longer necessary, for evidence purposes, in accordance with civil law or in connection with a statutory obligation to store data.
- Information regarding the contract is stored for evidence purposes for a period of three years, starting from the end of the year in which the commercial relationship with the User ended. The data will be deleted after the statutory limitation period for pursuing contractual claims has expired.
- In addition, the administrator may retain archival information regarding concluded transactions, as their storage is related to the User’s claims, e.g. under warranty.
- If no contract has been concluded between the User and the Owner, the User’s personal data is stored until the User’s account is deleted on the website. The deletion of the account may take place as a result of a request by the User, withdrawal of consent to the processing of personal data, or an objection to the processing of such data.
VII. ENROLLING DATA PROCESSING TO OTHER ENTITIES
- The administrator may entrust the processing of personal data to entities cooperating with the administrator, to the extent necessary to complete the transaction, e.g. to prepare the ordered goods and deliver parcels or provide commercial information from the administrator (the latter applies to Users who have agreed to receive commercial information).
- Personal data of website users are not transferred outside the European Union.
- Cookies are pieces of information that contain a unique reference code that the website sends to the User’s device in order to store and sometimes track information about the device used. Usually they do not allow to identify the User. Their main task is to better match the website to the User.
- Some of the cookies on the website are only available for the duration of a given internet session and expire when the browser is closed. Other cookies are used to remember the User who, after returning to the website, is recognized on it. They are then retained for a longer period of time.
- The cookies used on this website are:
- wp_woocommerce_session_00cdd6f4d4e234603f9a0ae17002fe36 i inne w domenie boskebarber.pl, boskebarber.com
- All cookies on the website are set by the administrator.
- All cookies used by this website comply with applicable European Union law.
- Most Users and some mobile browsers automatically accept cookies. If the User does not change the settings, cookies will be saved in the device’s memory.
- The user can change the preferences regarding the acceptance of cookies or change the browser to be able to receive an appropriate notification each time the cookie function is set. To change the cookie acceptance settings, adjust the settings in your browser.
- It is worth remembering that blocking or deleting cookies may prevent you from taking full advantage of the website.
- Cookies will be used for the necessary session management, including:
- Create a special login session for the Website User so that the website remembers that the User is logged in and their requests are delivered in an effective, secure and consistent manner;
- Recognition of the User who has previously visited the website, which allows to identify the number of unique users who have used the website and to ensure that the website has sufficient capacity for the number of new users;
- Recognize whether a website visitor is registered on the website;
- Recording information from the User’s device, including: cookies, IP address and information about the browser used, in order to be able to diagnose problems, administer and track the use of the website;
- Adjust elements of the layout of the graphic design or content of the website;
- Collecting statistical information on how the User uses the website in order to be able to improve the website and determine which areas of the website are the most popular for Users.