✧.

Privacy Policy

Privacy Policy of the Online Store – escinea.pl

TABLE OF CONTENTS:

  1. General Provisions
  2. Bases for Data Processing
  3. Purpose, Basis and Period of Data Processing in the Online Store
  4. Data Recipients in the Online Store
  5. Profiling in the Online Store
  6. Rights of the Data Subject
  7. Cookies in the Online Store and Analytics
  8. Final Provisions

1. GENERAL PROVISIONS

  1. This Privacy Policy of the Online Store is of an informative nature, which means that it does not create obligations for Service Recipients or Customers of the Online Store. The Privacy Policy contains primarily rules regarding the processing of personal data by the Administrator in the Online Store, including the bases, purposes and period of personal data processing and the rights of persons whose data are processed, as well as information on the use of cookies and analytical tools in the Online Store.
  2. The Administrator of personal data collected via the Online Store is ESCILAB Spółka z ograniczoną odpowiedzialnością with its registered office in Warsaw (registered office address and mailing address: ul. Bukowa 15, 02-708 Warsaw, Poland); entered into the Register of Entrepreneurs of the National Court Register under number KRS 0000493151; the registration court holding the company’s documentation: District Court for the capital city of Warsaw in Warsaw, XIII Commercial Division of the National Court Register; share capital: 500,000 zł; NIP (Tax ID): 5252577262; REGON (Company ID): 147045448; email address: sklep@escinea.pl; contact phone number: 533 366 333 (hereinafter “Administrator” and being also the “Seller”).
  3. Personal data in the Online Store are processed by the Administrator in accordance with applicable law, in particular in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) – hereinafter referred to as “GDPR”. The official text of the GDPR Regulation: http://eur-lex.europa.eu/legal-content/PL/TXT/?uri=CELEX%3A32016R0679
  4. Using the Online Store, including making purchases, is voluntary. Similarly, providing personal data by a user of the Online Store (Service Recipient or Customer) is voluntary, subject to two exceptions: (1) concluding contracts with the Administrator – failure to provide, in the cases and to the extent indicated on the Online Store website, in the Terms and Conditions and in this Privacy Policy, the personal data necessary to conclude and perform a Sales Agreement or an agreement for the provision of an Electronic Service with the Administrator will result in the inability to conclude that agreement. Providing personal data in such a case is a contractual requirement, and if the person whose data is concerned wishes to conclude a given agreement with the Administrator, they are obligated to provide the required data. Each time, the scope of data required to conclude an agreement is indicated in advance on the Online Store website and in the Online Store Terms; (2) Administrator’s statutory obligations – providing personal data is a statutory requirement arising from generally applicable laws that impose on the Administrator an obligation to process personal data (e.g. processing data for keeping tax or accounting records), and failure to provide such data will prevent the Administrator from fulfilling these obligations.
  5. The Administrator takes special care to protect the interests of individuals whose personal data it processes, and in particular is responsible for and ensures that the data it collects are: (1) processed lawfully; (2) collected for specified, lawful purposes and not subjected to further processing incompatible with those purposes; (3) factually correct and adequate in relation to the purposes for which they are processed; (4) kept in a form which permits identification of the persons concerned for no longer than is necessary to achieve the purpose of processing; and (5) processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and accidental loss, destruction or damage, using appropriate technical or organizational measures.
  6. Taking into account the nature, scope, context and purposes of processing as well as the risk of violating the rights or freedoms of natural persons of varying probability and severity, the Administrator implements appropriate technical and organizational measures to ensure that processing is carried out in accordance with the GDPR and to be able to demonstrate this. These measures are reviewed and updated as necessary. The Administrator uses technical measures to prevent the acquisition and modification of personal data sent electronically by unauthorized persons.
  7. Wszelkie słowa, wyrażenia i akronimy występujące w niniejszej polityce prywatności i rozpoczynające się dużą literą (np. Sprzedawca, Sklep Internetowy, Usługa Elektroniczna) należy rozumieć zgodnie z ich definicją zawartą w Regulaminie Sklepu Internetowego dostępnym na stronach Sklepu Internetowego.

