Polityka prywatności

Website Privacy Policy

https://www.osworkshop.com

1. GENERAL PROVISIONS

   1. The controller of personal data collected through the website https://www.osworkshop.com is Błażej Owczarczyk operating business the business name of Elders of the Internet Błażej Owczarczyk, entered into the Central Register and Information on the Economic Activity of the Republic of Poland managed by the minister competent for the economy, place of business: 05-220 Zielonka, ul. Wrzosowa 40, correspondence address: 05-220 Zielonka, ul. Wrzosowa 40, NIP Tax Identification No.: 125 138 53 63, REGON Statistical No.: 361914826, e-mail address: info@osworkshop.com, hereinafter referred to as the "Controller".

   2. Personal data collected by the Controller via the website are processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the GDPR and the Personal Data Protection Act of 10 May 2018.

2. TYPE OF PERSONAL DATA PROCESSED, PURPOSE AND SCOPE OF DATA COLLECTION

   1. PURPOSE OF PROCESSING AND LEGAL BASIS. The Controller processes personal data through the website https://www.osworkshop.com in the case of:

      1. use the contact form by the user. Personal data are processed pursuant to Article 6(1)(f) of the GDPR in a legally justified interest of the Controller.

      2. the user’s subscription to the Newsletter for the purpose of sending commercial information electronically. Personal data shall be processed following a separate consent pursuant to Article 6(1)(a) of the GDPR.

TYPE OF PERSONAL DATA PROCESSED.

Name and surname,

PERIOD OF STORING OF PERSONAL DATA.

if the basis for data processing is performance of a contract, as long as it is necessary for performance of the contract and after that time for the period corresponding to the period of expiry of claims. Unless a specific provision provides otherwise, the expiry period shall be six years, and for claims for interim benefits and claims related to the pursuit of economic activity - three years.

Additional information may be downloaded from the website, in particular: IP address assigned to the user's computer or external IP address of the Internet provider, domain name, browser type, access time, type of operating system.

processed in accordance with the law,

3. DISCLOSING PERSONAL DATA

   1. Users’ personal data are transferred to providers of services used by the Controller on the website. Service providers to whom personal data are transferred, depending on contractual arrangements and circumstances, are either subject to the Controller’s instructions concerning purposes and methods of processing such data (processors) or independently determine the purposes and methods of their processing (controllers).

   2. The personal data of users are stored exclusively within the European Economic Area (EEA).

4. RIGHT OF INSPECTION, ACCESS TO ONE’S OWN DATA AND THEIR RECTIFICATION

   1. The data subject has the right to access the content of their personal data and the right to rectification, erasure, restriction of processing, the right to data portability, the right to object, the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

   2. Legal basis for the user’s request:

      1. Access to data – Article 15 of the GDPR

      2. Rectification of data – Article 16 of the GDPR.

      3. Deletion of data (the right to be forgotten) – Article 17 of the GDPR.

      4. Restriction of processing – Article 18 of the GDPR.

      5. Transfer of data – Article 20 of the GDPR.

      6. Objections - Article 21 of the GDPR

      7. Withdrawal of consent – Article 7 (3) of the GDPR.

   3. In order to exercise the rights referred to in point 2, an appropriate e-mail message may be sent to the following address: info@osworkshop.com.

   4. In the event of a user's request concerning a right resulting from the above rights, the Controller shall meet the demand or refuse to comply with it immediately, but not later than within one month after its receipt. However, if, due to the complicated nature of the request or the number of requests, the Controller will not be able to comply with the demand within one month, it will meet them within the next two months informing the user in advance within one month of receiving the request - about the intended extension of the deadline and its reasons.

   5. If it is found that the processing of personal data violates provisions of the GDPR, the data subject has the right to lodge a complaint with the President of the Office for the Protection of Personal Data.

5. "COOKIES" FILES

   1. The Controller’s Website uses cookies.

   2. Installation of “cookies” files is necessary for the proper provision of services on the website. The “cookies” files contain information necessary for the proper functioning of the website, as well as the possibility of developing general statistics on the website.

   3. The website uses the following types of "cookies" file: fixed

      1. "Fixed" cookies are stored in the user's end device for a period specified in the parameters of cookies or until they are removed by the user.

   4. The Controller uses its own cookies to better understand how the user interacts with regard to the content of the website. The files gather information about how the user uses the website, the type of the website from which the user has been redirected and the number of visits and the time of the user's visit on the website. This information does not record the specific personal data of the user but it is used to develop statistics on the use of the website.

   5. The User has the right to decide on the access of cookies to their computer by their prior selection in their browser window. Detailed information about the possibilities and ways of handling cookies are available in software settings (web browser).

6. MISCELLANEOUS

   1. The Controller applies technical and organisational measures ensuring the protection of the processed personal data appropriate to the threats and categories of data covered by the protection, in particular the Controller protects the data against unauthorised access, takeover by unauthorised persons, processing in violation of the applicable regulations and against their change, loss, damage or destruction.

   2. The Controller provides appropriate technical measures to prevent unauthorised persons from acquiring and modifying personal data sent by electronic means.

   3. In matters not regulated by this Privacy Policy, provisions of the GDPR and other relevant provisions of Polish law shall apply accordingly.