Privacy policy
MEDKA
PRIVACY POLICY
TABLE OF CONTENTS:
1. PERSONAL DATA ADMINISTRATOR
2. PURPOSES AND BASIS FOR COLLECTING PERSONAL DATA
3. CATEGORIES OF PERSONAL DATA
4. SECURITY RULES FOR THE PROCESSING OF PERSONAL DATA
5. RECIPIENTS OF PERSONAL DATA
6. COOKIES
7. RIGHTS RELATED TO THE PROCESSING OF PERSONAL DATA
8. PERSONAL DATA PROCESSING TIME
9. AUTOMATED PROCESSING AND PROFILING
10. TRANSFER OF DATA OUTSIDE THE EEA
11. COMPLAINT TO THE SUPERVISORY AUTHORITY
I PERSONAL DATA ADMINISTRATOR
1. Personal data administrator
The administrator of your personal data is Medical Wear Laura Sulewska based in Warsaw, ul. Nad Wilanówką 2 02-993 Warszawa, NIP: 6392000043, REGON: 524117883.
2. Contact details
You can contact the Administrator in writing via traditional mail at the registered office address or by e-mail: support@medka.eu or by contact telephone number: +48733277705.
II. PURPOSES AND BASIS FOR COLLECTING PERSONAL DATA
1. The data collected by the Administrator is processed for the following purposes:
1) Handling your reports/inquiries (in order to establish contact, shape the content, change or terminate the legal relationship, e.g. contact form, e-mail correspondence, social media, telephone contact) - depending on the way you contact the Seller, the legal basis for processing is Art. 6 section 1 letter a) and/or b) and/or f) GDPR and your consent to receive commercial information within the meaning of the provisions of the Act on the provision of electronic services and the Telecommunications Law. Providing personal data is voluntary, but necessary for the effective implementation of the indicated purpose. The consequence of not providing data will be the inability to process your request.
2) Conclusion and performance of the contract - the legal basis for processing is Art. 6 section 1 letter b) GDPR. Providing personal data is voluntary, however, it is a condition for the effective implementation of the stated purpose. The consequence of not providing data will be the inability to conclude a contract with you.
3) Accounting and tax archiving as a fulfillment of the legal obligation imposed on the Administrator – the basis for processing is Art. 6 section 1 letter c) GDPR. This obligation results from other legal provisions (including the Accounting Act, Tax Ordinance). In this case, providing data is mandatory.
4) Pursuing claims against the Administrator and pursuing and protecting against the Administrator's claims – the basis for processing is Art. 6 section 1 letter f) GDPR, however, the legitimate interest of the Administrator and you results from other legal provisions (including the Civil Code Act).
5) Providing commercial information and Newsletter Subscription – the legal basis for processing is Art. 6 section 1 letter a) and b) GDPR and consent to receive commercial information in accordance with the Act on the provision of electronic services and the Telecommunications Law. Subscribing to the Newsletter constitutes consent to sending marketing content both via e-mail and SMS messages. Providing data is voluntary, but necessary to achieve these purposes. Consent may be withdrawn at any time.
III. CATEGORIES OF PERSONAL DATA
1. The administrator collects the following personal data:
1) surname and name;
2) address;
3) delivery address;
4) e-mail address;
5) telephone number;
6) company name;
7) Tax Identification Number.
IV. SECURITY RULES FOR THE PROCESSING OF PERSONAL DATA
1. The Administrator applies technical and organizational measures to ensure the protection of your personal data being processed.
2. The Administrator makes every possible effort to secure your data and protect it against the actions of third parties. For this purpose, it uses all necessary physical and organizational security measures, as well as server and website connections to protect your data. All connections related to your electronic payments, if you choose this option, will be made via a secure encrypted connection.
3. However, the actions taken by the Administrator may turn out to be insufficient if you do not follow the security rules yourself.
