Privacy policy
Privacy Policy
This privacy policy sets out the rules for the collection, processing, and use of personal data obtained through the portal https://www.neighboursart.com. The portal’s owner and the data controller is Drukomat.pl sp. z o.o. with its registered office in Piła, Wypoczynkowa 13, registered in the Register of Entrepreneurs of the National Court Register kept by the District Court Poznań – Nowe Miasto i Wilda in Poznań, 9th Commercial Division of the National Court Register, under KRS (National Court Register) number: 0000388587, NIP (Tax Identification Number): 7642657656, REGON (Business Identification Number): 301763972, paid-up share capital of PLN 1,050,000.
This document has been drawn up in order to fulfil the obligations under Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter: GDPR).
What data do we collect and on what grounds?
The controller collects personal data in the following ways:
- during the process of ordering products, we collect such data as e-mail address, name, surname, shipping address, telephone number, invoicing details, VAT number, which are later also used to process the orders placed – the basis for processing is Article 6(1)(b) of the GDPR, i.e. the processing of such data is necessary for the execution of an agreement to which the Customer is a party;
- via a form used to sign up for a newsletter, we collect email addresses for the purpose of marketing campaigns – the legal basis for processing is then Article 6(1)(a) of the GDPR, i.e. the Customer’s consent;
- through cookies, we collect automated data on our customers’ visits, with some of the cookies being necessary for the use of the portal for functional reasons – and in this case, the basis for processing is Article 6(1)(e) of the GDPR, as the processing makes it possible for the visitors to use the portal – and some of the cookies are collected for statistical or advertising reasons – and in this case, the basis for processing is Article 6(1)(a) of the GDPR, i.e. the Customer’s consent.
Customer rights
The Customer is free to decide whether to provide their personal data or not, but it will be necessary to provide personal data in order to be able to place orders.
The Customer is always free to give their consent to the processing of their personal data for marketing purposes.
The Customer has the right to access the content of their personal data and to rectify them, delete them, limit the processing thereof, as well as the right to object to the processing thereof, request the cessation of the processing thereof, and the right to data portability, as well as the right to withdraw their consent to data processing at any time, and the right to lodge a complaint with the supervisory authority – the President of the Polish Personal Data Protection Office.
How do we use your data?
We use the personal data you may provide for the purpose of executing a sales agreement, i.e. fulfilling the orders placed by Customers. For the same purpose, the personal data provided may be transferred to subcontractors – printers, postal and courier service providers, sales system support service providers, and payment transaction operators.
Your data will be processed for marketing purposes only if you give your consent thereto during the registration process or later. This consent will be the basis for e.g. sending newsletters and information about current special offers, discounts, and contests organised by the data controller (portal administrator). If you have given your consent to the processing of data for marketing purposes, such data may be transferred to third parties who, as subcontractors, provide marketing services for the portal. For the avoidance of doubt – these data will not be sold or transferred to third parties to enable them to run their own marketing campaigns, but only to cooperating entities that support us in our marketing activities, such as sending information about special offers on behalf of the portal.
The data retention period is a maximum of 36 months, i.e. the maximum period of the statute of limitations for claims as provided by law. In the case of data obtained through the newsletter subscription form, they are processed until the Customer withdraws their consent to the processing thereof.
We use the data you provide us with in the correspondence we may exchange only to answer your questions/inquiries – we do not collect such data.
Commercial information will be transmitted electronically (e-mail) only if you have agreed to receive it in this form in the newsletter subscription form.
Data collected automatically
A cookie is a string of characters, usually in the form of a small text file stored on your terminal device when you visit a website.
Automatically collected data (cookies) may be used to personalise the content of our websites (including marketing content), analyse customer behaviour, and to customise features and functionality. They make it possible to perform anonymous statistical research related to the visits to our website. We use the data contained in cookies to block multiple displays of content to the user, to personalise the content of the website more effectively, and to increase the effectiveness of advertisements.
You can block the installation of cookies or delete previous cookies at any time using the relevant features/options of your Internet browser.
We use two types of files: temporary files that expire when you log out of the site or close your browser, and permanent files that stay on your device for the time specified in the relevant parameters or when you delete them.
