Privacy policy

PRIVACY POLICY

 

The following Privacy Policy sets out the principles for storing and accessing data on the Devices of Users using the Website for the purposes of the provision of electronic services by the Administrator, as well as the principles for the collection and processing of the Users' personal data provided by them personally and voluntarily through the tools available on the Website.

 

The following Privacy Policy is an integral part of the Rules and Regulations of the Store, which sets out the principles, rights and obligations of the Users using the Service.

 

 

 

I. DEFINITIONS

  1. Administrator - WARRINGTON KRYSZKIEWICZ SP.K.  branch: Warsaw street RACJONALIZACJI 5, Registered in the Register of Entrepreneurs maintained by the DISTRICT COURT FOR THE CAPITAL CITY OF WARSAW IN WARSAW, XIII COMMERCIAL DIVISION OF THE NATIONAL COURT REGISTER under number 0000708852, NIP: 5252733130, REGON: 368995696.
  2. Personal Data - all information about a natural person identified or identifiable by one or more factors specific to his/her physical, physiological, genetic, mental, economic, cultural or social identity, including the IP of the device, location data, Internet ID and information collected through cookies and other similar technology.
  3. Policy - this Privacy Policy.
  4. RODO - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation).
  5. Service - the website operated by the Administrator at  www.warrington.store
  6. User - a natural person for whom the Administrator provides services electronically through the Website.
  7. Device - an electronic device with software through which the User accesses the Website.
  8. Processing - means an operation or set of operations performed on personal data or sets of personal data in an automated or non-automated manner, such as collection, recording, organisation, organisation, storage, adaptation or modification, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

 

II. PROCESSING OF DATA IN CONNECTION WITH USE OF THE SERVICE

In connection with the User's use of the Website, the Administrator collects data to the extent necessary to provide the individual services offered, as well as information about the User's activity on the Website. The detailed principles and purposes of the processing of Personal Data collected during use of the Service by the User are described below.

 

 

 

III. PURPOSES AND LEGAL BASIS OF DATA PROCESSING IN THE SERVICE

USE OF THE SERVICE

 

  1. Personal Data of all persons using the Service (including IP address or other identifiers and information collected via Cookies or other similar technologies), and not being registered Users (i.e. persons without a profile in the Service) are processed by the Administrator:

1. in order to provide services electronically in the scope of providing Users with access to content collected on the Website, making contact forms available - then the legal basis of processing is the necessity of processing for the performance of the agreement (art. 6.1.b RODO);

2. for the purpose of handling purchases made without registering on the Website - in which case the legal basis for processing is the necessity of processing for the performance of the contract (Article 6(1)(b) RODO);

3. for analytical and statistical purposes - then the legal basis of processing is the Administrator's legitimate interest (art. 6.1.f RODO) consisting of conducting analyses of Users' activities, as well as their preferences in order to improve applied functionalities and provided services;

4. for the purposes of possible establishment and investigation of claims or defence against them - the legal basis of the processing is the Administrator's legitimate interest (Article 6(1)(f) RODO) consisting in the protection of his/her rights;

5. for the Administrator's marketing purposes, in particular related to the presentation of behavioural advertising - the principles of processing personal data for marketing purposes are described in the ‘MARKETING’ section.

2. User activity in the Service, including his/her Personal Data, are recorded in system logs (special computer programme used for storing chronological records containing information on events and actions concerning the IT system used for rendering services by the Administrator). The information collected in the logs and processed in connection with the provision of services is also processed by the Administrator for technical purposes; in particular, the data may be temporarily stored and processed in order to ensure the security and proper functioning of IT systems, e.g. in connection with making security copies, testing changes to IT systems, detecting irregularities or protecting against abuse and attacks.

PLACING ORDERS

1.Placing an order (purchase of goods or services) by a Service User involves the processing of his/her Personal Data. The provision of data marked as mandatory is required in order to accept and handle the order, and their failure to be provided results in the lack of its execution. Provision of the remaining data is optional.

