Privacy Policy
PRIVACY POLICY OF THE MUSHI SHOP ONLINE STORE
1. GENERAL PROVISIONS
1.1. This privacy policy of the Online Store is for informational purposes only, which means that it is not a source of obligations for Service Users or Customers of the Online Store.
1.2. The Administrator of personal data collected through the Online Store is "Mushi Shop" Yanina Kazak, with its registered office in Warsaw (registered office address and delivery address: 00-209 Warsaw, ul. Nowy Świat 31); NIP: 1133145399; REGON: 529619046; e-mail address: mushishop.pl@gmail.com, hereinafter referred to as the "Administrator" and who is also the Service Provider of the Online Store and the Seller.
1.3. The personal data of the Service User and Customer are processed in accordance with the Personal Data Protection Act of 29 August 1997 (Journal of Laws 1997 No. 133, item 883, as amended) (hereinafter: Personal Data Protection Act) and the Act on Providing Services by Electronic Means of 18 July 2002 (Journal of Laws 2002 No. 144, item 1204, as amended).
1.4. The Administrator exercises particular care to protect the interests of the data subjects, and in particular ensures that the data collected by them are processed lawfully; collected for specified, legitimate purposes and not further processed in a manner inconsistent with these purposes; substantively correct and adequate in relation to the purposes for which they are processed and stored in a form allowing identification of the data subjects for no longer than is necessary to achieve the purpose of processing.
1.5. All words, phrases and acronyms appearing on this page and beginning with a capital letter (e.g. Seller, Online Store, Electronic Service) should be understood in accordance with their definition contained in the Online Store Regulations available on the Online Store's websites.
2. PURPOSE AND SCOPE OF DATA COLLECTION AND DATA RECIPIENTS
2.1. Each time, the purpose, scope and recipients of the data processed by the Administrator result from the actions undertaken by the Service User or Customer in the Online Store. For example, if the Customer chooses personal pickup instead of courier delivery when placing an Order, their personal data will be processed for the purpose of concluding and fulfilling the Sales Agreement, but will no longer be disclosed to the carrier providing shipments on behalf of the Administrator.
2.2. Possible purposes of collecting personal data of Service Users or Customers by the Administrator:
2.2.1. conclusion and fulfillment of a Sales Agreement or an agreement for the provision of an Electronic Service (e.g. Account).
2.2.2. direct marketing of the Administrator's own products or services.
2.2.3. expressing an opinion by the customer about the concluded Sales Agreement.
2.3. Possible recipients of personal data of Online Store Customers:
2.3.1. In the case of a Customer who uses a delivery method or courier shipment in the Online Store, the Administrator provides the collected personal data of the Customer to a selected carrier or intermediary providing shipments on behalf of the Administrator.
2.3.2. In the case of a Customer who uses a payment method in an installment system in the Online Store, the Administrator provides the collected personal data of the Customer to a selected lender servicing the above payments in the Online Store.
2.3.3. In the case of a customer who has agreed to express an opinion about the concluded Sales Agreement, the Administrator provides the collected personal data of the customer to a selected entity operating the system of opinion surveys of concluded Sales Agreements in the online store.
2.4. The Administrator may process the following personal data of Service Users or Customers using the Online Store: first name and last name; e-mail address; contact phone number; delivery address (street, house number, apartment number, postal code, city, country), residence/business/registered office address (if different from the delivery address). In the case of Service Users or Customers who are not consumers, the Administrator may additionally process the company name and tax identification number (NIP) of the Service User or Customer.
2.5. Providing personal data as referred to in the point above may be necessary for the conclusion and fulfillment of the Sales Agreement or an agreement for the provision of an Electronic Service in the Online Store. The scope of data required for concluding the agreement is always indicated beforehand on the Online Store's website and in the Online Store Regulations.
3. COOKIES AND OPERATIONAL DATA
3.1. Cookies are small textual information in the form of text files, sent by the server and stored on the side of the person visiting the Online Store website (e.g., on the hard drive of a computer, laptop, or on the memory card of a smartphone – depending on the device used by the visitor to our Online Store). Detailed information on Cookies, as well as their history, can be found, among others, here: http://pl.wikipedia.org/wiki/Ciasteczko.
