Cart is emptyPrivacy policy
Privacy policy and data protection are very important to us. Therefore, in order to provide you with a sense of security when using our services, we kindly inform you that we process your personal data in accordance with generally applicable laws, including Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (the “General Data Protection Regulation”) (“RODO”). This document is for informational purposes. The most important rules for the processing of your personal data and their security emerge from it.
§ 1
Personal data controller
1 The administrator of your personal data is Nanowo Store sp. z o.o., ul. Walecznych 29/6, 03-916 Warsaw, entered in the National Court Register, maintained by the District Court for the city of Warsaw. st. Warsaw, XII Commercial Department under the KRS number 0000849849, NIP 5252828422, share capital of PLN 50,000 (hereinafter referred to as “Administrator”).
(2) For more detailed information on data protection, you can contact the Administrator by mail at the above address or by e-mail (e-mail: nanowo@nanowo.store).
§ 2
Basic principles of data processing
We process personal data on the following basis:
1) lawfulness, fairness and transparency – we process personal data lawfully, fairly and transparently to the data subject;
2) Purpose limitation – we collect personal data for specific, explicit and legitimate purposes and do not further process them in a manner incompatible with those purposes;
3) data minimization – personal data shall be adequate, relevant and limited to what is necessary for the purposes for which they are processed;
4) Correctness – the personal data we process is correct and updated as necessary. We take all reasonable measures to ensure that personal data that is inaccurate in light of the purposes of its processing is promptly deleted or rectified;
5) storage limitation – personal data shall be stored in a form that allows the identification of the data subject for no longer than necessary for the purposes for which the data are processed;
6) integrity and confidentiality – personal data shall be processed in a manner that ensures adequate security of personal data, including protection against unauthorized or unlawful processing and accidental loss, destruction or damage, by means of appropriate technical or organizational measures.
§ 3
Limited scope of personal data processing
We do not process personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, and genetic or biometric data, or data concerning a person’s health, sexuality or sexual orientation.
§ 4
Access to personal data
You are entitled to, among other things. to obtain confirmation from the Administrator as to whether your personal data is being processed and, if it is, you are entitled to access it and the following information:
1) Processing purposes;
2) categories of relevant personal data;
3) information about the recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organizations;
4) if possible, the planned period of storage of personal data, and when this is not possible, the criteria for determining this period;
5) Information on the right to request from the controller the rectification, erasure or restriction of the processing of personal data concerning the data subject, and to object to such processing;
6) information about the right to file a complaint with the supervisory authority;
7) if the personal data was not collected from the data subject – any available information about its source;
8) information on automated decision-making, including profiling, and – at least in these cases – relevant information on the principles of decision-making, as well as on the significance and anticipated consequences of such processing for the data subject.
§ 5
Security measures
Taking into account the nature, scope, context and purposes of the processing, as well as the risk of violation of the rights or freedoms of individuals of different probability and severity, we implement appropriate technical and organizational measures to ensure that the processing of personal data is carried out in accordance with generally applicable laws, including the provisions of the RODO and to be able to demonstrate this. These measures are reviewed and updated as necessary.
§ 6
Processing of data related to the use of the website nanowo.store
(1) We kindly inform you that your use of the nanowo.store website requires the processing of personal data, such as IP address or cookie identifiers. Your provision of personal data is voluntary, but is a condition of using this website.
2 You can use the contact form on our website. Then we also process your personal data: name, email address and phone number, as well as other personal data you provide in the body of the message. Your provision of personal information such as your name and e-mail address and telephone number is voluntary, but is a condition of using the form. If you do not provide us with your personal information you will not be able to use the contact form.
(3) If you use the Newsletter service, we process your e-mail address as personal data. Your provision of an e-mail address is voluntary, but is a condition for using the Newsletter service.
(4) Your personal data referred to in paragraph. 1-3, we may share with the IT service providers of the website.
(5) Your personal data referred to in paragraph. 1, are stored for …… years. We keep the personal data sent via the contact form until we have completed correspondence with you. We use the personal data used for the Newsletter service for the duration of the use of this service.