2. The above personal data are processed:

1. in order to fulfil the order placed - the legal basis for processing is the necessity of processing for the performance of the contract (Art. 6(1)(b) RODO); with regard to data provided optionally, the legal basis for processing is consent (Art. 6(1)(a) RODO);

2. in order to comply with statutory obligations incumbent on the Controller, arising in particular from tax and accounting legislation - the legal basis for processing is a legal obligation (Article 6(1)(c) RODO);

3. for analytical and statistical purposes - the legal basis for processing is the Administrator's legitimate interest (Article 6(1)(f) RODO), consisting of conducting analyses of Users' activity on the Website, as well as their shopping preferences in order to improve the applied functionalities;

4. in order to possibly establish and assert or defend against claims - the legal basis of the processing is the legitimate interest of the Administrator (Article 6(1)(f) RODO) consisting in the protection of his/her rights.

CONTACT FORMS

  1. The Administrator provides the possibility to contact him/her using electronic contact forms. The use of the form requires the User to provide the Personal Data necessary to contact the User and respond to the enquiry. The User may also provide other data in order to facilitate the contact or handling of the enquiry. The provision of Personal Data marked as mandatory is required in order to receive and handle the enquiry, and failure to do so will result in the impossibility of service. The provision of other data is voluntary.
  2. The above personal data are processed:
  1. for the identification of the sender and the handling of his/her enquiry sent via the form provided - the legal basis of the processing is the necessity of the processing for the performance of the service contract (Article 6(1)(b) RODO);
  2. 2. for analytical and statistical purposes - the legal basis of the processing is the Administrator's legitimate interest (Article 6(1)(f) RODO) consisting of keeping statistics on queries submitted by Users via the Website in order to improve its functionality.
  3. Data provided via the form for adding opinions (name, surname and e mail address) are processed in connection with the addition of an opinion and are used solely to verify that the opinion comes from a person who has purchased products or services on the Website and to place the opinion on the Website. This data is processed on the basis of Article 6(1)(a) of the RODO, i.e. the user's consent.’

 

 

IV. PROCESSING IN CONNECTION WITH MARKETING

  1. The Administrator processes Users' personal data in order to carry out marketing activities, which may consist in:
  1. targeting email notifications of interesting offers or content, which in some cases contain commercial information;
  2. carrying out other activities related to direct marketing of goods and services (sending commercial information by e-mail and telemarketing activities).
  1. All marketing consents may be withdrawn by the User at any time, but this does not affect the compatibility of the Processing of Personal Data before the withdrawal.

CONTEXTUAL ADVERTISING

 

The Administrator processes Users' Personal Data for marketing purposes in connection with the targeting of contextual advertising (i.e. advertising that is not tailored to the User's preferences) to Users. The processing of Personal Data is then carried out in connection with the Administrator's legitimate interest (Article 6(1)(f) RODO).

 

DIRECT MARKETING

 

If the User has consented to receive marketing information via e-mail, SMS and other means of electronic communication, the User's Personal Data will be processed for the purpose of sending such information. The basis of data processing is the legitimate interest of WARRINGTON KRYSZKIEWICZ SP.K.  branch: Warsaw street RACJONALIZACJI 5, under number 0000708852, NIP: 5252733130, REGON: 368995696.consisting in sending marketing information within the limits of the consent given by the User (direct marketing). The User has the right to object to the processing of Personal Data for direct marketing purposes. The Data will be stored for this purpose for the period of existence of the legally justified interest of Warrington Sp. z o.o., unless the User objects to receiving marketing information.

 

SOCIAL NETWORKS

 

The Administrator processes the Personal Data of Users visiting the Administrator's profiles maintained on social media (Facebook, YouTube, Instagram Slideshare). This data is processed exclusively in connection with the running of the profile, including for the purpose of informing Users about the Administrator's activities and promoting various events, services and products, as well as for the purpose of communicating with users through the functionalities available on social media. The legal basis for the Administrator's processing of personal data for this purpose is its legitimate interest (Article 6(1)(f) RODO) consisting of promoting its own brand and building and maintaining a brand-related community.

 

PERIOD OF PROCESSING OF PERSONAL DATA

 

  1. The period of processing of Personal Data by the Controller depends on the type of service provided and the purpose of the processing. As a general rule, the Personal Data is processed for the duration of the service provided or the execution of the order, until the withdrawal of the consent given or the filing of an effective objection to data processing in cases where the legal basis for data processing is the legitimate interest of the Administrator.
  2. The data processing period may be extended in cases where the processing is necessary to establish and assert or defend against possible claims, and thereafter only if and to the extent required by law. After the expiry of the processing period, the data shall be irreversibly deleted or anonymised.

