• English
  • Polski
Categories
Contact
CORO Technology
www.corotechnology.com
Distribution
Distribution inquirires: sales@corotechnology.com
Information
Privacy policy

Privacy policy of the online store


            
1. This document defines the rules for the processing and protection of personal data of the Online Shop Customers available at www.corostore.eu
 
2. The owner of the Online Store and the administrator of personal data of Customers - natural persons - and the users to whom the data pertain are CORO Technology Tomasz Kiełbasa, NIP PL993-061-87-33, ul. Złota Góra 27B, 33-131 Ilkowice, POLAND, e: sales@corotechnology.com e: store@corostore.eu t: 691-730-185 hereinafter referred to as the Administrator and being at the same time the Seller.
 
3. Personal data collected by the Administrator via the Online Store are processed in accordance with Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free flow of such data and repealing Directive 95/46 / EC (Journal of Laws No. 119, page 1) (general regulation on data protection, RODO) and other regulations currently in force, i.e. throughout the entire period of data processing, legal provisions on protection personal data. Personal data means information about an identified or identifiable physical person (hereinafter referred to as Personal Data). An identifiable natural person is a person who can be directly or indirectly identified, in particular on the basis of an identifier such as first and last name, identification number, internet identifier, location data, one or several specific factors determining physical, genetic, psychological, economic, cultural or the social identity of a natural person.
 
4. The Administrator makes special care to respect the privacy of customers visiting his Online Shop.



§ 1 Type of data processed, objectives and legal basis


 
1. The Administrator collects information on natural persons conducting legal transactions not directly related to their activities, natural persons running their own business or professional activity and natural persons representing legal persons or organizational units that are not legal entities to whom the act grants legal capacity, acting on its own behalf business or professional activity, hereinafter referred to as clients.
 
2. The purposes of processing the Customer's Personal Data by the Administrator are, in particular:
 
a) registering an account in the Online Store in order to create an individual account and manage this account. Legal basis - necessary for the performance of the contract for the provision of the Account service - art. 6 par. 1 lit. b RODO;
 
b) placing an order in the Online Store in order to perform the sales contract. Legal basis - necessary for the performance of the contract of sale - art. 6 par. 1 lit. b RODO;
 
c) subscription to the Newsletter, in order to perform the contract, the subject of which is the service provided electronically. Legal basis - consent of the data subject to the contract for the provision of the Newsletter service - art. 6 par. 1 lit. and RODO.
 
3. When registering an account for the Newsletter service in the Online Store, the Customer provides the following data:
 
a) e-mail address.
 
4. When placing an order in the Online Store, the Customer provides the following data:
 
a) email address;
 
b) address details: zip code and town, country, street, house / flat number;
 
c) name and surname;
 
d) telephone number.
 
5. Entrepreneurs provide the above data and in addition:
 
a) Company name Entrepreneurs;
 
b) NIP number.
 
6. When using the Newsletter service, the Customer provides data:
 
a) email address;
 
b) telephone number.
7. When using the Online Store, additional information may also be downloaded, including: the IP address assigned to the client's computer or the external IP address of the Internet provider, domain, browser type, access time, type of operating system.
 
8. Navigational data may also be downloaded from customers, including information about links and links in which they decide to click or other activities performed in our Online Store. Legal basis - legitimate interest - art. 6 par. 1 lit. f RODO, enabling better use of services provided electronically.
 
9. In order to determine, investigate and enforce claims, some personal data provided by the Customer as part of the use of functionality may also be processed, including: name, surname, data on the use of services, if the claims result from the manner in which the Customer uses services, other data necessary to prove the existence of the claim, including the extent of the damage suffered. Legal basis - legitimate interest - art. 6 par. 1 lit. f RODO, consisting in determining, pursuing and enforcing claims and defending against claims in proceedings before courts and other state authorities.
 
