PRIVACY POLICIES

Section 1: General Provisions

This document serves as an attachment to the Regulations. When you engage with our services, you bestow upon us your information. The primary objective of this Privacy Policy is to elucidate the collection, utilization, and purpose of the data and information gathered. Your data holds great significance to us, and we urge you to scrutinize this document with care, as it delineates the guidelines and methodologies for handling and safeguarding personal data. Additionally, it outlines the protocols concerning the utilization of cookies.

We hereby affirm our adherence to the tenets of safeguarding personal data, as stipulated in the Personal Data Protection Act and Regulation (EU) 2016/679 of the European Parliament and the Council, dated 27 April 2016. This regulation aims to protect individuals regarding the processing and free movement of personal data and the abrogation of Directive 95/46/EC.

Individuals whose personal data undergo processing have the prerogative to solicit comprehensive information regarding the handling of their personal data. We are dedicated to ensuring transparency by informing you about the data collection, usage, intended purposes, data recipients, protective measures when sharing data with others, and contact information for any queries.

The seller shall implement various technical safeguards, including physical protection measures for personal data, hardware protections for information and telecommunications infrastructure, software tools, and database security measures, alongside organizational measures to ensure the judicious safeguarding of personal data. These measures encompass thwarting unauthorized access, acquisition, misuse, and preventing unintentional or intentional alterations, loss, damage, or destruction of data.

We possess exclusive access to data, following the stipulations in the Terms and Conditions and this document. Access to personal data may be granted to third-party entities involved in payment processing, adhering to their respective Terms and Conditions. Furthermore, entities responsible for contract execution may also have access, but only to the extent necessary for service provision.

Personal data is exclusively processed for the purposes for which you have explicitly consented, typically via the fields in the website form or other designated means. The legal foundation for personal data processing is either consent or the necessity to provide a service (e.g., product orders) you have requested, as per Article 6(1)(a) and (b) of Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016, commonly known as the General Data Protection Regulation (GDPR).

Section 2: Data Privacy Policy

We place a strong emphasis on the importance of safeguarding your privacy. Our commitment revolves around the profound respect for privacy and ensuring the utmost convenience while using our services.

We highly value the trust you instill in us when you share your personal data for order fulfillment. Rest assured, we handle your personal data with fairness and only to the extent necessary to execute your order, always mindful of upholding this trust.

You possess the right to access clear and comprehensive insights into how we utilize your personal data and the purposes it serves. We consistently provide transparent information on the data we gather, how it is shared, and to whom it is shared with. Additionally, we furnish contact details for entities you can reach out to in case of inquiries, doubts, or comments.

Should any uncertainties arise concerning the use of your personal information, we are committed to addressing and resolving such concerns promptly. We stand ready to provide comprehensive answers to any questions you may have regarding this matter.

We take every reasonable precaution to shield your data from misuse and unauthorized access, striving for comprehensive security.

The entity responsible for your personal data is majbele.com, reachable via email at office@majbele.com. Legal Grounds for Personal Data Processing:
The lawful basis for processing your personal data is stipulated in Article 6, paragraph 1, clause b) of the General Data Protection Regulation (GDPR). Although the provision of data is not obligatory, it is indispensable for taking necessary actions prior to concluding and executing the contract. Your personal data will be shared with other entrusted recipients responsible for processing on our behalf. The transfer of your data adheres to Article 6(1)(f) of the GDPR, as it aligns with our legitimate interest in fulfilling contracts and orders efficiently. Additionally, your personal data will be disclosed to our business partners. We store personal data collected within the European Economic Area (EEA); however, it may also be transferred to and processed in countries outside the EEA, subject to compliance with applicable laws. In cases of data transfer outside the EEA, we employ standard contractual clauses and privacy shields as safeguards for countries not deemed to have an adequate level of data protection by the European Commission.

Data Retention Periods:
Your personal data pertaining to the conclusion and execution of contracts will be processed throughout the contract's duration and retained for no longer than prescribed by law, which includes provisions in the Civil Code and the Accounting Act. Specifically, this retention period extends to no more than 10 years from the conclusion of the calendar year in which the last contract was performed.

Your Rights:
You have the following rights:

  • The right to access your personal data and obtain a copy of the data being processed.
  • The right to rectify incorrect data.
  • The right to request the erasure of data (the right to be forgotten) under circumstances defined in Article 17 of the GDPR.
  • The right to request a restriction of data processing in situations outlined in Article 18 of the GDPR.
  • The right to object to data processing in circumstances detailed in Article 21 of the GDPR.
  • The right to data portability for data processed by automated means.
  1. Complaints and Information:
    If you believe that your personal data is being processed unlawfully, you have the option to file a complaint with the supervisory authority, the Office for Personal Data Protection, located at ul. Rate 2, Warsaw. For further information regarding personal data protection or to exercise your rights, please contact us via postal mail at the provided address.
  2. Data Security Measures:
    We are committed to safeguarding your information against unauthorized access, modification, disclosure, and destruction. We implement a range of security measures, including physical security protocols, to prevent unauthorized access to our systems. Access to personal data is granted exclusively to employees, contractors, and representatives with a legitimate need for such access. Under contractual agreements, they are bound by strict confidentiality obligations and are subject to oversight to ensure proper performance of their duties. In case of non-compliance with these obligations, there are potential consequences. We diligently adhere to all applicable data protection laws and regulations and collaborate with data protection authorities and law enforcement agencies. In the absence of specific data protection regulations, we follow generally accepted data protection principles, social norms, and established practices.

