> Privacy Policy
  1. GENERAL
    1. This Online Store privacy policy is informative, which means that it is not a source of obligations for Service Users or Customers of the Online Store. The privacy policy contains primarily rules regarding the processing of personal data by the Administrator in the Online Store, including the basics, purposes and scope of personal data processing and the rights of data subjects, as well as information on the use of cookies and analytical tools in the Online Store.
    2. The administrator of personal data collected via the Online Store is Katarzyna Brodowska conducting business activity under the name Artfox Goldsmithing Studio entered in the Central Register and Information on Economic Activity of the Republic of Poland kept by the minister competent for economy, having: address of place of business and address for delivery: ul. . Dworcowa 19, 70-206 Szczecin, NIP 852-238-77-69, REGON 321588329, e-mail address: sklep@artfox.pl, telephone number: +4891 4341327 - hereinafter referred to as the "Administrator" and being the Online Store Service Provider and the Seller
    3. Personal data in the Online Store are processed by the Administrator in accordance with applicable law, in particular in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and in the free movement of such data and repealing Directive 95/46 / EC (General Data Protection Regulation) - hereinafter referred to as "GDPR" or "GDPR Regulation". The official text of the GDPR Regulation: http://eur-lex.europa.eu/legal-content/PL/TXT/?uri=CELEX%3A32016R0679
    4. Using the Online Store, including making purchases, is voluntary. Similarly, the provision of personal data by the User or Customer using the Online Store is voluntary, with two exceptions: (1) entering into contracts with the Administrator - failure to provide in cases and to the extent indicated on the Online Store website and in the Online Store Regulations and this privacy policy personal data necessary to conclude and perform the Sales Agreement or the contract for the provision of Electronic Services with the Administrator results in the inability to conclude this contract. Providing personal data is in this case a contractual requirement and if the data subject wants to conclude a given agreement with the Administrator, he is obliged to provide the required data. Each time the scope of data required to conclude a contract is indicated previously on the Online Store website and in the Online Store Regulations; (2) the Administrator's statutory obligations - providing personal data is a statutory requirement arising from the generally applicable law imposing an obligation on the Administrator to process personal data (e.g. processing data for the purpose of keeping tax or accounting books) and failure to provide it will prevent the Administrator from performing these obligations..
    5. The Administrator makes special care to protect the interests of persons to whom the personal data processed by him relates, and in particular is responsible and ensures that the data collected by him are: (1) processed in accordance with the law; (2) collected for specified, legitimate purposes and not subject to further processing incompatible with those purposes; (3) factually correct and adequate in relation to the purposes for which they are processed; (4) stored in a form that allows identification of the persons they concern, no longer than necessary to achieve the purpose of processing, and (5) processed in a way that ensures adequate security of personal data, including protection against unauthorized or unlawful processing and accidental loss, destruction or damage by appropriate technical or organizational measures.
    6. Taking into account the nature, scope, context and purposes of processing as well as the risk of violation of the rights or freedoms of natural persons of different probability and severity of threat, the Administrator implements appropriate technical and organizational measures to process it in accordance with this Regulation and to be able to demonstrate it. These measures are reviewed and updated as necessary. The administrator uses technical measures to prevent the acquisition and modification by unauthorized persons of personal data sent electronically.
    7. All words, expressions and acronyms appearing in this privacy policy and beginning with a capital letter (e.g. Seller, Online Store, Electronic Service) should be understood in accordance with their definition contained in the Online Store Regulations available on the Online Store website.
  2. BASICS OF DATA PROCESSING
    1. The administrator is entitled to process personal data in cases where - and to the extent that - at least one of the following conditions is met: (1) the data subject has consented to the processing of his personal data for one or more specific purposes ; (2) processing is necessary for the performance of a contract to which the data subject is party or to take action at the request of the data subject before the conclusion of the contract; (3) processing is necessary to fulfill the legal obligation incumbent on the Administrator; or (4) processing is necessary for purposes arising from legitimate interests pursued by the Administrator or by a third party, except for situations where the interests or fundamental rights and freedoms of the data subject, requiring personal data protection, prevail over these interests , in particular if the data subject is a child.