2. BASES FOR DATA PROCESSING

  1. The Administrator is authorized to process personal data in cases where – and to the extent that – at least one of the following conditions is met: (1) the data subject has given consent to the processing of their personal data for one or more specific purposes; (2) processing is necessary for the performance of a contract to which the data subject is party or to take steps at the request of the data subject prior to entering into a contract; (3) processing is necessary for compliance with a legal obligation to which the Administrator is subject; or (4) processing is necessary for purposes arising from legitimate interests pursued by the Administrator or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular if the data subject is a child.
  2. The processing of personal data by the Administrator each time requires the existence of at least one of the bases indicated in point 2.1 of the Privacy Policy. Specific bases for the processing of personal data of Service Recipients and Customers on the Online Store website, in the Terms and Conditions and in this Privacy Policy – with reference to the given purpose of data processing by the Administrator.

3. PURPOSE, BASIS AND PERIOD OF DATA PROCESSING IN THE ONLINE STORE

  1. In each case, the purpose, basis, period of storage, and recipients of personal data processed by the Administrator result from the actions taken by a given Service Recipient or Customer in the Online Store or by the Administrator. For example, if a Customer decides to make a purchase in the Online Store and chooses personal pickup of the purchased Product instead of courier shipment, their personal data will be processed for the purpose of executing the concluded Sales Agreement, but will not be shared with a carrier performing shipments on behalf of the Administrator.
  2. The Administrator may process personal data within the Online Store for the purposes, on the bases, and for the periods indicated in the table below:
Cel przetwarzania danychPodstawa prawna przetwarzania danychOkres przechowywania danych
Wykonanie Umowy Sprzedaży lub umowy o świadczenie Usługi Elektronicznej lub podjęcie działań na żądanie osoby, której dane dotyczą, przed zawarciem w/w umówArtykuł 6 ust. 1 lit. b) Rozporządzenia RODO (wykonanie umowy) – przetwarzanie jest niezbędne do wykonania umowy, której stroną jest osoba, której dane dotyczą, lub do podjęcia działań na żądanie osoby, której dane dotyczą, przed zawarciem umowy Dane są przechowywane przez okres niezbędny do wykonania, rozwiązania lub wygaśnięcia w inny sposób zawartej Umowy Sprzedaży lub umowy o świadczenie Usługi Elektronicznej.
Marketing bezpośredniArtykuł 6 ust. 1 lit. f) Rozporządzenia RODO (prawnie uzasadniony interes administratora) – przetwarzanie jest niezbędne do celów wynikających z prawnie uzasadnionych interesów Administratora – polegających na dbaniu o interesy i dobry wizerunek Administratora, jego Sklepu Internetowego oraz dążeniu do sprzedaży Produktów Dane są przechowywane przez okres istnienia prawnie uzasadnionego interesu realizowanego przez Administratora, nie dłużej jednak niż przez okres przedawnienia roszczeń Administratora w stosunku do osoby, której dane dotyczą, z tytułu prowadzonej przez Administratora działalności gospodarczej. Okres przedawnienia określają przepisy prawa, w szczególności kodeksu cywilnego (podstawowy termin przedawnienia dla roszczeń związanych z prowadzeniem działalności gospodarczej wynosi trzy lata, a dla umowy sprzedaży dwa lata).Administrator nie może przetwarzać danych w celu marketingu bezpośredniego w przypadku wyrażenia skutecznego sprzeciwu w tym zakresie przez osobę, której dane dotyczą.
MarketingArtykuł 6 ust. 1 lit. a) Rozporządzenia RODO (zgoda) – osoba, której dane dotyczą wyraziła zgodę na przetwarzanie swoich danych osobowych w celach marketingowych przez Administratora Dane przechowywane są do momentu wycofania zgody przez osobę, której dane dotyczą na dalsze przetwarzanie jej danych w tym celu.
Wyrażenie przez Klienta opinii o zawartej Umowie SprzedażyArtykuł 6 ust. 1 lit. a) Rozporządzenia RODO- osoba, której dane dotyczą wyraziła zgodę na przetwarzanie swoich danych osobowych w celu wyrażenia opinii Dane przechowywane są do momentu wycofania zgody przez osobę, której dane dotyczą na dalsze przetwarzanie jej danych w tym celu.
Prowadzenie ksiąg rachunkowychArtykuł 6 ust. 1 lit. c) Rozporządzenia RODO w zw. z art. 74 ust. 2 ustawy o rachunkowości tj. z dnia 30 stycznia 2018 r. (Dz.U. z 2018 r. poz. 395) – przetwarzanie jest niezbędne do wypełnienia obowiązku prawnego ciążącego na Administratorze; Dane są przechowywane przez okres wymagany przepisami prawa nakazującymi Administratorowi przechowywanie ksiąg rachunkowych (5 lat, licząc od początku roku następującego po roku obrotowym, którego dane dotyczą).
Ustalenie, dochodzenie lub obrona roszczeń jakie może podnosić Administrator lub jakie mogą być podnoszone wobec AdministratoraArtykuł 6 ust. 1 lit. f) Rozporządzenia RODO (prawnie uzasadniony interes administratora) – przetwarzanie jest niezbędne do celów wynikających z prawnie uzasadnionych interesów Administratora – polegających na ustaleniu, dochodzeniu lub obronie roszczeń jakie może podnosić Administrator lub jakie mogą być podnoszone wobec Administratora Dane są przechowywane przez okres istnienia prawnie uzasadnionego interesu realizowanego przez Administratora, nie dłużej jednak niż przez okres przedawnienia roszczeń jakie mogą być podnoszone wobec Administratora (podstawowy termin przedawnienia dla roszczeń wobec Administratora wynosi sześć lat).
Korzystanie ze strony Sklepu Internetowego i zapewnienie jej prawidłowego działaniaArtykuł 6 ust. 1 lit. f) Rozporządzenia RODO (prawnie uzasadniony interes administratora) – przetwarzanie jest niezbędne do celów wynikających z prawnie uzasadnionych interesów Administratora – polegających na prowadzeniu i utrzymaniu strony Sklepu Internetowego Dane są przechowywane przez okres istnienia prawnie uzasadnionego interesu realizowanego przez Administratora, nie dłużej jednak niż przez okres przedawnienia roszczeń Administratora w stosunku do osoby, której dane dotyczą, z tytułu prowadzonej przez Administratora działalności gospodarczej. Okres przedawnienia określają przepisy prawa, w szczególności kodeksu cywilnego (podstawowy termin przedawnienia dla roszczeń związanych z prowadzeniem działalności gospodarczej wynosi trzy lata, a dla umowy sprzedaży dwa lata).
Prowadzenie statystyk i analiza ruchu w Sklepie InternetowymArtykuł 6 ust. 1 lit. f) Rozporządzenia RODO (prawnie uzasadniony interes administratora) – przetwarzanie jest niezbędne do celów wynikających z prawnie uzasadnionych interesów Administratora – polegających na prowadzeniu statystyk i analizie ruchu w Sklepie Internetowym celem poprawy funkcjonowania Sklepu Internetowego i zwiększenia sprzedaży Produktów Dane są przechowywane przez okres istnienia prawnie uzasadnionego interesu realizowanego przez Administratora, nie dłużej jednak niż przez okres przedawnienia roszczeń Administratora w stosunku do osoby, której dane dotyczą, z tytułu prowadzonej przez Administratora działalności gospodarczej. Okres przedawnienia określają przepisy prawa, w szczególności kodeksu cywilnego (podstawowy termin przedawnienia dla roszczeń związanych z prowadzeniem działalności gospodarczej wynosi trzy lata, a dla umowy sprzedaży dwa lata).