For comprehensive details regarding the protection of personal data, please refer to our data protection policy, including the security policy, regulations for personal data protection, and instructions for managing the information system. For security reasons, access to this documentation is restricted and available solely to state control authorities. If you have any inquiries or concerns regarding the handling of your personal information, we encourage you to get in touch with us through the webpage that directed you to this Privacy Policy. Any contact request will promptly reach the designated individual responsible for addressing your inquiries.

You always retain the right to inform us if you:

  1. No longer wish to receive any information or communications from us in any format.
  2. Desire to obtain a copy of your personal data that we hold.
  3. Need to rectify, update, or delete your personal data within our records.
  4. Wish to report any incidents of data breaches, misuse, or improper processing of your personal information.

To facilitate our response and address your concerns effectively, kindly furnish us with your name and additional pertinent details.

Section 3: Extent and Purpose of Personal Data Collection

We undertake the processing of requisite personal data with the sole aim of providing services and for accounting purposes, specifically:

a) Facilitating order placement,
b) Necessitating contract conclusion, complaint handling, and contract withdrawal,
c) Generating VAT invoices or other receipts,
d) Monitoring website traffic,
e) Gathering anonymous statistics to assess user interactions with our website,
f) Ascertaining the count of anonymous website visitors,
g) Controlling the frequency and relevance of displayed content,
h) Evaluating newsletter subscriptions and contact options,
i) Employing communication tools via email and subsequent telephone interactions,
j) Integrating with the community portal,
k) Facilitating online payments.

The following user data is collected, processed, and stored:

a) Name,
b) Address,
c) Service address (if distinct from the residential address),
d) Tax identification number (TAX ID),
e) Email address,
f) Phone number (mobile and landline),
g) Details regarding your web browser,
h) Any other personal data voluntarily shared with us.

The provision of the aforementioned data is entirely voluntary but essential for the complete delivery of our services.

The objectives guiding the collection, processing, and utilization of your data include:

  • Direct marketing and archiving of advertising campaigns.
  • Compliance with legal obligations, encompassing the collection of data on adverse reactions.
  • Fulfillment of tasks intrinsic to the provision of services, including granting access to products and participating in service-related activities (e.g., contacting those who have ordered products, individuals involved in our events, and addressing inquiries and applications).
  • Verification of service quality, market statistics analysis, and user profiling (refer to profiling and cookies below).
  • Commercial and promotional endeavors, with prior consent (e.g., sending newsletters to provided email addresses, delivering commercial information regarding a variety of products and services, from both our trusted partners and us, and sharing details about contests and promotional campaigns, both ours and those of our trusted partners). Importantly, consent for personal data processing for these purposes is entirely optional and not linked to service utilization. The extent to which data is employed for marketing and commercial objectives hinges on user agreements.

We may transfer personal data to servers located outside your country of residence or to affiliates and third parties situated in different countries, including EEA countries (European Economic Area, EEA Free Trade Area, and Common Market, encompassing European Union and European Free Trade Association EFTA countries). Such transfers are carried out for the purpose of processing personal data on our behalf, adhering to the principles delineated in this Privacy Policy, along with applicable laws, customs, and data protection regulations.

We retain your personal data for a duration commensurate with the specific manner and purpose of its acquisition, keeping it for the following purposes:

  • Adherence to legal, tax, and accounting obligations.
  • Marketing activities, for the duration of the contract, post-separate consent withdrawal, or the completion of transactional activities.
  • Operational activities, until the applicable regulations and statutory time limits, as stipulated by the GDPR and pertinent national laws, expire, as a testament to our commitment to secure and responsible personal data processing.

It's important to note that in several countries to which personal data is transferred, the legal protection of such data may not be on par with the protection in your country. For instance, national courts, law enforcement agencies, and security authorities may access your data in compliance with that country's laws. In light of lawful requests for data disclosure, we mandate that data processors outside your country adopt measures to ensure the safeguarding of your data, aligning with their national legal frameworks.

Section 4: Cookie Policy

We automatically gather information stored within cookies to enhance your data collection experience. A cookie is a small text fragment transmitted to the user's web browser, which the browser then returns during subsequent visits to the website. They are primarily used for session maintenance, such as generating and transmitting a temporary ID after a user logs in. Our usage includes "session" cookies, which are stored on the user's device until they log out, disable the website, or close the internet browser. We also employ "permanent" cookies, which remain on the user's device for the duration specified in the cookie settings or until manually deleted by the user.

Cookies adapt and optimize the website and its offerings to cater to user needs, facilitating actions like creating page view statistics and enhancing security. Furthermore, cookies are essential for maintaining user sessions after leaving the website.

