1. General Information
- General Information This policy applies to the website operating at the URL: vintagereuse.com
- The website operator and data controller is: SSH Karol Kierzkowski, Wojska Polskiego 79b, 06-400 Ciechanów.
- Contact email address of the operator: shop@vintagereuse.com
- The operator is the Controller of your personal data with respect to data provided voluntarily on the website.
- The website uses personal data for the following purposes:
- Running a newsletter
- Operating a comment system
- Conducting online chat conversations
- Handling inquiries via contact form
- Preparing, packaging, and shipping goods
- Debt collection
- Presenting offers or information
- The website obtains information about users and their behavior in the following ways:
- Through data entered voluntarily in forms, which are entered into the Operator’s systems.
- By saving cookies in end devices (so-called “cookies”).
2. Selected data protection methods used by the Operator
- Login and data entry locations are protected in the transmission layer (SSL certificate). Thanks to this, personal and login data entered on the website are encrypted on the user’s computer and can only be read on the target server.
- The operator periodically changes their administrative passwords.
- The operator regularly creates backups to protect data.
- An important element of data protection is the regular updating of all software used by the Operator to process personal data, which in particular means regular updates to programming components.
3. Hosting
- Hosting The website is hosted (technically maintained) on the servers of another company.
- To ensure technical reliability, the hosting company maintains server logs. The following may be logged:
- resources identified by URL (addresses of requested resources – pages, files),
- time of request,
- time of response,
- client station name – identification performed by the HTTP protocol,
- information about errors that occurred during the HTTP transaction,
- URL address of the page previously visited by the user (referrer link) – in case when the transition to the Website was made via a link,
- information about the user’s browser,
- IP address information.
- diagnostic information related to the process of self-ordering services through recorders on the site,
- information related to the handling of electronic mail directed to the Operator and sent by the Operator.
4. Your rights and additional information on how your data is used
- In some situations, the Controller has the right to transfer your personal data to other recipients if it is necessary to perform a contract concluded with you or to fulfill obligations incumbent on the Controller. This applies to the following groups of recipients:
- hosting company on a contract basis,
- couriers,
- postal operators,
- insurers,
- law firms and debt collectors,
- banks,
- payment operators,
- public authorities,
- comment system operators,
- online chat solution operators,
- authorized employees and associates who use the data to achieve the goal of the website’s operation,
- companies providing marketing services for the Controller.
- Your personal data processed by the Controller will be kept no longer than necessary to perform the related activities specified by separate regulations (e.g. on accounting). With regard to marketing data, the data will not be processed for more than 3 years.
- You have the right to request from the Controller:
- access to your personal data,
- rectification,
- erasure,
- restriction of processing,
- and data portability.
- You have the right to object to the processing specified in point 3.2 to the processing of personal data in order to perform legally justified interests pursued by the Controller, including profiling, however, the right to object will not be exercisable if there are valid legally justified grounds for processing, overriding your interests, rights and freedoms, in particular the establishment, pursuit or defense of claims
- Actions of the Controller may be complained about to the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
- Providing personal data is voluntary, but necessary to use the Website.
- In relation to you, actions may be taken that involve automated decision making, including profiling, to provide services under the concluded contract and for the Controller to conduct direct marketing.
- Dane osobowe nie są przekazywane od krajów trzecich w rozumieniu przepisów o ochronie danych osobowych. Oznacza to, że nie przesyłamy ich poza teren Unii Europejskiej.
5. Information in forms
- The website collects information provided voluntarily by the user, including personal data, if provided.
- The website may save information about connection parameters (time stamp, IP address).
- The website, in some cases, may save information facilitating the association of data in the form with the e-mail address of the user filling the form. In this case, the user’s e-mail address appears inside the url of the page containing the form.
- The data provided in the form is processed for the purpose resulting from the function of a specific form, e.g. to process a service request or business contact, service registration, etc. Each time, the context and description of the form clearly informs what it is used for.
6. Controller’s logs
- Information about user behavior on the site may be logged. This data is used to administer the website.
7. Important marketing techniques
- The Controller uses statistical analysis of website traffic via Google Analytics (Google Inc. based in the USA). The Controller does not provide personal data to the operator of this service, but only anonymized information. The service is based on the use of cookies on the user’s end device. With regard to information about user preferences collected by the Google advertising network, the user can view and edit information derived from cookies using the tool: https://www.google.com/ads/preferences/
- The Controller uses remarketing techniques to match advertising messages to user behavior on the website, which may give the impression that the user’s personal data is being used to track them, however, in practice no personal data is transferred from the Controller to advertising operators. The technological condition for such activities is the acceptance of cookies.
- The Controller uses a Facebook pixel. This technology means that Facebook (Facebook Inc. based in the USA) knows that a person registered with it uses the Website. In this case, it relies on data for which it is the controller itself; the Controller does not provide any additional personal data to Facebook. The service is based on the use of cookies on the user’s end device.
- The Controller uses a solution that examines user behavior by creating heat maps and recording behavior on the website. This information is anonymized before being sent to the service operator so that they do not know which individual it pertains to. In particular, passwords and other personal data are not recorded.
- The Controller uses a solution that automates the Website’s operation in relation to users, e.g. that can send an e-mail to the user after visiting a specific subpage, provided that the user has consented to receive commercial correspondence from the Controller.
8. Information about cookies
- The website uses cookies.
- Cookie files (so-called “cookies”) are IT data, in particular text files, which are stored on the Website User’s end device and are intended for the use of the Website’s pages. Cookies usually contain the name of the website from which they originate, their storage time on the end device and a unique number.
- The entity placing cookies on the Website User’s end device and accessing them is the Website operator.
- Cookies are used for the following purposes:
- maintaining the Website user’s session (after logging in), thanks to which the user does not have to re-enter their login and password on each subpage of the Website;
- achieving the goals set out above in the “Important marketing techniques” section;
- Two main types of cookies are used within the Website: “session” (session cookies) and “persistent” (persistent cookies). Session cookies are temporary files that are stored on the User’s end device until logging out, leaving the website, or turning off the software (web browser). Persistent cookies are stored in the User’s terminal device for the time specified in the cookie parameters or until the User deletes them.
- Web browsing software (a web browser) usually allows the storage of cookies on the User’s end device by default. Website Users can change the settings in this regard. The web browser allows you to delete cookies. It is also possible to automatically block cookies. Detailed information on this subject can be found in the help section or documentation of the web browser.
- Restrictions on the use of cookies may affect some of the functionalities available on the Website pages.
- Cookies placed on the Website User’s end device may also be used by entities cooperating with the Website operator, in particular the following companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).
9. Cookie management – how to give and withdraw consent in practice?
- If the user does not wish to receive cookies, they may change their browser settings. Please note that disabling cookies necessary for authentication processes, security, and maintaining user preferences may make it difficult, and in extreme cases may prevent the use of websites.
- To manage cookie settings, select the web browser you are using from the list below and follow the instructions:
- Mobile devices: