Privacy policy and cookies of the rehastore.net website
This document regulates the privacy policy and “cookies” of the rehastore.net website, maintained via the website available at the URL: creadest.com.pl, hereinafter referred to as the “Website”. The website is managed by Fontaine Gilles Pierre, president of the board, conducting business activity under the name Creadest sp.z o.o. with its registered office in Gniezno (62-200) at ul. Spichrzowa 10, registered in the Central Register and Information on Economic Activity kept by the Minister of Development, under NIP numbers 7842283769 and REGON 634632054, hereinafter referred to as the “Service Provider”. The Service Provider can be contacted by phone: 61 6768501 and by using the email address: adm@sofa.creadest.pl
- Introduction
In the part describing the privacy policy, we inform you about the conditions for collecting, processing, using and protecting the personal data of Website Users, hereinafter referred to as “Users”. Personal information means any information relating to an identified or identifiable natural person. An identifiable person is a person whose identity can be determined directly or indirectly, in particular by reference to an identification number or one or more specific factors defining his characteristics. Information is not considered to be personally identifiable if it would involve excessive costs, time or actions. Personal data are not entrepreneurs’ data, processed only in the Central Register and Information on Economic Activity, kept by the Minister of Development.
The document also lists the technologies used that are associated with data processing. These are, for example: browser memory support, geolocation, or pixel tags.
In terms of cookie policy, we inform you about the conditions for storing information or accessing information already stored in telecommunications devices of end users. An end-user is a natural person or entity using a publicly available telecommunications service or requesting the provision of such a service to meet their own needs.
2.Deklaracja
While pursuing the overarching goal of respecting Users’ privacy, we strive to exercise all due diligence. To meet this assumption, we implement norms and principles resulting from generally applicable laws. These are in particular: the Act of August 29, 1997 on the protection of personal data (Journal of Laws of 2016, No. 0, item 922, as amended), the Act of July 18, 2002 on the provision of electronic services (Journal of Laws of 2016, No. 0, item 1030, as amended), as well as the Act of 16 July 2004 Telecommunications Law (Journal of Laws of 2016, No. 0 , item 1489, as amended). In particular, we make reasonable efforts to ensure that Users’ personal data is:
processed in accordance with the law,
collected for the purposes specified in this document and lawful purposes,
not subject to further processing incompatible with the above purposes,
factually correct and adequate in relation to the purposes for which they are processed,
properly secured against unauthorized access, destruction, disclosure and unauthorized use, stored in a form that allows identification of the persons they concern, no longer than is necessary to achieve the purpose of processing.
3. Personal data administrator
Data processed by the Service Provider is stored on external secure and professional servers, based on contracts concluded by the Service Provider. These agreements take into account the appropriate level of data security.
4. The basis for processing personal data
The administrator of personal data processed as part of the Website is the Service Provider.
First of all, we can process Users’ personal data using services provided electronically via the Website, if it is:
necessary to establish, shape the content, change or terminate the legal relationship between the User and the Service Provider, in terms of data: – User’s surname and names, – PESEL identification number or – if this number has not been assigned – passport number, ID card or other document confirming identity , – permanent residence address, – correspondence address, if different from the registered address, – data used to verify the electronic signature, – electronic addresses,
implemented in order to perform contracts or perform any other legal action with the User, if it is necessary due to the nature of the service provided or the method of its settlement, justified in order to characterize the way the User uses the services provided electronically via the Website, in the field of operational data, i.e. containing: identification marks of the User based on the data referred to in the first point, – marks identifying the end of the telecommunications network or IT system used by the User, – information about the start, end and scope of each use of the service provided electronically, – information about the User’s use of services provided electronically.
We do not process this personal data after the User terminates the use of the service provided electronically, however, subject to the possibility of further use of those of the listed data that are: necessary for the settlement of the service and asserting claims for payment for using the service,
necessary for the purposes of advertising, market research as well as Users’ behavior and preferences with the purpose of research results for the purposes of improving the quality of services provided by the Service Provider, with the User’s consent,
necessary to clarify the circumstances of unauthorized use of the service,
allowed for processing on the basis of separate acts or contract.
We process the data obtained in this way pursuant to art. 18 points 1, 2, 5 and art. 19 points 1 and 2 of the Act of 18 July 2002 on the provision of electronic services (Journal of Laws of 2016, No. 0, item 1030, as amended). These ranges of data are not binding for determining the scope of data processed by the Service Provider. The scope of data processed by the Service Provider has been published in point 5 of the Privacy Policy and cookies.
Secondly, we may process personal data if it is necessary to perform the contract, when the data subject is a party to it or when it is necessary to take action before concluding the contract at the request of the data subject. We process the data obtained in this way pursuant to art. 23 point 1 point 3 of the Act of August 29, 1997 on the protection of personal data (Journal of Laws of 2016, No. 0, item 922, as amended).