The recipients of your personal data will be:
1) Employees or associates of the Administrator and persons who are members of the Administrator's management bodies - the Administrator informs that he has implemented procedures enabling access to personal data only to persons who have been granted written authorizations and only to the extent necessary due to the tasks performed by these persons, and obliged them to maintain the confidentiality of personal data also after the termination of the employment or cooperation relationship.
2) Entities to which the Administrator entrusts the processing of personal data: providers of IT, accounting, legal, courier, postal, marketing services, data storage on servers - and the Administrator informs that he takes all necessary actions to ensure that subcontractors and other cooperating entities guarantee the use of appropriate security measures in each case when they process personal data on behalf of the Administrator.
3) Public administration entities entitled to obtain personal data on the basis of legal provisions.
1. The Administrator does not automatically collect any data identifying users of the Medka Online Store, except for information contained in cookies when using the Online Store.
2. Cookies are small text files sent by the Online Store and stored on your computer, containing certain information related to your use of the Online Store. Cookies are used by the Online Store to operate the website and provide you with interesting information during the purchasing process.
3. Cookies are used for the following purposes:
1) Creating statistics that help understand how website users use websites, which helps improve them.
2) Maintaining the user's session (after logging in), thanks to which the user does not have to log in again on each subpage.
3) Determining the user's profile in order to appropriately match promotional and advertising materials on the Internet.
4. As part of the cookie settings available from our Online Store, you can decide for yourself which cookies you agree to and therefore whether you consent to our Partners using the data collected through cookies or not. We will not share your personal data without first obtaining such consent.
5. At the same time, in any case, you can block the installation of cookies or delete permanent cookies by using the appropriate help options of your web browser. In case of problems, we advise you to use the browser's help file or contact the manufacturer of the browser you are using.
6. In addition to cookies, the Administrator may also collect data customarily collected by Internet system administrators as part of the so-called logs or log files. The information contained in the logs may include, among others, your IP address, type of platform and web browser, Internet provider and the address of the website from which you entered the Online Store. Some subpages of the Online Store and other means of communication with you may contain the so-called "web beacons" (so-called electronic images). Web beacons allow you to receive information such as the IP address of the computer on which the website on which the web beacon was placed was loaded, the website URL number, page loading time, type of web browser, as well as information contained in cookies, in order to assess the effectiveness of our advertising. This data will be archived and used for the purposes of statistical analysis and assessment of the global traffic of Online Store users. These data will not be combined with the personal data provided by you.
7. In order to monitor the Online Store, the Administrator may use analytical software belonging to third parties, e.g. Google Analytics. Google Analytics can be disabled using a browser extension that can be downloaded from:https://tools.google.com/dlpage/gaoptout.
VII. RIGHTS RELATED TO THE PROCESSING OF PERSONAL DATA
Depending on the legal basis for processing, you have the right to access your data, correct it, object to it or delete it. You also have the right to withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal. You may revoke your consent in writing, sent to the address of the Administrator's registered office or delivered directly to him.
VIII.PERSONAL DATA PROCESSING TIME
Your personal data will be processed for the period in accordance with the provisions of law, necessary to achieve the indicated processing purposes, in particular handling your applications/inquiries, concluding and implementing the contract, fulfilling obligations related to the performance of the contract, storing accounting and tax documents, and later, for the period of limitation of claims and for the purposes of undertaking marketing activities, in this respect, however, at the latest until you withdraw your consent.
IX. AUTOMATED PROCESSING AND PROFILING
Your personal data will not be processed in an automated manner and will not be subject to profiling.
X TRANSFER OF DATA OUTSIDE THE EEA
Your data will not be transferred outside the European Economic Area or made available to international organizations.
XI. COMPLAINT TO THE SUPERVISORY AUTHORITY
You have the right to lodge a complaint with the President of the Personal Data Protection Office with its registered office at ul. Stawki 2 in Warsaw.
XII. CHANGES TO THE PRIVACY POLICY
The policy may be verified on an ongoing basis and updated, if necessary, about which Users will be informed on the Medka Website. The modifications are intended to take into account changes in the Administrator's practices regarding the handling of personal data and to strengthen the personal data protection system.