PRIVACY POLICY • Pixers® • We live to change

PRIVACY POLICY OF THE COMPANY UNDER THE BUSINESS NAME PIXPLANET SP. Z O. O.

1. DEFINITIONS

1.1. Administrator - means the administrator of personal data, which is the company under the name of PixPlanet Sp. z o. o. with its registered office in Warsaw at ul. Wspólna 62, postal code: 00-684, KRS: 0000995162, NIP: 7011108489, REGON : 523284716.

1.2. Personal data - means any information relating to an identified or identifiable natural person, including, but not limited to, device IP, location data, Internet ID and information collected through cookies and other similar technology.

1.3. Policy – means this Privacy Policy.

1.4. GDPR - means Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.

1.5. Service – means the Internet service operated by the Administrator at the following address pixers.pl

1.6. User – means any natural person visiting the Service or using one or more of the services or functionalities described in the Policy.

2. PROCESSING OF PERSONAL DATA IN CONNECTION WITH THE USE OF THE SERVICE

  1. In connection with the User's use of the Service, the Administrator collects Personal Data to the extent necessary to provide the particular services offered, as well as information about the User's activity on the Service. This Policy describes the specific rules and purposes of processing Personal Data collected during the User's use of the Service.

3. WHEN AND WHAT PERSONAL DATA IS COLLECTED BY THE ADMINISTRATOR

3.1. To the extent permitted by applicable law, the Administrator collects the following Personal Data about the Service User:
a) When the User places an order and uses the Administrator's services, when the User subscribes to the newsletter (information bulletin), the Administrator collects the following Personal Data of the User in total: name, surname, e-mail address, delivery address, telephone number, as well as any other information that will be necessary to use specific services of the Administrator.
b) In the case of Users who have agreed to be sent information about discounts, promotions, special offers and any marketing information, the Administrator collects the following User data: name, e-mail address, date of birth.
c) Each time a User accesses the Service, the Administrator's servers automatically collect information from the User's web browser or device. This information includes: the User's IP address and browser type (if the User uses a browser), device identification number, location (if the User has this feature enabled), ISP or wireless service provider, redirect/outbound pages, platform type, date/time stamp and number of clicks, start and end of each session, type of marketing materials sent to the User tailored to the User's shopping preferences, orders reviewed and placed in the shopping cart and how they were viewed.

4. METHOD AND PERIOD OF USE OF PERSONAL DATA BY THE ADMINISTRATOR

4.1. The User's personal data is used by the Administrator for the following purposes:

a) placing and servicing orders placed by the User via the Service and the provision of services to the User - the legal basis for processing is the necessity of processing for the performance of the agreement (Article 6(1)(b) GDPR) - the Administrator processes the Data for this purpose until the orders placed by the User have been processed and until the provision of services to the User has been completed;

b) the Administrator's own marketing, in particular through: sending newsletters; sending information on discounts, promotions, special offers and any other marketing information - the legal basis for processing is the User's voluntary consent to such activities (Article 6(1)(a) of the GDPR) - the Administrator processes data for this purpose until the User withdraws consent;

c) to perform legal obligations to which the Administrator is subject, in particular obligations under tax and accounting regulations - the legal basis for processing is the necessity of processing to fulfil a legal obligation incumbent on the Administrator (Article 6(1)(c) of the GDPR) - the Administrator processes data for this purpose for the period resulting from the legal regulations in question;

d) preparing analyses and statistics - the legal basis for processing is the legitimate interest of the Administrator (Article 6(1)(f) GDPR) consisting in conducting analyses of Users' activity on the Service and the way they use their account, as well as their preferences in order to improve the applied functionalities and improve sales - the Administrator processes data for this purpose until the usefulness of such analyses and statistics in its operations;

e) use of personal data obtained from cookies, stored in browsers or devices, in order to perform analytical or statistical activities, administrative activities relating to the Services provided, to prevent fraud and to track the aggregate traffic of Service Users - the legal basis for processing is the User's voluntary consent (Article 6(1)(a) GDPR) - the Administrator processes data for this purpose until the User withdraws consent;

f) asserting and defending against claims - the legal basis for the processing is the legitimate interest of the Administrator (Article 6(1)(f) of the GDPR) to protect your rights - the Administrator processes data for this purpose until the statute of limitations for claims.

5. TRANSFER OF USERS' PERSONAL DATA TO THIRD PARTIES

5.1. The Administrator may transfer the User's Personal Data:
a) service providers and subcontractors and third parties processing Personal Data on behalf of the Administrator (e.g., Internet and platform service providers, payment processing service providers, banks, couriers; entities providing accounting, legal, auditing, consulting services);
b) to competent authorities or third parties who make a request for such information, relying on the relevant legal basis and in accordance with the provisions of applicable law.

6. TRANSFER OF DATA OUTSIDE THE EU AND THE EEA

6.1. The Administrator transfers Personal Data outside the EU and EEA only when necessary and with an adequate degree of protection, primarily by:
a) cooperation with processors of personal data in countries for which a relevant decision of the European Commission has been issued;
b) use of standard contractual clauses issued by the European Commission;
c) application of binding corporate rules, approved by the competent supervisory authority.
6.2. The Administrator shall inform the User of its intention to transfer personal data outside the EU and EEA at the stage of collection.

