Privacy Policy

The following document contains the rules of conduct for the processing of personal data of users of the miriam-shop.pl Store, as well as other persons contacting the Service Provider and receiving the newsletter.
It contains the principles of personal data processing and the use of cookies and other tracking technologies in connection with the use of this website. If you do not accept the content of this document, stop using the Service.
Each person using the Service remains anonymous until they decide to reveal their identity. As the Administrator, I assure you that I do not process any data without your consent, where consent means checking a box, clicking a confirmation link and any other statement or behavior that clearly indicates in a given context that you have accepted the proposed processing. I process personal data of various types and for various purposes - always in accordance with the law.
Taking care of the security of your data, the Administrator selects technical measures to ensure their protection, among others, against disclosure to unauthorized persons or processing in violation of the law.

BASIC INFORMATION

§1

1. The controller of personal data provided via the website is Yuliia Markova, conducting business activity under the name of Miriam Yuliia Markova, ul. Sucha 39a/44, 80-531, Gdańsk, entered into the Central Register and Information on Business Activity, NIP: 9571159632, REGON: 525585876, e-mail: miriam.bjew@gmail.com, telephone number: 577 784 476, hereinafter referred to as the Service Provider or Controller.


2. Contact with the administrator is possible via the address miriam.bjew@gmail.com


3. In order to ensure the security of data entrusted via the website, the Administrator has developed internal procedures and recommendations to prevent unauthorized access to data. The Administrator constantly monitors their implementation and verifies their compliance with applicable legal regulations, including, among others, the Personal Data Protection Act, the Act on the provision of electronic services, as well as implementing acts and EU law.


4. Wherever data processing requires the involvement of external suppliers, the administrator guarantees that it consciously selects the entities with which it cooperates in order to ensure an appropriate standard of security of the data transferred to it.

    RULES IN FORCE
    §2
    1. Use of this website is voluntary. Failure to provide certain information may result in the inability to perform a given service and achieve a specific goal, e.g. contacting the Administrator via e-mail or signing up for a newsletter.

    2. This website, like many other websites, uses cookies to function properly. The following section explains exactly how cookies work and what they mean to users.

    3. The Administrator uses analytical tools that collect anonymous information about visits to this site, such as time spent on the site or tabs displayed. Details can be found below in this document.

      PERSONAL DATA PROTECTION
      §3

      1. Personal Data are processed on the basis and to the extent specified in the content of the consent expressed by the Client himself and in cases where the provisions of law authorize the Administrator to process personal data on the basis of the provisions of law or for the purpose of implementing the contract concluded between the parties.

      2. The Administrator obtains information about users and their behavior in the following manner:

      2.1. through information entered into forms (Registration Form, Order Form, Newsletter Form) voluntarily by the User.
      2.2. by collecting "cookies"

      3. The User may at any time resign from using the Newsletter service by sending an e-mail with such a request to the Administrator's address or by clicking on the "unsubscribe" field visible in each e-mail sent as part of the Newsletter service.

      4. The User may resign from using the Account service at any time by deleting it.

      5. The Administrator collects information voluntarily provided by the Client.

      6. The scope of data collected in the Registration Form and Order Form is specified in the Regulations. The Customer's personal data collected by the Administrator for the purpose of sending the newsletter are:

      6.1. name
      6.2. Email address


      7. Personal data collected by the Administrator are data for the purpose of:

      7.1. providing the User with interesting content related to the activities conducted by the Administrator and the industry represented by him in the form of links, articles and other materials - including messages containing commercial and marketing information - in the form of an e-mail message as part of the Newsletter service, with the prior consent of the User
      7.2. maintaining contact with the User via e-mail correspondence initiated by sending a message by the User via the Contact Form.
      7.3. Sale of Products

      8. Personal data are processed to the extent necessary to provide the Newsletter service and the Registration Form and Order Form services in accordance with the Regulations. The only entities that receive data are bodies with appropriate legal legitimacy and entities cooperating with the Administrator in providing services:

      1. Facebook
      2. Instagram
      3.Google Analytics
      4. Przelewy24
      5. Courier companies
      6. Accounting services of the Service Provider

      9. User data are processed by entities cooperating with the Administrator, which, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC, are obliged to comply with high privacy standards similar to those contained in the Policy.

      10. Due to the fact that some entities cooperating with the Administrator have their headquarters outside the European Union, and therefore in the light of the provisions of the GDPR are treated as so-called third countries. The Administrator ensures that the entities have undertaken to ensure appropriate protection of personal data.

      For Google Inc. The collected data prevents the identification of a specific person, and more information about the tool's privacy standards is available at www.google.com/intl/pl/policies/privacy/partners/. In addition, using the following link: https://tools.google.com/dlpage/gaoptout it is possible to disable activity measured by Google Analytics.

