1. Data Controller and Definitions

  1. The controller of personal data of Customers/Users of the Online Store, also referred to as the Seller, is: Bogumił Włosiński Firma Cracow Consulting Company, telephone number: 570150895, 510149017, NIP: 677-002-24-37, REGON: 350534590.
  2. You can contact the Data Administrator:
    1. at the correspondence address: Stojowice 72, 32-410 Dobczyce;
    2. at the e-mail address: sklep@promiennik.sklep.pl.
  3. User – a natural person entering the website/pages of the Online Store or using the services or functionalities described in this Privacy and Cookies Policy.
  4. Customer – a natural person with full legal capacity, a natural person who is a Consumer, a legal person or an organizational unit without legal personality, to which the law grants legal capacity, who concludes a Distance Selling Agreement with the Seller.
  5. Online Store – an internet service operated by the Seller, available at the following electronic addresses (websites): https://promiennik.sklep.pl , through which the Customer/User may obtain information about the Goods and their availability, as well as purchase the Goods or order the provision of a service.
  6. Newsletter – information, including commercial information within the meaning of the Act of 18 July 2002 on the provision of services by electronic means (Journal of Laws of 2020, item 344) originating from the Seller sent to the Customer/User electronically; its receipt is voluntary and requires the consent of the Customer/User.
  7. Account – a set of data stored in the Online Store and in the Seller’s IT system regarding a given Customer/User and the orders placed by him/her and the contracts concluded, with the use of which the Customer/User may place orders and conclude contracts.
  8. GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).

2. Purposes, legal basis and duration of data processing

  1. In order to execute the Distance Selling Agreement, the Seller processes:
    1. information about the User’s device in order to ensure the correct operation of the services: the computer’s IP address, information contained in cookies or other similar technologies, session data, web browser data, device data, data about activity on the Website, including on individual subpages;
    2. geolocation information, if the User has consented to the service provider’s access to geolocation. Geolocation information is used to provide more tailored product and service offers;
    3. Users’ personal data: first name, last name, registered office address, correspondence address, e-mail address, telephone number, Tax Identification Number, bank account number or other personal data the provision of which is necessary to complete the purchase and which the Administrator requires to be provided in the purchasing process.
  2. This information does not contain data regarding the identity of Users, but in combination with other information may constitute personal data and therefore the Administrator provides it with full protection under the GDPR.
  3. These data are processed in accordance with Article 6(1)(b) of the GDPR, for the purpose of providing the service, i.e., the contract for the provision of services electronically in accordance with the Terms and Conditions, and in accordance with Article 6(1)(a) of the GDPR, in connection with consent to the use of certain cookies or other similar technologies, expressed through appropriate browser settings in accordance with the Telecommunications Law, or in connection with consent to geolocation. The data are processed until the Customer/User terminates their use of the Online Store.
  4. The Controller undertakes to take all measures required under Article 32 of the GDPR, i.e., taking into account the state of technical knowledge, the cost of implementation and the nature, scope and purposes of processing as well as the risk of violation of the rights and freedoms of natural persons of varying likelihood and severity, the Controller implements appropriate technical and organisational measures to ensure a level of security appropriate to that risk.

3. Marketing activities of the administrator

  1. The Data Controller may post marketing information about its products or services on the Online Store website. This content is displayed by the Data Controller in accordance with Article 6(1)(f) of the GDPR, i.e., in accordance with the Data Controller’s legitimate interest in publishing content related to the services provided and promotional content for campaigns in which the Data Controller is involved. At the same time, this activity does not violate the rights and freedoms of Customers/Users. Customers/Users expect to receive similar content, or even expect it, or it is their direct purpose in visiting the Online Store website(s).

4. Recipients of user data

  1. The Data Controller discloses users’ personal data only to processors under concluded personal data processing agreements for the purpose of providing services to the Data Controller, e.g. hosting and operation of the Website, IT services, marketing and PR services.

