Privacy Policy

PRIVACY POLICY OF THE ONLINE STORE WWW.BIOSOMA.PL

1. GENERAL PROVISIONS

(1) This privacy policy of the Internet Store is for informational purposes only, which means that it is not a source of obligations for Service Recipients or Customers of the Internet Store.

2. the administrator of the personal data collected via via the Internet Shop is Anna Szczygielska conducting business activity under the name BIOSOMA Anna Szczygielska registered in the Central Register and Information on Business Activity of the Republic of Poland conducted by the minister competent for economy, having: the address of the place of business: Paszowice 339, 59-411 Paszowice and address for delivery: Paszowice 339, 59-411 Paszowice, NIP: 6951365112, REGON: 380211700, e-mail address: biuro@biosoma.pl – hereinafter referred to as “Administrator” and being at the same time the Internet Shop Service Provider and Seller.

(3) The personal data of the Customer and the Client are processed in accordance with the Personal Data Protection Act of August 29, 1997. (Journal of Laws 1997 No. 133, item 883 as amended) (hereinafter: Personal Data Protection Act) and the Act on Providing Electronic Services of July 18, 2002 (Journal of Laws 2002 No. 144, item 1204 as amended).

4. The controller shall exercise due diligence in order to protect the interests of the data subjects, and in particular shall ensure that the data it collects are processed lawfully; collected for specified lawful purposes and not subjected to further processing incompatible with those purposes; substantively correct and adequate in relation to the purposes for which they are processed; and stored in a form that allows identification of the persons to whom they relate for no longer than is necessary to achieve the purpose of the processing.

(5) Any words, phrases and acronyms appearing on this website and beginning with a capital letter (e.g. Seller, Online Store, Electronic Service) shall be understood in accordance with their definition contained in the Terms and Conditions of the Online Store available on the pages of the Online Store.

2. PURPOSE AND SCOPE OF DATA COLLECTION AND DATA RECIPIENTS

(1) Each time the purpose, scope and recipients of the data processed by the Administrator results from the actions taken by Customer or Client in the Online Store. For example, if the Customer selects personal collection instead of courier delivery in when placing an Order, his/her personal data will be processed for the purpose of concluding and executing the Sales Agreement, but will no longer be shared with the carrier executing shipments on behalf of the Administrator.

2 Possible purposes for the collection of personal data of Service Recipients or Customers by the Administrator:

  1. conclusion and execution of the Sales Agreement or the agreement for the provision of Electronic Services (e.g. Account).
  2. Marketing direct marketing of the Administrator’s own products or services.
  3. Customer’s expression of opinion about the concluded Sales Agreement.

3 Possible recipients of personal data of the Customers of the Internet Store:

  1. In the case of a Customer who uses the method of delivery by mail or courier service in the Online Store, the Administrator shall make the collected personal data of the Customer available to the selected carrier or intermediary delivering shipments on behalf of the Administrator.
  2. In the case of a Customer who uses the method of electronic payment or payment card in the Online Store, the Administrator shall make the collected personal data of the Customer available to the selected entity handling the above payments in the Online Store.
  3. In case of a Customer who agreed to express his/her opinion about the concluded Sales Agreement, the Administrator shall make the collected personal data of the Customer available to the selected entity operating the system of opinion surveys concluded Sales Agreements in the Online Store.
  4. Administrator may process the following personal data of Service Recipients or Clients using the Online Store: first and last name; e-mail address ; contact telephone number; delivery address (street, number of the house, apartment number, zip code, city, country), address of residence/business/site (if different from the delivery address). In the case of Service Recipients or Customers who are not consumers , the Administrator may additionally process the company name and tax identification number (TIN) of the Service Recipient or Customer.
  5. The provision of personal data referred to in item above may be necessary for the conclusion and execution of the Sales Agreement or the Internet Store Electronic Service Agreement. Each time the scope of data required to conclude an agreement is indicated in advance on the website of the Online Store and in the Regulations of the Online Store.

3. COOKIES AND USAGE DATA

1. cookies (cookies) are small text information in the form of text files, sent by the server and saved on the side of the person visiting the site of the Online Store (e.g. on hard drive of a computer, laptop, or on the memory card of a smartphone – in depending on which device is used by the visitor of our Online Store). Detailed information about cookies, as well as the history of their creation can be found, among others. here: http://pl.wikipedia.org/wiki/Ciasteczko.

2. the Administrator may process the data contained in cookies when visitors use the website of the Internet Store for the following purposes:

  1. Identify Service Recipients as logged in to the Online Store and show that are logged in;
  2. remembering Products added to the shopping cart to place an Order;
  3. memorizing data from completed Order Forms, surveys or login data to the Online Store;
  4. adapting content of the Internet Store website to individual preferences of the Customer (e.g. concerning colors, font size, page layout) and optimizing the use of the pages of the Internet Store;
  5. to keep anonymous statistics showing how the website of the Online Store is used.

3 By default, most web browsers available on the market accept the storage of cookies by default. Everyone has the ability to determine the terms of use of cookies through the settings of their own web browser. This means that you can, for example, partially limit (e.g. temporarily) or completely disable the ability to save Cookies – in the latter case, however, this may affect some functionality of the Online Store (for example, it may not be possible to pass the Order path through the Order Form due to not remembering the Products in the shopping cart during the subsequent steps of submitting Order).

4. browser settings for cookies are important from the point of view of consent to the use of cookies by our Online Store – in accordance with the regulations, such consent can also be expressed through browser settings. In the absence of expressing such consent, the browser settings of for cookies should be changed accordingly.

5. detailed information on how to change settings regarding cookies and how to delete them yourself in most popular web browsers is available in the help section of web browser and on the following pages (just click on the given link):

  • in Chrome browser
  • in Firefox browser
  • in Internet Explorer
  • in browser Opera
  • in Safari browser
  • in the Microsoft Edge browser

(6) The Administrator also processes anonymized usage data related to the use of the Online Store (IP address, domain) to generate statistics to help administer the Online Store. The data is aggregate and anonymous, i.e. do not contain identifying characteristics of visitors to the website of the Internet Store. These data are not disclosed to third parties.

7. You can find more information about cookies here.

4. BASIS OF DATA PROCESSING

1. provision of personal data by the Customer or Client is voluntary, although failure to provide personal data indicated on the website of the Online Store and in the Regulations of the Online Store necessary for the conclusion and performance of the Sales Agreement or the agreement for the provision of Electronic Services results in the impossibility to conclude such an agreement.

(2) The basis for the processing of personal data of the Service Recipient or Client is the necessity to perform the contract to which he is a party or to take action at his request prior to its conclusion. In the case of data processing for the purpose of direct marketing of the Administrator’s own products or services, the basis for such processing is (1) the prior consent of the Service Recipient or Client or (2) the fulfillment of the legitimate purposes pursued by the Administrator (pursuant to Art. 23 para. 4 of the Law on the Protection of personal data as a legitimate purpose is considered, in particular, direct marketing of the Administrator’s own products or services).

(3) In the case of data processing for the purpose of expression by the Customer of his opinion about the concluded Sales Agreement, the basis for such processing is the consent of the Customer or the Client.

5. THE RIGHT TO CONTROL, ACCESS AND CORRECT THE CONTENT OF YOUR DATA

(1) The Customer or Client has the right to access and correct the content of his personal data.

(2) Every person has the right to control the processing of data concerning him/her contained in the dataset of the Administrator, and in particular the right to: request the completion, updating, rectification of personal data, temporary or permanent suspension of their processing or their deletion if they are incomplete, outdated, untrue or were collected in violation of the law or are no longer necessary for the purpose for which they were collected.

(3) If the Service Recipient or Customer gives consent to the processing of data for the purpose of direct marketing of the Administrator’s own products or services, the consent may be revoked at any time.

(4) If the Administrator intends to process or processes the data of a Customer or Service Recipient for the purpose of direct marketing of the Administrator’s own products or services, the data subject shall also be entitled to (1) make a written, reasoned request to stop the processing of his/her data due to his/her particular situation or to (2) object to the processing of his/her data.

(5) In order to exercise the rights referred to above , you may contact the Administrator by sending an appropriate message in writing or by e-mail to the Administrator’s address indicated at the beginning of of this privacy policy.

6. FINAL PROVISIONS

1 The Online Store may contain links to other websites. The administrator urges that when you go to other sites, to read the privacy policy established there. This privacy policy applies only to this Online Store.

(2) The Administrator shall apply technical and organizational measures to ensure the protection of the processed personal data appropriate to the risks and categories of protected data, and in particular shall protect the data from being accessed by unauthorized persons, from being taken by an unauthorized person, from being processed in violation of applicable regulations, and from being altered, lost, damaged or destroyed.

(3) The Administrator shall adequately provide the following technical measures to prevent the acquisition and modification by unauthorized persons of personal data sent electronically:

  1. Securing dataset from unauthorized access.
  2. Access to the Account only after providing an individual login and password.
  3. SSL Certificate.