Privacy policy
The following Privacy Policy is a document related to the Terms and Conditions of the Simgauges.com website and the Simgauges.com Online Store (hereafter the ‘Terms and Conditions”). Definitions of terms used in this Privacy Policy are included in the Terms and Conditions. The provisions of the Terms and Conditions shall apply accordingly.
The following Privacy Policy is for information purposes and complies with a disclosure obligation imposed on the data controller by Regulation 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (hereafter the ‘GDPR’).
1. PERSONAL DATA CONTROLLER
1.1 Personal data of the Buyers shall be processed by the Seller, i.e. company – “FPU Monika Pajor” seat in Łódź,93-481, ul. Arabska 8, tax identification number NIP – 9820361569, statistical number REGON – 520493046 (hereafter the ‘Controller’).
1.2 Controller may be reached, in particular, via the following e-mail address: contact@simgauges.com. The data protection officer may be reached via the following e-mail address: contact@simgauges.com. Mrs Monika PAjor was appointed as the data protection officer.
2. SCOPE AND TERM OF PROCESSING
2.1 The scope of personal data processed by the Seller shall be determined by data supplemented and sent by the Buyer on an appropriate form. Buyer’s personal data subject to processing may include their e-mail address, name and surname, telephone number, address of residence/ delivery, and computer’s IP address.
2.2 In case the Seller shall obtain information that the services are used by the Buyer in a way contrary to the Terms and Conditions or applicable provisions of law (unauthorized use), the Seller may process the Buyer’s personal data to the extent necessary to establish their liability.
2.3 The Buyer’s personal data shall be processed for a period of 5 years from the date of placing of the last Order, while in the case of Newsletter subscribers data shall be processed until the termination of the Newsletter contract, and after that data shall be deleted unless its processing is necessary due to another legal basis.
2.4 Seller shall not transfer personal data to third countries.
2.5 Buyers’ personal data shall not be processed in an automated way.
3. PURPOSE AND GROUNDS FOR PROCESSING
3.1 Buyers’ personal data shall be processed in order to:
(a) comply with the applicable provisions of the law,
(b) perform contracts of sale, provide services by electronic means, in particular, User Accounts maintenance and other activities indicated in the Terms and Conditions;
(c) perform Seller’s promotional and commercial activities.
3.2 The legal basis for personal data processing in the case:
3.2.1 referred to in 3.1(a) shall be the statutory authorization to process data necessary for the purpose of complying with the applicable law,
3.2.2 referred to in 3.1(b) shall be the statutory authorization for processing necessary for the performance of the contract, if the data subject is a party to it or if it shall be necessary to take action before the conclusion of the contract at the request of the data subject,
3.2.3 referred to in 3.1(c) shall be the voluntary consent of the Buyer.
3.3 Providing personal data is voluntary, however lack of consent for the processing of personal data labelled as mandatory shall prevent the Seller from processing Orders and providing services to the Buyer.
4. DATA RECIPIENTS
4.1 The Seller may entrust personal data processing to third parties. In such a case Buyer’s data may be received by: Simgauges.com Online Store hosting provider, Simgauges.com Online Store maintenance (including Newsletter) provider, accounting firm, flagship store, carrier, payment processing companies (to the extent necessary to service payments for an Order):
- Przelewy24
- Stripe
4.2 Personal data collected by the Seller may also be made available to the relevant state authorities at their request and on the basis of relevant legal provisions, or to other persons and entities – in cases prescribed by the law.
4.3 Each entity to whom the Seller shall entrust Buyer’s personal data for processing purposes, based on a personal data processing agreement (hereafter the ‘Agreement’), guarantees an appropriate level of security and confidentiality regarding personal data processing. The entity that shall process Buyer’s personal data based on the Agreement may process the Buyer’s personal data through another entity only on the basis of prior consent of the Seller.
4.4 The disclosure of personal data to unauthorized entities under this Privacy Policy may take place only with the prior consent of the Buyer to whom the data pertains.
5. THE RIGHTS OF THE DATA SUBJECT
5.1 Each Buyer shall have the right to:
(a) delete personal data collected about them, either from the system belonging to the Seller as well as from databases of entities with which the Seller cooperates or cooperated,
(b) restrict personal data processing,
(c) transfer personal data pertaining to the Buyer and collected by the Seller, including receiving them in a structured form,
(d) demand access to their personal data and their rectification from the Seller,
(e) raise objections regarding processing,
(f) withdraw a consent granted to the Seller, at any time and without affecting the compliance with the applicable law of personal data processing which was performed prior to the withdrawal of consent;
(g) lodge a complaint against the Seller to a supervisory authority.
6. OTHER DATA
6.1 The simgauges.com Online Store may store HTTP queries, therefore some information may be stored in the server’s log files, including the IP address of the computer from which the query came from, the name of the Buyer’s station – the identification performed by the HTTP protocol, if possible, date and system time of registration on the simgauges.com Online Store website and the arrival of a query, the number of bytes sent by the server, the URL of the page previously visited by the Buyer in case the Buyer entered by clicking on a link, information about the Buyer’s browser, information regarding errors that occurred during the execution of the HTTP transaction. Logs can be collected as material required for the proper administration of the simgauges.com Online Store. Only the persons authorized to administer the information system shall have access to that information. Log files can be analyzed in order to compile traffic statistics on the simgauges.com Online Store page and in order to compile statistics regarding the errors that occur. Summary of such information shall not identify the Buyer.
7. INFORMATION SECURITY
7.1 Seller shall apply technical and organizational measures ensuring the protection of personal data being processed shall be appropriate to threats and categories of data protected. Seller shall, in particular, secure data technically and organizationally against unauthorized access, removal by an unauthorized person, processing infringing the provisions of the Act as well as their change, loss, damage or destruction. Among others, SSL (Secure Socket Layer) certificates shall be used. The seller has also implemented appropriate technical and organizational measures, such as pseudonymization, which are designed to effectively implement data protection principles (such as data minimization) and to provide the necessary safeguards in order to meet the requirements of the GDPR and protect the rights of data subjects.
7.2 Seller shall implement all adequate technical measures specified in Arts. 25, 30, 32-34, 35-39 of the GDPR which provide increased protection and security of Buyer’s personal data being processed.
7.3 In order to log in to an Account, respective login and password shall be entered. In order to ensure an adequate level of security, the Account password shall exist – within the scope of the simgauges.com Online Story – only in an encrypted form. Moreover, registration and logging into the Account shall be executed over a secure HTTPS connection. Communication between the Buyer’s device and servers shall be encrypted using the SSL protocol.
7.4 At the same time, the Seller points out that the use of the Internet and services provided by electronic means, especially the use of publicly available Wi-Fi networks, may involve specific ICT risks, such as the presence and operation of worms, spyware or malware, including computer viruses, as well as the possibility of being exposed to cracking or phishing (password hunting), and others. In order to obtain detailed and professional information about maintaining security on the Internet, the Seller recommends that entities specializing in IT services be consulted.
8. FINAL PROVISIONS
8.1 This Privacy Policy shall enter into force on April 01, 2022.