925.pl - Silver jewellery supplies - Privacy Policy

Dear User!

We are committed to protecting your privacy and want you to feel comfortable while using our services. This is why we would like to present you with the most important information on principles regarding the processing of your personal data and cookies used by our Shop. This information was prepared in compliance with the GDPR – the General Data Protection Regulation.

PERSONAL DATA CONTROLLER

MAREK MACIEJ PIĄTKOWSKI, an entrepreneur conducting a business activity under the business name 925.pl Marek Piątkowski, entered into the Central Register and Information on Business Activity conducted by the minister competent for economy and maintaining the Central Register and Information on Business Activity, NIP 8133262602, REGON no. 180050455, Krasne 951, 36-007 Krasne, Poland.

If you want to contact us in relation to the processing of your personal data, please send an e-mail to: Sklep@925.pl.

YOUR RIGHTS

You have the right to:

  • access your personal data, including the right to receive a copy of your data (Article 15 of the GDPR or – if applicable – Article 13 (1) (f) of the GDPR),
  • rectify them (Article 16 of the GDPR),
  • erase them (Article 17 of the GDPR),
  • restrict their processing (Article 18 of the GDPR),
  • transfer data to another controller (Article 20 of the GDPR).

Furthermore, you have the right to:

  • object to the processing of your data at any time:
    • on grounds relating to your particular situation – regarding the processing of your personal data in accordance with Article 6 (1) (f) of the GDPR (i.e. based on the legally justified interests realised by us), including profiling (Article 21 (1) of the GDPR);
    • if the personal data are processed for direct marketing purposes including profiling, within the scope in which the processing is related to such direct marketing (Article 21 (2) of the GDPR).

Please contact us if you want to exercise your rights. Your objection to our use of cookies (about which you can read below) can be expressed, in particular, through the appropriate browser settings.

If you believe that your data are processed unlawfully, you can file a complaint to the authority competent for personal data protection.

PERSONAL DATA AND PRIVACY

You will find detailed information on the processing of your data depending on your activities in the table below.

1. Placing an order at the Shop

What for?
processing of your order
On what basis?
sales contract (Article 6 (1) (b) of the GDPR) our legal obligation, related to accountancy, to process your personal data (Article 6 (1) (c) of the GDPR)
For how long?
as long as the contract is in force until our legal obligation related to accounting ceases to apply
furthermore, your data will be processed until the expiry of the period during which redressing is possible – by you or us
(more information on this subject can be found in the last table of this section)
What happens if you do not provide your data?
you will not be able to place an order

2. Creating an account in the Shop

What for?
performance of the contract for keeping an account in the Shop
On what basis?
contract for the provision of services (Article 6 (1) (b) of the GDPR)
For how long?
until you delete your account or until we delete it at your request
furthermore, your data will be processed until the expiry of the period during which redressing is possible – by you or us
(more information on this subject can be found in the last table of this section)
What happens if you do not provide your data?
you will not be able to register an account and use its features, such as browsing the order history or checking the order status

3. Contacting us (e.g. making an inquiry)

What for?
processing of your inquiries or requests
On what basis?
contract or actions taken at your request to conclude it (Article 6 (1) (b) of the GDPR) – if your inquiry or request concerns a contract that we are or may be a party to our legitimate interest in processing your data is to communicate with you (Article 6 (1) (f) of the GDPR) – if your inquiry or request is not related to the contract
For how long?
for the duration of the contract binding us or - if the contract is not concluded - until the expiry of the redress period – see the last table in this section* until the expiry of the redress period – see the last table in this section - or until we accept your objection to the processing *
furthermore, your data will be processed until the expiry of the period during which redressing is possible – by you or us
(more information on this subject can be found in the last table of this section)
What happens if you do not provide your data?
we will not be able to respond to your inquiry or request
* depending on whichever is applicable in that case and whichever takes place sooner.

