(1) This Privacy Policy governs the processing of personal data obtained through the NadmorskiApartament.com website (hereinafter referred to as the NadmorskiApartament Website).
(2) The owner of the Internet Service and, at the same time, the administrator of the data is TOMACO – Jarosław Kaczor
(3) Personal data collected by NADMORSKIAPARTAMENT through the Website are processed in accordance with the Regulation of the European Parliament and of the Council (EU) 2016/679 of April 27, 2016. on the protection of individuals with regard to the processing of personal data and on the free movement of such data and the repeal of Directive 95/46/EC (General Data Protection Regulation), also known as RODO .
4 NADMORSKIAPARTAMENT takes special care to respect the privacy of Users visiting the Website.
§ 1 Type of data processed, purposes and legal basis
1.NADMORSKIAPARTMENT collects information on individuals
(2) Users’ personal information is collected in case:
a)
account registration on the Website, in order to create an individual account and manage this account. Legal basis : necessary for the performance of the contract for the provision of the Account service (Article 6(1)(b) RODO);
b)
placing an order on the Website, for the purpose of executing the sales contract. Legal basis : necessary for the performance of the sales contract (Article 6(1)(b) RODO);
c)
Subscription to a newsletter (Newsletter), in order to perform a contract the subject of which is a service provided electronically. Legal basis – consent of the data subject to execute the Newsletter service contract (Article 6(1)(a) RODO);
d)
use of the contact form service on the Website in order to perform the contract provided electronically. Legal basis : necessary for the performance of the contract for the provision of the contact form service (Article 6(1)(b) RODO).
3.
When registering an account on the Website, the User provides:
a)
email address;
b)
address details:
a.
zip code and city;
b.
Street including house/apartment number.
c)
name;
d)
phone number.
4.
When registering an account on the Website, the User independently sets an individual password to access his/her account. The user may change the password, at a later time, according to the rules described in §5.
5.
When placing an order on the Website, the User provides the following data:
a)
email address;
b)
address details:
a.
zip code and city;
b.
Street including house/apartment number.
c)
name;
d)
phone number.
e)
credit card number
6.
In the case of using the Newsletter service, the User provides only his/her e-mail address.
7.
When using the contact form service, the User provides the following data:
a)
email address;
b)
name;
c)
phone number.
10.
When using the Website of the Service, additional information may be collected, in particular: the IP address assigned to the User’s computer or the external IP address of the Internet provider, domain name, type of browser, access time, type of operating system.
11.
Navigation data may also be collected from Users, including information about the links and references they choose to click on or other actions they take on our Website. Legal basis – legitimate interest (Article 6(1)(f) RODO) to facilitate the use of electronically provided services and to improve the functionality of these services.
12.
For the purpose of establishing, investigating and enforcing claims, certain personal data provided by the User in the course of using the functionality on the Website may be processed, such as: name, surname, data on the use of services if the claims arise from the way the User uses the services, other data necessary to prove the existence of the claim, including the extent of the damage suffered. Legal basis – legitimate interest (Article 6(1)(f) RODO), consisting in the establishment, investigation and enforcement of claims and defense against claims in proceedings before courts and other state authorities.
13.
Submission of personal data to NADMORSKIAPARTAMENT is voluntary, in connection with concluded sales agreements or the provision of services through the Website of the Service, with the proviso, however, that failure to provide the data specified in the forms in the Registration process makes it impossible to register and set up a User Account, while in the case of placing an order without User Account Registration will make it impossible to place and carry out the User’s order.
§ 2 To whom the data are made available or entrusted and how long they are kept
1.
