- General provisions
- The administrator of personal data collected through the website is Adrian Wyszyński conducting business activity under the name Adi Trade Adrian Wyszyński entered in the Central Register and Information on Economic Activity of the Republic of Poland (CEIDG) kept by the minister competent for economy, having the address of the place of business and the address for delivery: ul. Antoniego Orszagha 8a, 05-230 Kobyłka, NIP 1251653355, REGON 366763214, e-mail address: , phone: +48508448319 – hereinafter referred to as the “Administrator” and being both the Website Service Provider and the Seller.
- Personal data on the website and in business contacts with Customers are processed by the Administrator in accordance with applicable law, in particular in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to processing personal data and on the free movement of such data and repealing Directive 95/46/EC (general regulation on data protection) – hereinafter referred to as “GDPR” or “GDPR Regulation”.
- Purpose, basis, period and scope of data processing on the website
- Each time the purpose, basis, period and scope as well as the recipient of personal data processed by the Administrator result from actions taken by a given Customer on the website or as part of commercial relations. For example, if the Customer decides to make purchases from the Service Provider and chooses personal collection of the purchased Product instead of a parcel, then his personal data will be processed in order to perform the concluded sales agreement, but will no longer be made available to the carrier performing the parcel at the request of the Administrator.
- The administrator may process personal data from the website or obtained in commercial transactions for the following purposes, on the following grounds, in periods and in the following scope:
Purpose of data processing Legal basis for data processing Data storage period Performance of the sales agreement or contract for the provision of electronic services or taking action at the request of the data subject before concluding the above-mentioned contracts Article 6 1 lit. b) GDPR Regulations (performance of the contract) – processing is necessary to perform the contract to which the data subject is party or to take action at the request of the data subject before concluding the contract The data is stored for the period necessary to perform, terminate or otherwise expire the concluded sales agreement or contract for the provision of electronic services. Direct marketing Article 6 1 lit. f) GDPR Regulations (legitimate interest of the administrator) – processing is necessary for purposes arising from the legitimate interests of the Administrator – consisting in taking care of the interests and good image of the Administrator
The data is stored for the duration of the legitimate interest pursued by the Administrator, but no longer than for the period of limitation of the Administrator’s claims against the data subject in respect of the Administrator’s business activities. The limitation period is specified by law, in particular the Civil Code (the basic limitation period for claims related to running a business is three years, and two years for a sales agreement).
The administrator may not process data for direct marketing purposes if the data subject has successfully objected to it.
Keeping tax books Article 6 1 lit. c) GDPR Regulations in connection with from art. 86 § 1 of the Polish Tax Code, i.e. from January 17, 2017 (Journal of Laws of 2017, item 201) – the processing is necessary to fulfill the legal obligation of the Administrator The data is stored for the period required by law ordering the Administrator to store tax books (until the expiry of the limitation period for tax liability, unless tax laws provide otherwise). Determining, investigating or defending claims that may be raised by the Administrator or which may be raised against the Administrator Article 6 1 lit. f) GDPR Regulations (legitimate interest of the administrator) – processing is necessary for purposes resulting from the legitimate interests of the Administrator The data is stored for the duration of the legitimate interest pursued by the Administrator, but no longer than for the period of limitation of claims that may be raised against the Administrator (the basic limitation period for claims against the Administrator is six years). Keeping statistics and analyzing website Article 6 1 lit. f) GDPR Regulations (legitimate interest of the administrator) – processing is necessary for purposes resulting from the legitimate interests of the Administrator The data is stored for the duration of the legitimate interest pursued by the Administrator, but no longer than for the period of limitation of the Administrator’s claims against the data subject in respect of the Administrator’s business activities. The limitation period is specified by law, in particular the Civil Code (the basic limitation period for claims related to running a business is three years, and two years for a Sales Agreement).
- Data recipients
- The personal data of Service Recipients and Customers may be transferred to the following recipients or categories of recipients:
- carriers/forwarders – in the case of a Customer who uses the Product delivery method by post or courier
- entities that support electronic payments or a payment card – in the case of a Customer who uses the electronic payment method or a payment card
- providers of accounting, legal and consulting services providing the Administrator with accounting and legal support
- providers of social plug-ins placed on the Website, and other similar tools enabling the browser of the visitor of the website to download content from plug-in providers, including: Facebook Ireland Ltd. and therefore collects and provides personal data to Facebook Ireland Ltd., Google Ltd. Irleand, Google Inc.
- The administrator does not use profiling on the website.
- The rights of the person who the data concerns
- The right to access, rectify, limit, delete or transfer – the data subject has the right to request the Administrator to access his personal data, rectify it, delete it (“the right to be forgotten”) or limit processing and has the right to object to processing, and also has the right to transfer his data.
- The right to withdraw consent at any time – a person whose data is processed by the Administrator on the basis of expressed consent (pursuant to art.6 par.1 lit.a) or art. 9 item 2 lit. a) of the GDPR Regulation), it has the right to withdraw consent at any time without affecting the lawfulness of the processing that was carried out on the basis of consent before its withdrawal.
- The right to lodge a complaint to the supervisory body – a person whose data is processed by the Administrator has the right to lodge a complaint to the supervisory body in the manner and manner specified in the provisions of the GDPR and Polish law, in particular the Personal Data Protection Act. The supervisory body in Poland is the President of the Office for Personal Data Protection.
- Cookies on the website, operational data and analytics
- Cookies are small text information in the form of text files, sent by the server and saved on the side of the person visiting the Website (e.g. on the hard disk of a computer, laptop or smartphone memory card – depending on which device the visitor uses).
- The Administrator may process the data contained in Cookies when visitors use the Website for the following specific purposes:
a) identify the Service Users as logged in and show that they are logged in
b) remembering Products added to the basket to place an Order
c) remembering data from completed Order Forms,
d) adapt the content of the Website to the individual preferences of the Service Recipient and optimize the use of the Website’s pages
e) keeping anonymous statistics showing how to use the Website
f) remarketing, i.e. research into the characteristics of visitor behavior by anonymous analysis of their activities (e.g. repetitive visits to specific websites, keywords, etc.).
Detailed information on changing the settings for Cookies and their removal in the most popular web browsers are available in the help section of the web browser and on the following pages:
in browser Chrome
in browser Firefox
in browser Internet Explorer
in browser Opera
in browser Safari
in browser Microsoft Edge
- The Administrator may use Google Analytics and Universal Analytics services provided by Google Ireland Limited on the Website. The collected data is processed as part of generating statistics helpful in the administration and analysis of Website traffic. These data are aggregated, anonymized (e.g. sources and medium of obtaining visitors to the Website and the manner of their behavior on the Website, information on the devices and browsers from which they visit the website, IP and domain, geographical data and demographic data – age, sex and interests). In this respect, Users’ personal data may be transferred to third countries (due to the seat of entities providing the software), and this is done with the highest level of security. It is possible for a person to easily block sharing of Google Analytics information about their activity on the Website – for this purpose, you can install the browser add-on provided by Google Inc. available here: https://tools.google.com/dlpage/gaoptout?hl=en.