5. Transfer of personal data to third countries

  1. Personal data will not be processed in third countries.

6. Rights of data subjects

  1. Every data subject has the right to:
    1. Access (Article 15 of the GDPR) – obtaining confirmation from the Data Controller as to whether their personal data are being processed. If data about a person is being processed, they are entitled to access it and obtain the following information: the purposes of processing, the categories of personal data, the recipients or categories of recipients to whom the data have been or will be disclosed, the data storage period or the criteria for determining them, the right to request rectification, erasure, or restriction of the processing of personal data of the data subject, and to object to such processing;
    2. to receive a copy of the data (Article 15, paragraph 3 of the GDPR) – to obtain a copy of the data subject to processing, the first copy being free of charge, and for subsequent copies the Data Controller may impose a reasonable fee resulting from administrative costs;
    3. to rectify (Article 16 of the GDPR) – to request the rectification of personal data concerning you that is incorrect or the completion of incomplete data;
    4. to delete data (Article 17 of the GDPR) – to request the deletion of your personal data if the Data Controller no longer has a legal basis for processing them or the data are no longer necessary for the purposes of processing;
    5. to restrict processing (Article 18 of the GDPR) – request the restriction of the processing of personal data when:
      1. the data subject questions the accuracy of the personal data – for a period enabling the Data Controller to check the accuracy of such data,
      2. the processing is unlawful and the data subject opposes their deletion, requesting the restriction of their use,
      3. The data controller no longer needs the data, but the data subject requires it to establish, pursue or defend legal claims,
      4. the data subject has objected to the processing – until it is determined whether the legitimate grounds on the part of the controller override the grounds for objection of the data subject;
    6. to transfer data (Article 20 of the GDPR) – to receive personal data concerning him/her, which he/she provided to the Data Controller, in a structured, commonly used and machine-readable format, and to request the transmission of such data to another Data Controller, if the data are processed on the basis of the consent of the data subject or a contract concluded with him/her and if the data are processed by automated means;
    7. To object (Article 21 of the GDPR) – to object to the processing of their personal data for the legitimate purposes of the controller, for reasons relating to their particular situation, including profiling. In such a case, the Data Controller assesses the existence of compelling legitimate grounds for processing that override the interests, rights, and freedoms of the data subjects, or grounds for establishing, pursuing, or defending legal claims. If, according to the assessment, the interests of the data subject outweigh the interests of the Controller, the Data Controller will be obliged to cease processing the data for these purposes;
    8. to withdraw consent at any time and without providing any reason, but the processing of personal data carried out prior to the withdrawal of consent will continue to be lawful. Withdrawal of consent will result in the Controller ceasing to process personal data for the purpose for which consent was given.
  2. In order to exercise the above-mentioned rights, the data subject should contact the Data Controller using the contact details provided and inform him/her which right and to what extent he/she wishes to exercise.

7. President of the Personal Data Protection Office

  1. The data subject has the right to lodge a complaint with the supervisory authority, which in Poland is the President of the Personal Data Protection Office with its registered office in Warsaw, ul. Stawki 2, who can be contacted as follows:
  2. by post: ul. Stawki 2, 00-193 Warsaw;
  3. via the electronic mailbox available at: https://www.uodo.gov.pl/pl/p/kontakt ;
  4. Hotline: 606-950-000.

8. Data Protection Officer

  1. The Data Controller has not appointed a Data Protection Officer. In all matters relating to the processing of personal data and the exercise of rights under the GDPR, data subjects may contact the Data Controller directly using the contact details provided in this Privacy Policy.

9. Changes to the Privacy Policy

  1. The privacy and cookies policy may be supplemented or updated in accordance with the current needs of the Administrator in order to provide up-to-date and reliable information to Customers/Users.

10. Cookies

  1. The online store performs the functions of obtaining information about Customers, Users and their behavior in the following way:
    1. through information voluntarily entered in forms for purposes resulting from the function of a specific form;
    2. by saving cookie files (so-called “cookies”) in end devices;
    3. by collecting web server logs by the hosting operator of the Online Store (necessary for the proper operation of the website).
  2. Cookies are computer data, specifically text files, stored on the Customer’s/User’s end device and intended for use with the Online Store. Cookies typically contain the name of the website they originate from, the duration of their storage on the end device, and a unique number.
  3. The Online Store uses cookies only after the Customer/User has provided prior consent in this regard. Consent to the Online Store’s use of all cookies is granted by clicking the “Close” button when the Online Store’s cookie usage notification is displayed, or by closing the notification.
  4. If the Customer/User of the Online Store does not consent to the use of cookies by the Online Store, they may use the option: “I do not consent”, also available in the communication on the use of cookies by the Online Store, or make changes to the settings of the web browser they are currently using (however, this may result in incorrect operation of the Online Store website).
  5. To manage cookie settings, select your web browser/system from the list and follow the instructions: Internet Explorer, Chrome, Safari, Firefox, Opera, Android, Safari (iOS), Windows Phone.
  6. The legal basis for the processing of personal data from cookies is the legitimate interests of the Data Controller, consisting in providing high-quality services and ensuring the security of services.
  7. The Online Store uses two basic types of cookies: “session cookies” and “persistent cookies.” “Session” cookies are temporary files that are stored on the User’s end device until logging out, leaving the Online Store, or disabling the software (web browser). “Persistent” cookies are stored on the Customer/User’s end device for the time specified in the cookie parameters or until they are deleted by the Customer/User.