4. Browser settings and other similar activity allowing for marketing activities

What for?
direct marketing, which consists of displaying personalised advertisements
(for more information on that topic read the "Profiling" and "Cookies" sections of the Privacy Policy)
On what basis?
our legitimate interest consisting in the processing of data for the purpose mentioned above (Article 6 (1) (f) of the GDPR)
For how long?
until you delete the cookies used for marketing purposes or until their validity expires*
What happens if you do not provide your data?
you will not receive suggestions of products or services which you may be interested in
* depending on whichever is applicable in that case and whichever takes place sooner.

5. When you agree to receive marketing content from us (e.g. information on special offers)

What for?
sending of marketing information, especially special offers
On what basis?
Your consent to our marketing activities (Article 6 (1)(a) of the GPDR)
For how long?
until you withdraw your consent – remember, you can withdraw your consent at any time. Data processing until you withdraw your consent is compliant with the law.
furthermore, your data will be processed until the expiry of the period during which redressing is possible – by you or us
(more information on this subject can be found in the last table of this section)
What happens if you do not provide your data?
you will not be able to receive our marketing materials, including the information on our special offers

6. Newsletter subscription

What for?
sending of the newsletter
On what basis?
contract for the provision of newsletter services (Article 6 (1) (b) of the GDPR)
For how long?
until you unsubscribe from our newsletter
furthermore, your data will be processed until the expiry of the period during which redressing is possible – by you or us
(more information on this subject can be found in the last table of this section)
What happens if you do not provide your data?
you will not be able to receive information concerning the Shop and our services

7. Taking action or refraining from taking action which may result in claims related to the Shop or our services

What for?
determination, exercising or defence of claims related to the concluded contract or services provided
On what basis?
our legitimate interest consisting in the processing of data for the purpose indicated above (Article 6 (1) (f) of the GDPR)
For how long?
until the redress period expires or until we accept your objection to the processing *
What happens if you do not provide your data?
no possibility to determine, assert or defend claims
* depending on whichever is applicable in that case and whichever takes place sooner.

DATA PUBLISHING

If you decide to publish your comment, its content and your signature will be visible to the other Shop users.

We do not disclose your email address to other users - unless you do it yourself.

PROFILING

As part of the Shop, we conduct profiling activities – this takes place only if you allow it. Profiling is based on an automatic evaluation of what products or services you may be interested in, using information about the content you display. Thanks to this, product or service advertisements displayed as a part of the Internet services you use will be more suited to you and to your needs.

The kind of profiling we carry out does not lead to making decisions which would have legal effects for you or would affect you in any similarly relevant way.

DATA SAFETY

While processing your personal data, we use organisational and technical measures which comply with the relevant provisions of law, including encrypting the connection with the use of an SSL certificate.

COOKIES

Our Shop, like most Internet websites, uses the so-called cookies. These cookies:

  • are stored in the memory of your device (computer, mobile phone, etc.);
  • do not introduce any changes in the settings of your device.

On this Shop, cookies are used for the following purposes:

  • remembering your session
  • collecting statistical data
  • collecting marketing data
  • making the functions of the Shop available

To learn how to manage cookies and disable them in your browser, you can use your browser's help files. You can get more information about this topic by pressing F1 while using the browser. Additionally, you can find relevant information on the following subpages, depending on the browser you use:

Cookies will not be processed by us for more than 14 days since your last visit to the Shop.

By using the appropriate options of your browser, you can, at any time:

  • delete cookies,
  • block the use of cookies in the future.

In these cases we will no longer process them.

More information on cookies is available on Wikipedia.

EXTERNAL SERVICES / DATA RECIPIENTS

We use the services of external entities which support us in running our business. We entrust them with the processing of your data – these entities process data only only upon our documented request.