4. DATA RECIPIENTS IN THE ONLINE STORE

  1. For the proper functioning of the Online Store, including the execution of concluded Sales Agreements, it is necessary for the Administrator to use services of external entities (such as software suppliers, couriers, or payment processing providers). The Administrator uses only the services of such processors that provide sufficient guarantees to implement appropriate technical and organizational measures so that processing meets the requirements of the GDPR and protects the rights of data subjects.
  2. Data transfer by the Administrator does not occur in every case and not to all recipients or categories of recipients indicated in the Privacy Policy – the Administrator transfers data only when it is necessary to achieve a given purpose of processing personal data and only to the extent that is necessary to achieve it. For example, if the Customer uses personal pickup, their data will not be transferred to a shipping carrier cooperating with the Administrator.
  3. Personal data of the Service Recipients and Customers of the Online Store may be transferred to the following recipients or categories of recipients:
    1. Carriers / Forwarders / Courier Brokers / Entities handling warehouse and/or shipping process in the case of a Customer who uses postal or courier delivery of a Product in the Online Store, the Administrator provides the collected personal data of the Customer to the selected carrier, forwarder or intermediary performing the shipment on behalf of the Administrator, or if the shipment is from an external warehouse, to the entity operating the warehouse and/or shipping process – to the extent necessary to deliver the Product to the Customer.
    2. Entities processing electronic payments or card payments – in the case of a Customer who uses electronic or card payment methods in the Online Store, the Administrator provides the collected personal data of the Customer to the selected entity servicing the aforementioned payments in the Online Store on behalf of the Administrator, to the extent necessary to process the payment made by the Customer.
    3. Providers of survey systems for opinions – in the case of a Customer who agreed to provide an opinion on a concluded Sales Agreement, the Administrator provides the collected personal data of the Customer to the selected entity providing a system of survey forms for reviewing Sales Agreements concluded in the Online Store on behalf of the Administrator, to the extent necessary for the Customer to submit their opinion via the survey system.
    4. Service providers supplying the Administrator with technical, IT, or organizational solutions that enable the Administrator to conduct business activity, including the Online Store and the Electronic Services provided through it (in particular, providers of computer software for running the Online Store, email and hosting providers, and providers of software for company management and technical support to the Administrator) – the Administrator provides the collected personal data of the Customer to a chosen provider acting on its behalf only in the case and to the extent necessary to realize a given purpose of data processing consistent with this Privacy Policy.
    5. Providers of accounting, legal, or consulting services providing the Administrator with accounting, legal, or consulting support (in particular an accounting office, law firm, or debt collection company) – the Administrator provides the collected personal data of the Customer to a chosen provider acting on its behalf only in the case and to the extent necessary to realize the given purpose of data processing consistent with this Privacy Policy.

5. PROFILING IN THE ONLINE STORE

  1. The GDPR imposes an obligation on the Administrator to inform about automated decision-making, including profiling referred to in Article 22(1) and (4) of GDPR, and – at least in those cases – relevant information about the logic involved, as well as the significance and envisaged consequences of such processing for the data subject. With this in mind, the Administrator provides information in this section of the Privacy Policy regarding possible profiling.
  2. The Administrator may use profiling in the Online Store for direct marketing purposes, but the decisions made on its basis by the Administrator do not concern the conclusion or refusal to conclude a Sales Agreement, or the possibility of using Electronic Services in the Online Store. The effect of using profiling in the Online Store may be, for example, granting a given person a discount, sending them a discount code, reminding them of unfinished purchases, sending a proposal of a Product that may match that person’s interests or preferences, or offering better terms compared to the standard offer of the Online Store. Despite profiling, it is up to the individual whether they decide to take advantage of the discount or better terms received in this way and make a purchase in the Online Store.
  3. Profiling in the Online Store involves an automatic analysis or forecast of an individual’s behavior on the Online Store website, e.g. by adding a specific Product to the cart, browsing a particular Product page in the Online Store, or analyzing the previous purchase history in the Online Store. The condition for such profiling is that the Administrator has the personal data of that person in order to then be able to send, e.g., a discount code to that person.
  4. The data subject has the right not to be subject to a decision that is based solely on automated processing, including profiling, and produces legal effects concerning them or similarly significantly affects them.

6. RIGHTS OF THE DATA SUBJECT

  1. Right of access, rectification, restriction, erasure, or portability – the data subject has the right to request from the Administrator access to their personal data, rectification of their personal data, erasure (“the right to be forgotten”), or restriction of processing, and has the right to object to processing, as well as the right to data portability. Detailed conditions for exercising the above-mentioned rights are specified in Articles 15–21 of the GDPR.
  2. Right to withdraw consent at any time – a person whose data are processed by the Administrator on the basis of expressed consent (pursuant to Article 6(1)(a) or Article 9(2)(a) of the GDPR) has the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
  3. Right to lodge a complaint with a supervisory authority – a person whose data are processed by the Administrator has the right to lodge a complaint with a supervisory authority in the manner specified in the provisions of the GDPR and Polish law, in particular the Personal Data Protection Act. The supervisory authority in Poland is the President of the Personal Data Protection Office.
  4. Right to object – the data subject has the right at any time to object – on grounds relating to their particular situation – to the processing of their personal data based on Article 6(1)(e) (public interest or tasks) or (f) (legitimate interest of the administrator) of the GDPR, including profiling based on those provisions. In such a case, the Administrator shall no longer process those personal data unless it demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or grounds for the establishment, exercise or defense of legal claims.
  5. Right to object to direct marketing – if personal data are processed for direct marketing purposes, the data subject has the right to object at any time to the processing of their personal data for such marketing, including profiling to the extent that it is related to such direct marketing.
  6. To exercise the rights referred to in this section of the Privacy Policy, one may contact the Administrator by sending an appropriate message in writing or by email to the Administrator’s address indicated at the beginning of this Privacy Policy, or by using the contact form available on the Online Store’s website.