 

Functional cookies (required)

radiant.sklep.pl

monit_token : 365 days, cookie
Identifies the store customer.

shop_monit_token : 30 minutes, cookie
Identifies the shop customer.

client : 1 days, cookie
Identifies a logged in customer / a non-logged in customer’s shopping cart.

affiliate : 90 days, cookie
Stores information about the ID of the affiliate from which the store was entered.

ordersDocuments : cookie
Stores information about the document printing status.

__idsui : 1095 days, cookie File
necessary for the functioning of the so-called light login on the website.

__idsual : 1095 days, cookie File
necessary for the functioning of the so-called light login on the website.

__IAI_SRC : 90 days, cookie
Stores only the source from which the website was accessed.

login : cookie
Stores information about whether the user has logged in to the website.

CPA : 28 days, cookie
Contains information about variables for CPA/CPS programs in which the site participates.

__IAIRSABTVARIANT__ : 30 days, cookie
Variant ID for A/B testing and IdoSell RS engine configuration.

basket_id : 365 days, cookie
ID of the website user’s basket, assigned for the duration of the current session.

page_counter : 1 days, cookie
Counter of pages visited.

LANGID : 180 days, cookie
Stores information about the language selected by the website user.

REGID : 180 days, cookie
Stores information about the region of the website user.

CURRID : 180 days, cookie
Stores information about the currency selected by the website user.

__IAIABT__ : 30 days, cookie
Stores the A/B testing ID for testing and improving store functionality.

__IAIABTSHOP__ : 30 days, cookie
Stores the ID of the store participating in the A/B test.

__IAIABTVARIANT__ : 30 days, cookie
Stores the ID of the variant drawn as part of an ongoing A/B test.

toplayerwidgetcounter[] : cookie
Stores the number of times a pop-up message is displayed.

samedayZipcode : 90 days, cookie
Stores information about the zip code of the website user, which is necessary to offer courier shipments on the SameDay service.

applePayAvailability : 30 days, cookie
Stores information about whether the ApplePay payment method is available to the user.

paypalMerchant : 1 days, cookie
PayPal account ID.

toplayerNextShowTime_ : cookie
Stores information about the time at which the next pop-up message should be displayed. 

rabateCode_clicked : 1 days, cookie
Stores information about closing the bar informing about an active discount.

freeeshipping_clicked : 1 days, cookie
Stores information about closing the free shipping bar.

redirection : cookie
Stores information about closing the pop-up message informing about the suggested language for the store.

filterHidden : 365 days, cookie
When you click the option to collapse the filter for products, it saves the information which filter should be collapsed after refreshing the product list.

toplayerwidgetcounterclosedX_ : cookie
Stores information about closing a pop-up message.

cpa_currency : 60 minutes, cookie
Contains information about the currency for CPA/CPS programs in which the site participates.

basket_products_count : cookie
Stores information about the number of items in the basket.

wishes_products_count : cookie
Stores information about the number of products in the favorites list.

HOMELANDID : 180 days, cookie
Stores information about the visitor’s country.

remembered_shop_mfa : 365 days,
CookieNameRememberedShopMfa

IAI SA

iai_accounts_toplayer : 30 days, cookie
Ensures correct display of the pop-up message informing about the IdoAccounts login service (https://www.idosell.com/pl/tysiace-gotowych-do-uzycia-funkcji/logowanie-do-sklepu-z-konta-w-innym-serwisie/).

IdoSell

platform_id : cookie
Stores information about whether the page is displayed in a mobile application.

paypalAvailability_ : 1 days, cookie
Stores information about whether the PayPal payment method is available to the user.

ck_cook : 3 days, cookie
Stores information about whether the website user has agreed to cookies.

IdoAccounts

accounts_terms : 365 days, cookie
Stores information about whether the user has accepted the consent to use the IdoAccounts service.

express_checkout_login : 365 days,
CookieNameExpressCheckoutLogin

Google

NID : 180 days, cookie
These cookies (NID, ENID) are used to remember user preferences and other information, such as preferred language, the number of results displayed on a search results page (for example, 10 or 20), and whether the user wants Google SafeSearch enabled. This cookie is also necessary to offer the Google Pay payment service.

Google reCAPTCHA

_GRECAPTCHA : 1095 days cookie
This cookie is set by Google reCAPTCHA which protects our website from spam requests in contact forms.

