ACCOUNT SETTINGS
ASSISTANCE, CONSENTS AND MORE
Privacy Policy
1. personal data controller and definitions
- The administrator of the personal data of the Customers / Users of the Website, also referred to as the Seller, is: “ITS” Krzysztof Subik, NIP 6871776161, REGON 6871776161.
- The Data Controller can be contacted:
- At the mailing address: ul. Jagiellońska 51/18, 38-500 Sanok;
- at e-mail: info@motoworkacademy.com.
- User – a natural person accessing the website/pages of the Website or using the services or functionalities described in this Privacy and Cookies Policy.
- Customer – a natural person with full legal capacity, a natural person who is a Consumer, a legal person or an organizational unit without legal personality, which is granted legal capacity by law, who concludes a Distance Sales Contract with the Seller.
- Website – an Internet service operated by the Seller, available at the electronic addresses (sites): https://kursypazia.pl/ through which the Customer/User can obtain information about the Goods and their availability and purchase a digital product or order a service.
- Newsletter – information, including commercial information within the meaning of the Act of 18 July 2002. on the provision of electronic services (Journal of Laws of 2020, item 344) from the Seller sent to the Customer/User electronically; its receipt is voluntary and requires the Customer/User’s consent.
- Account – a set of data stored on the Website and in the Seller’s ICT system concerning a given Client/User and the orders placed by him/her and contracts concluded, using which the Client/User may place orders and conclude contracts.
- RODO – Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016. on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46/EC (General Data Protection Regulation).
2 Purposes, legal basis and duration of personal data processing
- In order to implement the Distance Sales Agreement, the Seller processes:
- information about the User’s device in order to ensure the correct operation of the services: the IP address of the computer, information contained in cookies or other similar technologies, session data, browser data, device data, data on activity on the Site, including on individual subpages;
- geolocation information, if the User has consented to the service provider’s access to geolocation. Geolocation information is used to provide more customized product and service offers;
- Users’ personal data: name, surname, registered office address, mailing address, e-mail address, telephone number, taxpayer identification number, bank account number or other personal data required by the Administrator in the purchase process.
- This information does not contain data on the identity of Users, but in combination with other information may constitute personal data and, therefore, the Administrator covers it with the full protection afforded under the RODO.
- The data is processed in accordance with Art. 6 paragraph. 1(b) of the DPA, in order to provide the service, i.e. contract for the provision of electronic services in accordance with the Regulations and in accordance with Art. 6 paragraph. 1(a) of the RODO, in connection with your consent to the use of certain cookies or other similar technologies, expressed by the relevant settings of your Internet browser in accordance with the Telecommunications Law, or in connection with your consent to geolocation. Data is processed until the Customer/User’s use of the Website is terminated.
- The Administrator undertakes to take all measures required under Art. 32 RODO, i.e., taking into account the state of the art, the cost of implementation and the nature, scope and purposes of the processing and the risk of violation of the rights or freedoms of natural persons of different probability and severity, the Administrator shall implement appropriate technical and organizational measures to ensure a degree of security corresponding to the risk.
3. marketing activities of the store administrator
- The Data Controller may post marketing information about its products or services on the Website. The display of this content is carried out by the Data Controller in accordance with Art. 6(1)(f) RODO, i.e.. in accordance with the legitimate interest of the Data Controller to publish content related to the services provided and promotional content of campaigns in which the Data Controller is involved. At the same time, this action does not violate the rights and freedoms of Customers/Users, Customers/Users expect to receive content of similar content, or even expect it, or it is their direct purpose of visiting the website(s).
4 Recipients of store user data
- The Data Controller shall disclose users’ personal data only to processors under concluded personal data processing entrustment agreements for the purpose of performing services for the Data Controller, e.g. hosting and operating the Site, IT services, marketing and PR services.
5. transfer of personal data to third countries
- Personal data will not be transferred or processed in third countries.
6. rights of data subjects processed
- Every data subject has the right:
- access (Article 15 of the DPA) – to obtain confirmation from the Data Controller as to whether its personal data are being processed. If data about a person is processed, he or she is entitled to access it and obtain the following information: the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom the data have been or will be disclosed, the period of data retention or the criteria for determining it, the right to request rectification, erasure or restriction of the processing of personal data of the data subject, and to object to such processing;
- To receive a copy of the data (Art. 15(3) RODO) – obtain a copy of the data being processed, with the first copy being free of charge, and for subsequent copies the Data Controller may impose a reasonable fee based on administrative costs;
- To rectify (Article 16 of the RODO) – to request the rectification of personal data concerning him or her that is incorrect, or the completion of incomplete data;
- to erasure (Article 17 of the RODO) – to request erasure of her personal data if the Data Controller no longer has a legal basis for processing or the data are no longer necessary for the purposes of processing;
- to restrict processing (Article 18 of the RODO) – to request restriction of processing of personal data when:
- the data subject disputes the accuracy of the personal data – for a period that allows the Data Controller to verify the accuracy of the data,
- processing is unlawful, and the data subject objects to the erasure of the data by requesting restriction of its use,
- The data controller no longer needs the data, but it is needed by the data subject to establish, assert or defend a claim,
- the data subject has objected to the processing – until it is determined whether the legitimate grounds on the part of the controller override the grounds of the data subject’s objection;
- to data portability (Article 20 RODO) – to receive in a structured, commonly used, machine-readable format the personal data concerning him or her that he or she has provided to the Controller, and to request that the data be sent to another Controller if the data are processed on the basis of the data subject’s consent or a contract with him or her, and if the data are processed by automated means;
- to object (Article 21 RODO) – to object to the processing of his or her personal data for the legitimate purposes of the controller, on grounds related to his or her particular situation, including profiling. Then the Data Controller shall assess the existence of valid legitimate grounds for the processing, overriding the interests, rights and freedoms of the data subjects, or grounds for establishing, asserting or defending claims. If, according to the assessment, the interests of the data subject override the interests of the controller, the controller will be obliged to stop processing the data for these purposes;
- to withdraw consent at any time and without stating a reason, but the processing of personal data carried out before the withdrawal of consent will continue to be lawful. Withdrawal of consent will result in the Administrator ceasing to process personal data for the purpose for which the consent was given.
- In order to exercise the aforementioned rights, the data subject should contact, using the contact details provided, the Data Controller and inform him/her of which right and to what extent he/she wishes to exercise it.
7. president of the Office for Personal Data Protection (OCCP)
- The data subject has the right to lodge a complaint with the supervisory authority, which in Poland is the President of the Office for Personal Data Protection with its seat in Warsaw, ul. Stawki 2, who can be contacted as follows:
- by mail: ul. Stawki 2, 00-193 Warsaw;
- via electronic mailbox available at: https://www.uodo.gov.pl/pl/p/kontakt;
- Hotline: 606-950-0000.
8. personal data protection inspector
- In any case, the data subject may also directly contact the Data Protection Officer of the Controller by email or in writing to the address of the Controller as provided in Section 1, Item 2 of this Privacy and Cookies Policy.
9. changes to the Privacy Policy
- The Privacy and Cookies Policy may be supplemented or updated according to the current needs of the Administrator in order to provide current and reliable information to Customers/Users.
10. cookies
- The website performs the functions of obtaining information about customers, users and their behavior as follows:
- through voluntarily entered information in forms for purposes arising from the function of a specific form;
- by storing cookies (so-called “cookies”) on end devices;
- by collecting web server logs by the Website hosting operator (necessary for proper operation of the Website).
- Cookies are IT data, in particular text files, which are stored on the Client’s / User’s terminal device and are intended for the use of the Website. Cookies usually contain the name of the website from which they originate, the time they are stored on the end device and a unique number.
- The Website uses cookies only after the Customer/User of the Website has given his/her prior consent in this regard. You consent to the Website’s use of all cookies by clicking the button: “I accept” while the message about the use of cookies by the Website is displayed or by closing the message.
- If the Customer/User of the Website does not consent to the Website’s use of cookies, he/she may use the option: “I reject”, which is also available in the message about the use of cookies by the Website, or make changes in the settings of the Internet browser he/she is currently using (however, this may result in incorrect operation of the Website).
- To manage your cookie settings, select your web browser/system from the list and follow the instructions: Internet Explorer, Chrome, Safari, Firefox, Opera, Android, Safari (iOS), Windows Phone.
- The legal basis for the processing of personal data from cookies is the legitimate interests of the Data Controller to provide quality services, ensure the security of services.
- The Website uses two main types of cookies: “session cookies” and “permanent cookies” (persistent cookies). “Session” cookies are temporary files that are stored on the User’s terminal device until the User logs out, leaves the Website or shuts down the software (web browser). “Permanent” cookies are stored on the Client/User’s terminal device for the time specified in the parameters of the cookies or until they are deleted by the Client/User.
- Cookies are used for the following purposes:
- creation of statistics that help to understand how the Customers/Users of the Website use the websites, which allows to improve their structure and content;
- Maintaining the Client/User session (after logging in), thanks to which the Client/User does not have to re-enter his/her login and password on each sub-page of the Website;
- To determine the profile of the Customer/User in order to display product recommendations and tailored materials to him/her on advertising networks, in particular Google, Meta networks.
- Web browsing software (Internet browser) usually allows cookies to be stored on the Client/User’s terminal device by default. Customers/Users may change their settings in this regard. Your web browser allows you to delete cookies. It is also possible to automatically block cookies.
- Restrictions on the use of cookies may affect some of the functionality available on the Website.
