GDPR, privacy policy (personal data protection) and cookies policy of “ELPLAST+” Sp. z o.o.
1. GENERAL
1.1. The administrator of personal data (PDC) is “ELPLAST+” Sp. z o.o. with its registered office in Jastrzębie – Zdrój, address for service: 8 Niepodległości Street, 44-336 Jastrzębie – Zdrój, NIP: 6331971812, REGON: 276077840 entered into the National Court Register under KRS number: 0000112824, registry court: District Court in Gliwice, X Commercial Division, share capital in the amount of PLN 1,980,000.00: e-mail address: elplast@elplastplus.pl, telephone number: 32 471 80 40 – hereinafter referred to as the “Administrator” and being at the same time the Service Provider and the Seller.
1.2. The personal data of the Service Recipient and the Client are processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016).
2. PURPOSE AND SCOPE OF DATA COLLECTION AND RECIPIENTS OF THE DATA
2.1. In each case, the purpose, scope and recipients of the data processed by the Administrator result from the actions taken by the Company’s Client.
2.2. Possible purposes of collecting Clients’ personal data by the Administrator:
- conclusion and realisation of the Agreement;
- direct marketing of the Administrator’s own products or services.
2.3. Possible recipients of personal data of the Company’s Clients:
- In the case of a Customer who uses a delivery method carried out by external carriers (e.g. postal delivery, courier delivery), the Administrator makes the collected personal data of the Customer available to a selected carrier or an intermediary carrying out shipments on behalf of the Administrator.
- In the case of a Client who uses an electronic payment method, the Administrator makes the collected personal data of the Client available to a selected entity handling the above payments;
- State institutions authorized by law to process personal data.
2.4. The Administrator may process the following personal data of Customers purchasing goods from the Company: name and surname; e-mail address; contact telephone number; delivery address (street, house number, apartment number, postal code, city, country), correspondence/business/registered office address (if different from the delivery address). In the case of Customers who are not consumers, the Administrator may additionally process the name of the company and the tax identification number (NIP) of the Client.
2.5. Providing the personal data referred to in the above clause may be necessary to conclude and perform the Sales Agreement.
2.6. Elplast+ Sp. z o.o. automatically collects data contained in cookies when using the website of the online store. Cookies, i.e. small text files sent to the user’s computer that identify it in a way necessary to perform a given operation, e.g. in the form of authentication, collecting statistical data or saving data in contact or order forms. Cookies are harmless to your computer or to your user and your data. In order for cookies to work, they must be accepted by the browser and not deleted from the disk. In many cases, the software used to browse websites (browsers) allows cookies to be stored on the user’s end device by default. However, in the browser settings, you can change the settings for cookies, in particular in such a way as to block their automatic handling in the browser settings or to inform you each time they are placed on the user’s end device. Detailed information on the possibilities and methods of handling cookies is available in the browser software settings. However, the Service or its individual functionalities may not work properly without cookies.
2.7. Subscribing to electronic and free newsletters belonging to Elplast+ Sp. z o.o. requires providing your e-mail address and other data, e.g. name, etc. in the appropriate form. The data obtained in this way is added to the mailing list of the services.
2.8. Forms, pop-up windows and other forms hosted on websites belonging to Elplast+ Sp. z o.o. and relating to services, products, websites not operated by Elplast+ Sp. z o.o. are not subject to the “Privacy Policy”.
3. USERS’ RIGHTS WITH RESPECT TO PERSONAL DATA
3.1. The Client has the right to access their personal data and correct them.
3.2. Each person has the right to control the processing of data concerning him/her, contained in the Administrator’s data file, and in particular the right to: request supplementation, update, rectification of personal data, temporary or permanent suspension of their processing or their deletion, if they are no longer necessary to achieve the purpose for which they were collected. Everyone has the right to lodge a complaint with a superior authority.
3.3. If the Service Recipient or the Client has consented to the processing of data for the purpose of direct marketing of the Administrator’s own products or services, the consent may be revoked at any time.
3.4. In the event that the Administrator intends to process or processes the Client’s data for the purpose of direct marketing of the Administrator’s own products or services, the data subject is also entitled to (1) submit a written, justified request to stop the processing of his or her data due to his or her particular situation or (2) object to the processing of his or her data.
3.5. In order to exercise the rights referred to above, the Administrator may be contacted by sending an appropriate message in writing or by e-mail to the Administrator’s address indicated at the beginning of this privacy policy and to the e-mail address: elplast@elplastplus.pl.
4. CHANGES TO THE PRIVACY POLICY
Elplast+ Sp. z o.o. reserves the right to make changes to the Privacy Policy. Each user of the website belonging to Elplast+ Sp. z o.o. is bound by the current “Privacy Policy”. Elplast+ Sp. z o.o. will inform about changes to the Privacy Policy on the website.
5.ADDITIONAL INFO
5.1. If you have any questions or doubts about the Privacy Policy, please contact the PDA (Personal Data Administrator), e-mail: elplast@elplastplus.pl, tel.: 32/4718040.
5.2. The provision of personal data by the Client is voluntary, however, failure to provide personal data necessary to conclude and perform the Agreement results in the inability to conclude the Agreement.
5.3. The basis for the processing of the Client’s personal data is the necessity to perform the contract to which the Client is a party or any claims that may arise after its implementation.
5.4. The Administrator applies technical and organizational measures to ensure the protection of the processed personal data appropriate to the threats and categories of data protected, and in particular protects the data against their disclosure to unauthorized persons, taking by an unauthorized person, processing in violation of applicable regulations and change, loss, damage or destruction.
5.5. The Administrator shall make available the following technical means to prevent unauthorized persons from obtaining and modifying personal data sent electronically:
- Securing the data set against unauthorized access.
- Access to the Account only after providing an individual login and password.
- SSL certificate.