en

Privacy Policy

Privacy Policy

Bioelixire Polska private partnership

TABLE OF CONTENTS

1 Legal basis.

2. Definitions.

3. General information’s.

4. Principles of personal data processing.

5. For what purpose do we collect your data?

6. On what basis do we process your data?

7. Is the provision of data mandatory?

8. Who will we share your data with?

9. The period of data storage.

10. Your rights.

11. What do we use cookies and other technologies for?

12. Changes to the Privacy Policy.

I. Legal basis

This document has been developed taking into account the provisions of the following legal acts:

1. the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27.04.2016 on the protection of natural persons with regard to the processing of personal data and on the free flow of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (Official Journal of the EU L 119 of 04.05.2016, p. 1 and Official Journal of the EU L 127 of 23.05.2018, p. 2); in short: “GDPR”;

2. the Act of 10.05.2018 on the protection of personal data (Journal of Laws of 2018, item 1000); abbreviated: “JoL”;

3. the Act of 23.04.1964 Civil Code (Journal of Laws of 2019, item 1145, as amended);in short : “Civil Code”;

4. the Act of 18.07.2002 on the provision of services by electronic means (i.e.: Journal of Laws of 2019, item 123, as amended); abbreviated as “the Act on the provision of services by electronic means”.

5. the Act of 16.07.2004. Telecommunications Law (i.e.: Journal of Laws of 2019, item 2460, as amended); abbreviated as “Telecommunications Law”.

II. Definitions

1. Administrator: Bioelixire Polska Tomasz Mikulski, Piotr Mikulski, Maciej Mikulski private partnership, 60-413 Poznań, 19 Dunajecka Street, 40-413 Poznań taxpayer identification number (NIP) 9721266342, statistical identification number (REGON) 365282435; hereinafter referred to as “Administrator” or “We” for short.

2. personal data: is information about an identified or identifiable natural person (data subject); an identifiable natural person is one who can be identified, directly or indirectly, in particular on the basis of an identifier such as a name, an identification number, location data, an online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of the natural person;

3. Policy: this Privacy Policy;

4. Service: The Internet Service operated by the Administrator at: https://gestewlosy.pl

5. Terms of Service: Rules and regulations for the provision of electronic services and the rules and regulations of the online store;

6. User: any physical person visiting the Service or using one or more services or functionalities offered by the Administrator.

III. General Information

(1) This Privacy Policy is intended to clarify the principles applied by us, as a Data Controller, to collect and process the personal data of the Users of our Service.

2. We respect the privacy of the Users of our Service. The security of the Users of our Service is very important to us.

(3) The functioning of our Service is carried out in accordance with the requirements of universally and absolutely binding legal regulations, as well as with the application of generally accepted principles of functioning of the Internet Services, including the security of the Users of the Internet Services and the technical and organizational measures used for this purpose.

(4) Use of our Website is tantamount to acceptance of the terms of this Privacy Policy.

5. This Privacy Policy applies only to our website. Our website may contain links to other services and websites. We draw your attention that when you go to other services or websites, you should read the privacy policy set by the administrator of the service or website there.

(6) We reserve the right to make changes to this Privacy Policy by modifying it accordingly. However, any changes will not violate the basic principles of security and privacy of the Users of our Service.

IV. Principles of personal data processing

(1) The Administrator shall collect the User’s personal data in connection with his/her activities on the Website – in accordance with the principles of legality, purposefulness, limited processing, data minimization, correctness, integrity and confidentiality.

(2) The Administrator shall collect personal data for specific, explicit and legitimate purposes and shall not further process them in a manner incompatible with these purposes.

(3) The scope of the User’s personal data collected by the Administrator is limited to what is necessary to enable the User to use the services made available on the Website.

1. General Information

1) Your cooperation with us or use of our Service may involve the need for you to provide us with personal data. In connection with your use of the Service, the Administrator collects data to the extent necessary to provide the particular services offered, as well as information about your activity on the Service.

2) We keep the collected data strictly confidential and use it only for the purposes we have informed you about. With a variety of choices, you can decide what data you share and what data we may use.

