1. General Information
This policy applies to the Website, functioning at the url address: www.tomikaart.pl
The operator of the website and the Administrator of personal data is: Małgorzata Tomica-Pyrdoł ul. Grodzka17/5 33-300 Nowy Sącz
Operator's e-mail contact address: firstname.lastname@example.org
NIP: 734 243 91 97, REGON 122 611 999
The Operator is the administrator of your personal data in relation to the data provided voluntarily on the service.
The service uses personal data for the following purposes:
Running a comment system
Support queries over form
Preparation, packaging, shipping of goods
Implementation of the services ordered
The service performs the functions of obtaining information about users and their behaviour in the following ways:
By voluntarily entered forms, the data entered into the operator's systems.
By storing cookies in the terminal equipment (so-called "Cookies").
2. Selected data protection methods used by the operator
The places of logging in and entering personal data are protected at the transmission layer (SSL certificate). Thanks to this, personal data and login data entered on the website are encrypted on the user's computer and can only be read on the target server.
The Operator periodically changes its administrative passwords.
To protect your data, the Operator regularly backs up the security.
An important element of data protection is the regular updating of all software used by the Operator for the processing of personal data, which in particular means regular updates of the programming components.
The website is hosted (technically maintained) on the operator's server: cyberFolks.pl
4. Your rights and additional information about how you use your data
In some situations, the Administrator has the right to transfer your personal data to other recipients if necessary to perform the contract concluded with you or to perform the obligations of the Administrator. This applies to these audiences:
hosting company on the basis of entrustment
companies providing marketing services to the Administrator
Your personal data processed by the Administrator no longer than is necessary to perform related activities specified by separate regulations (e.g. accounting). With regard to marketing data, the data will not be processed for more than 3 years.
You have the right to request from the administrator:
Access to your personal data regarding,
Restriction of processing,
and data portability.
You have the right to object to the processing indicated in point 3.3 (c) against the processing of personal data in order to exercise legitimate interests pursued by the Administrator, including profiling, with the right to objections will not be able to be exercised in the event of valid legitimate grounds for processing, overriding interests, rights and freedoms, in particular the determination, investigation or defence of claims.
The action of the Administrator is entitled to the President of the Office for Personal Data protection, UL. Rates 2, 00-193 Warsaw.
Providing personal data is voluntary, but necessary to operate the service.
Activities may be taken against you by automated decision-making, including profiling, in order to provide services under the contract concluded and for the purpose of direct marketing by the Administrator.
Personal data is not transferred from third countries within the meaning of the data protection rules. This means that we do not transfer them outside the European Union.
5. Information in forms
The service collects information provided voluntarily by the user, including personal data, if provided.
The service can save information about the connection string (time indication, IP address).
The service, in some cases, may save information to help link data to the form with the email address of the user filling out the form. In this case, the user's email address appears inside the url of the page containing the form.
The data provided in the form is processed for the purpose resulting from the function of a particular form, e.g. to process a service request or commercial contact, register services, etc. Each time the context and description of the form clearly tells you what it is for.
6. Admin logs
Information about user behavior on the site may be logged in. This data is used to administer the service.
7. Relevant marketing techniques
The Operator uses remarketing techniques that allow to match advertising messages to the user's behavior on the website, which may give the illusion that the user's personal data is used to track him, but in practice there is no transfer of any personal data from the Operator to advertising operators. The technological condition for such activities is the enabled support of cookies.
8. Information about cookies
Cookies (so-called "Cookies") are computer data, in particular text files, which are stored in the end device of the website user and are intended to use the websites of the service. Cookies usually contain the name of the website from which they originate, the time of storing them on the end device and a unique number.
The operator of the Website is the operator of the Website on the end device of the Website User.
Cookies are used for the following purposes:
maintenance of the user session of the Service (after logging in) thanks to which the user does not have to re-enter the login and password on each service subpage;
Achievement of the objectives set out above under ' relevant marketing techniques ';
Two essential types of cookies are used within the Website: "session cookies" and "persistent" (persistent cookies). Session Cookies are temporary files that are stored on the end device of the user until the time of logging out, leaving the website or disabling the software (Web browser). "Persistent" cookies are stored in the user's end device for the time specified in the parameters of cookies or until they are deleted by the user.
Web browsing software (web browser) typically allows cookies to be stored on your end device by default. Users of the Service can change the settings in this regard. The web browser allows you to delete cookies. It is also possible to automatically block cookies Details of this information include help or documentation of a web browser.
Cookies placed on the End Device of the User of the Website can also be used by entities cooperating with the website operator, in particular this applies to companies: Google (Google Inc. with its registered office in the USA), Facebook (Facebook Inc. with its registered office) Twitter Inc. (Twitter Inc. based in the USA).
9. Managing cookies – How to express and withdraw consent in practice?
If you do not wish to receive cookies, you may change your browser settings. We reserve that disabling cookies necessary for authentication processes, security, maintaining user preferences may make it difficult, and in extreme cases may prevent the use of websites
To manage your cookies settings, select the web browser you're using from the list below and follow the instructions: