Privacy and Cookies Policy
§ 1 Definitions
Controller – Forty Andrzej Korczyński Mirosława Tytkowska Spółka Jawna with its registered office in Warsaw, 01-321 at Kopalniana 6a, registered in the National Court Register under number 0000267895, using Tax Identification Number 522 214 45 64 and Business Identification Number 012266697, hereinafter referred to as the Controller
Website – the site available at https://forty.com.pl
Store – an online store available at https://sklep.forty.com.pl
User – any entity who browses the content of the Website.
GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC
§ 2 Personal Data
The Controller is the controller of the User’s personal data within the meaning of GDPR.
The User may submit his/her personal data to the Controller by means of forms available on the Website, in particular the order form, newsletter subscription form, contact form.
The legal basis for the processing of Users’ personal data is the User’s free, specific, informed and unambiguous consent expressed through the appropriate form on the Website.
Personal data may also be processed in cases in which the Controller is authorized to process personal data on the basis of legal provisions or for the purpose of performance of a contract concluded between the parties.
Personal data provided to the Controller by the User as part of the order form are processed in order to perform a distance contract concluded through the Store. Providing personal data by the User is voluntary, but necessary to conclude a sales contract with the Controller. These data will be processed for the duration of the order and the fulfillment of statutory obligations incumbent on the Controller (e.g. tax and accounting), as well as in the event of claims.
Personal data provided to the Controller by the User as part of the newsletter subscription form are processed in order to send the User a newsletter containing information about news and promotions. Providing personal data by the User is voluntary, but necessary for the User to subscribe and receive the newsletter. The processing of data for this purpose takes place only with the User’s consent, which the User may express in the newsletter subscription form and may revoke at any time. This data will be processed until the newsletter ceases to be sent or the User withdraws consent earlier.
Personal data provided to the Controller by the User within the contact form are processed in order to respond to the inquiry sent via the form. Providing personal data by the User is voluntary, but necessary for the User to receive a response. Data processing for this purpose is based on the legitimate interest pursued by the controller (Art.6(1)(f) GDPR). This data will be processed until the correspondence is completed and 2 years afterwards.
Personal data provided to the Controller by the User as part of the comment form are processed in order to display the comment. Providing personal data by the User is voluntary but necessary for the User to post a comment. The processing of data for this purpose is carried out with the consent of the User who expresses it by posting a comment (Article 6.1.a GDPR). This data will be processed for as long as the Website exists or the comment is deleted by its author
The Controller may entrust personal data to other entities with the help of which it realizes the purposes indicated in the previous paragraphs (e.g. companies providing hosting services, accounting firm, courier companies).
The Controller guarantees the confidentiality of any personal information provided to it.
Personal data shall be collected with due care and adequately protected against access by unauthorized persons, and its processing shall be carried out in accordance with and under the conditions set forth in detail in:
- Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC,
- the Act on the Provision of Electronic Services of 18 July 2002,
- the Data Protection Act of May 10, 2018.
§ 3 User rights
You have rights related to the processing of your personal data, including:
- right of access
- right to rectification
- right to restrict processing
- right to object to the processing
- right to erasure (the so-called right to be forgotten)
- right to data portability
- right to lodge a complaint to the supervisory authority regarding the processing of personal data by the Controller
You have the right to withdraw your consent at any time if you have previously provided such consent.
In order to exercise their rights, the User should address their request to firstname.lastname@example.org
§ 4 Information to be collected
When the User uses the Website, data about the User is automatically collected. This data includes, but is not limited to: IP address, domain name, browser type, operating system type. This data may be collected by cookies and may also be recorded in server logs.
Cookies are files that are sent to your computer or other device (e.g., laptop, smartphone, tablet) when you browse the Website. Cookies remember your preferences so that we can improve the quality of our services, improve search results and the relevance of the information displayed, and track your preferences anonymously.
The User gives his/her consent to store or access cookies by the Controller on his/her device by means of the browser settings installed on the User’s device.
You may opt out of cookies by selecting the appropriate settings on your browser. In such a situation, the User’s use of the Website may be impaired (e.g. the Website may work slower).
The User can delete existing cookies from the device by using the appropriate functions of the Internet browser, programs for this purpose or by using the appropriate tools available within the operating system used by the User.
Use of the Website involves sending requests to the server on which the Website is stored. Each such query is recorded in the server logs. Logs include, but are not limited to: User’s IP address, date and time of logging into the server, information about the Internet browser and operating system used.
The data stored in server logs are not connected in any way with specific Website users and are not used by the Controller to identify a user. Server logs are used to administer the Website, and their contents are not disclosed to anyone except those authorized to administer the server.
The Website uses technologies that anonymously record the actions the User takes while using the Website. These include:
- Google Analytics – used to analyze the statistics of the Website,
- Facebook Pixel – used to manage and optimize Facebook advertising.
Data obtained by these tools are not linked in any way with specific Website Users and are not used by the Controller to identify a User.
The consequence of using the technologies listed in § 3 pt. 8 will be optimization of the Website, its content and Products offer to the User’s needs.
§ 5 Purpose of data use
Data provided by the User or collected automatically by the Controller is used for the following purposes:
- proper functioning, configuration, security of the Website,
- monitoring of session status,
- analysis, research and auditing of visits to the Website,
- performance of agreements concluded through the Website (execution of orders placed in the Store),
- and for statistical and marketing purposes.
§ 6 Final provisions
This document is subject to change as may be affected by developments in Internet technology, changes in data protection law and the development of our Website and Store. Any changes will be communicated to Users immediately in a conspicuous and understandable manner.
If you have any questions or comments about the Privacy and Cookies Policy, please contact us at email@example.com.