2. Use of the Service

Personal data of all persons using the Service (including IP address or other identifiers and information collected through cookies or other similar technologies), and who are not registered Users (i.e. persons without an account on the Service) are processed by the Administrator for purposes:

– providing services electronically in the scope of functionalities offered on the Website – the legal basis of processing is then the necessity of processing to perform the agreement (Article 6 (1) (b) GDPR);

– providing Users with access to content offered within the Service, in particular related to marketing, advertising and sales activities – the legal basis for processing is then the consent expressed by the person using the Service (Article 6(1)(a) GDPR);

– analytical and statistical – the legal basis for processing is then the legitimate interest of the Administrator (Article 6(1)(f) GDPR) consisting of conducting analyses of Users’ activities, as well as their preferences in order to improve the functionalities used and services provided;

– to detect cases of unauthorized use of the services, to establish liability and to assert or defend against claims – the legal basis for processing is then the legitimate interest of the Administrator (Article 6(1)(f) GDPR) consisting in the protection of its rights.

3. Data collected during registration

1) In order to use some of the features of our Service, you must register – create an account, such as when you make a purchase from an online store.

2) When you register and create an account, we will ask you to provide your personal data necessary to create and operate your account. We need this data to provide you with the service you intend to use, such as an online store. To facilitate the service, you may provide additional data, thereby consenting to its processing. Such data can be deleted at any time. Provision of data marked as mandatory is required to set up and operate an account, and their failure to do so will result in the inability to set up an account. Provision of other data is voluntary, although sometimes it conditions the possibility of taking advantage of a special offer, such as in the case of special discounts given in connection with birthdays.

3) If you register on the Website and create an account, we will process your data provided at registration in order to provide the services described in the terms and conditions of the Website (e.g. terms and conditions of the online store). These services will include: the ability to make purchases in the online store.

4) If you agree, we will also process the data you provide for marketing purposes.

4. Automatically collected data

1) During your visit to the Website, certain of your data will be collected automatically.

2) Data obtained automatically on the Website is information contained in cookies.

3) You can manage cookies yourself, as this is made possible, for example, by the web browsers you use.

5. Purposes of processing automatically collected data

1) We will use the above data (i.e. data collected in the scope of the Service) to provide the service requested by you.

2) Thanks to cookies, the use of our Service is easier and more pleasant, and its content – texts, photos, surveys, as well as advertisements – is better tailored to the expectations and preferences of each User.

3) We will use the data collected automatically, among other things, to study traffic on the pages of our Service, to measure the effectiveness of advertisements and to measure the popularity of the Service, its individual sections and the individual materials posted on them.

6. Other data

1) When you provide us with data for the purpose of entering into a contract we will process your data for that purpose, and then for the purpose of performance if a contract is entered into.

2) When you contact us for the purpose of performing various activities or obtaining information (e.g. making a complaint) via the website, telephone, or e-mail, we will again require you to provide us with your personal data in order to confirm your identity and to be able to contact you back. This applies to the same personal information you have previously provided. However, it may happen that due to the specifics of your request, we will need to collect other data from you. Your provision of the above-mentioned data is not mandatory, but it is necessary in order to perform an action or obtain information of interest to you. We will process the above-mentioned data in order to perform the activities you request or to provide you with the information you request – whichever is the case.

3) If you decide to participate in contests, sweepstakes or plebiscites organized by us and provide us with your data in this connection, then we will process your data for the purpose of conducting the given contest, sweepstakes, or plebiscite, including for the purpose of selecting their winners and awarding them prizes. If the contest, plebiscite, or sweepstakes in which you participate has its own information clause governing the processing of your data by us, then that clause, to the extent of the content regulated therein, will take precedence over the information provided in this Privacy Policy. For the rest, this Privacy Policy will apply.

VI. On what basis do we process your data?

We process any data we collect in accordance with the purpose for which it was collected and on the basis of applicable laws. The legal basis authorizing us as the Administrator to process your personal data may be:

1. Processing of data on the basis of consent (Article 6(1)(a) GDPR).

1) Consent can be given as a result of an active action (e.g. leaving your data and submitting a form) or by having to tick a checkbox.

2) Whenever we ask your consent to process your personal data, the legal basis authorizing us to process your data will be your consent.

