PRIVACY AND COOKIE POLICY

Publication date: 07/07/2024

This Privacy and Cookie Policy contains information regarding the processing of personal data that you may provide to the Administrator while using the service and the use of Cookies. The Administrator reserves the right to make changes to the privacy policy. Reasons for making changes may include changes in the law, the development of internet technology, the use of new tools by the Administrator, and other objective reasons. The publication date of the current Privacy and Cookie Policy is located at the top of the page.

DEFINITIONS

• Administrator – LARTDEDIRE

• Personal Data – Information about an identified or identifiable natural person through one or more specific factors defining physical, physiological, genetic, mental, economic, cultural, or social identity, including device IP, location data, internet identifier, and information collected via cookies and other similar technologies;

• Policy – This privacy policy containing information about the processing of Personal Data and the use of cookies and similar tracking technologies within the Service.

• GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons with regard to the processing of Personal Data and on the free movement of such data, and repealing Directive 95/46/EC.

• Personal Data Protection Act – The Act of May 10, 2018, on the protection of personal data (Journal of Laws 2018, item 1000, as amended).

• Service – The website operated by the Administrator: lartdedire.store, accessible via web browsers, including all its subpages, and all services provided within the domain, such as the contact form.

• User – A natural person visiting the Website/online store or using one or more services or functionalities described in the Policy.

• Device – An electronic device through which the User accesses the Website.

WHO IS THE ADMINISTRATOR OF PERSONAL DATA?

1. The Administrator of personal data : LARTDEDIRE

2. Contact with the Administrator is possible at the above address and via email: lartdediree@gmail.com.

3. By contacting the Administrator via email, contact form, social media, or subscribing to the newsletter, you provide your personal data, such as your name and email address.

4. The Administrator places great importance on the security and legality of the personal data processing process of Users. The User's personal data is processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter "GDPR") and other currently applicable data protection laws.

WHAT PERSONAL DATA IS PROCESSED BY THE ADMINISTRATOR IN CONNECTION WITH THE USE OF THE SERVICE?

1. The Service allows the User to contact the Administrator and provide him with identification and contact data, as well as data related to the content of the message.

2. The Administrator collects data related to User activity, such as time spent on the site, search queries, the number of pages viewed, date, and source of visits.

3. If the User contacts the Administrator, the data is provided directly by the User.

4. If the User's data has been provided in connection with a matter handled by a person who directed the matter to the Administrator, the source of the data is that person. In such a case, the Administrator receives identification data, address data, and data related to the matter, such as the description of the matter.

5. In connection with the use of the Service by the User, the Administrator collects data necessary to provide the offered services, such as name, surname, residential address, email address.

6. The detailed rules and purposes of processing personal data collected during the use of the Service are described below.

PURPOSE AND LEGAL BASIS OF DATA PROCESSED BY THE ADMINISTRATOR

1. Purposes and legal bases for processing Personal Data in the Service Personal data of all persons using the Service are processed by the Administrator for the purpose of:

• analyzing network traffic, ensuring security within the service, and adjusting content (Article 6(1)(f) of the GDPR);

• responding to correspondence, providing the requested offer, conducting correspondence (Article 6(1)(a) and (f) of the GDPR);

• delivering and displaying content on the service – for this purpose, the Administrator collects personal data in the form of IP address, cookies; data is processed based on (Article 6(1)(f) of the GDPR);

• establishing, defending, and pursuing claims – the legal basis for processing is the legitimate interest of the Administrator (Article 6(1)(f) of the GDPR), which involves protecting his rights,

• posting by the User of opinions on services provided by the Administrator and conducting opinion surveys (Article 6(1)(a) of the GDPR);

• using cookies on the Site and its subpages (Article 6(1)(a) of the GDPR);

• for analytical and statistical purposes – involving analyzing User activity on the Service to improve applied functionalities (Article 6(1)(f) of the GDPR);

• for newsletter service (Article 6(1)(a) of the GDPR and Article 6(1)(f) of the GDPR);

• contacting the Administrator provides the possibility of contacting him using the electronic contact form. Using the form requires providing personal data necessary to establish contact. The User may also provide other data to facilitate contact or service of the inquiry. Providing data marked as mandatory is required to accept and handle the inquiry, and failure to provide it results in the inability to handle it. Providing other data is voluntary. Personal data is processed to identify the sender and handle his inquiry sent via the provided form – the legal basis for processing is the necessity of processing to perform the service agreement (Article 6(1)(b) of the GDPR); in the scope of data provided optionally, the legal basis for processing is consent (Article 6(1)(a) of the GDPR).