    2. The processing of personal data by the Administrator requires at least one of the grounds indicated in point 2.1 privacy policy. The specific grounds for the processing of personal data of the Online Store Customers and Customers by the Administrator are indicated in the next section of the privacy policy - in relation to the given purpose of processing personal data by the Administrator.
  3. PURPOSE, BASIS, PERIOD AND SCOPE OF DATA PROCESSING IN THE ONLINE STORE
    1. Each time the purpose, basis, period and scope as well as the recipients of personal data processed by The administrator results from actions taken by a given Service Recipient or Customer in the Store Online. For example, if the customer decides to make purchases in the store Online and choose to pick up the purchased Product instead of the parcel courier, his personal data will be processed in order to perform the concluded Sales Agreement, but will no longer be made available to the carrier performing the shipment at the request of the Administrator.
    2. The administrator may process personal data in the Online Store for the following purposes, for the following grounds, during periods and to the following extent:
      Purpose of data processingLegal basis for processing and storage periodThe scope of processed data
      Performance of the Sales Agreement or contract for the provision of Electronic Services or taking action at the request of the data subject before conclusion of the abovementioned contracts Article 6 para. 1 lit. b) GDPR Regulations (performance of the contract) Data are stored for the period necessary to perform, terminate or other contractual termination. Maximum range: name and surname; e-mail address; number contact phone; delivery address (street, house number, apartment number, code postal address, city, country), address of residence / conduct business / seat (if different from delivery address). In case of Customers or Customers who are not consumers The administrator can additionally process the company name and number tax identification (NIP) of the Service Recipient or Customer. The range is maximum - in the case of e.g. personal pickup it is not necessary
      Direct marketing Article 6 para. 1 lit. f) GDPR Regulations (legitimate interest administrator) Data is stored legally for the duration of its existence legitimate interest pursued by the Administrator, but no longer than for the period of limitation of claims against the person to whom the data relate to the activities of the Administrator business. The limitation period is specified by law, in of the Civil Code (basic limitation period for claims related to doing business is three years, and two years for the sales contract). The administrator cannot process data for direct marketing in the event of an effective expression objection in this regard by the data subject. Email address
      Media Article 6 para. 1 lit. a) GDPR Regulation (consent). Data Stored are until the data subject withdraws his consent for further processing of its data for this purpose. Name, email address
      Customer expressing opinion on the concluded Sales Agreement Article 6 para. 1 lit. a) GDPR Regulations Data is stored until the moment of withdrawal of consent by the data subject for further processing her data for this purpose. Email address
      Keeping tax books Article 6 para. 1 lit. c) GDPR Regulations in connection with from art. 86 § 1 Of the Tax Code, i.e. from January 17, 2017 (Journal of Laws of 2017, item 201) Data is stored for the period required by law ordering the Administrator to keep tax books (until expiry of the limitation period for tax liability, except by law tax regulations provide otherwise) Name and surname; address of residence / business / registered office (if different from the delivery address), company name and identification number tax (NIP) of the Service Recipient or Customer
      Determining, investigating or defending claims that he may raise Administrator or which may be raised against the Administrator Article 6 para. 1 lit. f) GDPR Regulations Data is stored by period of existence of a legitimate interest pursued by Administrator, but no longer than for the period of limitation of claims in to the data subject on account of Business administrator. The limitation period shall be determined provisions of law, in particular the Civil Code (basic term statute of limitations for business-related claims is three years for business, and two years for sales contracts). Name and surname; contact telephone number; e-mail address; delivery address (street, house number, apartment number, zip code, city, country), address of residence / business / registered office (if available) other than delivery address). In the case of Customers or Customers The non-consumer Administrator may additionally process the name company and the Customer's tax identification number (NIP) or Customer.
  4. RECIPIENTS OF DATA IN THE ONLINE STORE
    1. For the proper functioning of the Online Store, including for the implementation of the concluded Sales Agreements it is necessary for the Administrator to use the services of entities external (such as e.g. a software supplier, courier or operating entity payment). The administrator uses only the services of such processing entities, who provide sufficient guarantees that the appropriate measures will be implemented technical and organizational, so that the processing meets the requirements of the GDPR Regulation and protect the rights of data subjects.