PayPal

ts : cookie
This cookie is typically provided by PayPal and supports payment services on the website.

ts_c : 1095 days, cookie
This cookie is typically provided by PayPal and is used for fraud prevention.

x-pp-s : cookie
This cookie is typically provided by PayPal and supports payment services on the website.

enforce_policy : 365 days, cookie
This cookie is typically provided by PayPal and supports payment services on the website.

tsrce : 3 days, cookie
This cookie is typically provided by PayPal and supports payment services on the website.

l7_az : 60 minutes, cookie
This cookie is necessary for the PayPal login functionality on the website.

LANG : 1 days, cookie
This cookie is typically provided by PayPal and supports payment services on the website.

nsid : cookie
Used in the context of transactions on the Website. The cookie is required for secure transactions.

Analytical cookies

IAI SA

__IAI_AC2 : 45 days, Conversion Tracking ID cookie
(Activity Tracking) for collecting the history of sources preceding the order, as well as the source through which the order was placed according to the last click attribution model.

Google Ads

*-* : 14 days, cookie
Stores information about whether the “Google Shopping Customer Reviews” popup has already been displayed, asking for consent to send a survey about the order.

Google Maps

SID : 3650 days, cookie.
Contains digitally signed and encrypted records of the user’s Google Account ID and last login time. The combination of these cookies (SID, HSID) allows Google to block many types of attacks, such as attempts to steal the content of forms submitted on Google services.

Advertising cookies

radiant.sklep.pl

RSSID : 180 days, cookie
IdoSell RS user ID, used to display tailored product recommendations on the website.

__IAIRSUSER__ : 60 minutes, IdoSell RS User ID cookie
, used to display tailored product recommendations on the website.

Google Ads

_gcl_au : 90 days, cookie
Used by Google AdSense to experiment with advertising performance on sites that use their services.

FPAU : 90 days, cookie Cookie
that collects information about users and their activity on the website through embedded elements for analytical and reporting purposes.

FPGCLAW : 90 days, cookie
Contains campaign-related user information.

FPGCLGB : 90 days, cookie
Contains campaign-related user information.

_gcl_gb : 90 days, cookie
Contains campaign-related user information.

_gac_gb_<> : 90 days, cookie
Contains campaign-related user information.

_gcl_aw : 90 days, cookie
Contains campaign-related user information.

IDE : 730 days cookie
This cookie is used to display Google ads on non-Google sites.

1P_JAR : 30 days, cookie.
This cookie is used to collect website statistics and track conversion rates. It sets a unique identifier to remember your preferences and other information, such as website statistics and conversion rate tracking.

test_cookie : 1 days, cookie
Used to test whether the permission to set cookies in the user’s browser is enabled.

AEC : 138 days cookie
These cookies prevent malicious sites from running on your behalf without your knowledge.

APISID : 193 days, cookie.
This cookie is stored on your computer to stay connected to your Google account when you visit their services again. While you remain in this active session and use add-ons on other websites like ours, Google will use these cookies to improve your user experience.

CONSENT : 559 days, cookie.
This cookie is stored on your computer to stay connected to your Google account when you visit their services again. While you remain in this active session and use add-ons on other websites like ours, Google will use these cookies to improve your user experience.

DSID : 10 days cookie
The ‘DSID’ cookie is used to identify a logged-in user on non-Google sites and to remember whether the user has consented to ad personalization.

OTZ : 23 days, cookie
This cookie is used to remember user preferences and other information such as preferred language, the number of results displayed on a search results page (for example 10 or 20) and whether the user wants Google SafeSearch turned on.

SAPISID : 28 days, cookie.
This cookie is stored on your computer to stay connected to your Google account when you visit their services again. While you remain in this active session and use add-ons on other websites like ours, Google will use these cookies to improve your user experience.

SEARCH_SAMESITE : 176 days cookie
Allows servers to reduce the risk of CSRF attacks and information leaks by ensuring that a given cookie should only be sent with requests initiated from the same registered domain.

SIDCC : 393 days, cookie.
Downloads certain tools from Google and saves preferences, such as the number of search results per sheet or activation of the SafeSearch filter. Customizes the ads that appear in Google Search.

SSID : 393 days, cookie.
This cookie is stored on your computer to stay connected to your Google account when you visit their services again. While you remain in this active session and use add-ons on other websites like ours, Google will use these cookies to improve your user experience.

__Secure-* : 730 days cookie
These cookies are used to deliver advertising that is more relevant to you and your interests.