The User’s personal information is transferred to the service providers used by NADMORSKIAPARTAMENT in the operation of the Website. Service providers to whom personal data is transferred, depending on contractual arrangements and circumstances, are either subject to the instructions of the SUPERMORSKYPARTAMENT as to the purposes and means of processing such data (processors) or determine the purposes and means of processing themselves (controllers).
a)
Processors . NADMORSKIAPARTAMENT uses suppliers who process personal data only at the direction of NADMORSKIAPARTAMENT. These include. Providers providing hosting service, services providing systems for marketing, systems for analyzing traffic on the Website, systems for analyzing the effectiveness of marketing campaigns;
b)
Administrators . NADMORSKIAPARTAMENT uses suppliers who do not act solely on instructions and determine for themselves the purposes and uses of Users’ personal data. They provide electronic payment and banking services.
2.
Users’ personal data are stored:
a)
If the basis for the processing of personal data is consent then the User’s personal data is processed by NADMORSKIAPARTAMENT as long as the consent is not revoked, and after revoking the consent for a period of time corresponding to the period of limitation of claims that NADMORSKIAPARTAMENT may raise and that may be raised against it. Unless a special provision provides otherwise, the statute of limitations is six years, and for claims for periodic benefits and claims related to the conduct of business – three years.
b)
If the basis for data processing is the performance of a contract, then the User’s personal data is processed by NADMORSKIAPARTAMENT for as long as it is necessary for the performance of the contract, and after that for a period corresponding to the period of limitation of claims. Unless a special provision provides otherwise, the statute of limitations is six years, and for claims for periodic benefits and claims related to the conduct of business – three years.
(4) Navigational data may be used to provide SeasideApartment Users with better service, analyze statistical data and adapt the Website to Users’ preferences, as well as administer the Website.
5.
If the User subscribes to a newsletter (Newsletter), NADMORSKIAPARTAMENT will send e-mails containing commercial information about promotions and new products available on the Website to his/her e-mail address.
6.
If a request is made, NADMORSKIAPARTAMENT shall make personal data available to authorized state authorities, in particular to organizational units of the Prosecutor’s Office, the Police, the President of the Office of Personal Data Protection, the President of the Office of Competition and Consumer Protection or the President of the Office of Electronic Communications.
§ 3 Cookie mechanism
1.
The Website uses small files, called cookies. They are stored by NADMORSKIAPARTAMENT on the end device of the person visiting the Website, if the Internet browser allows it. A cookie usually contains the name of the domain from which it originated, its “expiration time,” and an individual random number that identifies the cookie. Information collected through files of this type helps to adapt the products offered by NADMORSKIAPARTAMENT to the individual preferences and real needs of visitors to the Website. They also give the opportunity to develop general statistics of visits to the presented products on the Website.
2.
NADMORSKIAPARTAMENT uses two types of cookies:
a)
Session cookies : when the session of a particular browser ends or the computer is turned off, the stored information is deleted from the memory of the device. The mechanism of session cookies does not allow the collection of any personal data or any confidential information from Users’ computers.
b)
Persistent cookies : are stored in the memory of the User’s terminal device and remain there until they are deleted or expire. The mechanism of persistent cookies does not allow the collection of any personal data or any confidential information from the Users’ computer.
3.
NADMORSKIAPARTAMENT uses proprietary cookies for the following purposes:
a)
Authentication of the User on the Website and providing the User’s session on the Website (after logging in), thanks to which the User does not have to re-enter his/her login and password on each sub-page of the Website;
b)
analysis and research, as well as audience auditing, and in particular to create anonymous statistics that help to understand how the Users use the Website of the Service, which allows to improve its structure and content.
4.
NADMORSKIAPARTAMENT uses external cookies for the following purposes:
a)
presenting on the information pages of the Website, a map indicating the location of the NADMORSKIAPARTAMENT office, by means of the maNadmorskiApartment.google.com website (administrator of external cookies: Google Inc. based in the USA);
d)
collection of general and anonymous statistical data through Google Analytics analytical tools (third-party cookie administrator: Google Inc. based in the USA);
5.
The cookie mechanism is safe for the computers of Users of the Website. In particular, by this route it is not possible for viruses or other unwanted software or malware to enter the Users’ computers. However, in their browsers Users have the option to limit or disable access of cookies to computers. If you use this option, the use of the Website will be possible, except for functions that by their nature require cookies.