      For Facebook Inc. The collected data generally prevents the identification of a specific person, and more information about the tool's privacy standards is available at https://developers.facebook.com/docs/privacy/

      Thus, the above companies guarantee compliance with personal data protection standards, and the Administrator's use of their technologies when processing personal data is lawful.

      §4

      1. The Customer is obliged to enter data consistent with the actual state of affairs.

      2. Any use without the express consent of the Administrator of any of the elements constituting the content of the Website constitutes a violation of the law.

      §5

      1. The Customer has the possibility to exercise his rights through the means of contact with the Service Provider indicated in the Regulations.

      2. The Client, as the person whose data is subject to processing, has the right to:

      1. transparent communication and information about the data shared,
      2. access to the data provided, including viewing and making corrections,
      3. deletion of data
      4. data processing restrictions
      5. data transfer
      6. object to the processing of his or her data.

      3. The Client, as a person whose data is subject to processing, has the right to obtain a copy of the data concerning him from the Administrator. This information can be provided electronically to the e-mail address.

      4. The Client, as the person whose data is subject to processing, has the right to information on:

      1. processing purposes
      2. categories of personal data
      3. recipients or categories of recipients to whom the data was made available
      4. planned data storage period
      5. lodge a complaint with the supervisory authority.

      §6

      1. Customer data is protected by the Administrator's IT security systems.

      2. In accordance with applicable legal regulations, the Administrator does not process personal data for an unlimited period, but only for the time necessary to achieve the following purposes:

      – offer – for a period of 3 years
      – conclusion and performance of the contract – for the period resulting from the limitation period for claims arising from the contract
      – issuing invoices – for a period of 6 years
      – for other purposes – for a period of 2 years or until consent is withdrawn
      – sending the newsletter – until the Administrator deletes it or discontinues the provision of the Newsletter service.

      3. The data storage period will not be shorter than that specified in applicable legal provisions (specific acts), i.e., among others, the Accounting Act and the Tax Ordinance.

      4. The Administrator counts periods in years from the end of the year in which it began processing personal data in order to streamline the process of deleting or destroying personal data. Counting the deadline for each event separately would be technically difficult, therefore establishing a single date for deleting or destroying personal data allows for more efficient management of this process. After this period, personal data will be irreversibly deleted or destroyed.

      COOKIES
      §7

      1. The only information collected automatically by the website is information contained in cookies (small text files saved in the web browser, enabling the use of the website).

      2. In the event of a visit to the website during which the Customer does not fill out forms, statistical data is collected, such as the pages and subpages visited and the amount of time spent on each of them, date and time of visit, operating system and web browser, location. The legal basis is the legitimate interest of the Administrator consisting in improving the structure of the website and services.

      3. In the above case, unless there is an alternative to the default setting for handling cookies on the website, the data may be processed for marketing purposes. These are data concerning activity - search history, clicks on the website, etc. The Administrator does not profile the data, and the legal basis for processing this data is the legitimate interest of the Administrator consisting in marketing the website and services.

      4. The entity that places cookies on the User's end device is the Administrator indicated in § 2.

      5. Cookies are used for the following purposes:

      – more accurate adaptation of the website content to the customer’s preferences,
      – improving the use of the website by taking into account the individual needs and habits of the Customer,
      – creating statistics on the basis of which the Administrator examines traffic on the website and analyses the ways in which the Customer uses it.

      6. Cookies are used for the following purposes: maintaining the security of services and preventing fraud, facilitating the performance of the site, registering visits for marketing and statistical purposes, using social functions, supporting the personalization of websites (e.g. saving language settings). Cookies may also be used and placed by partners cooperating with the Administrator - then they are subject to the cookie policies or privacy policies of the entities placing them.

      7. You can change your cookie settings at any time in your web browser settings tab.

      8. The Administrator informs that restrictions on the use of cookies may affect some functionalities available on the website and on websites to which it may redirect.

      9. This website uses the following tracking technologies:

      – social plugins such as: Facebook, Instagram;
      – analytical and marketing tools such as: Google Analytics, Facebook Pixel, YouTube.

      10. In the event of playing materials placed on the SoundCloud or Youtube portals on the Site, the Administrator informs about the possibility of installing cookies from these services. In addition, the Site contains social network cookies - they enable sharing content or commenting on it (for example, in accordance with these rules - https://developers.facebook.com/docs/web). When using such services of the Site, the Client's browser will establish a direct connection with the servers of these services. The Administrator feels obliged to inform that information about commenting or sharing, depending on the privacy settings, will appear to people added as contacts or all visitors to the Client's profile on a given service.

      11. The Administrator reserves the right to use the Google Tag Manager tool for marketing purposes. This involves the use of Google cookies, for example Google Ads codes.

      §8

      The Administrator reserves the right to make changes to the Privacy Policy of the website due to the need to adapt it to the development of Internet technology, changes in the law on personal data protection and the development of the website itself. The Administrator is obliged to inform Customers about any changes in a visible and understandable way.

