Skip to main content

Privacy Policy of bestau.pl website

§1
GENERAL PROVISIONS

  1. The administrator of the personal data collected via the website bestau.pl is Włodzimierz Pająk running the business activity under the name BEST-AUDIO WŁODZIMIERZ BOGDAN PAJĄK registered in the Central Register of Business Activity and Information kept by the minister responsible for the economy, place of business and address for delivery: ul. Gen. Lucjana Żeligowskiego 3/5, 90-752 Łódź, NIP: 7270018781, REGON: 470557320, e-mail address (e-mail):biuro@bestau.pl, tel. +48 669 783 561, hereinafter referred to as the “Administrator” and being at the same time the Service Provider.
  2. Personal data collected by the Administrator through the website are processed in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as “RODO”.
  3. The Administrator is the administrator of the data entered into the Service.
  4. Any words or phrases capitalized in the body of this Privacy Policy shall be understood as defined in the Terms of Service of bestau.co.uk.

§2
PURPOSE AND SCOPE OF DATA COLLECTION

  1. PURPOSE OF PROCESSING AND LEGAL BASIS. The Administrator processes personal data of Service Recipients of bestau.pl for the following purposes:
    1.1. Responding to inquiries sent via the Contact Form – the legal basis for data processing is the Administrator’s legitimate interest (Article 6(1)(f) RODO), consisting of correspondence and providing answers to questions about services offered;
    1.2. If a separate consent is given – in order to send commercial information by electronic means or to conduct direct marketing via telephone calls – the legal basis for data processing is the consent of the Customer (Article 6.1.a RODO) in connection with Article 10.2 of the Act on Providing Services by Electronic Means and Article 172.1 of the Telecommunications Law;
    1.3. Creating statistics on the use of the Website and improving its functionality – the legal basis is the legitimate interest of the Administrator (Article 6.1.f RODO).
  2. SCOPE OF PROCESSED PERSONAL DATA. The Administrator processes the following personal data of the Service Recipients:
    2.1 In case of using the Contact Form: name, e-mail address, telephone number (providing the data is voluntary, but necessary to respond);
    2.2 Technical data, including: IP address, domain name, browser type, operating system, access time, source of visits, click paths – collected automatically for the purpose of conducting statistics and analysis of the functioning of the Website.
  3. ARCHIVING PERIOD OF PERSONAL DATA. Personal data are stored:
    3.1. In the case of data processed on the basis of a legitimate interest – for the period necessary to fulfill the purpose, not longer than the period of limitation of possible claims (usually 3 years, and up to a maximum of 6 years);
    3.2. In the case of data processed on the basis of consent – until its withdrawal, and after withdrawal for the period necessary to defend against possible claims (also up to a maximum of 6 years).
  4. Provision of personal data by the Customer is voluntary, but failure to do so may prevent the use of the Contact Form or receipt of marketing information.

§3
SHARING OF PERSONAL DATA

  1. Personal data of Service Recipients may be transferred to external entities whose services are used by the Administrator in the operation of the Site – only to the extent necessary to achieve the purposes referred to in §2.
  2. Depending on the nature of the cooperation, recipients of the data may be:
    – providers of website hosting and maintenance services,
    – email providers,
    – providers of tools for cookie and consent management (e.g. CookieYes ),
    – companies providing analytical services (e.g. Google LLC – Google Analytics).
  3. The entities indicated process personal data on the basis of a personal data processing entrustment agreement with the Administrator or act as independent controllers, depending on the role of the entity.
  4. Personal data processed by the Administrator is stored exclusively in the European Economic Area (EEA), except where data is transferred to a third country in accordance with the appropriate safeguards provided for in the RODO (e.g., within the framework of the use of Google LLC services – transfer to the U.S. based on a decision with an appropriate level of protection, such as the EU-U.S. Data Privacy Framework).

