Administrator of personal data collected through the website chromeauto.eu is Martig Marcin Czyż, registered office address: Bogumiłowice 273, 33-121 Bogumiłowice, NIP: 8732988819, entered into the Central Records and Information on Business Activity, hereinafter referred to as the "Administrator";, being at the same time the Service Provider. Place of business: Bogumiłowice 273, 33-121 Bogumiłowice, an address for service: Bogumiłowice 273, 33-121 Bogumiłowice, e-mail address: firstname.lastname@example.org.
Personal data collected by the Administrator via the website shall be processed in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the PDCA and the Personal Data Protection Act of 10 May 2018.
- use of the contact form by the user. Personal data shall be processed pursuant to Article 6(1)(f) of the GDPR as the legitimate interest of the Administrator.
- subscribe to the Newsletter by the user in order to send commercial information by electronic means. Personal data shall be processed after separate consent has been given pursuant to Article 6(1)(a) of the GDPR
- registration in the chromeauto.eu online shop by means of the registration form. Personal data shall be processed pursuant to Article 6(1)(f) of the GDPR as the legitimate interest of the Administrator.
- make a purchase as a guest without registering and providing the data necessary to complete the order. Personal data shall be processed pursuant to Article 6(1)(f) of the GDPR as the legitimate interest of the Administrator.
- Company name,
- Name and surname,
- Date of birth,
- Address (residence),
- E-mail address,
- Telephone number,
- where processing is based on performance of a contract, for as long as is necessary for the performance of the contract and thereafter for a period corresponding to the limitation period for claims. Save as otherwise provided in a special provision, the limitation period shall be six years and, in the case of claims for periodic benefits and claims relating to establishment, three years.
- where the basis for processing the data is consent, as long as the consent is not revoked, and after revoking the consent, for a period of time corresponding to the period of limitation of claims which the Administrator may raise and which may be raised against him/her. Save as otherwise provided in a special provision, the limitation period shall be six years and, in the case of claims for periodic benefits and claims relating to establishment, three years.
- lawfully processed,
- collected for specified, legitimate purposes and not further processed in a way incompatible with those purposes,
- substantially correct and adequate in relation to the purposes for which they are processed and kept in a form which permits identification of the data subjects no longer than is necessary to achieve the purpose of the processing.
Personal data of users are transferred to service providers, which are used by the Administrator to manage the website. Service providers to whom personal data are transferred, depending on contractual arrangements and circumstances, either are subject to instructions from the Administrator as to the purposes and methods of processing such data (processing entities) or independently determine the purposes and methods of their processing (administrators).
Your personal data will only be stored in the European Economic Area (EEA).
The data subject shall have the right of access to the content of his personal data and the right to rectification, erasure, restriction of processing, the right to data portability, the right to object, the right to withdraw consent at any time without affecting the lawfulness of a processing carried out on the basis of consent prior to its withdrawal.
Legal grounds for the user's request:
In order to exercise the rights referred to in point 2, an appropriate e-mail message may be sent to the address: email@example.com.
In the event of the user exercising the right resulting from the above rights, the Administrator shall either fulfill the request or refuse to fulfill it immediately, but no later than one month after its receipt. If, however, due to the complexity of the request or the number of requests, the Administrator is unable to meet the request within one month, it will meet the request within two months, informing the user about the intended extension of the deadline and its reasons within one month of receiving the request.
In the event that it is found that the processing of personal data violates the regulations of the person, the data subject has the right to lodge a complaint with the President of the Office for Personal Data Protection.
The installation of cookies is necessary for the proper provision of services on the website. Cookies contain information necessary for the proper functioning of the website, as well as the possibility of developing general statistics on website visits.
The website uses the types of session and permanent cookies:
The Administrator uses his own cookies in order to better understand how the user interacts with the content of the website. The files collect information about your use of the website, the type of website from which you have been redirected, the number of visits and the duration of your visit to the website. This information does not record specific personal information about you, but is used to compile statistics about your use of the website.
The user has the right to decide on the access of cookies to his computer by prior selection in his browser window. Detailed information about the possibilities and methods of using cookies are available in the settings of the software (web browser).
The Administrator shall apply technical and organizational measures ensuring protection of the personal data processed, appropriate to the risks and categories of data covered by the protection, and in particular shall protect the data against unauthorised disclosure, takeover by an unauthorised person, processing in violation of the applicable regulations and change, loss, damage or destruction.
The Administrator shall make available appropriate technical measures to prevent unauthorised persons from obtaining and modifying personal data sent electronically.