    2. Transfer of data by the Administrator does not occur in every case and not to everyone recipients or categories of recipients indicated in the privacy policy - The administrator transfers data only when it is necessary to achieve a given purpose processing personal data and only to the extent necessary to implement it. For example, if the customer uses personal pickup, his data will not be provided to the carrier cooperating with the Administrator.
    3. Personal data of the Online Store Customers and Customers may be transferred the following recipients or categories of recipients:
      1. carriers / forwarders / courier brokers - in the case of a Customer who uses the Online Store's method of delivery of the Product by post or By courier, the Administrator provides the Customer's collected personal data to the selected person carrier, freight forwarder or broker carrying out shipments on behalf of Administrator to the extent necessary to complete the delivery of the Product to the Customer.
      2. entities servicing electronic payments or by payment card - in the case of A customer who uses the online payment method electronic or by payment card The administrator provides the collected personal data Customer selected entity servicing the above payments in the Online Store at Administrator's order to the extent necessary to handle payments made by Customer.
      3. creditors / lessors - in the case of a Customer who uses in the Online Store from the payment method in the installment system or payment The leasing administrator provides the Customer's collected personal data to the selected lender or the lessor servicing the above payments in the Online Store on request Administrator to the extent necessary to process the payment made by the Customer.
      4. provider of the opinion poll system - in the case of a Customer who agreed to express an opinion on the concluded Sales Agreement, the Administrator provides the collected Customer's personal data to the selected entity providing the opinion poll system concluded Sales Agreements in the Online Store at the request of the Administrator in the field necessary for the Customer to express an opinion using the opinion poll system.
      5. service providers providing the Administrator with technical and IT solutions and organizational, enabling the Administrator to conduct business business, including the Online Store and Services provided through it Electronic (in particular suppliers of computer software to running an Online Store, email provider and hosting, and providers of company management and technical support software Administrator) - The Administrator provides the collected personal data of the Customer to the selected one a supplier acting on his behalf only in the case and to the extent necessary for achieving a given purpose of data processing in accordance with this policy Privacy.
      6. providers of accounting, legal and consulting services providing the Administrator accounting, legal or consultancy support (in particular an accounting office, law firm or debt collection company) - The administrator provides the collected data personal data of the selected supplier acting on his behalf only in the case of and to the extent necessary to achieve the given purpose of data processing in accordance with this privacy policy.
  5. PROFILING IN THE ONLINE STORE
    1. The GDPR Regulation imposes an obligation on the Administrator to inform about automated making decisions, including profiling, referred to in art. 22 paragraph 1 and 4 GDPR regulations, and - at least in these cases - relevant information about the principles of their taking, as well as the significance and anticipated consequences of such processing for the data subject. With this in mind, the Administrator provides in this section of the privacy policy for information on possible profiling.
    2. The Administrator may use profiling for marketing purposes in the Online Store direct, but decisions made on its basis by the Administrator do not apply conclusion or refusal to conclude a Sales Agreement or the possibility of using the Services Electronic in the Online Store. The effect of using profiling in the Store The internet can be, for example, granting a person a discount, sending them a discount code, reminder of unfinished shopping, sending a Product proposal that can respond to the interests or preferences of the person or suggesting better ones conditions compared to the standard offer of the Online Store. Despite profiling, a given person makes a free decision whether they want to use it received in this way the discount or better conditions and make a purchase in Online Store.
    3. Profiling in the Online Store is based on automatic analysis or forecast of behavior a given person on the Online Store website, e.g. by adding a specific Product to the basket, browsing a specific Product page in the Online Store, or through analysis the previous history of purchases made in the Online Store. Condition of such profiling is the Administrator's possession of personal data of a person to be able to then send her a rebate code, for example.
    4. The data subject has the right not to be subject to the decision which relies solely on automated processing, including profiling, and calls against it a person's legal effects or similarly significantly affects them.