Below, you will find a list of recipients of your data:

ACTIVITY DATA RECEIVERS DATA TRANSMISSION OUTSIDE THE EUROPEAN UNION
every activity related to the Shop hosting provider does not take place
entity providing us with technical/IT support does not take place
persons cooperating with us under civil law contracts, supporting our current activities does not take place
sales software provider does not take place
using the Shop with settings allowing for conducting marketing activities entity providing marketing services does not take place
using the Shop with settings allowing for conducting analytical activities entity allowing for conducting analytical activities on the website yes – the USA **
placing an order in the Shop payment provider yes – the USA, the United Kingdom, Switzerland, Canada, Andorra, Argentina, Guersney, Israel, Jersey, New Zeland, Isle of Man, Faroe Islands **
entity ensuring the delivery of the product yes – the USA, the United Kingdom, Switzerland, Canada, Andorra, Argentina, Guersney, Israel, Jersey, New Zeland, Isle of Man, Faroe Islands **
provider of software facilitating business (e.g. accounting software) does not take place
accountancy office does not take place
subscription to the newsletter or consent to receive marketing messages entity providing newsletter or marketing messaging services does not take place

In addition:

competent public authorities within the scope in which we are obliged to make data available to them.

Consent to the use of cookies.

For our website to function properly we use cookies. To obtain your valid consent for the use and storage of cookies in the browser you use to access our website and to properly document this we use a consent management platform: CookieFirst. This technology is provided by Digital Data Solutions BV, Plantage Middenlaan 42a, 1018 DH, Amsterdam, The Netherlands. Website: https://cookiefirst.com referred to as CookieFirst.

When you access our website, a connection is established with CookieFirst’s server to give us the possibility to obtain valid consent from you to the use of certain cookies. CookieFirst then stores a cookie in your browser in order to be able to activate only those cookies to which you have consented and to properly document this. The data processed is stored until the predefined storage period expires or you request to delete the data. Certain mandatory legal storage periods may apply notwithstanding the aforementioned.

CookieFirst is used to obtain the legally required consent for the use of cookies. The legal basis for this is article 6(1)(c) of the General Data Protection Regulation (GDPR).

Data processing agreement

We have concluded a data processing agreement with CookieFirst. This is a contract required by data protection law, which ensures that data of our website visitors is only processed in accordance with our instructions and in compliance with the GDPR.

Server log files

Our website and CookieFirst automatically collect and store information in so-called server log files, which your browser automatically transmits to us. The following data is collected:

  • Your consent status or the withdrawal of consent
  • Your anonymised IP address
  • Information about your Browser
  • Information about your Device
  • The date and time you have visited our website
  • The webpage url where you saved or updated your consent preferences
  • The approximate location of the user that saved their consent preference
  • A universally unique identifier (UUID) of the website visitor that clicked the cookie banner
 

TRANSFER OF PERSONAL DATA TO COUNTRIES OUTSIDE THE EUROPEAN UNION

** For the above reasons, your personal data may also be processed by entities outside the European Union. An adequate level of protection of data processing, including through the use of appropriate security measures, is ensured by:

  • the standard data protection clauses adopted by the Commission, referred to in Article 46 (2) (c) of the GDPR
  • Commission Implementing Decision of 28.6.2021 pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council on the adequate protection of personal data by the United Kingdom
  • Commission Decision No 2000/518/EC on the adequate protection of personal data in Switzerland
  • Commission Decision No 2002/2/EC on the adequate protection of personal data provided by the Canadian Personal Information Protection and Electronic Documents Act
  • Commission Decision No 2010/625/EU on the adequate protection of personal data in Andorra
  • Commission Decision No 2003/490/EC on the adequate protection of personal data in Argentina
  • Commission Decision No 2003/821/EC on the adequate protection of personal data in Guernsey
  • Commission Decision No 2008/393/EC on the adequate protection of personal data provided in Jersey
  • Commission Implementing Decision No 2013/65/EU on the adequate protection of personal data in New Zealand
  • Commission Decision No 2004/411/EU on the adequate protection of personal data in the Isle of Man
  • Commission Decision No 2011/61/EU on the adequate protection of personal data by the State of Israel with regard to automated processing of personal data
  • Commission Decision No 2010/146/EU on the adequate protection provided by the Faeroese Act on processing of personal data
Newsletter