The controller of personal data collected via the Online Store is the YONELLE BEAUTY CONCEPT ZWOLIŃSKA CHEŁKOWSKA SPÓŁKA JAWNA general partnership registered in Warsaw (registered and mailing address: ul. Gen. J. Zajączka 9a/24 01-518 Warszawa); entered in the Register of Entrepreneurs of the National Court Register under no. KRS 0000008874; register court, where the corporate documentation is maintained: Register Court for the capital city of Warsaw in Warsaw, 12th Commercial Division of the National Court Register, taxpayer identification number (NIP): 5252570277, Polish Business ID (REGON): 146951191; email address: email@example.com firstname.lastname@example.org – hereinafter referred to as the “Data Controller”, who is at the same time the Service Provider of the Online Store and the Seller.
Personal data of the User and Client are processed in accordance with the Polish Personal Data Protection Act of 29 August 1997 (Journal of Laws /Dz.U./ 1997 no. 133, item 883, as amended) (hereinafter: Personal Data Protection Act) and the Polish Act on Providing Services by Electronic Means of 18 July 2002 (Journal of Laws /Dz.U./ 2002 no. 144, item 1204, as amended).
The Data Controller shall use duespecial diligence to protect the interests of data subjects, and in particular, he guarantees that the data collected by him or her are processed in a legal manner; are collected for specific, legally approved purposes and are not processed beyond these purposes; are correct and relevant to the purposes for which they are processed and stored in a way that enables identification of data subjects, no longer than it is necessary to achieve the purposes of their processing.
All the words, expressions and acronyms used on this website and written with capital letters (e.g. Seller, Online Store, Electronic Service) shall have the meaning defined in the Terms and Conditions of the Online Store available on the Online Store website.
PURPOSE AND SCOPE OF DATA COLLECTION AND DATA RECIPIENTS
Each time the purpose, scope and recipients of data processed by the Data Controller result from the operations made by the User or Client in the Online Store. For example, if the Client chooses in his Order collection in person instead of courier delivery, his personal data will be processed for the purpose of execution and performance of the Sales Agreement, but will not be disclosed to the carrier contracted by the Data Administrator.
Personal data of Users or Clients may be collected by the Data Controller for such purposes as, for example: a:
Execution and performance of the Sales Agreement or an agreement for the provision of Electronic Service (e.g. Account).
Direct marketing of the Data Controller’s products or services.
The recipients of personal data of the Online Store Clients may be, for example:
If the Client using the Online Store chooses mail delivery or courier delivery, the Data Controller discloses the Client’s personal data to the selected carrier or agent contracted by the Data Controller.
If the Client using the Online Store chooses electronic payment or credit card payment, the Data Controller discloses the Client’s personal data to the selected operator of these payments in the Online Store
The Data Controller may process the following personal data of Users or Clients of the Online Store: name and surname; email address; phone number; address for delivery (street, house number, apartment number, postcode, town, country), address of residence/business address/registered address (if different fromthan the address for delivery). In the case of Users or Clients other than consumers, the Data Controller may also process their business name and taxpayer identification number (NIP).
Provision of the personal data referred to in the preceding paragraph should be limited to what is necessary for the execution and performance of the Sales Agreement or an agreement for the provision of Electronic Service in the Online Store. Each time, the scope of data required for the execution of an agreement is determined on the Online Store website and in the Terms and Conditions of the Online Store.
COOKIES AND LOGS
Cookies are small pieces of data in the form of text files sent by the server and stored in the system of the Online Store visitor (e.g. on a computer or laptop hard drive or on a smartphone memory card – – depending on the type of device used by the Online Store visitor). Detailed information concerning Cookies as well as their history are available; for example here: https://en.wikipedia.org/wiki/HTTP_cookie
The Data Controller may process data contained in Cookies while visitors are using the Online Store website for the following purposes:
To identify whether Users are logged in the Online Store and to show that they are logged in;
To memorise products added to the Cart for the purpose of making an Order;
To memorise data submitted in Order Forms or questionnaires, or login data to the Online Store;
To tailor the content of the Online Store website to the User’s individual preferences (e.g. concerning colours, font size, page layout) and optimise the use of the Online Store website;
To perform anonymous statistics of the use of the Online Store website, and survey User needs, without personal identification of the User.
As a standard, most web browsers available on the market accepts Cookies by default. Each has the possibility of determining the conditions of using Cookies through web browser settings. This means that you can, for example, limit to some extent (e.g. temporarily) or entirely switch off Cookies on your computer – – however, if you do the latter, this may affect some functionalities of the Online Store (for example, you may not be able to complete the Order through the Order Form).
5. Detailed information about Cookies settings and how you can remove them yourself in the most popular web browsers are available in web browser help resources and on the following websites (just click the link to open):
The Service Provider also stores logs (IP address, domain) for an indeterminate time and uses them to generate statistics that help manage the Online Store. These data are collective and anonymous, i.e. they do not allow for identification of the visitors of the Online Store website. Logs are not disclosed to third persons
BASIS FOR PERSONAL DATA PROCESSING
Provision of personal data by a User or Client is voluntary, however, if the personal data required on the Online Store website and in the Terms and Conditions of the Online Store to execute and perform the Sales Agreement or an agreement for the provision of Electronic Service are not provided, the agreement may not be executed.
The basis to process the personal data of a User or Client is to enable performance the agreement to which he or she is a party, or to perform the operations requested by him or her prior to the execution of the agreement. If data are processed for the purposes of direct marketing of the Data Controller’s products or services, the basis for such processing is (1) prior consent of the User or Client or (2) achieving the Data Controller’s legally valid objectives (in accordance with Article 23.4 of the Personal Data Protection Act, a legally valid objective is, in particular, direct marketing of the Data Controller’s products or services).
RIGHT TO CONTROL, ACCEESS AND CORRECT PERSONAL DATA
The user has the right to access and correct his or her personal data.
Each person has the right to control the processing of his or her personal data collected in the Data Controller’s database, and in particular, the right to request to: supplement, update or correct personal data, temporarily or permanently stop processing personal data or delete personal data, if they are incomplete, outdated or untrue, or were collected in a non-statutory way, or are no longer necessary to achieve the objective for which they were originally collected.
If the User or Client consents to the processing of his or her personal data for the purpose of direct marketing of the Data Controller’s products or services, the consent may be cancelled at any time.
If the Data Controller intends to process or processes personal data of a User or Client for the purpose of direct marketing of his or her products or services, the data subject is also authorised to: (1) submit a written, justified request to stop processing his data due to a special situation or (2) to submit an objection to the processing of his data.
The foregoing rights may be executed by contacting the Data Controller by traditional mail or electronic mail to the Data Controller first stated above
The Data Controller uses technical and organisational means to ensure personal data protection adequate to threats or to the categories of personal data, and in particular, he or she protects personal data against disclosure to unauthorised persons, removal by unauthorised persons, processing against existing legal provisions, modification, loss, damage or destruction.
The Data Controller applies the following technical means to prevent unauthorised acquisition or modification of personal data submitted electronically:
Protection against unauthorised access to datasets.
Access to Account is possible after typing individual user name and password.
According to art. 13 section 1 and item 2 of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the availability of such data and the repeal of provisions 95/46 / EC (general principles), information, matters:
- The administrator of your data is JM Innovative Cosmetics Sp. Zoo. Sp. k. with its registered office in Warsaw, 01-518, ul. Gen. Zajączka 9A lok. 24 - - The data protection officer is Ms Anna Walosińska, e-mail: email@example.com
- your personal data sets of services required to purchase Yonelle brand products / account registration / registration marketing Yonelle brand products / for sending the newsletter
- recipient of your personal data used in IT service services cooperating with JM Innovative Cosmetics Sp. Zoo. Sp. k.
- your personal data must be completed for the period necessary to complete their collection or until they are notified, as well as the right to rectify, delete, limit use, the right to transfer data, the right to object , the right to withdraw consent in any case without affecting compliance with the right to use, must be made on the basis of consent before its withdrawal
- you have the right to be brought to the control office when you consider, the processing of personal data regarding your breach of the provisions of the Act on the protection of personal data of April 27, 2016;
- providing your personal data is voluntarily, but necessary for order processing / account registration / marketing of Yonelle brand products / sending a newsletter.