6.
Here’s how you can change the settings of popular web browsers regarding the use of cookies:
a)
Internet Explorer browser ;
b)
Microsoft EDGE browser ;
c)
Mozilla Firefox browser ;
d)
Chrome browser ;
e)
Safari browser ;
f)
Opera browser .
7.
The Website contains links and references to other websites. NADMORSKIAPARTAMENT is not responsible for the privacy policies on them.
§ 4 Rights of data subjects
1.
The right to withdraw consent – legal basis: art. 7 paragraph. 3 RODO.
a)
The user has the right to revoke any consent that NADMORSKIAPARTAMENT has given.
b)
Withdrawal of consent has effect from the moment of withdrawal of consent.
c)
Withdrawal of consent does not affect the processing performed by NADMORSKIAPARTAMENT lawfully before its withdrawal.
d)
Withdrawal of consent does not entail any negative consequences for the User, but it may prevent further use of services or functionalities that NADMORSKIAPARTAMENT can legally provide only with consent.
2.
The right to object to data processing – legal basis: art. 21 RODO.
a)
The user has the right to object at any time – for reasons related to his/her particular situation – to the processing of his/her personal data, including profiling, if NADMORSKIAPARTAMENT processes his/her data based on legitimate interests, such as marketing NADMORSKIAPARTAMENT’s products and services, keeping statistics on the use of particular functionalities of the Website and facilitating the use of the Website, as well as satisfaction surveys.
b)
Opting out in the form of an e-mail from receiving marketing communications regarding products or services will imply the User’s objection to the processing of his/her personal data, including profiling for these purposes.
c)
If the User’s objection proves to be legitimate and NADMORSKIAPARTAMENT has no other legal basis for processing personal data, the User’s personal data will be deleted, against the processing of which, the User has objected.
3.
Right to erasure of data (“right to be forgotten”) – legal basis: art. 17 RODO.
a)
You have the right to request the deletion of all or some of your personal data.
b)
You have the right to request deletion of your personal data if:
a.
personal data are no longer necessary for the purposes for which they were collected or for which they were processed;
b.
withdrew specific consent, to the extent that personal data was processed based on his or her consent;
c.
has objected to the use of his or her data for marketing purposes;
d.
Personal data is processed illegally;
e.
personal data must be deleted in order to comply with a legal obligation under the law of the Union or the law of a Member State to which NADMORSKIAPARTAMENT is subject;
f.
personal data was collected in connection with offering information society services.
c)
Despite a request for erasure of personal data, due to the filing of an objection or withdrawal of consent, NADMORSKIAPARTAMENT may retain certain personal data to the extent that the processing is necessary to establish, assert or defend claims, as well as to comply with a legal obligation requiring processing under Union law or the law of a Member State to which NADMORSKIAPARTAMENT is subject. This applies in particular to personal data including: name, surname, e-mail address, which data is retained for the purpose of processing complaints and claims related to the use of the services of NADMORSKIAPARTAMENT, or, in addition, address of residence / mailing address, order number, which data is retained for the purpose of processing complaints and claims related to the concluded sales contracts or provision of services.
4.
The right to restrict data processing – legal basis: art. 18 RODO.
a)
You have the right to request a restriction of the processing of your personal data. The submission of a request, pending its processing, prevents the use of certain functionalities or services, the use of which will involve the processing of data covered by the request. NADMORSKIAPARTAMENT will also not send any communications, including marketing.
b)
You have the right to request a restriction on the use of your personal data in the following cases:
a.
when he or she questions the correctness of his or her personal data – then NADMORSKIAPARTAMENT restricts their use for the time needed to verify the correctness of the data, but no longer than for 7 days;
b.
When the processing of data is unlawful, and instead of deleting the data, the User requests a restriction on its use;
c.
When personal data is no longer necessary for the purposes for which it was collected or used but is needed by the User to establish, assert or defend claims;
d
when he or she has objected to the use of his or her data, in which case the restriction shall be for the time necessary to consider whether, due to the particular situation, the protection of the User’s interests, rights and freedoms outweighs the interests pursued by the Administrator in processing the User’s personal data.