HOW DO I OBTAIN YOUR PERSONAL DATA?

1. Personal data means any information that can be used to indirectly or directly identify a specific person. This definition includes personal data collected online via my Website and company pages on external platforms.

2. When contacting me, you may be asked to provide your personal data. Data Administrators may share your personal data and use it in accordance with this Privacy Information with each other and other companies capital or personally related to the Administrator. I may also combine it with other information to improve my content.

3. I collect personal data from various sources. These are:

• personal data provided directly – I collect data about how you use my site, such as information about the types of content you view or engage with and the frequency and duration of your activities.

• personal data collected automatically – I also receive and store certain types of personal data each time you contact me online. For example, I use cookies and tracking technologies to obtain personal data when your web browser accesses my website and other content delivered on other websites. Personal data is also collected during searches, posts. Examples of types of personal data I collect include IP address, device identifier, location data, information about the computer and connection, such as browser type and version, time zone setting, browser plug-in types and versions, operating system.

I. USER RIGHTS RELATED TO THE PROCESSING OF THEIR PERSONAL DATA

1. GDPR grants the following rights related to the processing of personal data:

• the right to access personal data and receive a copy of it;

• the right to rectify or correct personal data;

• the right to delete personal data, the right to be forgotten;

• the right to restrict the processing of personal data;

• the right to object to the processing of personal data;

• the right to withdraw consent;

• the right to object to the processing of personal data;

• the right to data portability;

• the right to lodge a complaint with the President of the Personal Data Protection Office.

2. Not all of these rights will always and in every case apply to the User. This is related to the nature of the legal provisions.

II. PROCESSING PERIOD OF PERSONAL DATA

1. The period of processing the User's personal data by the Administrator depends on the type of service provided and the purpose of processing.

2. The User's personal data will be stored until the consent is withdrawn or until the matter is settled.

3. Data related to the analysis of network traffic collected via cookies and similar technologies may be stored until the cookie expires. Some cookies never expire, so the data storage period will be equivalent to the time necessary for the Administrator to achieve the purposes related to data collection, such as ensuring security and analyzing historical data related to traffic on the site.

4. The processing period of data may be extended if processing is necessary to establish and pursue potential claims or defend against claims, and after that time only if and to the extent required by law. After the processing period ends, the data is deleted or anonymized.

III. DATA SECURITY

1. The User's personal data is stored and protected with due diligence, in accordance with the internal procedures implemented by the Administrator.

2. The Administrator processes information about the User using appropriate technical and organizational measures that meet the requirements of generally applicable law, in particular, data protection regulations. These measures are primarily aimed at securing the User's personal data from unauthorized access. In particular, access to the User's personal data is granted only to authorized persons who are obliged to keep this data confidential.

3. The User should also exercise diligence in securing their personal data transmitted over the Internet, particularly by not disclosing their login data to third parties, using antivirus protections, and updating their software.

IV. DATA TRANSFER TO THIRD PARTIES

1. The User's personal data may be transferred to third parties whose services the Administrator uses in connection with the operation of the service.

2. Due to the use of services from Google or Facebook, Users' personal data may be transferred to the United States of America (USA), Canada, and other countries. These entities guarantee an adequate level of personal data protection required by European regulations.

3. Entities processing disclosed data within the European Economic Area:

· Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, D02X525, Ireland (formerly Facebook Ireland Limited).

· MailerLite Limited, Ground Floor, 71 Lower Baggot Street, Dublin 2, D02 P593, Ireland – entity providing the newsletter sending system.

· Facebook or Instagram, particularly in terms of advertising tools.

· Facebook Ireland Ltd. – in terms of using Meta Platforms (Facebook) advertising tools and entrusting data within the group of custom audiences.

