PRIVACY POLICY OF THE APPLICATION

www.notujpro.com

The Data Controller of the web application available at the address: www.notujpro.com, hereinafter referred to as the Application, is Kacper Łapacz conducting business under the name Kacper Łapacz Note Wise with a registered office at Ludwinowska 47A, 02-856 Warsaw, registered in the Central Register and Information on Economic Activity, NIP (Tax Identification Number): 9512575429, REGON (National Business Registry Number): 526104666, hereinafter referred to as the Personal Data Administrator.
Any inquiries, applications, or complaints regarding the processing of personal data by the Personal Data Administrator, hereinafter referred to as Reports, should be directed to the following email address: kontakt@notujpro.com, or in writing to the address Ludwinowska 47A, 02-856 Warsaw. In the content of the report, it should be clearly indicated:

  1. Data of the person or persons covered by the report,
  2. The event that is the reason for the report,
  3. Present requests and the legal basis for these requests,
  4. Specify the expected way of handling the matter.

In our Application, we collect the following personal data:

  1. Name and surname – may be processed when users provide them to us via email, registration form, or order form available in our Application, and also when providing us with this information via traditional mail or during phone contact, in order to use the services of our Application.
  2. Phone number – may be processed in the case of phone contact, and when the user provides it to us via email, registration form, or order form available in our Application. The phone number is processed to enable us to contact the user regarding the fulfillment of a specific order or to provide an answer to other questions.
  3. Email address – may be processed when the user provides it in the case of contact via email, registration form, or order form available in our Application, as well as via traditional mail or during phone contact. We respond to inquiries related to our offer and provide information related to the implementation of the concluded agreement through the email address.
  4. IP address of the device and potential personal data contained in Cookies files – information resulting from general principles of Internet connections, such as IP address (and other information contained in system logs), is used for technical and statistical purposes, including collecting general demographic information (e.g., about the region from which the connection originates). This type of data is also used for marketing and analytical purposes if consent is given under art. 173 sec. 1 of the telecommunications law.
  5. NIP (Tax Identification Number) and company name – data necessary for issuing all invoices and other documents related to the use of our Application.
  6. Other data may be collected in the course of conducting specific matters or may be provided by users of our Application via email, traditional mail, or phone contact.

Every person using our Application has the option to choose whether and to what extent they want to use our services and provide information and data about themselves, within the scope determined by this Privacy Policy.
We process personal data for the purpose of:

  1. Making purchases in our Application using the order form provided on the website (Art. 6(1)(b) of the GDPR) – in this scope, personal data will cease to be processed upon the finalization of a specific transaction.
  2. Entering into and performing contracts related to our services (Art. 6(1)(b) of the GDPR) – in this scope, personal data will cease to be processed upon the completion of a specific contract.
  3. Managing individual user accounts (Art. 6(1)(b) of the GDPR) – in this scope, personal data will cease to be processed upon the user's deletion of the account.
  4. Directing marketing content related to the Administrator and conducting website analytics related to the use of cookies (Art. 6(1)(a) of the GDPR) – personal data is processed until the end of the session or the deletion of cookies by the user, withdrawal of consent, or until an effective objection is raised against processing for this purpose.
  5. Running the website (Art. 6(1)(f) of the GDPR in connection with Art. 173(1) of the telecommunications law) – in this scope, personal data will cease to be processed in the event of the expiration of the Cookie file, deletion of Cookies files, or appropriately at the end of a given session.
  6. Fulfilling legal obligations incumbent on the Personal Data Administrator, especially in terms of documentation, issuing invoices, etc. (Art. 6(1)(c) of the GDPR) – in this scope, personal data will be deleted after fulfilling specific legal obligations.
  7. Current communication related to the functioning of the Application (Art. 6(1)(f) of the GDPR, i.e., the legitimate interest of the Personal Data Administrator) – in this scope, your personal data will cease to be processed upon answering the specific question or questions.
  8. Establishing and pursuing claims or defending against these claims (Art. 6(1)(f) of the GDPR, i.e., the legitimate interest of the Personal Data Administrator) – in this scope, personal data will be deleted when the claims expire, generally after a 3-year limitation period.

The source of the data processed by the Personal Data Administrator is users, i.e., individuals whose data is concerned.
No personal data is disclosed to third parties without the explicit consent of the person whose data is concerned. Data may be disclosed without the consent of the person whose data is concerned only to entities authorized to process personal data in accordance with applicable legal regulations (e.g., law enforcement authorities, Social Insurance Institution, or Tax Office). The Administrator provides personal data of its clients, in particular, to payment operators, companies providing postal and courier services, and tax authorities.
Personal data may be entrusted for processing to entities processing such data on our behalf as the Personal Data Administrator. In such a situation, as the Personal Data Administrator, we conclude a personal data processing entrustment agreement with the processing entity. The processing entity processes the entrusted personal data solely for the purposes, to the extent, and for the purposes indicated in the entrustment agreement mentioned in the preceding sentence. Without entrusting personal data for processing, we could not conduct our business within the scope of the Application or deliver shipments with ordered Products. As the Personal Data Administrator, we entrust personal data for processing, in particular, to the following entities:

  1. Entities providing hosting services for the website on which our Application operates.
  2. Entities providing accounting services.
  3. Entities providing other services necessary for the current functioning of the Application on our behalf.

Personal data is not subject to profiling by us as the Personal Data Administrator within the meaning of the GDPR provisions.
In accordance with the GDPR provisions, every person whose personal data we process as the Personal Data Administrator has the right to:

  1. Access their personal data, as referred to in Art. 15 of the GDPR.
  2. Be informed about the processing of personal data, as referred to in Art. 12 of the GDPR.
  3. Correct, complete, update, or rectify personal data, as referred to in Art. 16 of the GDPR.
  4. Withdraw consent at any time, as specified in Art. 7(3) of the GDPR.
  5. Deletion of data (right to be forgotten), as referred to in Article 17 of the GDPR,
  6. Restriction of processing, as mentioned in Article 18 of the GDPR,
  7. Transfer of data, as referred to in Article 20 of the GDPR,
  8. Objecting to the processing of personal data, as mentioned in Article 21 of the GDPR,
  9. In the event of the basis for processing being consent – the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal,
  10. Objecting to profiling, as referred to in Article 22 in connection with Article 4(4) of the GDPR,
  11. Filing a complaint to the supervisory authority (i.e., to the President of the Personal Data Protection Office), as mentioned in Article 77 of the GDPR.

If you wish to exercise the rights mentioned in the preceding paragraph, please send a message via email or in written form to the correspondence address mentioned in the point above.

Each documented case of a security breach is recorded, and in the event of one of the situations specified in the GDPR or the Act, about such a violation of the provisions on the protection of personal data, the individuals concerned are informed, as well as – if applicable – the PUODO.

The Cookie Policy constitutes a separate document located at the address: www.notujpro.com/cookie-policy

In matters not regulated by this Privacy Policy, the applicable provisions of universally binding law shall apply. In the event of inconsistency between the provisions of this Privacy Policy and the above-mentioned laws, the provisions of these laws shall prevail.

©2024 Notuj Pro
Cookie Policy
Privacy Policy
Regulations
Designed by