10. Personal data collected by the Administrator are voluntarily given to him in connection with concluded sales contracts, or also providing services via the Online Store, with the reservation that failure to specify in the data forms in the Registration process prevents registration and establishment of the Customer Account, and in the situation of placing an order without registering a Customer Account will make it impossible to place and execute an order.



§ 2 Who can we transfer your data to and how long it is stored


 
1. The catalog of recipients of Personal Data processed by the Administrator results mainly from the scope of services used by the Customer. The Customer's personal data is provided to service providers used by the Administrator when running the Online Store. Providers of the Administrator's services to whom personal data are transferred, depending on the contractual arrangements and circumstances, are subject to the Administrator's instructions as to the purposes and methods of data processing - the processors - or define the purposes and methods of their processing - administrators.
 
a) Processors - the Administrator uses suppliers who process personal data only at the Administrator's request and they are among others providers of hosting or ICT services, accounting services, providing marketing systems, systems for analyzing traffic in the Online Store, systems for effectiveness analysis marketing campaigns, companies that carry out marketing campaigns, software service companies.
 
b) Administrators - The administrator also uses suppliers who do not act solely on his instructions and set the goals and methods of using personal data themselves
Customers. They provide electronic payment services and banking services.
 
2. Location - Service providers are based in Poland and other countries of the European Economic Area (EEA).
 
3. Customers' personal data are stored:
 
a) If the basis for the processing of personal data is transferred to this consent, the Customer's personal data are processed by the Administrator until the consent is canceled. After its cancellation, personal data is stored for a period corresponding to the period of limitation of claims that may be raised by the Administrator and which may be raised against him. Unless a special rule provides otherwise, the period of limitation is 10 years, and for claims for periodic benefits and claims related to running a business for 3 years.
 
b) In the situation when the data processing is based on the performance of the contract, then the client's personal data are processed by the Administrator for as long as it is necessary to perform the contract. After this time, personal data is processed for a period corresponding to the period of limitation of claims. Unless specific provisions provide otherwise, the limitation period is 10 years for claims for periodic benefits and claims related to running a business for 3 years.
 
4. In the situation of making a purchase in the Online Store, personal data may be transferred, depending on the Customer's choice, to the following entities in order to deliver the products ordered in the Online Store:
 
a) Poczta Polska SA with headquarters in Warsaw,
 
b) DHL courier company,
c) DPD courier company,
d) FedEX courier company,
e) UPS courier company
 
5. PayU and PayPal. In the event that the Online Store Customer chooses a payment through the Dotpay.pl payment system, his personal data is provided to the extent necessary for the payment of Dotpay S.A. with headquarters in Krakow (30-552), ul. Wielicka 72, entered into the Register of Entrepreneurs kept by the District Court for Kraków-Śródmieście in Kraków, XI Commercial Division of the National Court Register under the number KRS 0000296790.
 
6. Personal data may be used to provide customers with better service, statistical data analysis and adaptation of the Online Store to customer preferences and to administer the Online Store.
 
7. If the Customer chooses to subscribe to the Newsletter, the Administrator will send information to his e-mail address or SMS message to his mobile phone, containing commercial information about promotions, reductions, new products available in his Online Store.
 
8. If the request is sent to the Administrator, it will provide access to personal data to authorized state authorities, in particular to the organizational units of the Prosecutor's Office, the Police, the President of the Office for Personal Data Protection, the President of the Office of Competition and Consumer Protection and the President of the Office of Electronic Communications.


       

§ 3 Cookie files and IP addresses


 
1. The cookies used by the Administrator are primarily used to optimize the service of visitors when using the Online Store and provide the opportunity to compile statistics on visits of the presented products in the Online Store. These files are saved by the Administrator on the terminal device of the person visiting the Online Store, if the web browser allows it. Cookies usually contain the name of the domain they come from, their "expiration time" and an individual, randomly selected number identifying these files.
 