7. USER RIGHTS

7.1. The right to be informed about the processing of Personal Data - including, in particular, information about the purposes and legal grounds for processing, the scope of the processed data, the entities to which the personal data are disclosed and the planned date for their deletion.
7.2 The right to obtain a copy of Personal Data.
7.3. The right to rectify Personal Data.
7.4. The right to delete Personal Data.
7.5. The right to restrict the processing of Personal Data.
7.6. The right to transfer Personal Data.
7.7. The right to object to the processing of Personal Data for marketing purposes.
7.8. The right to object to the processing of Personal Data for satisfaction survey purposes.
7.9. The right to object to other purposes of processing Personal Data.
7.10. 7.10. The right to withdraw consent to the processing of Personal Data.
7.11. 7.11. The right to complain to the President of the Office for Personal Data Protection in the event that the processing of Personal Data is deemed to violate the provisions of the GDPR or other data protection laws.

8. COOKIES

8.1. Cookies are small text files transmitted from the Service and stored on the User's device. Cookies help the Administrator to provide personalized service to the User and to customize the Service to the User's needs. The Administrator allows the User to give active consent to the use of cookies.
8.2. The Administrator's cookies may be either session cookies (temporary cookies that identify and track Users within the Service) or permanent cookies (cookies that allow the Service to "remember" Users and their preferences on the Service, which remain on the User's computer or device after closing the browser or exiting the session of a particular application or service).
88.3. The administrator uses cookies to:
a) remember and use information about the service offerings viewed by the User when visiting the Service and the specific services saved by the User in the shopping cart when placing an order;
b) know and save the User's preferences for the future;
c) collect information about the ads displayed by the User.
8.4. If the option to disable tracking ("Do Not Track", DNT) is enabled in the User's browser, the Administrator does not track such User, does not save cookies, and does not use advertising.

9. WEB BEACONS

The administrator uses web beacons. They are also referred to as invisible gif objects ("clear gif") or action tags. These are small transparent graphic images that are often used in conjunction with cookies to further personalize the Service and the services provided to Users by the Administrator, as well as to collect a limited set of information about Users visiting the Service. The Administrator may also use beacons in email messages for better understanding of Users' behaviour and preferences. The Administrator does not connect beacons with any data that allows identifying the User.

10. METADATA

The administrator uses metadata. When a User uses the Service as a creator, the Administrator records any metadata associated with the images uploaded by the User. Metadata is usually technical data associated with the content submitted by the User. In particular, metadata can describe how, when and by whom the content was downloaded and formatted. The administrator does not link the technical information collected to any identified person at the time of collection.

11. MOBILE DATA AND DEVICE IDENTIFIERS

The administrator uses so-called "device identifiers." When a User accesses the Service via a mobile device, the Administrator may collect, monitor and store so-called "device identifiers" on such User's mobile device and/or remotely store and access them. Device identifiers are small data files or similar data structures that are stored on or associated with a User's mobile device and that uniquely identify the User's mobile device. Device identifiers can be data related to the hardware components of a mobile device or data related to the operating system or other software of a mobile device. Device identifiers may provide the Administrator, or third-party data recipients, with information about how you browse and use the Service. This, in turn, enables the Administrator to compile reports and analyses and to target personalized content and advertising to the User.

12. ANALYTICAL SERVICES

The Administrator uses third-party analytics providers such as Google (although the Administrator may change analytics providers). Analytics tools collect information sent by the User's device or the Administrator's website, including the websites visited by the User, add-ons and other information that helps the Administrator improve its services. Such analytical tools are used by the Administrator to analyse how Users use the Administrator's services and to measure traffic on the Service (website) and Users' preferences regarding the use of the Administrator's services and products.

Information generated by your browser or device about your use of the Service is transmitted to and stored by the analytics provider. Analytics providers will use this information to evaluate your use of the Service, to compile reports on activity on the website or mobile devices, and to provide other services related to website and network usage. Analytics providers may provide this information to third parties if they are required to do so by law or if such third parties process data on behalf of the analytics providers.

The Administrator collects and uses analytical data together with analytical data from other Users in a way that prevents its use to identify specific Users.

14. DEMOGRAPHIC DATA

The Administrator obtains demographic data and uses it to personalize the content provided to a specific User. Some of this information may be shared by the Administrator with advertisers, but in a way that does not identify you.

15. SECURITY OF PERSONAL DATA

With the use of appropriate technical and organizational measures, Users' Personal Data shall be processed in a secure manner against unauthorized or unlawful processing and accidental loss, destruction or damage. Your personal information is protected by secured networks and is accessible only to a limited number of people, who are additionally obliged to maintain the confidentiality of such data. In addition, any Personal Data of special categories or regarding credit information is encrypted using Transport Layer Security (TLS) technology. In addition, the Administrator uses only verified and trusted subcontractors, suppliers and processors of Users' personal data.

16. CHANGES TO THE PRIVACY POLICY

If any changes are made to this Policy, the Administrator will inform Users by publishing the changes on the Service. Your continued use of the Administrator's services after the changes to the Policy take effect will constitute your agreement to comply with them.

17. CONTACT

In all matters relating to the processing of Personal Data, the User may contact the Administrator by e-mail at the following e-mail address: kontakt@pixers.pl or by traditional mail to the following address: ul. Wspólna 62, 00-684 Warsaw.

REVISION DATE

This privacy statement was last revised on October 14, 2022.