General provisions
This Privacy Policy of the Site is of informative nature, which means that it shall be no source of obligations for Users of the Site. The Privacy Policy contains, above all, the principles concerning the processing of data by the Controller on the Site, including the basis, purpose and scope of personal data processing and the rights of data subjects as well as information regarding the use of cookies and analytical tools on the Site.
The Controller of the personal data collected via the Site shall be TOMASZ PASZKO who conducts business activity under the name of MILADESIGN TOMASZ PASZKO registered in the Central Register and Information on Economic Activity operated by the minister responsible for the economy, with its place of business activity under the address: Porosly-Kolonia 9A, 16-070 Choroszcz and its mailing address: Porosly-Kolonia 9A, 16-070 Choroszcz, VAT PL5420103689, REGON 050033911, e-mail: mila@miladesign.com.pl – hereinafter referred to as “Controller” and being simultaneously the Owner of the Site.
Personal data on the Site shall be processed by the Controller in accordance with the binding legal regulations, in particular the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) hereinafter referred to as “GDPR” or “GDPR Regulation”. The official text of the GDPR Regulation: http://eur-lex.europa.eu/legal-content/PL/TXT/?uri=CELEX%3A32016R0679.
Using the Site is voluntary. Similarly, providing personal data by the Service User or the Customer using the Site is voluntary, subject to two exceptions: (1) entering into contracts with the Controller – failure to provide the personal data necessary for the conclusion and performance of the Contract of Sale or a contract for the provision of an E-Service with the Controller in the cases and within the scope indicated on the website of the Site and the Terms and Conditions of the Site and this Privacy Policy shall result in no possibility to enter into the contract. Providing personal data is a contractual requirement in such a case and if the data subject is willing to enter into the contract with the Controller, they shall be obligated to provide the required data. The scope of the data required to enter into the contract is each time specified in advance on the website of the Site and in the Terms and Conditions of the Site; (2) statutory obligations of the Controller – specifying the personal data is a statutory requirement resulting from the commonly binding legal regulations obligating the Controller to process the personal data (e.g. processing data to fiscal books and ledgers) and failure to specify the data will render it impossible for the Controller to perform the obligations.
The Controller assures due diligence to protect the interest of persons being data subjects, in particular being responsible and liable for and assuring that the data collected are: (1) processed in accordance with the Act; (2) collected for specific, legal purposes and not subject to further processing inconsistent with the purposes; (3) correct as regards the subject matter and adequate as regards the purpose of the processing; (4) stored in a form making it possible to identify the people they apply to, no longer than it proves necessary to attain the purpose of processing and (5) processed in a manner ensuring security of the personal data, including the protection against illicit or illegal processing or accidental loss, damage or destruction, with the use of appropriate technical and organisational measures.
Taking into account the nature, scope, context and purpose of processing as well as the risk of breaching the rights or freedoms of natural persons with varied likelihood and degree of threat, the Controller is implementing appropriate technical and organisational measures so that the processing takes place pursuant to the Regulation and it is possible to show it. The measures are reviewed and updated, as necessary. The Controller applies technical measures preventing the acquisition and modification of personal data sent electronically by unauthorised persons.
Any words, phrases and acronyms used in this privacy policy starting with a capital letter (e.g. Site, E-Service) shall be understood in accordance with their meaning consistent with this document.