3) In some cases, consent can be given by entering data in fields marked as optional. In this case, we will process this data on a voluntary basis, among other things, in order to receive special offers offered on the Website, e.g. by entering your birthday, you agree that we may provide you with a special birthday offer, offer you a special discount or other surprise on this occasion, or that we may wish you well.

4) We will ask your consent to process, including profiling, your personal data stored in cookies and similar technologies used on the Service for marketing purposes, including analytics for marketing purposes and display of personalized offers, advertisements, and other services on our Service.

5) If you give us such consent, we will also send/receive commercial information about our goods and services to you by phone and electronically.

6) Consent will be the legal basis for the processing of your data in the following situations, among others:

– to direct marketing content to you through various channels, i.e. email, SMS/MMS or telephone;

– in order to provide services related to the maintenance and operation of your account on the Website in the scope of data provided optionally;

– when you voluntarily leave us your data by directing to us an inquiry regarding our offerings, including goods or services, a request to contact our consultants;

– by subscribing to our newsletter;

– conducting marketing activities and matching them to your preferences (profiling for marketing purposes);

– taking part in contests, sweepstakes, or plebiscites.

2. Contractual processing (Article 6(1)(b) GDPR).

1) We will process your data when it is necessary for the performance of a contract to which you are a party or when it is necessary to take action at your request, prior to the conclusion of the contract, this applies, among others, when:

– we realize access to our Website and services provided electronically through it (we provide Users with functionalities available on the Website related to the provision of electronic services);

– we execute orders made in the online store;

– we process complaints.

2) Your use of the services offered through the Website is tantamount to your entering into an agreement for the provision of electronic services. In a situation where we will collect data from you that is necessary for us to provide services through the Service (e.g., when you make a purchase in the online store, order a newsletter), the data will be processed by us on the basis of the agreement.

3. Legal obligation incumbent on the Administrator (Article 6(1)(c) GDPR).

In certain situations, we have to process your personal data due to the necessity of fulfilling the obligations incumbent on us under the law in connection with the conduct of our business and concluded contracts, including, among others, for the purpose of making payments, issuing and storing invoices and other accounting documents, recording revenues, accounting for taxes, fulfilling accounting obligations, reporting, maintaining and archiving documentation related to concluded contracts, and, moreover, other obligations derived from applicable regulations.

4. Legitimate interests pursued by the Administrator or by a third party (Article 6(1)(f) GDPR).

1) We will process your personal data when it is necessary for the purposes of our legitimate interests pursued.

2) However, we will not process your personal data when it appears that your interests or your fundamental rights and freedoms will be overridden by our interests.

3) For the above reasons, we inform you that based on our legitimate interest, we will process your data for, among other purposes:

A) managing relationships with Users, including, but not limited to, handling inquiries, requests and correspondence, including other than for marketing activities;

B) identifying User needs, including for our own marketing purposes of matching content and advertisements on our Service to User preferences;

C) to create compilations, analyses, statistics and conduct analytical and statistical research for marketing and quality of service purposes;

D) to administer, manage and develop our business and services, including activities related to promotion, marketing and advertising of services and goods offered by the Administrator, organization of promotional events;

E) maintenance and use of information systems, including administration and management of the Administrator’s website and social media profile;

F) managing the sales and customer service process, setting service standards, ensuring attention to the quality of goods and services, maintaining a customer base, including potential customers;

G) verify customers and contractors in public records;

H) management of security, protection of property, protection of information, including using video surveillance;

I) evidentiary and archival, and for safeguarding information in case of legal need to prove facts, possible establishment, assertion of rights and claims and defense against claims, conducting court proceedings and before other state authorities, conducting debt collection proceedings.

4) On the same basis, we will also process your personal data collected automatically on the Service in order to ensure the security of your session, to ensure the quality of your session and to provide all the functions of our Service.

5) If you make a payment through, for example, a bank or payment institutions, we will come into possession of information about which account, at which institution you made the payment. We will process this data in order to verify that you have made a correct payment and, if necessary, make a refund, establish, assert and defend claims.

1. Is it mandatory to provide data?

2. In the case of the conclusion and performance of a contract, we collect only those personal data without which the contract cannot be performed. Failure to provide data necessary for the conclusion and performance of the contract will result in our inability to conclude or perform the contract with you. This also applies to data that we must collect due to a legal obligation (e.g. data for invoicing).