7. COOKIES IN THE ONLINE STORE AND ANALYTICS

  1. Cookies are small text information in the form of text files, sent by a server and saved on the side of the person visiting the Online Store’s website (e.g. on the hard drive of a computer, laptop, or on a smartphone’s memory card – depending on the device used by the visitor). Detailed information about cookies, as well as the history of their creation, can be found, among others, here: http://pl.wikipedia.org/wiki/Ciasteczko.
  2. The Administrator may process data contained in cookies when visitors use the Online Store’s website for the following purposes:
    1. Identifying Service Recipients as logged in to the Online Store and showing that they are logged in.
    2. Remembering Products added to the cart to place an Order.
    3. Remembering data from completed Order Forms, surveys, or login data to the Online Store.
    4. Customizing the content of the Online Store’s website to the individual preferences of the Service Recipient (e.g. regarding colors, font size, page layout) and optimizing the use of the Online Store’s pages.
    5. Keeping anonymous statistics presenting how the Online Store website is used.
    6. Remarketing, i.e. researching the characteristics of the behavior of visitors to the Online Store through anonymous analysis of their actions (e.g. repeated visits to specific pages, keywords, etc.) to create their profile and provide them with advertisements tailored to their anticipated interests, even when they visit other websites in the Google Ireland Ltd. advertising network and Facebook Ireland Ltd. network.
  3. By default, most web browsers available on the market accept saving cookies by default. Everyone has the option to define the conditions of using cookies via the settings of their own web browser. This means that it is possible, for example, to partially limit (e.g. temporarily) or completely disable the ability to save cookies – however, in the latter case, it may affect some functionalities of the Online Store (for instance, it might become impossible to go through the Order process via the Order Form because the Products will not be remembered in the cart through subsequent steps of placing the Order).
  4. Web browser settings regarding cookies are important from the standpoint of consent to the use of cookies by our Online Store – according to the law, such consent can also be expressed through web browser settings. In the absence of such consent, the browser settings for cookies should be changed accordingly.
  5. Detailed information on how to change cookie settings and delete cookies is available in the browser’s help section and on the following pages (click on the respective link):
    1. in Google Chrome
    2. in Mozilla FireFox
    3. in Internet Explorer
    4. in Opera
    5. in Safari
    6. in Microsoft Edge
  6. The Administrator may use in the Online Store the services of Google Analytics and Universal Analytics provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland). These services help the Administrator keep statistics and analyze traffic in the Online Store. The collected data are processed within these services to generate statistics helpful in administering the Online Store and analyzing traffic in the Online Store. These data are aggregate. In using the above services in the Online Store, the Administrator collects data such as the sources and medium of acquisition of visitors to the Online Store and how they behave on the site, information about the devices and browsers from which they visit the site, IP and domain, geographic data, and demographic data (age, gender) and interests.
  7. It is possible for an individual to easily block the sharing of information about their activity on the Online Store website with Google Analytics – for example, by installing the browser add-on provided by Google Ireland Ltd. available here: https://tools.google.com/dlpage/gaoptout?hl=pl.
  8. The Administrator may use the Facebook Pixel service provided by Facebook Ireland Limited (4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland) in the Online Store. This service helps the Administrator measure the effectiveness of advertisements and find out what actions visitors to the Online Store take, as well as display tailored advertisements to those individuals. Detailed information on how the Facebook Pixel works can be found at: https://tools.google.com/dlpage/gaoptout?hl=pl
  9. Management of the operation of the Facebook Pixel is possible through the ad settings in your account on Facebook.com: https://www.facebook.com/business/help/742478679120153?helpref=page_content

8. FINAL PROVISIONS

  1. The Online Store may contain links to other websites. The Administrator encourages that after switching to other websites, you read the privacy policy established there. This Privacy Policy applies only to the Administrator’s Online Store.
0
    0
    YOUR CART
    Your cart is emptyReturn to shop