Independently, we can also process personal data if it is necessary to fulfill legally justified purposes pursued by us or the recipients of the data, and the processing does not violate the rights and freedoms of the data subject. The legally justified purpose is in particular direct marketing of our products or services, as well as pursuing claims for our business operations. We process the data obtained in this way pursuant to art. 23 points
1 point 5 and art. 23 point 1 point 4 of the Act of August 29, 1997 on the protection of personal data (Journal of Laws of 2016, No. 0, item 922, as amended).
In other cases, we ask for your voluntary consent to the processing of personal data. This consent is granted in particular by checking the “checkbox” box, with the declaration of consent to the processing of personal data. We process the data obtained in this way pursuant to art. 23 point 1 point 1 of the Act of 29 August 1997 on the protection of personal data (Journal of Laws of 2016, No. 0, item 922, as amended) or Art. 18 point 4 of the Act of 18 July 2002 on the provision of electronic services (Journal of Laws of 2016, No. 0, item 1030, as amended).
5. Collections, their ranges and purposes of data processing personal
We process Users’ personal data in structured files, which we define by the purpose of their processing. We process this data to the extent necessary to achieve the set purpose. The following list includes sets, ranges and purposes of data processing.
Users’ personal data collections are subject to notification to the General Inspector for Personal Data Protection. Any exclusions applied in this respect result in particular from Article 43 of the Act of August 29, 1997 on the protection of personal data (Journal of Laws of 2016, No. 0, item 922, as amended).
6. Entrusting and sharing personal data
We can entrust Users’ personal data to other entities. They can be e.g. a hosting provider, accounting or legal service, payment operator or other entity with whom we cooperate in order to properly provide services. Entrusting personal data is always based on the data entrustment agreement. The current list of entities entrusted with data processing is permanently available to all Users. In order to gain access to it, it is enough to contact us with such a request. This can be done, e.g. by sending an email. The basis legal entrustment of personal data is Art. 31 of the Act of August 29, 1997 on the protection of personal data (Journal of Laws of 2016, No. 0, item 922, as amended).
We may transfer processed data outside the European Economic Area. The right to process personal data that is in force in these countries may provide less protection than the provisions of the law in force in the Republic of Poland. Therefore, if we provide such data, we pay special attention to compliance with the processing conditions laid down in this document. One form of this care is the use of standard contractual clauses approved by the European Commission, including those in line with the EU-US Privacy Shield.
We do not share the collected data with third parties, except for situations where it is required by the provisions of generally applicable law, i.e. based on the request of an authority or court authorized to do so.
7. User’s rights
In connection with the processing of personal data, Users have the following rights:
the right to access your data,
the right to correct your data,
the right to request supplementing, updating, rectifying personal data, temporarily or permanently suspending their processing or deleting them, if they are incomplete, out of date, incorrect or have been collected in violation of the Act or are no longer needed to achieve the purpose for which they were collected,
the right to withdraw consent to the processing of personal data for marketing purposes at any time.
We can provide system functionalities that enable these rights to be exercised. If you prefer to exercise these rights, please contact us in accordance with the instructions in point 20 of the Privacy Policy and cookies.
8. Server logs
These are internal event logs of the Website server, automatically recording page requests that are sent when Users use the Website. System logs include the page request sent by the User, IP address, browser type, browser language, date and time of the request and at least one “cookie” that can uniquely identify the User’s browser.
The data collected in the system logs is used by us indefinitely for the sole purpose of administering the Website. They are not transferred to third parties, except in the circumstances described in this document.
In connection with the use of the Website by Users, we can automatically collect and save in server logs technical details regarding the use of services, requests sent by the User related to the provision of electronic services, IP address and technical data on the operation of the Website in connection with activities made by the User. This is in particular information about the start, end and scope of each use of the service provided electronically. We can also collect information to be stored locally on the User’s device, using the browser’s memory mechanism.
9. Cache memory
When providing services to Users, we may automatically use the cache of the User’s browser, application or device. This use consists in storing data in the browser’s memory installed on the User’s device. As part of local storage, it is possible to store data between sessions, i.e. between subsequent sessions of the User. The purpose of using the cache is to accelerate the use of the Website, by eliminating the situation in which the same data would be downloaded from the Website many times, thus loading the User’s internet connection.
10. Geolokalizacja
We or third parties through the cookies they administer can use the functionality geolocation, consisting in collecting and processing information about the User’s location. For this purpose, data can be processed: IP number, GPS sensor, Wi-Fi point or cellular base stations.
11. Pixel tag
We or third parties through the cookies they administer can use the pixel tag functionality. These are elements published in digital content and enable the recording of information, e.g. on the User’s activity on the website.