2. Two types of cookies are used:
 
a) Session cookies - after the browser session is over or the computer is turned off, the saved information is removed from the device's memory. The mechanism of session cookies does not allow the collection of any personal data and any confidential information from the client computers;
 
b) Persistent cookies - they are stored in the memory of the Customer's end device and remain until they are deleted or expired. The mechanism of persistent cookies does not allow the collection of any personal data and any confidential information from the client's computer.
 
3. The administrator uses his own cookies in order to:
 
a) authentication of the Customer in the Online Shop and providing him with the Customer session after logging into the Customer Account;
 
b) anonymous statistics and analyzes that help to understand how customers use the Online Store.
 
4. The administrator uses external cookies in order to:
 
a) collection of static data via analytical tools of Google Analytics - external cookie administrator: Google Inc with its registered office in the USA;
 
b) presenting ads from the Google AdSense website - external cookie administrator: Google Inc with its registered office in the USA;
 
c) promoting the Online Store on Facebook.com - an external cookie administrator: Facebook Inc with its registered office in the USA or Facebook Ireland based in Ireland.
 
5. The mechanism of cookies is completely safe for computers of the Online Shop Customers. The customer can change the settings for Cookie files independently and at any time, specifying the conditions for their storage and access to their device via cookies. Changes to the settings in question can be made by the customer using the web browser settings. These settings can be changed in particular in such a way as to block the automatic handling of cookies in the web browser's settings or inform each time that Cookies are placed on the Customer's Device. Detailed information about the possibilities and ways of handling cookies are available in the web browser settings. Blocking cookies may affect some of the functionalities available in the Online Store.
 
6. The administrator may collect customer IP addresses. The IP address is the number assigned to the computer of the visitor of the Online Store by the ISP. The IP address is used by the Administrator in diagnosing technical problems with the server, creating statistical analyzes and improving the Online Store.
 
7. The Online Shop contains links and links to other websites on the Internet and the Administrator is not responsible for the privacy practices of these websites.
 


§ 4 Rights and obligations of the person to whom the Personal Data relates


 
1. The right to withdraw consent - the legal basis of art. 7 par. 3 RHODE.
 
a) The customer has the right to withdraw any consent he gave to the Administrator.
 
b) Withdrawal of consent has effect since the withdrawal of consent.
 
c) Withdrawal of consent does not substantially affect the processing carried out by the Administrator in accordance with the law before its withdrawal.
 
d) Withdrawal of consent does not cause any negative consequences for the Customer of the Online Store, but it may prevent further use of services or functionality that may only be provided with consent.
 
2. The right to object to data processing - the legal basis of art. 21 RHODE.
 
a) The Customer has the right to object to the processing of his personal data at any time, including profiling, if the Administrator processes its data based on a legitimate interest, e.g. marketing of products and services, statistics on the use of individual functionalities of the Online Store and facilitating using the Online Store, and customer satisfaction surveys.
 
b) The resignation from receiving commercial messages regarding products or services, sent by e-mail, will be the Client's objection to the processing of his personal data, including profiling for these purposes.
 
c) If the Client's objection proves to be justified and the Administrator has no other legal basis to process personal data, the Customer's data will be deleted, the Client will file the objection with respect to the processing.
3. The right to delete data, the right to be forgotten - the legal basis of art. 17 THE RHODE.
 
a) The customer has the right to send a request to delete all or some personal data.
 
b) The customer has the right to request the deletion of personal data if:
 
a. personal data are no longer necessary for the purposes for which they were collected or in which they were processed;
 
b. the Customer withdrew his consent to the extent to which the Customer's data was processed based on his consent;
 
c. he objected to the use of his data for commercial or marketing purposes;
 
d. personal data are processed unlawfully;
 
e. personal data must be removed in order to comply with the legal obligation provided for by Union law or the law of the Member State to which the Administrator is subject;
 
f. personal data have been collected in connection with the offering of information society services.
 
c) Despite the request to delete personal data, in connection with opposition or withdrawal of consent, the Administrator may retain some personal data to the extent that processing is necessary to establish, investigate or defend claims, as well as to fulfill a legal obligation requiring processing them under Union law or the law of the Member State to which they are subject.
 