6. personal data referred to in paragraph. 1-3, we process for the following purposes:
1) in order to enable you to use the nanowo.store website to learn about our offer, which is our legitimate interest (legal basis: Article 6(1)(f) RODO);
2) for analytical and statistical purposes: to ensure the security of information processing and management of IT systems, to keep statistics on website visits, which is our legitimate interest (legal basis: Article 6(1)(f) RODO);
3) for the purpose of responding to your message sent via the contact form, for the ability to read the message and respond to it, which is our legitimate interest (legal basis: Article 6(1)(f) RODO);
4) for the purpose of possible establishment, investigation and defense against claims, which is our legitimate interest (legal basis: Article 6(1)(f) RODO);
5) for archival (evidential) purposes to secure information in case of a legal need to prove facts, which is our legitimate interest (legal basis: Article 6(1)(f) RODO);
6) in order to fulfill public law obligations, which is necessary to fulfill a legal obligation incumbent on us as the controller of your personal data (legal basis: Article 6(1)(c) RODO).
7) for direct marketing purposes, which is a legitimate interest of the Administrator (legal basis: Article 6(1)(f) RODO) – if you use the Newsletter service.
§ 7
The way of processing data related to the use of the online store nanowo.store
(1) We kindly inform you that when you use the nanowo.store online store, we process your personal data to the following extent:
1) for consumers: name, home address, shipping address, e-mail address, phone number, login;
2) for entrepreneurs: company name, TIN, business address, shipping address, email address, phone number, login.
(2) Your provision of personal data referred to in paragraph (2). 1, is voluntary, but is a condition for registering an account in the online store and making purchases there. If you do not provide us with your personal information, we may refuse to register your account with the online store and prevent you from making purchases from it.
(3) Your personal data referred to in paragraph. 1, we may share with: a law firm, an administrator of information systems, an entity providing accounting services, an entity providing guarantees, as well as entities conducting postal or courier services, banks (in case of the necessity of conducting settlements), state authorities or other entities authorized by law, in order to perform obligations incumbent on us (e.g. tax authorities), as well as entities enabling us to perform payment operations.
(4) Your personal data referred to in paragraph. 1, shall be kept until the mutual claims of both parties under the concluded agreement are exhausted, but not less than the statutory period for keeping the Administrator’s tax documents related to the concluded agreement.
(5) The personal data referred to in paragraph. 1, we process for the following purposes:
1) in order to take actions aimed at registering an account in the online store, as well as in order to take actions aimed at concluding a contract of sale of products offered in the online store (legal basis: Article 6(1)(b) of the RODO);
2) for the purpose of registering an account in the online store and providing electronic services, as well as concluding and executing a contract for the sale of products offered in the online store (legal basis: Article 6(1)(b) RODO);
3) for archival (evidential) purposes to secure information in case of a legal need to prove facts, which is a legitimate interest of the Administrator (legal basis: Article 6(1)(f) RODO);
4) for the purpose of possible establishment, investigation and defense against claims, which is a legitimate interest of the Administrator (legal basis: Article 6(1)(f) RODO);
5) in order to fulfill public-law obligations, which is necessary to fulfill a legal obligation incumbent on the administrator (legal basis: Article 6(1)(c) of the DPA).
§ 8
Transfer of personal data
We do not intend to transfer your personal data to third countries or international organizations.
§ 9
Terms of reference
You have the following rights in connection with data processing:
1) The right to request from the controller access to personal data, rectification, deletion or restriction of processing, as well as to receive a copy;
2) The right to object to processing;
3) The right to data portability;
4) The right to lodge a complaint to the supervisory authority: President of the Office for Personal Data Protection.
§ 10
Cookie policy
(1) We define cookies as IT data (small text files) stored on the user’s terminal device (e.g. smartphone). These files are sent by the website to the user’s end device.
2 Cookies are handled by Google Universal Analytics. We fully comply with Google’s privacy policy. You can protect your privacy and disable the collection of information for google-analytics purposes. See Google’s privacy policy (https://policies.google.com/) for information.
3 Most web browsers allow cookies to be stored on the user’s terminal device by default. If you do not agree to the use of cookies, you can make the appropriate changes in the configuration of your Internet browser or leave our site. You may withdraw your consent at any time. The withdrawal of consent does not affect the legality of the use of cookies made on the basis of consent before its withdrawal. Detailed information in this regard is available in the settings of the software you are using.
4 We use cookies:
1) to protect the site from attacks that may affect the operation and performance of the server,
2) to track the change of products in the shopping cart (in case of purchases),
3) to indicate recently viewed products,
4) for holding a unique ID for each customer to indicate a specific order in the database,
5) for our maintenance of website statistics,
6) for Google Universal Analytics purposes.
§ 11
Final provision
This Privacy Policy is updated on an ongoing basis to ensure that our activities regarding the security of your personal information comply with generally applicable laws.