Privacy Policy

BASIC INFORMATION

The Privacy Policy contains information regarding the processing of personal data and other information concerning Customers.The Privacy Policy sets forth the rules for processing personal data collected through the Online Store.

The purpose of this Privacy Policy is to describe the measures we take regarding personal data collected through the Online Store and the services and tools associated with the Store that Customers use to perform actions such as creating an Account or placing an Order.

Capitalized terms used in the Privacy Policy shall be understood in accordance with the definitions contained in the Terms and Conditions.For your reference, below are some of the terms used in this Privacy Policy:

  1. Privacy Policy - This Privacy Policy.
  2. GDPR - Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016.on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).

PERSONAL DATA CONTROLLER

FUNDAMENT 2.0 CHRAPKOWICZ MAGIERA GENERAL PARTNERSHIP with its registered office in Rzgów (95-030), Gospodarz 59A, KRS No. 0001205889, NIP 7282904488, REGON: 543268446.("Administrator," "Love Saints," "We," "Us").

You can contact the Administrator:

  1. by mail to the Administrator's registered office address
  2. by email to: shop@lovesants.en
  3. by phone at: +48 532 690 683

PERSONAL DATA – SCOPE, PURPOSE, LEGAL BASIS, AND DURATION OF OUR PROCESSING OF PERSONAL DATA

Account Registration

1.Data

In order to create an Account, we collect and use identification information such as your first and last name, as well as contact information—including your email address and the password you choose..Your email address is used to access and log in to the Website.

Data may be collected directly from you, as well as from third parties (e.g., partners providing technical or marketing services) and from automated systems (e.g., cookies, system logs).

2.Purpose of data processing

We use the personal data listed above to create or maintain your Account.

3.Legal Basis for Data Processing

The legal basis for data processing in connection with the use of the Account is Article.6(6).1 litre.b) GDPR, i.e., the performance of the contract for maintaining an account in the online store.

4.Data retention period/criteria for determining the retention period

Your personal data contained in the Account will be processed for as long as the Account remains active, that is, for the duration of the service of maintaining the Account in the Online Store.You may decide to delete your Account at any time, which will also result in the deletion of your personal data from the database.Please note that deleting your Account does not result in the deletion of data related to Orders placed through the Online Store.

The data is retained for as long as necessary to fulfill the purpose, and thereafter for a period not exceeding December 31 of the year following the year in which the purpose ceased to apply.After this date, the data is deleted or anonymized, unless required by law to be retained for a longer period.


Orders

1.Data

When you purchase our Products, in addition to your identification and contact information, we also collect information regarding your purchases and payments (e.g., information about the products purchased, order value, payment method, billing information, and shipping address).We will ask you to provide this information each time you make a purchase without logging in, or once when you create an account..

Data may be collected directly from you, as well as from third parties and through automated systems (e.g., cookies, system logs).

2.Purpose of data processing

Data is processed for the purpose of fulfilling a sales contract or in connection with the intention to enter into such a contract, as well as to comply with the obligations imposed on us by applicable law (e.g., issuing a sales document).

3.Legal Basis for Data Processing

The legal basis for processing purchase-related data is the conclusion and performance of a contract in accordance with Article.6(6).1 litre.b) GDPR.

4.Data retention period/criteria for determining the retention period

We process your personal data until the contract ends, and after that time for other lawful purposes related to the contract, such as the period for safeguarding potential claims, i.e., until the end of the calendar year in which the 6-year statute of limitations expires.If no contract is concluded, we will process your data until your request has been reviewed and for 3 years to address any potential complaints or claims..

5.Customer Purchase Data

Customer purchase data may be processed by authorized Pako Lorente employees for the purposes of order fulfillment, customer service, and the verification of complaints..Access to this data is restricted and is carried out in accordance with applicable data protection laws.


Contact form, hotline, chat, complaint submissions

1.Data

If you'd like to contact us, you can submit the contact form, call our hotline, or chat with us.The data you provide to us includes: identification and contact information, as well as other information provided during correspondence or conversations.

Data may be collected directly from you, as well as from third parties (e.g., partners providing technical or marketing services) and from automated systems (e.g., cookies, system logs).

2.Purpose of data processing

We use personal data solely to respond to your questions submitted via the contact form, during a phone call, via chat, or in connection with a complaint..

3.Legal Basis for Data Processing

The legal basis for data processing is Article.6(6).1 litre.f) GDPR.The legitimate interest pursued by the Controller stems from the desire to respond to your inquiries and requests, and thus from the desire to maintain and ensure high customer satisfaction.We maintain complete confidentiality regarding the personal information you provide when filling out contact forms, during phone calls, or when contacting us via chat..

4.Data retention period/criteria for determining the retention period

We will process your data for as long as necessary to handle the inquiry submitted via the form, and then for 3 years to protect against any potential claims..In the case of complaints, we process the data until we respond, and then until the end of the calendar year in which the 6-year statute of limitations expires.In the case of an ongoing dispute, the retention period is calculated from the date the dispute is resolved or the proceedings are finally concluded.


Newsletter

1.Data

When you sign up for the newsletter, you provide us with your email address.

Data may be collected directly from you, as well as from third parties (e.g., partners providing technical or marketing services) and from automated systems (e.g., cookies, system logs).

2.Purpose of data processing

Personal data provided as part of the newsletter service is processed for the purpose of sending information containing brand and product advertisements, as well as information about new products, promotions, sales, special offers, and promotional and contest campaigns..Please note that this type of data processing involves analyzing your profile to determine your preferences so that we can send you information that is relevant to you..You can unsubscribe from the newsletter at any time, free of charge.

3.Legal Basis for Data Processing

The legal basis for processing data in connection with the distribution of the newsletter is, in principle, consent given in accordance with Article.6(6).1 litre.a) GDPR.

4.Data retention period/criteria for determining the retention period

If you withdraw your consent to receive the newsletter, your data will be blocked immediately and then deleted.You can withdraw your consent at any time, for example, by clicking the “Unsubscribe” link included in every email, by sending an email to: sklep@pakolorente.com, , or, or through your account settings..Withdrawal of consent does not affect the lawfulness of processing that took place prior to such withdrawal.

SHARING PERSONAL DATA

Your personal information may be disclosed to third parties who assist us in providing the services we offer, m.in.to suppliers and partners:

  • technology-related services (such as support for our website and other systems we use to provide our services to you)
  • that provides logistics, transportation, and delivery services
  • that provides marketing and advertising services (including a newsletter)
  • that provides legal and other specialized services, including partners who operate our chat service
  • other customer service-related services.

We share with our suppliers and partners only the personal data necessary for them to provide services to us, and we require them to maintain the confidentiality and security of that information.We also verify whether they have adequate measures in place to protect personal data.

In addition, your personal data may be disclosed to entities authorized to receive it under applicable law, such as law enforcement agencies.To the extent permitted by applicable law, we may also disclose personal data to debt collection agencies and debt trading companies.

Our partners, suppliers, and service providers are based in countries within the European Economic Area (European Union member states, as well as Iceland, Liechtenstein, and Norway) - the EEA or in Switzerland, which is recognized as a country that provides an adequate level of personal data protection.Whenever we share your personal data internally or with third parties in other countries, we implement the necessary safeguards to protect it.

In some cases, your data may be transferred outside the European Economic Area, m.in.to the U.S., in connection with the use of tools from providers such as Google or Meta.In such cases, we implement appropriate legal safeguards, in particular the Standard Contractual Clauses (SCCs) adopted by the European Commission or mechanisms approved under an adequacy decision.

USE OF COOKIES AND OTHER TECHNOLOGIES

Cookies

We use cookies, which are pieces of information sent by the website you visit.They are stored on the device (computer, laptop, smartphone) that we use when browsing the Website.We use cookies to:

  1. proper website configuration—this allows you to set up the website's features and services correctly.
  2. to ensure security—we use these cookies to verify authenticity and optimize the website's performance
  3. authentication—this allows us to know when a user is logged in and to show them the appropriate content and features.
  4. session state storage - allows information to be stored about how a user interacts with the website.Cookies are used to store session information and allow you, for example, to keep items in your shopping cart even after you close your browser tab and reopen it.
  5. advertising – these files allow us to display relevant advertising content to users and personalize ads; they are also used to display ads outside of the website.
  6. location - allows you to customize the information displayed based on the user's location
  7. analyses, studies, and audience audits—these enable the collection of statistical data and the creation of anonymous statistics.This allows us to better understand user preferences and, through appropriate data analysis, improve and develop our products and services.

Cookies and the information stored in them, or accessing that information, do not result in any configuration changes to the device or the software installed on it.The information we collect through cookies is not linked to any specific individual and does not allow us to identify that individual.You can change how your browser handles cookies, including blocking or deleting those that come from the Website.To do this, you need to change your browser settings.