§4
THE RIGHT TO CONTROL, ACCESS AND CORRECT YOUR DATA

  1. The Data Subject has the right to access the content of his/her personal data and the right to rectification, erasure, restriction of processing, the right to data portability, the right to object, the right to withdraw consent at any time without affecting the legality of the processing performed on the basis of consent before its withdrawal. Legal grounds for the Service Recipient’s request:
    1.1 access to data – Article 15 RODO,
    1.2 rectification of data – Article 16 RODO,
    1.3 deletion of data (so-called right to be forgotten) – Art. 17 RODO,
    1.4. restriction of processing – Article 18 RODO,
    1.5. data portability – Article 20 RODO,
    1.6. objection – Article 21 RODO,
    1.7. withdrawal of consent – Article 7(3) RODO.
  2. In order to exercise the rights referred to in paragraph 1, you can send the relevant email toadres:biuro@bestau.pl
  3. In a situation where the Service Recipient makes a claim under the above rights, the Administrator shall either comply with the request or refuse to comply with it immediately, but no later than within one month after receiving it. However, if – due to the complex nature of the request or the number of requests – the Administrator is unable to comply with the request within one month, it will comply within another two months, informing the Service Recipient in advance – within one month of receiving the request – of the intended extension of the deadline and the reasons for it.
  4. A data subject has the right to lodge a complaint with a supervisory authority, in particular in the member state of his or her habitual residence, place of work or place where the alleged violation was committed, if he or she considers that the processing of his or her personal data violates the provisions of the RODO. In Poland, the supervisory authority is the President of the Office for Personal Data Protection (PUODO).

§5
COOKIES AND SIMILAR TECHNOLOGIES

  1. The Administrator’s website uses “cookies” and similar technologies (such as tracking pixels or local browser storage) to ensure the proper operation of the website, optimize its performance, analyze the use of the website by users and, with consent, for marketing purposes.
  2. Installation of “cookies” is necessary for the proper provision of services on the Website. In other cases, “cookies” are installed only with the prior consent of the Service Recipient, expressed through the consent management tool. The “cookies” files contain information necessary for the proper functioning of the website, and they also provide the possibility to develop general statistics of website visits.
  3. The following types of “cookies” are used within the Service:
    3.1 Session cookies – temporary files stored on the end user’s device until the user leaves the website or closes the browser;
    3.2 Persistent cookies – stored on the final device of the Service Recipient for the time specified in their parameters or until they are removed by the Service Recipient;
    3.3 Functional and technical cookies – necessary for the proper operation of the Service;
    3.4 Analytical cookies – used to analyze how the site is used (e.g., Google Analytics), installed only with your consent;
    3.5 Marketing cookies – enabling the display of advertisements tailored to the Service Recipient’s preferences, installed only upon consent.
  4. The CookieYes system is used to manage consents to cookies and similar technologies.
  5. The legal basis for processing personal data in connection with cookies is:
    Article 6(1)(c) of the RODO – In terms of the obligation to ensure compliance with the law (e.g., UŚUDE),
    Article 6(1)(f) RODO – legitimate interest of the Administrator (e.g., keeping statistics),
    -. Article 6(1)(a) of the RODO – Customer’s consent to the installation of analytical and marketing cookies.
  6. The administrator uses external cookies, among others, from:
    Google LLC (Google Analytics, Google Ads) – to create anonymous statistics and conduct remarketing activities. Data may be transferred to the U.S. based on appropriate safeguards, such as a decision on the appropriate level of protection (EU-U.S. Data Privacy Framework).
  7. The Service Recipient may change his/her cookie settings or withdraw consent at any time through the consent management tool, as well as through his/her browser settings. Please refer to the documentation of the respective browser for details.
  8. Restricting the use of cookies may affect some of the functionality available on the Website.

§6
FINAL PROVISIONS

  1. The Administrator shall apply technical and organizational measures to ensure the protection of the processed personal data appropriate to the risks and categories of protected data, and in particular shall protect the data from being accessed by unauthorized persons, from being taken by an unauthorized person, from being processed in violation of applicable regulations, and from being altered, lost, damaged or destroyed.
  2. The Administrator also provides appropriate technical measures to protect personal data sent electronically from being obtained or modified by unauthorized persons – in particular, SSL (Secure Socket Layer) certificates are used.
  3. For matters not covered by this Privacy Policy, the following provisions apply:
    – Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016. (RODO),
    – Act of July 18, 2002 on the provision of electronic services,
    – Act of July 16, 2004. – Telecommunications Law,
    and other applicable provisions of Polish law.
  4. The Administrator reserves the right to make changes to this Privacy Policy. Any changes will be published on the Website, and Service Recipients will be informed of the changes in a way that allows them to be known before they take effect.