- General Provisions
- Goal and range of data collection
- Legal basis of data processing
- Right to control, access and rectify
- "Cookies"
- Final Provisions
- GENERAL PROVISIONS
- The Controller of personal data collected via www.stixx.pl is STIXX sp. z o.o., having its registered office at Plac Europejski 4A, 00-844 Warsaw, registered under KRS (National Court Register) No 0000500494, REGON: 147131165, share capital 255 000,00 PLN, email address: , hereinafter referred to as "The Controller" is also the Service Provider.
- Personal Data of the Service Recipient are processed in accordance with the Data Protection Act of August 29th 1997r. (Dz. U. Nr 133, poz. 883 ze zm. and the Digital Supplying of Goods Act of 18th of July 200r. (Dz. U. Nr 144, poz. 1204 ze zm.)
- The Controller takes careful steps to protect personal data. The Controller particularly ensures that the data he collects is:
- processed in accordance to the law,
- collected for known, lawful purposes and is not processed further for goals unrelated to these purposes,
- is correct and adequate to the purposes, for which it is processed and are stored in a way which allows for identification of persons only as long as is necessary to achieve these purposes.
- GOAL AND RANGE OF DATA COLLECTION
- Personal data of Service Recipients are collected by the Controller are used for:
- contacting the client
- marketing purposes (newsletter)
- The Controller processes the following data of Service Recipients:
- name and surname,
- e-mail address,
- phone number.
- The Controller may process the following data characterizing the Service Recipient's use of digitally supplied services (exploitation data):
- Tags identifying the end of the telecommunications network or IT system which the Service Recipient used.
- Information regarding the beginning, end and the extent of digital services used by the Service Recipient
- Information regarding Service Recipient's each use of digital services.
- Providing personal data listed in pt. 2 is necessary for the Service Supplier to supply goods digitally to the Service Recipient, within the scope of the website.
- LEGAL BASIS OF PROCESSING DATA
- The use of the website and accepting contracts for supplying digital services through it, for which providing personal data are necessary, is completely voluntary. The person decides himself whether he wants to begin receiving digitally supplied services from the Service Supplier, in accordance to the Regulations.
- According to article 23. of the Personal Data Protection Act of 29th August 1997 (Dz. U. Nr 133, poz. 883 ze zm.) processing personal data are legal when, among others:
- The data subject has given consent to the processing of his or her personal data for one or more specific purposes.
- Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
- The purpose of the processing of personal data by the Controller shall be determined in that legal basis or, as regards the processing referred to in point (ii), shall be necessary for the performance of a of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.
- RIGHT TO CONTROL, ACCESS AND RECTIFY
- The Service Recipient shall have the right to obtain from the Controller and rectify their personal data.
- Data subjects have the right to control the processing of their personal data, within the database of the Controller, in particular the right to fill in, update and correct their personal data, the right to obtain from the Controller temporary or complete restriction of processing and the right to obtain from the controller the erasure of personal data concerning him, if they are incomplete, outdated, untrue, or when the data has been collected unlawfully, or when the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
- In order to exercise the rights listed in points 1. and 2. one may send an appropriate e-mail to:
- "COOKIES"
- Website of the Service Provider uses cookie files. Lack of changing of browser settings on the end user side is equivalent to the user granting permission for their use.
- Installing cookie files is necessary for the correct providing of digital services via the website. Cookie files contain data necessary for the correct functioning of the website, in particular those requiring authorization.
- Within the website, the following types of cookies are used:
- session - temporary files stored on the Service Recipients end device until the Service Recipient logs out (leaves the website),
- permanent - stored on the end user's device for a period of time specified in the cookie files parameters or until the User deletes them,
- analytical - allow for a better understanding of the users interaction with the website's content and to organize It better. Analytical cookies collect information regarding the way the user interacts with the website, type of website the user has been redirected from and the number and duration of the user's visits to the website. This data does not register specific personal data of the Service Recipient, but serve to prepare website usage statistics.
- The User has the right to control the extent to which cookie files access the User's device, by previously choosing them in the browser window. Detailed information regarding the possibilities and servicing cookie files are available in software settings (internet browser settings).
- FINAL PROVISIONS
- The Controller shall use technical and organizational means that secure personal data processing adequately to the threats and data category of the data in question, in particular protects the data from sharing it to unauthorized persons, from the data being taken by an unauthorized person, from unlawfully processing the data, and the modification, loss or their corruption or destruction.
- The Service Provider discloses adequate technical means preventing acquisition and modification of digitally transferred personal data by unauthorized persons.