5.
Right of access to data – legal basis: art. 15 RODO.
a)
You have the right to obtain confirmation from the Administrator as to whether it is processing personal data, and if this is the case, you have the right:
a.
gain access to your personal information;
b.
obtain information about the purposes of processing, the categories of personal data processed, the recipients or categories of recipients of such data, the planned period of storage of the User’s data or the criteria for determining this period (when it is not possible to determine the planned period of processing), the User’s rights under the RODO and the right to lodge a complaint with a supervisory authority, the source of such data, automated decision-making, including profiling, and the safeguards applied in connection with the transfer of such data outside the European Union;
c.
obtain a copy of your personal data.
6.
Right to rectification of data – legal basis: art. 16 RODO.
a)
The user has the right to request from the Administrator the immediate rectification of personal data concerning him that is incorrect. Taking into account the purposes of the processing, the Data Subject User has the right to request the completion of incomplete personal data, including by providing an additional statement, by addressing the request to the e-mail address in accordance with §6 of the Privacy Policy.
7.
The right to data portability – legal basis: art. 20 RODO.
a)
You have the right to receive your personal data that you have provided to the Administrator and then send it to another personal data controller of your choice. You also have the right to request that the personal data be sent by the Administrator directly to such an administrator, if technically possible. In such a case, the Administrator will send the User’s personal data in the form of a file in csv format, which is a commonly used, machine-readable format that allows sending the received data to another personal data controller.
8.
In the situation where the User claims an entitlement under the above rights, NADMORSKIAPARTAMENT shall comply with the request or refuse to comply with it immediately, but no later than within one month after receiving it. However, if – due to the complexity of the request or the number of requests – NADMORSKIAPARTAMENT is not able to fulfill the request within one month, it will fulfill it within another two months informing the User in advance – within one month of receiving the request – of the intended extension of the deadline and the reasons for it.
9.
The User may submit complaints, inquiries and requests to the Administrator regarding the processing of his/her personal data and the exercise of his/her rights.
10.
You have the right to request that NADMORSKIAPARTAMENT provide you with a copy of the standard contractual clauses by directing your request in the manner indicated in §6 of the Privacy Policy.
11.
The user has the right to lodge a complaint with the President of the Office for Personal Data Protection, with regard to violation of his/her data protection rights or other rights granted under the RODO.
12.
In addition to the rights mentioned above, you have the right to complain to the national supervisory authority, which is: President of the Office for Personal Data Protection, 2 Stawki St., 00-193 Warsaw, tel. 22 531 03 00
§ 5 Security management – password
1.
NADMORSKIAPARTAMENT provides Users with a secure and encrypted connection when transferring personal data and when logging into the User’s Account on the Service. NADMORSKIAPARTAMENT uses SSL certificate issued by one of the world’s leading companies in the field of security and encryption of transmitted data over the Internet.
2.
In the event that a User with an account on the Website loses his/her access password in any way, the Website allows generating a new password. NADMORSKIAPARTAMENT does not send a password reminder. The password is stored in encrypted form, in such a way that it cannot be read. In order to generate a new password, you must provide your e-mail address in the form available under the link “Forgot your password” provided at the login form for your account on the Website. The User will receive an email to the email address provided during registration or saved in the last account profile change, containing a redirect to a dedicated form provided on the Website of the Service, where the User will have the opportunity to set a new password.
3.
NADMORSKIAPARTAMENT never sends any correspondence, including electronic correspondence, requesting login credentials, especially the password to access the User’s account.
§ 6 Changes to the Privacy Policy
1.
The Privacy Policy is subject to change, of which NADMORSKIAPARTAMENT will inform Users 7 days in advance.
2.
For questions related to the Privacy Policy, please contact: info@nadmorskiapartament.com
3.
Date of last modification: 02.02.2022 r.