(3) When we obtain your consent to process your personal data, it is completely voluntary, but necessary to handle your order or inquiry. If you do not give the consent, we ask for then we will not take the action to which the consent relates. We mark the scope of necessary data with the symbol “*”, e.g. name (in some cases), e-mail address, telephone number. Regardless of the necessary scope of data, you can voluntarily leave additional data.

(4) You may withdraw your consent at any time. However, withdrawal of consent does not affect the lawfulness of our processing of your personal data, which we performed on the basis of consent before its withdrawal.

VIII. Who will we share your personal information with?

For technical purposes and to collect general, statistical demographic information, we collect information collected in system logs, i.e. IP address. The above data may be made available to entities authorized under applicable laws in case of violation of the Administrator’s rights, attempted hacking, or other actions to its detriment. Some areas of the gestewlosy.pl website may use cookies, i.e. test files saved on the User’s computer, identifying him/her in a way necessary to enable certain operations.

Cookies are used, among other things, to remember data necessary for logging in. The condition for cookies to work is their acceptance by the browser and not deleting them from the disk.

IX. Data retention period

(1) The storage period of personal data is linked to the purposes and grounds for processing. Data will be kept for the time necessary to fulfill the purposes for which the data was collected. Where possible, we try to provide a concretized data storage period.

(2) In each case, however, the period of storage may change, i.e. personal data may be stored longer if such obligation arises from the law or it is necessary for the establishment, defense or assertion of claims (e.g. until the statute of limitations for claims, we may store evidence of your consent), or shorter, e.g. in the case of fulfillment of a request for deletion of data.

(3) The period of storage of personal data is determined in accordance with applicable laws. Your personal data will be processed until there is a basis for processing, i.e.:

1) in the case of granting consent – until its withdrawal, restriction or other action on your part governing this consent;

2) in the case of the indispensability of the data for the performance of the contract – for the duration of its performance and until the expiration of the statute of limitations for claims under the contract (as a rule: 6 years, and for claims for periodic benefits and claims related to the conduct of business: 3 years), in the case of a limitation period of not less than 2 years, it is extended in accordance with Article 118 of the Civil Code to the end of the calendar year in which the limitation period expires, e.g., if the 6-year period expires on May 1 of a given year, the limitation period is extended to December 31 of that year). The beginning of the running of the period is calculated from the date the claim is due;

3) where the basis for data processing is the legitimate interest of the controller – until you make an effective objection;

4) for tax and accounting purposes – to the extent and for the period in accordance with applicable laws and until the expiration of the statute of limitations for claims (as a rule, this: 5 years for claims for tax liabilities arising by operation of law, e.g. Vat tax).

(4) After the expiration of the indicated time periods, your personal data will be deleted or anonymized.

X. Your rights

1. In connection with our processing of your personal data, you have a number of rights:

1) access to the content of your personal data,

2) rectification (correction) of your personal data,

3) deletion of your personal data,

4) to limit the processing of your personal data,

5) portability of your personal data,

6) and in addition, you have the right to object to the processing of your data.

(2) If the basis for the processing of your personal data is your consent, you have the right to withdraw that consent at any time. However, the withdrawal of consent does not affect the lawfulness of our processing of your personal data that we have carried out on the basis of consent before its withdrawal.

(3) To exercise your right to withdraw your consent, you may use the following contact email: rezygnacja@farouk.pl

(4) You may also use the Administrator’s contact information indicated at the beginning of this Policy and send a notice of withdrawal of consent by regular mail.

(5) After withdrawing your consent, we will immediately send you an email confirmation of the receipt of your statement of withdrawal of consent. Please be advised, however, that due to the complexity of our IT systems, it may take us up to 5 business days after you receive our confirmation to process your statement of withdrawal of consent.

(6) When you consider that the processing of your personal data violates the data protection regulations, you have the right to lodge a complaint to the supervisory authority, which is the President of the Office for Personal Data Protection, located in Warsaw, at 2 Stawki Street, 00-193 Warsaw.