USER RIGHTS

 

Data subjects have the following rights:

 

  1. The right to request access to their Personal Data, rectification, erasure and restriction of processing;
  2. insofar as the processing of Personal Data is based on consent given, the right to withdraw it at any time (this does not affect the lawfulness of the processing before the withdrawal of consent);
  3. to the extent that the processing is based on the legitimate interests of the Controller, the right to object to the processing of Personal Data;
  4. the right to lodge a complaint to the supervisory authority - the President of the Office for the Protection of Personal Data in the event that the processing of personal data is considered to be in breach of the law.

RECIPIENTS OF THE DATA

 

  1. In connection with the provision of services, Personal Data will be disclosed to external entities, including, in particular, suppliers responsible for the operation of IT systems, entities such as banks and payment operators, entities providing accounting, legal, auditing, consulting services, couriers (in connection with the execution of the order), marketing companies (within the scope of marketing services) and entities related to the Administrator (e.g. collection points).
  2. If the User's consent is obtained, his/her data may also be made available to other entities for their own purposes, including marketing purposes.
  3. The Administrator reserves the right to disclose selected information concerning the User to the competent authorities or third parties who request such information on the basis of the relevant legal basis and in accordance with the provisions of the applicable law.

TRANSFER OF DATA OUTSIDE THE EEA

 

  1. The level of protection of personal data outside the European Economic Area (EEA) differs from that provided by European law. For this reason, the Controller transfers personal data outside the EEA only when necessary and with an adequate level of protection, primarily by:
  1. cooperating with processors of personal data in countries for which a relevant European Commission decision has been issued;
  2. the use of standard contractual clauses issued by the European Commission;
  3. applying binding corporate rules approved by the competent supervisory authority;
  4. in the case of transfers to the USA, cooperation with entities participating in the Privacy Shield programme, approved by a decision of the European Commission.
  1. The controller shall always inform about the intention to transfer personal data outside the EEA at the stage of collection.

SECURITY OF PERSONAL DATA

 

  1. The Controller conducts a risk analysis on an ongoing basis to ensure that personal data is processed by the Controller in a secure manner - ensuring, in particular, that only authorised persons have access to the data and only to the extent necessary for their tasks. The Administrator shall ensure that all operations on personal data are recorded and carried out only by authorised employees and associates.
  2. The Administrator shall take all necessary measures to ensure that also its subcontractors and other collaborators guarantee the application of appropriate security measures whenever they process personal data on behalf of the Administrator.
  3. Restricting the storage of and access to Cookies on the User's Device may cause some of the Website's functions to malfunction. The Administrator shall not be held liable for malfunctions of the Website in the event that the User restricts in any way the ability to save and read Cookies.

CONTACT DETAILS

 

  1. Contact with the Administrator is possible via e-mail address: office@warrington-it.pl or mailing address st. RACJONALIZACJI 5, 02-673 WARSZAWA
  2. The Administrator has appointed a Data Protection Inspector: Katarzyna Maria Jarosz, who can be contacted by e-mail: office@warrington-it.pl telephone: +48664100800 or by post: 5 Racjonalizacji Street, 02-673 Warsaw, on any matter concerning the processing of personal data.

CHANGE OF PRIVACY POLICY

 

  1. The Administrator reserves the right to change this Privacy Policy at any time without the need to inform the Users.
  2. The Administrator reserves the right to any amendment to this Privacy Policy regarding the processing of Personal Data, of which it shall inform the Users who have user accounts or are subscribed to the newsletter service, via e-mail within 7 days of the change in the provisions. Continued use of the services implies that the User has read and accepts the amendments to the Privacy Policy. In the event that the User does not agree with the introduced changes, he/she is obliged to delete his/her account from the Service or unsubscribe from the newsletter service.
  3. The introduced changes to the Privacy Policy will be published on this subpage of the Service.
  4. The introduced changes shall enter into force upon their publication.