· Other contractors or subcontractors engaged in technical, administrative support, or providing legal assistance to the Administrator and its clients, e.g., accounting, IT, graphic design, copywriting, debt collection companies, lawyers, etc.

· Authorities, such as the tax office, to fulfill legal and tax obligations related to settlements and accounting.

4. Entities processing data outside the European Economic Area:

· Google Analytics by Google LLC – entity providing a tool for securing the Service and a tool for statistical analysis (Google Analytics).

5. As part of the Administrator's activities, social media plugins have also been embedded on the website. The purpose and scope of data collection and further processing and use by service providers are described in the privacy policies indicated below:

• Facebook – https://www.facebook.com/privacy/explanation

• Instagram – https://help.instagram.com/519522125107875?helpref=page_content

V. COOKIES AND TRACKING TECHNOLOGIES

1. The website you are on uses cookies.

2. During the first visit to the website, information about the use of cookies is displayed. Not changing the browser settings is equivalent to consenting to their use.

3. The service allows the collection of information about the user through cookies and similar technologies, which most often involves installing a tool on the user's device.

4. This information is used to remember user decisions (font choice, contrast, policy acceptance), maintain the user session (e.g., after logging in), remember the password (with consent), collect information about the user's device and visit for security purposes, as well as for analyzing visits and adjusting content. Information obtained through cookies and similar technologies is not combined with other user data from the service and is not used to identify them by the Administrator.

5. Cookies are short text information saved on the device you use to browse websites. They can be read by the Administrator ("own cookies," which the Administrator uses to ensure the proper functioning of this site) and by systems belonging to other entities whose services the Administrator uses ("external cookies").

6. The user has the right to change the cookie settings from their browser or to delete them.

7. The user also has the option to use the site in so-called incognito mode, which blocks the possibility of collecting data about their visit.

8. This website uses the following tracking technologies:

· Social media plugins, such as Facebook, Instagram;

· Analytical and marketing tools, such as Google Analytics, Facebook Pixel.

VI. NEWSLETTER

1. By subscribing to the newsletter, the User provides the administrator with their name and email address. Providing this data is voluntary but necessary to subscribe to the newsletter. The User may unsubscribe from the newsletter at any time by clicking on the link found in each message sent as part of the newsletter or by contacting the Administrator using the contact details provided above.

2. Subscribing to the newsletter means that the User consents to receive marketing and commercial information via electronic communication means within the meaning of the Act on Providing Services by Electronic Means. By confirming the subscription to the newsletter, the User consents to the Administrator's use of telecommunications terminal equipment for the direct marketing of the Administrator's products and services, as well as the transmission of commercial information.

3. The mailing system used by the Administrator for sending the newsletter records all activity and actions taken by the User related to the emails sent to the User, including the date and time of opening the message, clicking on links within the message, the moment of unsubscribing, etc.

VII. SERVER LOGS

1. Using my website involves sending requests to the server on which the site is located.

2. Each request sent to the server is recorded in the server logs, which include, for example: IP address, date and time of the server, information about the web browser and operating system you are using.

3. The data recorded in the server logs is not associated with specific individuals using the website and is used as auxiliary material for administrative purposes.

4. The content of the server logs is not disclosed to anyone except those authorized to administer the server.

VIII. SOCIAL MEDIA

1. The Administrator has profiles on social media platforms Facebook and Instagram (referred to as "fan pages"). Content, offers, and product recommendations are regularly published and shared on these fan pages. The administrators of social media platforms record user behavior using cookies and other similar technologies with every interaction with our fan pages and other sites on Facebook and Instagram.

2. The administrators of social media platforms have access to general statistics regarding the interests and demographic data (such as age, gender, place of residence) of users visiting the fan pages. Within the use of social media platforms, the scope and purposes of data processing on social media platforms are determined by the administrators of these platforms.

IX. CHANGES TO THE PRIVACY POLICY

• The policy is continuously reviewed and updated as necessary.

• We will update this Privacy Notice when necessary. When we publish changes to this statement, we will also change the date of the last update. We will also keep previous versions of this Privacy Notice in an archive.

• We will not limit your rights under this Privacy Notice without your consent.