7. You can exercise the above-mentioned rights, as well as obtain more clarification, by contacting us:

XI. What do we use cookies and other technologies for?

1. The Administrator does not automatically collect any information, except for the information contained in cookies.

2. Cookies (so-called “cookies”) are IT data, in particular text files, which are stored in the final device (e.g., on a computer or mobile device) of the Service User and are intended for use on the Website. Cookies usually contain the name of the website from which they come, the time of their storage on the terminal device and a unique number. Thanks to this, we are able to analyze how our Service is used, for example, to calculate how popular our Service is.

3.Entity placing cookies on the final device of the Service User and accessing them is the Administrator.

4. Cookies are used for:

1) adapting the content of the Website’s pages to the User’s preferences and optimizing the use of the websites; in particular, these files allow for recognition of the Website User’s device and proper display of the website, adjusted to his/her individual needs;

2) creation of statistics that help to understand how Users of the Website use the websites, which makes it possible to improve their structure and content;

3) maintaining a session of a User of the Website (after logging in), thanks to which a User does not have to re-enter his/her login and password on each sub-page of the Website;

4) adapting displayed marketing materials to User preferences;

5. The Service uses two main types of cookies:

– “session cookies” and

– “permanent” (persistent cookies).

“Session” cookies are temporary files that are stored on the User’s terminal device until the User logs out, leaves the website or shuts down the software (web browser).

“Permanent” cookies are stored on the User’s end device for the time specified in the parameters of the cookies or until they are deleted by the User.

6. The following types of cookies are used within the Service:

1) “necessary” cookies, enabling the use of services available within the Service, e.g. authentication cookies used for services requiring authentication within the Service;

2) cookies used to ensure security, e.g. used to detect abuse of authentication within the Service;

3) “performance” cookies, enabling the collection of information on how the Website’s pages are used;

4) “functional” cookies, which allow “remembering” the User’s selected settings and personalizing the User’s interface, e.g. with regard to the selected language or region of origin of the User, font size, appearance of the website, etc.;

5) “advertising” cookies, making it possible to provide Users with advertising content more tailored to their interests.

7. In many cases, web browsing software (Internet browser) allows the storage of cookies on the User’s terminal device by default. Users of the Website may change their settings regarding cookies at any time. These settings can be changed, in particular, in such a way as to block the automatic handling of cookies in the settings of your web browser or inform on each time they are placed on the Service User’s device. Detailed information about the possibility and methods of handling cookies is available in the settings of your software (web browser).

8. To not receive cookies, use the option of the Internet browser used to connect to the Service and select the option of automatic rejection. These settings usually also allow you to manage cookies.

Below are links to sample official websites of the manufacturers of the most commonly used web browsers, where you can find information on the steps needed to change the settings of a particular browser to the extent described above:

• Internet Explorer: https://support.microsoft.com/pl-pl/help/17442/windows-internet-explorer-delete-manage-cookies
• Mozilla Firefox: http://support.mozilla.org/pl/kb/ciasteczka
• Google Chrome: http://support.google.com/chrome/bin/answer.py?hl=pl&answer=95647
• Opera: http://help.opera.com/Windows/12.10/pl/cookies.html
• Safari: https://support.apple.com/kb/PH5042?locale=en-GB

9. As a Data Administrator, we are not responsible for the content of cookies sent by other websites to which links are placed on the pages of the Service.

10. accepting cookies is not mandatory to use the Website. However, please be informed that restrictions on the use of certain cookies may affect individual functionalities available on the Website and prevent the proper operation of the Website to its full extent.

11. Cookies placed in the Service User’s terminal equipment and used may also be used by advertisers cooperating with the Service Operator.

12. more information on cookies is available at www.wszystkoociasteczkach.pl or in the “Help” section in the menu of your web browser.

XII. Changes in Privacy Policy

1. We reserve the right to change this Privacy Policy and cookies.

2. our offerings will expand over time. Technologies, standards and requirements for doing business on the Internet will also change. This means that we may, and sometimes will have to, make modifications to the Privacy Policy in the future.

3. If we modify this Privacy Policy, the new version of the Privacy Policy will appear on the pages of the Site at this location and will be effective in its new wording from the date of notification of the modification by posting it on the Site.

4. For the above reasons, we recommend that you review the Privacy Policy periodically, and you can find out if the Privacy Policy has changed since you last reviewed it by checking the notice of the effective date at the beginning of the document.

NEWSLETTER

Want to stay up to date on our offer and current promotions? Subscribe to our newsletter

en