Most browsers allow you to accept or reject all cookies, accept only certain types, or be notified each time a website tries to store them.You can also easily delete cookies that have already been stored on your device by your browser.Managing and deleting cookies varies depending on the browser you use.Detailed information on managing cookies for certain browsers:.

  1. Firefox: http://support.mozilla.org/en/kb/cookie
  2. Chrome: http://support.google.com/chrome/bin/answer.py?hl=en&answer=95647
  3. Internet Explorer: http://support.microsoft.com/kb/278835/en
  4. Safari: http://safari.helpmax.net/en/oszczêdanie- czas/blocking-content/
  5. Opera: http://help.opera.com/Linux/9.22/en/cookies.html

Consent to the use of cookies is managed through a tool provided by IAI S.A., which allows you to change your preferences and withdraw your consent at any time.You can find the link to the cookie settings management panel here.

For more information on managing cookies, visit www.All About Cookies.pl or on the European platform's website www.allaboutcookies.org.

ONLINE PROFILING AND TRACKING

As part of our newsletter service and Loyalty Program, we use profiling—that is, the analysis of your activity (e.g., purchase history, interactions with the newsletter)—to tailor marketing content to your preferences.Profiling does not have any legal consequences for you nor does it otherwise significantly affect your situation (Art..(Article 22 of the GDPR).You may object to profiling at any time by contacting the Data Controller.

Third-party tools we use:

  1. Google Analytics
  2. Google Ads (including remarketing)
  3. Facebook
  4. Instagram
  5. Sales Manager
  6. Clarity

RIGHTS OF DATA SUBJECTS

The data subject has the right to:

  1. Right of Access (Art..Article 15 of the GDPR), i.e., the right to request information from the Controller regarding the processing of their personal data, specifically confirmation as to whether the data subject’s personal data is being processed.If a person’s data is being processed, that person has the right to access the data, obtain a copy of it, and receive the following information: the purposes of the processing, the categories of personal data, information about the recipients or categories of recipients to whom the data have been or will be disclosed, the retention period for the data or the criteria for determining it, the rights to which the individual is entitled in connection with the processing of their personal data; the possibility of lodging a complaint with a supervisory authority; the source of the personal data, if it was not obtained directly from the data subject; and profiling and automated decision-making;
  2. Right to rectification (Art..(Article 16 of the GDPR), i.e., if a person becomes aware that their personal data processed by the Controller is inaccurate, out of date, or incomplete, they have the right to request that it be rectified or completed without delay;
  3. Right to erasure (Art..(Article 17 of the GDPR), meaning they may request the erasure of their personal data; however, if the individual has consented to the processing of their personal data, a request for erasure will have the same effect as a withdrawal of consent;
  4. Right to restrict data processing (Art..(Article 18 of the GDPR), i.e., the right to request that the processing of personal data be discontinued, except for storage, in situations where:
  • the data subject disputes the accuracy of the personal data;
  • the data subject challenges the lawfulness of the Controller’s processing of personal data;
  • The controller no longer needs this data, but it is necessary for the data subject to establish, pursue, or defend his or her claims;
  • the data subject has objected to the processing, and the Controller has upheld that objection;
  • Right to data portability (Art..(Article 20 of the GDPR) which means the right to receive personal data provided to the Controller in a structured, commonly used, machine-readable format so that it can be transmitted directly to another entity, provided that this is technically feasible;
  • Right to object to processing (Art..(Article 21 of the GDPR), which means the right of the data subject to object to the use of their personal data for purposes related to direct marketing of products and services, as well as other marketing activities carried out by the Controller and sent via email or text message).Objecting does not result in the deletion of the data, but only in the Controller ceasing to use it for marketing purposes.
  • The right to withdraw consent, which means that in cases where data processing is based on consent, the data subject has the right to withdraw the consent given for specific processing purposes at any time.Withdrawal of consent does not affect the lawfulness of the processing carried out prior to the withdrawal of consent;
  • The right to file a complaint with the competent supervisory authority.If a data subject believes that their data is being processed unlawfully, they have the right to file a complaint with the competent supervisory authority:
  • Office for Personal Data Protection
    Stawki 2, 00-193 Warsaw
    tel.22 531 03 00, fax.22 531 03 01
    kancelaria@uodo.gov.en

    CHANGES TO THE PRIVACY POLICY

    The provisions of the Privacy Policy may be amended or updated; therefore, we recommend that you check for changes regularly.We will notify you of any changes or additions by posting the relevant information on the Website, and in the event of significant changes, we may also send you separate notifications to the email address you have provided.

    pixel