 

 

COOKIE POLICY

 

DEFINITIONS

  1. Administrator of the Service/Data - WARRINGTON KRYSZKIEWICZ SP.K.  branch: Warsaw street RACJONALIZACJI 5, Registered in the Register of Entrepreneurs maintained by the DISTRICT COURT FOR THE CAPITAL CITY OF WARSAW IN WARSAW, XIII COMMERCIAL DIVISION OF THE NATIONAL COURT REGISTER under number 0000708852, NIP: 5252733130, REGON: 368995696.

 

  1. Service - the Internet service run by the Administrator at the address  www.warrington.store
  2. User - natural person for whom the Administrator provides services electronically through the Website.
  3. Device - an electronic device with software, through which the User accesses the Website.
  4. Cookies - text data collected in the form of files placed on the User's Device. Cookies collect information facilitating the use of the website, e.g. by remembering the User's visits to the Website and his/her actions.

TYPES OF COOKIES AND PURPOSES FOR WHICH THEY ARE USED

SERVICE’ COOKIES

 

  1.  Administrator uses so-called ‘service’ cookies primarily to provide the User with services provided electronically and to improve the quality of these services. In this regard, the Administrator and other entities providing analytical and statistical services to the Administrator use cookies to store information or access information already stored on the User's Device. Cookies used for this purpose include:
  1. Cookies with data input by the User (session ID) for the duration of the session (user input cookies);
  2. authentication cookies used for services which require authentication for the duration of the session;
  3. security cookies, such as those used for detecting misuse of authentication (user centric security cookies);
  4. multimedia player session cookies (e.g. flash player cookies);
  5. permanent user interface customization)
  6. cookies for the duration of the session or a little longer, shopping cart cookies;
  7. Cookies used to monitor website traffic, i.e. data analytics, including Google Analytics cookies (these are files used by Google to analyse your use of the Website, to compile statistics and reports on the functioning of the Website). Google does not use the data collected to identify the User, nor does it combine this information to enable identification. Detailed information on the scope and principles of data collection in connection with this service can be found at the following link: https://www.google.com/intl/pl/policies/privacy/partners.

‘MARKETING’ COOKIES

 

The Administrator also uses Cookies for marketing purposes. For this purpose, the Administrator stores information or accesses information already stored in the User's telecommunications Device. The use of Cookies and personal data collected through them for marketing purposes requires the User's consent. This consent can be given through the appropriate configuration of the browser and can also be withdrawn at any time, in particular by clearing the history of Cookies and disabling Cookies in the browser settings.

 

CONTROL OF COOKIES

  1. The user can, at any time, independently modify the settings for the storage, deletion and access to the data stored in cookies by each website.
  2. Information on how to disable Cookies in the most common computer browsers is available on the following page: how to disable cookies or from one of the designated suppliers:

 

Managing cookies in the Chrome browser

 

https://support.google.com/accounts/answer/61416?co=GENIE.Platform%3DDesktop&hl=pl

 

Managing cookies with the Opera browser

 

https://help.opera.com/pl/latest/web-preferences/

 

Managing cookies in the FireFox browser

 

https://support.mozilla.org/pl/kb/blokowanie-ciasteczek

 

Managing cookies in Edge

 

https://support.microsoft.com/pl-pl/microsoft-edge/usuwanie-plik%C3%B3w-cookie-w-przegl%C4%85darce-microsoft-edge-63947406-40ac-c3b8-57b9-2a946a29ae09

 

Managing cookies in Safari

 

https://support.apple.com/pl-pl/guide/safari/sfri11471/mac

 

Managing cookies in Internet Explorer 11

 

https://support.microsoft.com/pl-pl/windows/usuwanie-plik%C3%B3w-cookie-i-zarz%C4%85dzanie-nimi-168dab11-0753-043d-7c16-ede5947fc64d#ie=ie-11

 

  1. The User may, at any time, delete any Cookies stored to date using the tools of the User's Device through which the User accesses the services of the Website.
  2. The services provided by third parties are beyond the control of the Administrator. These entities may, at any time, change their terms of service, privacy policies, purpose of data processing and methods of using Cookies.

 

 

The Administrator uses all possible technical measures to ensure the security of data placed in Cookies. The Administrator shall not be held liable for the interception of such data, impersonation of a User's session or its deletion, as a result of the User's conscious or unconscious activity, viruses, Trojan horses and other spyware with which the User's Device is or was infected.