12. Cookies – introduction
When providing services to Users, we use professional technologies to collect and save information, such as cookies. These are commonly used small files containing a string of characters that are sent and saved on the end device (e.g. computer, laptop, tablet, smartphone) used by the User when visiting the Website. This information is sent to the clipboard of the browser used, which sends it back the next time you enter the website. Cookies contain information necessary for the proper use of the Website. Most often they contain the name of the website from which they originate, their storage time on the end device and a unique number. Access to data from cookies may also have external entities listed in point 16 of the Privacy Policy and cookies.
13. The basis for processing cookies
Users using services provided electronically via the Website may be asked to voluntarily consent to the processing of cookies by storing information or accessing information already stored in their telecommunications terminal equipment. Consent to the processing of cookies may occur:
by using the button containing a statement of consent to the processing of cookies or confirmation of reading its terms,
by means of software settings installed in the telecommunications terminal device used by the User,
using the configuration of the service used by the User. This consent may be withdrawn at any time, free of charge and described in the section on managing cookies.
We process cookies based on art. 173 of the Telecommunications Law of July 16, 2004 (Journal of Laws of 2016, No. 0, item 1489, as amended).
14. What cookies are used by us?
Cookies can be categorized into three sharing methods.
In terms of the purposes of using cookies, we distinguish three categories:
Necessary files – these files enable the proper functioning of the Website and functionalities that the User wants to use, e.g. authentication cookies. Without saving them on the User’s device, the Website cannot be used,
functional files – files enabling the user to remember the settings selected by the User and adjust them to his needs and preferences, e.g. in terms of the selected language, font size, website appearance. They allow the Service Provider to improve the functionality and performance of the site. Without saving them on the User’s device, the use of some of the Website’s functionalities may be limited,
business files – this category includes e.g. advertising cookies. They allow you to customize ads displayed on or outside the Website to your preferences. Without saving them on the User’s device, the use of some of the Website’s functionalities may be limited.
In terms of their validity, we distinguish two categories of cookies:
session files – existing until the end of the given User’s session, permanent files – existing after the end of the session by the User.
In terms of distinguishing the entity administering cookies, we extract:
Service Provider’s cookies,
third party cookies.
15. Service Provider’s cookies
The Service Provider’s cookies allow the User’s device to be recognized and the Website’s page to be displayed tailored to his individual expectations, which makes the use of its functionality easier and more enjoyable. By saving these files on the User’s device, it is possible, for example, to remember login data, to keep sessions after logging in, to remember selected goods or services, or to adapt to User’s preferences, such as content distribution, language or its color.
16. Third-party cookies
The service provider may use cookies used by Google Inc. 1600 Amphitheater Pkwy, Mountain View, CA 94043, United States as part of the service:
Google Adwords – they allow you to conduct and evaluate the quality of advertising campaigns carried out using the Google Adwords service,
Google Analytics – they allow you to assess the quality of advertising campaigns carried out using the Google Adwords service, as well as to examine the behavior and movement of Users and to compile traffic statistics,
Google Maps – they allow you to store information about the User that allows you to use the map functionality available as part of the Google Maps service. Google Inc. can track the location of the User,
YouTube – they allow you to store information about the User that allows you to use the functionality of YouTube. Google Inc. can track the playback of videos by the User.
The service provider may use cookies used by Facebook Inc. 1 Hacker Way, Menlo Park, CA 94025, United States. These files can be used to connect user accounts: on an external Facebook social website with the Website account, provided that the Service Provider provides such functionality. These files can also be used to process User actions on Facebook, made using the “Share” or “Like” buttons. Processing of these activities can be public.
The use of third party cookies is conditioned by the privacy policy and cookies used by these entities. Current rules of third parties in this regard can be found here: https://www.e-regulamine.pl/biuletyn/polityki-prywatnosci-i- filesow- cookies /.
17. Managing cookies and other information
Most browser settings by default allow cookies and other information to be placed on the end device. If the User does not agree to save these files, it is necessary to change the web browser settings accordingly. It is possible to disable their saving for all connections from a given browser or for a specific site, as well as to delete them. The file management method depends on the software used. The current file management rules can be found in the settings of the web browser used. Consent to the processing of cookies is voluntary. However, it should be remembered that restrictions on their use may impede or prevent the use of some of the Website’s functionalities.
18. Links to other websites or software
The website may contain links to other websites or software. We are not responsible for the rules of compliance with the privacy policy and processing of cookies applicable on these pages or in this software. We recommend that you read the privacy policy and cookies of these pages or software after accessing them or before installing them.
19. Policy changes to privacy and cookies
We reserve the right to change this Privacy Policy and cookies. In this case, we will publish an updated version in this location.
20.Contact and applications
We constantly strive to process Users’ personal data and cookies with the highest standards. That is why we have implemented a system of immediate response to situations of threats to these standards. If you identify their threat or violation, please contact us immediately using the following data: adm@sofa.creadest.pl (+48) 61 6768501
We are happy to read any feedback. Therefore, if you have any questions, requests or doubts related to the processing of personal data or cookies, please contact us.