LVADLINE Shop Privacy Policy

 ONLINE SHOP PRIVACY POLICY 

LVADLINE.COM 

TABLE OF CONTENTS: 

1. GENERAL PROVISIONS 

2. BASIS FOR THE PROCESSING OF DATA 

3. PURPOSE, BASIS AND PERIOD OF PROCESSING DATA IN THE ONLINE SHOP 

4. DATA RECIPIENTS IN THE ONLINE SHOP 

5. PROFILING IN THE ONLINE SHOP 

6. THE RIGHTS OF THE DATA SUBJECT 

7. COOKIES IN THE ONLINE SHOP AND ANALYTICS 

8. FINAL PROVISIONS 

1. GENERAL PROVISIONS 

1.1. This Online Shop Privacy Policy is of informative nature, which means that it is not a source of obligations for Service Recipients or Customers of the Online Shop. The Privacy Policy contains, above all, the principles concerning the processing of data by the Controller in the Online Shop, including the basis, purpose, scope and period of personal data processing and the rights of data subjects as well as information regarding the use of cookies and analytical tools in the Online Shop. 

1.2. The Controller of the personal data collected via the Online Shop shall be LVADLINE Agnieszka Szymanska with office in Warszawa (office address and correspondence address: Pabla Picassa 7/53, 03-125 Warszawa, Poland); tax ID no. NIP: 5241158857, national economy register no. REGON: 523347500, e-mail address: help@lvadline.com  – hereinafter referred to as “Controller” and being simultaneously the Service Provider of the Online Shop and the Seller. 

1.3. Personal data in the Online Shop shall be processed by the Controller in accordance with the binding legal regulations, in particular the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) hereinafter referred to as “GDPR” or “GDPR Regulation”. The official text of the GDPR Regulation: http://eur-lex.europa.eu/legal-content/PL/TXT/?uri=CELEX%3A32016R0679 

1.4. Using the Online Shop, including shopping, is voluntary. Similarly, providing personal data by the Service Recipient or the Customer using the Online Shop is voluntary, subject to two exceptions: (1) entering into contracts with the Controller – failure to provide the personal data necessary for the conclusion and performance of the Sales Contract or a contract for the provision of an Electronic Service with the Controller in the cases and within the scope indicated on the website of the Online Shop and the Terms and Conditions of the Online Shop and this Privacy Policy shall result in no possibility to enter into the contract. Providing personal data is a contractual requirement in such a case and if the data subject is willing to enter into the contract with the Controller, they shall be obligated to provide the required data. The scope of the data required to enter into the contract is each time specified in advance on the website of the Online Shop and in the Terms and Conditions of the Online Shop; (2) statutory obligations of the Controller – specifying the personal data is a statutory requirement resulting from the commonly binding legal regulations obligating the Controller to process the personal data (e.g. processing data to fiscal books and ledgers) and failure to specify the data will render it impossible for the Controller to perform the obligations. 

1.5. The Controller assures due diligence to protect the interest of persons being data subjects, in particular being responsible and liable for and assuring that the data collected are: (1) processed in accordance with the Act; (2) collected for specific, legal purposes and not subject to further processing inconsistent with the purposes; (3) correct as regards the subject matter and adequate as regards the purpose of the processing; (4) stored in a form making it possible to identify the people they apply to, no longer than it proves necessary to attain the purpose of processing and (5) processed in a manner ensuring security of the personal data, including the protection against illicit or illegal processing or accidental loss, damage or destruction, with the use of appropriate technical and organisational measures. 

1.6. Taking into account the nature, scope, context and purpose of processing as well as the risk of breaching the rights or freedoms of natural persons with varied likelihood and degree of threat, the Controller is implementing appropriate technical and organisational measures so that the processing takes place pursuant to the Regulation and it is possible to show it. The measures are reviewed and updated, as necessary. The Controller applies technical measures preventing the acquisition and modification of personal data sent electronically by unauthorised persons. 

1.7. Any words, phrases and acronyms used in this privacy policy starting with a capital letter (e.g. Seller, Online Shop, Electronic Service) shall be understood in accordance with the definition contained in the Terms and Conditions of the Online Shop available on the websites of the Online Shop. 

2. BASIS FOR THE PROCESSING OF DATA 

2.1. The Controller is authorised to process the personal data in cases, and to the extent, when at least one of the following conditions is met: (1) the data subject consented to the processing of their data to one or more specified ends; (2) processing is necessary for contract performance the data subject is a party to, or to take actions to the request of the data subject, prior to contract conclusion; (3) processing is necessary to meet the legal obligation of the Controller; or (4) processing is necessary for the needs resulting from the legally justified interests of the Controller or third party, except for situations when the interests or basic rights and freedoms of the data subject override such interests and they require personal data protection, especially when the data subject is a child. 

2.2. The processing of personal data by the Controller each time requires having at least one basis indicated in item 2.1 of the privacy policy. Specific bases for processing personal data of the Service Recipients or the Customers of the Online Shop by the Controller are specified in the following point of the privacy policy – as regards the specific goal of processing personal data by the Controller. 

3. PURPOSE, BASIS AND PERIOD OF PROCESSING DATA IN THE ONLINE SHOP 

3.1. Each time, the purpose, basis, and period as well as the recipients of personal data being processed by the Controller result from actions undertaken by a given Service Recipient or Customer in the Online Shop.