- GENERAL PROVISIONS
The administrator of personal data collected through wooden-castle.com is Jakub Pyrek, operating under “Wooden-Castle Jakub Pyrek” with registered office in Brzeszcze (32-620) in Nosala 1, registered in the Central Trade Register and Information on Business Activity , St. No.: 937-255-80-80, REGON: 384113413.
- PURPOSE AND SCOPE OF DATA COLLECTION
Personal data is processed in order to make a specific offer, analysis of the website for the purpose of making an offer, analysis of marketing channels used by the customer to reach the company, ordering a service through wooden-castle.co.uk, directly , telephone and internet marketing of the company’s own products and services, the so-called legitimate interest of the company, the collection of anonymous data for website analysis such as the length of stay on the website, contact via a contact form and Facebook Messenger. Data processing for these purposes is carried out on the basis of Article 6(1)(B), (c) and (f) of Regulation (EU)2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data, on the free movement of such data and repealing Directive 95/46/EC, hereinafter referred to as “RODO”.
Upon separate consent pursuant to Article 6(1)(a) of the RODO, the data may also be processed in order to transmit commercial information by electronic means, or in connection with Article 10(2) of the Law of 18 July 2002 on electronic services.
If necessary for the delivery of an order, personal data may be provided to postal operators or transmitted for the sole purpose of delivering the order (contact or other material sent by mail). Transaction data, including personal data, may be transmitted to the electronic payment provider selected by the customer as part of the order, to the extent necessary to process the payment for the order. Personal data processed for purposes related to the preparation of a specific offer, analysis of a credit agreement, development contract, order for services, will be processed for the period necessary for the execution of the contract and mutuallyOffer or analysis of a credit agreement, development contract, after which the data to be archived will be stored for the period relevant to the statute of limitations, that is 10 years. Personal data processed forMarketing purposes covered by the declaration of consent shall be processed until the withdrawal of consent.
If it is determined that the processing of personal data violates the provisions of RODO, the data subject has the right to file a complaint with the President of the Office for Personal Data Protection.
The provision of personal data is voluntary, however, the provision of the marked personal data is a prerequisite for the conclusion of theMandate contract, in case of failure to provide it, the sending of the contracts for analysis is impossible.
The data controller shall pay special attention to the protection of the interests of the data subjects and shall ensure, in particular, that the data collected by the data controller are:
collected for specified, legitimate purposes and not further processed in a wayincompatible with those purposes,
the data are substantially correct and adequate in relations to the purposesfor which they are processed and are kept in a form which permits identification of data subjects for no longer than it is necessary to achieve the purpose of the processing
collected for specified lawful purposes and not further processed in a way incompatible with those purposes,
the data are substantially accurate and adequate in relation to the purposes for which they are processed and are kept in a form which permits identification of data subjects without further delay than is necessary to achieve the purposes of the processing.
- THE RIGHT TO CONTROL, ACCESS AND RECTIFY OWN DATA
The data subject has the right to access his/her personal data, as well as the right to rectification, erasure, restriction of processing, the right to data portability, the right to object, the right to withdraw consent at any time, without affecting the lawfulness of the data theprocessing is carried out on the basis of consent until withdrawal.
To exercise the above rights, you can send an appropriate email to email@example.com.
The installation of cookies is necessary for the proper provision of services on the Service Provider’s website. Cookies contain information that is necessary for the proper functioning of the website, especially those that require authorization.
The Website uses three types of cookies: “Session”,
“Permament” and “Analytical”.
“Cookies”, “Session” cookies are temporary files that are stored on the End User’s terminal device until the User leaves the Website.
“Permament” cookies are stored in the end user’s device for the period specified in the parameters of theCookies or until they are deleted by the customer.
“Analytical cookies” allow us to better understand how the Customer interacts with the content of the Service Provider’s Website in order to better organize its layout. “Analytical cookies” collect information about the Customer’s use of the Store, the type of page from which the Customer was redirected, the number of visits and the duration of the Customer’s visit to the Service Provider’s Website. This information does not collect specific personal data of the Customer, but is used to compile statistics on the use of the Shop.
The Customer has the right to decide on the access of cookies to his computer by selecting them in the browser window.
Detailed information about the possibilities and methods of using cookies can be found in the software settings (web browser).
- FINAL PROVISIONS
The Controller shall take technical and organizational measures to ensure the protection of the processed personal data appropriate to the risks and categories covered by the protection, and in particular to protect the data from disclosure by unauthorized persons, acquisition by an unauthorized person, processing with the violation of the mandatory provisions, as well as against any alteration, loss, damage or destruction.
The Service Provider shall provide appropriate technical measures to prevent unauthorized persons from obtaining and changing electronically transmitted personal data.