      §9

      The website may contain links to other websites. These websites operate independently of the Administrator's website and are not supervised by it in any way. The websites may have their own privacy policies and regulations, which the User should familiarize themselves with on their own.

      §10

      In matters not regulated by this Privacy Policy, the relevant provisions of Polish and European law shall apply.

      FINAL PROVISIONS
      §11

      1. The content posted on this website and on the social media sites it supports is a manifestation of my own intellectual work. As such, it is subject to my copyright.


      2. I do not consent to copying the content in whole or in part without my express prior consent.


      3. Persons using the resources of the miriam-shop.pl website are obliged to use it in a manner consistent with the law and good customs, taking into account the respect for personal rights and intellectual property rights of third parties.

      INFORMATION CLAUSE FOR VISITORS OF MIRIAM'S FACEBOOK PAGE
      §12

      1. Personal data of persons visiting my fanpage will be processed in accordance with the requirements of the Act of 10 May 2018 on the Protection of Personal Data and in accordance with the requirements specified in the Regulation of the European Parliament and of the Council of 27 April 2016 ("GDPR").

      2. I obtained this data from Facebook Inc. and from your public profile on the Facebook internet platform.

      3. I process personal data of people who:

      – Subscribed to the fanpage by clicking the “Like” or “Follow” icon
      – They used the chat option to contact the Administrator
      – They published their comment under any of the posts on the fanpage

      4. Personal data will be processed for the following purposes:

      – in order to manage this fanpage on the social networking site Facebook and to use it to inform about our activities, to promote various events, campaigns, actions that we organize and our brand, products and services, to build and maintain a community associated with us and also to communicate via the available functionalities of the Facebook service (comments, chat, messages), which is our legitimate interest (basis of art. 6 sec. 1 letter f of the GDPR),
      – for statistical purposes concerning the analysis of the functioning, popularity and use of the fanpage, which is our legitimate interest (basis in Art. 6 sec. 1 let. f of the GDPR),
      – in order to determine, pursue or defend against claims, which is our legitimate interest (basis: Art. 6 sec. 1 let. f GDPR)
      – in order to take steps to conclude a contract based on your interest in our services (pursuant to Article 6(1)(b) of the GDPR),
      – in order to take steps to conclude a contract based on your interest in our services (legal basis: Art. 6 sec. 1 letter b of the GDPR).

      5. I will process the following categories of Users' personal data:

      – basic identification data (name and surname) to the extent published by Users on their own/private profile on the social networking site Facebook,
      – other data published by Users on their Facebook profile, including their image (profile photo – if embedded),
      – other data published by Users during a conversation via the Messenger application, anonymous statistical data regarding

      Users visiting the fanpage are collected thanks to cookies, each of which contains a unique User code that can be linked to the connection data of Users registered on Facebook, and which is downloaded and processed when the fanpage is opened.

      6. The period of data processing is related to the purposes and basis of their processing. Therefore:

      – data processed on the basis of the legitimate interest of the Administrator will be processed until an objection is effectively filed or such interest ceases,
      – data processed for the purpose of pursuing or defending against claims will be processed for a period equal to the limitation period for such claims,
      – personal data collected by Facebook, i.e. history of entries, history of activity in the Messenger application, history of activity via the Instagram application are subject to retention in accordance with the principles set out in Facebook’s regulations;
      – statistical data on people visiting the fanpage available via the “Facebook Insights” function will be processed for the duration of the availability of this data on Facebook;

      7. Personal data may be transferred to third parties processing data on behalf of the Administrator.

      8. The entities referred to above process data on the basis of an agreement with the Administrator and only in accordance with the Administrator's instructions, and the processing of personal data will take into account the necessary security measures.

      9. You have the right to access your data, the right to request its rectification, deletion or restriction of its processing, as well as the right to object.

      10. You also have the right to lodge a complaint with the supervisory authority responsible for personal data protection (President of the Personal Data Protection Office).

      11. I inform you that you will not be subject to a decision based solely on automated processing that would produce legal effects for you or significantly affect you in a similar manner.

      12. Given the international nature of data flows within the Facebook platform, Facebook may transfer data outside the European Economic Area in accordance with the principles set out by Facebook in its privacy policy. However, do not worry that your data will be processed in violation of applicable law. Facebook has stated that it has implemented standard contractual clauses between processors, which, according to Facebook, means that your data is safe. You can read more about this here.

      FACEBOOK PIXEL

      1. Facebook Pixel is a piece of code placed on a website that acts as an analytical tool. It allows us to target Facebook ads to people who have visited our website or specific products.

      2. I want you to be aware that the information collected from you through the use of Facebook Pixel is anonymous. However, it may be combined with other information about you collected as part of the social platform Facebook.

      3. I use this tool on my website. This is justified by my legitimate interest as an administrator in the form of marketing my own products or services.

      4. The information collected in this way is most often transferred to a Facebook server in the United States and stored there. However, Facebook Inc. ensures an adequate level of protection of personal data required by European law.