3.2. The Administrator may process data contained in Cookies while visitors use the Online Store website for the following purposes:
3.2.1. identifying Service Users as logged in to the Online Store and showing that they are logged in;
3.2.2. remembering Products added to the cart for placing an Order;
3.2.3. remembering data from filled-out Order Forms, surveys, or login data to the Online Store;
3.2.4. customizing the content of the Online Store website to the individual preferences of the Service User (e.g., regarding colors, font size, page layout) and optimizing the use of the Online Store pages;
3.2.5. conducting anonymous statistics showing how the Online Store website is used.
3.3. Typically, most web browsers available on the market by default accept the saving of Cookies. Everyone has the ability to define the conditions for the use of Cookies through their own web browser settings. This means that you can, for example, partially restrict (e.g., temporarily) or completely disable the ability to save Cookies – in the latter case, however, this may affect some functionalities of the Online Store (for example, it may be impossible to complete the Order path through the Order Form due to Products not being remembered in the cart during subsequent steps of placing the Order).
3.4. Web browser settings regarding Cookies are important from the point of view of consent to the use of Cookies by our Online Store – in accordance with the regulations, such consent can also be expressed through web browser settings. If such consent is not expressed, the web browser settings regarding Cookies should be changed accordingly.
3.5. Detailed information on changing Cookie settings and deleting them manually in the most popular web browsers is available in the browser's help section:
in Chrome browser
• in Firefox browser
• in Internet Explorer browser
• in Opera browser
• in Safari browser
3.6. The Administrator also processes anonymized operational data related to the use of the Online Store (IP address, domain) to generate statistics useful in administering the Online Store. This data is aggregated and anonymous, i.e., it does not contain features identifying individuals visiting the Online Store website. This data is not disclosed to third parties.
4. BASIS FOR DATA PROCESSING
4.1. Providing personal data by the Service User or Customer is voluntary, although failure to provide the personal data specified on the Online Store website and in the Online Store Regulations, which are necessary for the conclusion and fulfillment of the Sales Agreement or an agreement for the provision of an Electronic Service, results in the inability to conclude such an agreement.
4.2. The basis for processing the personal data of the Service User or Customer is the necessity to perform an agreement to which they are a party or to take action at their request before concluding it. In the case of data processing for the purpose of direct marketing of the Administrator's own products or services, the basis for such processing is (1) the prior consent of the Service User or Customer or (2) the fulfillment of legally justified purposes pursued by the Administrator (in accordance with Article 23(4) of the Personal Data Protection Act, direct marketing of the Administrator's own products or services is considered a legally justified purpose).
4.3. In the case of data processing for the purpose of the client expressing an opinion about the concluded Sales Agreement, the basis for such processing is the consent of the Service User or Client.
5. RIGHT TO CONTROL, ACCESS AND CORRECT YOUR DATA
5.1. The Service User or Customer has the right to access and correct their personal data.
5.2. Every person has the right to control the processing of data concerning them, contained in the Administrator's data set, and in particular the right to: request the completion, update, rectification of personal data, temporary or permanent suspension of their processing or their removal, if they are incomplete, outdated, untrue or were collected in violation of the law or are no longer necessary for the purpose for which they were collected.
5.3. If the Service User or Customer has given consent to the processing of data for direct marketing purposes of the Administrator's own products or services, the consent may be withdrawn at any time.
5.4. If the Administrator intends to process or processes the data of the Service User or Customer for the purpose of direct marketing of the Administrator's own products or services, the data subject is also entitled to (1) submit a written, reasoned request to cease processing their data due to their particular situation or to (2) object to the processing of their data.
5.5. To exercise the rights mentioned above, you can contact the Administrator by sending a relevant message in writing or by e-mail to the Administrator's address indicated at the beginning of this privacy policy.
6. FINAL PROVISIONS
6.1. The Online Store may contain links to other websites. The Administrator encourages users to familiarize themselves with the privacy policies established on other sites after navigating to them. This privacy policy applies only to this Online Store.
6.2. The Administrator applies technical and organizational measures to ensure the protection of processed personal data appropriate to the risks and categories of data covered by protection, and in particular secures the data against unauthorized access, unauthorized removal, processing in violation of applicable regulations, and alteration, loss, damage, or destruction.
6.3. The Administrator appropriately provides the following technical measures to prevent unauthorized persons from obtaining and modifying personal data sent electronically:
6.3.1. Securing the data set against unauthorized access.
6.3.2. Access to the Account only after providing an individual login and password.
6.3.3. SSL certificate.