4. The right to limit data processing - the legal basis of art. 18 RHODE.
 
a) The Online Store customer has the right to request a restriction to the processing of his data. The submission of such a request prevents the use of certain functionalities or services, the use of which will involve the processing of data covered by this request.
 
b) The Online Store Customer has the right to demand limitation of the use of personal data in the following situations:
 
a. in the event of the inconsistency of your personal data, then the Administrator restricts their use for the time needed to verify the correctness of this data;
 
b. when the data processing is unlawful and the Client does not request removal but restricting their use;
 
c. when the personal data of the Customer ceased to be necessary for the purposes for which they were collected or used, but they are needed by the Customer to establish, investigate or defend claims;
 
d. when he objected to the use of his data, then the restriction takes place for the time needed to consider whether, due to the special situation, protection of the Client's interests, rights and freedoms outweighs the interests that the Administrator performs while processing the Customer's data.
 
5. The right of access to data, the legal basis of art. 15 THE RHODE.
 
a) The Customer has the right to obtain from the Administrator confirmation whether he processes his personal data, and if so, the Customer has the right to:
 
a. get access to your personal data;
 
b. Obtain information on the purposes of processing and recipients or categories of recipients of this data, the planned period of data storage or criteria for determining this period, rights of the Customer under the REDO and the right to lodge a complaint to the supervisory authority, data source, automated decision-making including profiling and safeguards applied in connection with the transfer of these data outside the European Union;
 
c. obtain a copy of your personal data.
 
6. The right to rectify data - the legal basis of art. 16 THE RHODE.
 
a) The Customer has the right to demand from the Administrator that he or she corrects his / her personal data incorrectly. Taking into account the purposes of processing, the Customer has the right to request supplementing incomplete personal data, including by submitting an additional statement, by sending an e-mail to the administrator's e-mail address.
 
7. The right to data transfer - the legal basis of art. 20 RHODE.
 
a) The customer has the right to receive his data, which he provided to the Administrator, and then send them to another personal data administrator of his choice. The Online Shop customer also has the right to demand that his personal data be sent directly by the Administrator to such an administrator, if technically possible. In this situation, the Administrator will send such Customer data in CSV file format, which is a commonly used format.
 
8. In the event that the Customer demands that his / her rights are met, the Administrator has the right to comply with or refuse to do so, and he will do so immediately.
 
9. The Customer has the right to report to the Administrator complaints, inquiries and requests regarding the processing of his personal data and the exercise of his rights.
 
10. The Customer has the right to demand from the Administrator a copy of standard contractual clauses by sending a query to the administrator's e-mail address.
 
11. The Customer has the right to lodge a complaint to the President of the Office for Personal Data Protection in the scope of violation of his rights to the protection of personal data or other rights granted under the RODO.

§ 5 Securing Personal Data


 
1. The Administrator declares that he is making every effort to provide customers with a high level of security in the use of the Online Store and for this purpose:
            
a) use the technical and organizational measures required by law, in particular as regards the security of processing Personal Data;
            
(b) apply measures that ensure the ability to continually ensure the confidentiality, integrity, availability and resilience of processing systems and services;
            
(c) the ability to quickly restore and access the Personal Data in the event of a physical or technical incident;
            
d) provides the Online Store customers with a secure and encrypted connection when sending personal data and when logging in to the Customer Account, using an SSL certificate.
            
2. All events affecting the security of the transmission of information and personal data, including the suspicion of sharing files containing viruses, should be reported to the Administrator by e-mail: sales@corotechnology.com
    


§ 6 Final provisions

             
1. In matters not regulated in the Privacy Policy, the law regarding the processing of Personal Data, including the GDPR, shall apply.

             
2. The current version of the Privacy Policy applies from 25/05/2018.

Shopping Cart
... is empty