By default, your web browsing software allows cookies to be stored on your device, but you can change the default settings and block them. For details on how to handle, block, and delete cookies, please refer to your browser settings. Blocking cookies may affect the performance of the website or the features available on the website.
When visiting the portal for the first time, the Customer is asked about their cookie preferences, where they can view a list of individual cookies, advertising partners, the storage times for cookies, and indicate which cookies they accept. The user’s preferences will then be stored in cookies, and any revocation or modification of the consents given should take the form of deleting cookies containing these consents from the browser.
You can view the list of our advertising partners and the storage periods of cookies below:
|
Cookie name |
Cookie partner |
Data administrator |
Data lifetime |
Purpose |
Cookie type |
|
PHPSESSID |
Session |
To provide functions across pages. |
Functional |
||
|
cerber_groove |
14 days |
To provide protection against hackers, provide protection against hackers. |
Functional |
||
|
cerber_groove_x_ |
14 days |
To provide protection against hackers. |
Functional |
||
|
cmplz_banner-status |
365 days |
To store if the cookie banner has been dismissed. |
Functional |
||
|
pll_language |
365 days |
To store language settings. |
Functional |
||
|
popup_form_dismissed_1 |
182 days |
n/a |
Functional |
||
|
tinv_wishlistkey |
30 days |
n/a |
Functional |
||
|
tk_ai |
Session |
To store a unique user ID. |
Functional |
||
|
wordpress_logged_in_ |
Session |
To store logged in users. |
Functional |
||
|
wordpress_test_cookie |
Session |
|
Functional |
||
|
wp-settings- |
365 days |
To store user preferences. |
Functional |
||
|
wp-settings-time- |
365 days |
To store user preferences. |
Functional |
||
|
wp_lang |
Session |
|
Functional |
||
|
1P_jar |
Google LLC. |
Google LLC. |
30 days |
To provide ad delivery or retargeting. |
Marketing |
|
CONSENT |
Google LLC. |
Google LLC. |
6450 days |
To store cookie consent preferences. |
Marketing |
|
NID |
Google LLC. |
Google LLC. |
90 days |
To provide ad delivery or retargeting, store user preferences. |
Marketing |
|
_Secure-3PAPISID |
Google LLC. |
Google LLC. |
730 days |
Builds a profile of website visitor interests to show relevant and personalized ads through retargeting. |
Marketing |
|
_Secure-3PSID |
Google LLC. |
Google LLC. |
730 days |
Builds a profile of website visitor interests to show relevant and personalized ads through retargeting. |
Marketing |
|
_Secure-3PSIDCC |
Google LLC. |
Google LLC. |
365 days |
Builds a profile of website visitor interests to show relevant and personalized ads through retargeting. |
Marketing |
Data security
We provide our Customers with a fully secure shopping experience on our portal, paying special attention to the right to the protection of privacy. To this end, we collect only the necessary minimum information required to process orders. The information regarding your personal data that you provide on our sites is transmitted between our server and your computer with the use of SSL (Secure Socket Layer). Our system administrators regularly check and improve the security measures we use. All operations related to the execution of electronic payments, if such option is chosen, will be carried out through a secure encrypted connection in accordance with the privacy policy of the PayU service. However, the measures we take may not be sufficient if you do not follow the relevant safety rules yourself. This means in particular that you must keep your portal login and password confidential and not share them with third parties. In order to prevent unauthorised use of your account, you should log out from the portal once you have finished using it. If you don’t log out, the portal will log you out automatically after 15 minutes.
Publicly available personal data
Personal data provided by Users when posting comments and product reviews are available to anyone using the portal and are not protected.
Other websites
There may be links to other sites appearing on occasion within the portal. Such sites operate independently of the portal and we do not supervise them in any way. These sites may have their own privacy policies, and we suggest that you familiarise yourself with them as we have no control over and are not responsible for the data handling policies of these sites.
Data Protection Officer
On 25 May 2018, we appointed a Data Protection Officer, whom you can contact regarding any matter concerning the protection of personal data, including the exercise of your rights related to personal data.
You can contact our Data Protection Officer – Konrad Grudysz – by e-mail at iod@drukomat.pl.