 

  1. Cookies are used for the following purposes:
    1. creating statistics that help understand how Customers/Users of the Online Store use websites, which allows for the improvement of their structure and content;
    2. maintaining the Customer/User session (after logging in), thanks to which the Customer/User does not have to re-enter the login and password on each subpage of the Online Store;
    3. determining the Customer/User profile in order to display product recommendations and tailored materials in advertising networks, in particular the Google network.
  2. Web browsing software (web browser) typically allows cookies to be stored on the Customer/User’s end device by default. Customers/Users can change their settings in this regard. The web browser allows for the deletion of cookies. It is also possible to automatically block cookies.
  3. Restrictions on the use of cookies may affect some of the functionalities available on the Online Store websites.
  4. Cookies placed on the Customer/User’s end device may also be used by advertisers and partners of the Online Store cooperating with it.
  5. Cookies may be used by the Google network to display advertisements tailored to the way the Customer/User uses the Online Store. For this purpose, they may store information about the user’s navigation path or the duration of their stay on a given page: https://policies.google.com/technologies/partner-sites .
  6. We recommend that the Customer/User read the privacy policies of these companies to learn about the rules for using cookies used in statistics: Google Analytics Privacy Policy.
  7. In terms of information about the Customer/User’s preferences collected by the Google advertising network, the Customer/User may view and edit information derived from cookies using the tool: https://www.google.com/ads/preferences/ .
  8. The Online Store website contains plug-ins that can transfer Customer/User data to Administrators such as: Google Maps, Google Ads, PayPal, Google reCAPTCHA, IdoAccounts, IdoSell, IAI SA, Google.
  9. For the proper implementation of the Distance Selling Agreement, the Data Controller may share Customer/User data with courier companies. The currently available delivery methods in the Online Store are available at: https://promiennik.sklep.pl/pl/delivery.html .
  10. For the proper implementation of the Distance Selling Agreement, the Administrator may share Customer/User data with online payment systems. Currently available prepayment methods in the Online Store are available at: https://promiennik.sklep.pl/pl/payments.html .
  11. For more information about terms and privacy, please also visit the Google Privacy & Terms page .

11. Newsletter

  1. The Customer may consent to receiving commercial information electronically by selecting the appropriate option in the registration form or later in the appropriate tab. If such consent is granted, the Customer/User will receive information (Newsletter) from the Online Store, as well as other commercial information sent by the Seller, to the email address provided.
  2. The Customer may at any time unsubscribe from receiving the Newsletter by unchecking the appropriate box on the Account page or by going to the form https://promiennik.sklep.pl/pl/newsletter.html , clicking the appropriate link contained in the content of each Newsletter or via the Customer Service Office.

12. Account

  1. The Customer/User may not post any content in the Online Store or provide the Seller with any content, including opinions and other data of an unlawful nature.
  2. The Customer/User obtains access to the Account after registration.
  3. During registration, the Customer/User provides their account type or gender, first name, last name, company name, Tax Identification Number (NIP), sales document issuing information, shipping information, email address, and selects a password. The Customer/User warrants that the information they provide in the registration form is accurate. Registration requires a thorough review of the Terms and Conditions and acknowledgment on the registration form that the Customer/User has read the Terms and Conditions and fully accepts all their provisions.
  4. When the Customer/User is granted access to the Account, an agreement for the provision of electronic services relating to the Account is concluded between the Seller and the Customer for an indefinite period. The Consumer may withdraw from this agreement under the terms set forth in the Terms and Conditions.
  5. Registering an Account on one of the pages of the Online Store also means registering to access other pages where the Online Store is available.
  6. The Customer/User may terminate the contract for the provision of services by electronic means at any time with immediate effect by informing the Seller by e-mail or in writing to the address of the Data Controller, provided in section 1, point 2 of this Privacy and Cookies Policy.
  7. The Seller has the right to terminate the Account service agreement in the event of discontinuation or transfer of the Online Store service to a third party, violation of the law or these Terms and Conditions by the Customer/User, or in the event of Customer/User inactivity for a period of six months. Termination of the agreement is subject to a seven-day notice period. The Seller may stipulate that re-registration of the Account will require the Seller’s consent.

13. Google Ads i remarketing

The Website may use Google Ads and Google Remarketing services. These services allow the display of advertisements to users who have previously visited the Website. Information collected through cookies may be used to measure advertising effectiveness and provide personalised advertising content. Users can manage their advertising preferences through their Google account settings.

14. Contact the administrator

For all matters relating to personal data protection, please contact:

Bogumił Włosiński – Cracow Consulting Company

E-mail: promiennik@promiennik.pl

Address: Stojowice 72, 32-410 Dobczyce, Poland

Loading... logo