- Cookies placed on the Customer’s/User’s terminal device and used may also be used by advertisers cooperating with the Online Store and partners of the Website.
- Cookies may be used by the Google network, to display advertisements tailored to the way the Customer/User uses the Website. For this purpose, they can keep information about the user’s navigation path or the time they stayed on a particular page: https://policies.google.com/technologies/partner-sites.
- We recommend that the Customer/User read the privacy policies of these companies to understand the use of cookies used in statistics: Google Analytics Privacy Policy.
- With regard to the information about the Customer’s/User’s preferences collected by the Google advertising network, the Customer/User can view and edit the information resulting from cookies using the tool: https://www.google.com/ads/preferences/.
- The Website has plug-ins that may transmit Customer/User data to Administrators such as: Google Analytics, Trustisto.
- In order to properly execute the Distance Sales Agreement, the Data Controller may share Customers/Users’ data with courier companies. Currently available delivery methods on the Website are available pd: https://kursypazia.pl/regulamin/.
- In order to properly execute the Distance Sales Agreement, the Administrator may share Customers/Users’ data with online payment systems such as Przelewy24, PayU.
11. compatibility with Google Consent Mode
- Out of concern for the privacy of our users and compliance with applicable data protection laws, we are implementing Google Consent Mode. This is an innovative solution that allows you to manage user consents regarding cookies and data collected. This allows users to express their preferences for activity tracking and personalized advertising. Google Consent Mode adjusts tracking and data collection mechanisms depending on the consents provided, ensuring that data processing is transparent and compliant with the RODO. Our service uses these tools to customize advertising functionalities and content while guaranteeing user privacy.
- Our service allows users to have full control over the submission and management of consent for data processing, including data used for personalizing ads and analyzing site traffic. Users have the ability to customize their tracking preferences and personalize ads directly in their web browser settings. We encourage you to check and update these settings regularly to ensure that your privacy choices best reflect your personal preferences. Our service adheres to the consents expressed in this way, adjusting the way data is processed according to your current settings.
- Our service uses Google Analytics and Google advertising tools to deliver valuable content and ads tailored to your interests. With Google Consent Mode integration, we respect your privacy and consent settings. We analyze user behavior anonymously, which allows us to continuously improve the site. Your consents allow us to personalize your experience and advertisements while ensuring that your privacy is protected.
- Our service is committed to full compliance with the Regulation on the Protection of Personal Data (RODO), which includes transparently informing users about the purposes and scope of personal data processing, as well as their rights. We are adopting Google Consent Mode as part of our efforts to ensure that any consent to data processing is explicit, informed and easy to withdraw. We ensure that consent mechanisms are fully integrated into our procedures and technologies, guaranteeing the privacy of our users.
- We are committed to maintaining the highest level of transparency in the processing of our users’ personal data. We regularly communicate the purposes and scope of the data we collect and how we use it, ensuring that our practices are clear and understood. Users have full access to information about the data being processed and can easily manage their consents. We strive to continuously improve our information processes so that every user can be assured that their data is safe and respected.
12 Newsletter
- The customer may agree to receive commercial information by e-mail, by selecting the appropriate option in the registration form or at a later date in the appropriate tab. If such consent is given, the Client/User will receive information (Newsletter) of the Website, as well as other commercial information sent by the Seller to the email address provided by the Client/User.
- The Customer may unsubscribe from the Newsletter at any time by himself/herself, by clicking the appropriate link in the content of each Newsletter or through the Customer Service.
13. user account
- The Customer/User may not post on the Website or provide to the Seller content, including opinions and other data of an unlawful nature.
- The Customer/User gains access to the Account after registration.
- As part of the registration, the customer / user provides the type of account or gender, first name, last name, company name, tax ID, data for issuing a sales document, e-mail address and chooses a password. The Customer/User assures that the data provided by him/her in the registration form, are true. Registration requires thorough reading of the Terms and Conditions and indicating on the registration form that the Customer/User has read the Terms and Conditions and fully accepts all their provisions.
- At the moment of granting the Customer/User access to the Account between the Vendor and the Customer, an agreement for the provision of electronic services concerning the Account is concluded for an indefinite period of time. The consumer may withdraw from this contract under the terms of the Regulations.
- Registration of an Account on one of the pages of the Website simultaneously implies registration allowing access to the other pages under which the Website is available.
- The Customer/User may terminate the contract for the provision of services by electronic means at any time with immediate effect by notifying the Vendor by e-mail or in writing to the Data Controller’s address as specified in Section 1, Item 2 of this Privacy and Cookies Policy.
- The vendor has the right to terminate the service contract for the Account in case of discontinuation of the provision or transfer of the Website service to a third party, violation of the law or the provisions of the Terms and Conditions by the Client/User, as well as in case of inactivity of the Client/User for a period of 12 months. The Seller may stipulate that re-registration of the Account will require the permission of the Seller.