The administrator processes data stored in cookies whenever visitors access the website for the following purposes:

Optimizing user website interactions.
Identifying customers currently logged in.
Customizing website graphics, selection options, and content to match individual customer preferences.
Automatically retaining data previously entered or provided in order forms or during login.
Gathering and analyzing anonymous website usage statistics in the administration panel and using Google Analytics.
Creating remarketing lists based on user preferences, behavior, interest utilization on the site, demographic data, and sharing these lists in AdWords and Facebook Ads.
Generating data segments based on demographic information, interests, and product/service selection preferences.
Utilizing demographic and interest data in Analytics reports.

Users have the option to block and delete cookie collection at any time through their web browsers.

Blocking cookie collection on a user's device may hinder or render certain website features unusable. While this is well within the user's rights, they should be aware of potential limitations in functionality.

If users wish to abstain from using cookies for the above-described purposes, they can manually delete them at any time. For detailed instructions, they can visit the website of their current web browser's manufacturer. Additional information on cookies is available in the help menu of each web browser. Examples of web browsers that support these cookies include:

a) Internet Explorer cookie settings
b) Chrome cookie settings
c) Firefox cookie settings
d) Opera cookie settings
e) Safari cookie settings
f) Cookies in Android
g) Cookies in Blackberry
h) Cookies in iOS (Safari)
i) Cookies in Windows Phone

Section 5: Rights and Responsibilities

  1. We retain the right, and as legally required, to furnish specific or all personal data information to public authorities or third parties who request such information, in accordance with applicable Polish laws.
  2. Users possess the right to access, correct, supplement, or request the deletion or cessation of processing of their shared personal data without specifying a reason. To exercise these rights, users can submit a relevant request at any time via email or other available means.
  3. The processing of personal data for our customers is based on various legal grounds:
  • Legitimate interests as data controller (e.g., database creation, analytical and profiling activities, direct marketing of our products, documentation security for defense against potential claims or for redress purposes).
  • Consent (e.g., email marketing or telemarketing).
  • Performance of a concluded contract.
  • Legal obligations (e.g., tax or accounting requirements).
  1. The processing of personal data for potential customers is based on consent (e.g., email marketing or telemarketing).
  2. A user's request to delete or cease the processing of personal data may result in the inability to provide services by us, or a significant limitation of services.
  3. We are committed to adhering to relevant laws and societal norms.
  4. Information about resolving consumer disputes outside of court: The Financial Ombudsman, as defined by the Act on Out-of-Court Handling of Consumer Disputes, is the designated authority. For more information, please visit their website at www.rf.gov.pl.

Section 6: Fundamental Safety Guidelines

Each user should prioritize their own data security and the security of their devices used for internet access. These devices should include an antivirus program with regularly updated databases of virus definitions and types, a secure web browser version, and an active firewall. Ensuring that the operating system and installed software have the latest and compatible updates is vital, as many cyberattacks exploit vulnerabilities in the installed software.

Access credentials for internet services, such as logins, passwords, PINs, electronic certificates, etc., should be securely stored out of reach and inaccessible to others on the internet. These credentials should not be disclosed or stored on the device in a manner that allows unauthorized access or reading by unauthorized individuals.

Users should exercise caution when handling unfamiliar email attachments or clicking on links in emails that were unexpected, especially those from unknown senders or found in spam folders. Employing anti-phishing filters in web browsers and tools that verify website authenticity, preventing phishing attempts that impersonate individuals or institutions, is advisable.

Downloading files should only occur from trusted sites, services, and websites. We discourage the installation of software from unverified sources, particularly from unknown publishers with unverified feedback. This precaution applies to mobile devices such as smartphones and tablets as well.

For home Wi-Fi wireless networks, it is recommended to set a strong and non-predictable password to enhance security. Passwords should avoid easily guessed patterns or strings, such as street names or birthdates, and the highest available encryption standards for Wi-Fi networks should be utilized, based on the hardware, for instance, WPA2.

Section 7: Use of Social Media Plug-ins

Our websites may feature plugins from platforms like Facebook, Twitter, and others. These services are provided by Facebook Inc. and Twitter Inc. respectively.

Facebook is managed by Facebook Inc., located at 1601 S. California Ave, Palo Alto, CA 94304, USA. For information on Facebook plugins, visit: https://developers.facebook.com/docs/plugins.

Twitter is operated by Twitter Inc., situated at 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. To explore Twitter plugins, visit: https://dev.twitter.com/web/tweet-button.

These plugins solely inform the provider about which of our websites you have visited and at what time. If you are logged into your Facebook or Twitter account while viewing or navigating our website, the provider may combine your interests, information preferences, and other data, such as likes, comments, or profile name entries in search engines. This information is directly transmitted to the provider by your browser.

For more detailed information regarding data collection and usage by Facebook or Twitter and their privacy policies, please refer to the following links:

Facebook data protection/privacy policy: http://www.facebook.com/policy.php

Twitter data protection/privacy policy: https://twitter.com/privacy

To prevent Facebook or Twitter from recording your visit to your user account on our website, please ensure that you log out of your account before browsing our websites.