  6. YOUR RIGHTS
    1. Right to access, rectify, limit, delete or move - a person, data subject has the right to request the Administrator to access his data personal data, rectification, deletion ("right to be forgotten") or processing restrictions and has the right to object to the processing, and also has the right to transfer your data. Detailed conditions for the implementation of the above rights are indicated in art. 15-21 of the GDPR Regulation.
    2. Right to withdraw consent at any time - the data subject are processed by the Administrator on the basis of expressed consent (pursuant to Article 6 paragraph 1 point a) or art. 9 item 2 lit. a) GDPR Regulation), it has the right to withdraw consent in at any time without affecting the lawfulness of processing carried out on basis of consent before its withdrawal.
    3. Right to lodge a complaint with a supervisory authority - the data subject are processed by the Administrator, have the right to lodge a complaint to the supervisory body in the manner and procedure specified in the provisions of the GDPR Regulation and Polish law, in in particular the Personal Data Protection Act. The supervisory body in Poland is the President Office for Personal Data Protection.
    4. Right to object - the data subject has the right at any time raise an objection, for reasons related to her particular situation, to processing personal data concerning her based on art. 6 clause 1 lit. e) (interest or public tasks) or f) (legitimate interest of the administrator), including profiling on under these provisions. In this case, the administrator may no longer process this personal data, unless he demonstrates the existence of valid legitimate grounds for processing overriding the interests, rights and freedoms of the data subject relate to, or grounds for determining, pursuing or defending claims.
    5. Right to object to direct marketing - if personal data is processed for the purposes of direct marketing, the data subject has the right to any object to the processing of personal data concerning him for the time being such marketing, including profiling, to the extent that processing is related to such direct marketing.
    6. To exercise the rights referred to in this point of the privacy policy you can contact the Administrator by sending a relevant message in writing or by email to the Administrator's address indicated at the beginning of the privacy policy or using the contact form available on the Online Store website.
  7. COOKIES IN THE ONLINE STORE, OPERATING DATA AND ANALYTICS
    1. Cookies are small text information in the form of files text, sent by the server and saved on the side of the person visiting the Store's website Internet (e.g. on the hard disk of a computer, laptop or smartphone's memory card - depending on which device is used by visitors to our Online Store). Detailed information about Cookies, as well as the history of their creation can be find, among others here: http://pl.wikipedia.org/wiki/Ciasteczko .
    2. The administrator may process the data contained in cookies when used by visitors from the Online Store website for the following purposes:
      1. identification of Service Users as logged in to the Online Store and showing that they are logged in;
      2. remembering Products added to the basket to place an Order;
      3. remembering data from completed Order Forms, surveys or data logging into the Online Store;
      4. adjusting the content of the Online Store website to individual preferences Service Recipients (e.g. regarding colors, font size, page layout) and optimizing the use of Online Store pages;
      5. keeping anonymous statistics showing how to use the site Online Store;
      6. remarketing, i.e. researching the characteristics of the behavior of visitors to the Online Store through anonymous analysis of their activities (e.g. repeated visits to specific websites, keywords, etc.) to create their profile and provide them with tailored ads to their anticipated interests, also when they visit other sites on the Google Inc. advertising network and Facebook Ireland Ltd .;
    3. By default, most web browsers on the market accept by default saving cookies. Everyone has the opportunity to specify the conditions of use Cookies using the settings of your own web browser. That means you can e.g. partially limit (e.g. temporarily) or completely disable the saving option Cookies - in the latter case, however, this may affect some functionalities of the Online Store (for example, it may not be possible passing the Order path through the Order Form due to not remembering Products in the basket during the next steps of submission Contract).
    4. The web browser settings for cookies are important from the point of view view of consent to the use of cookies by our online store - in accordance with regulations, such consent may also be expressed through browser settings website. If you do not agree, please change your browser settings accordingly on cookies.
    5. Detailed information on changing the settings for Cookies and their self-removal in the most popular web browsers are available in web browser help section and on the following pages (just click on the button link):
    6. in the browser Chrome
    7. in Firefox
    8. in Internet Explorer
    9. in the browser Opera
    10. in the browser Safari
    11. in Microsoft Edge browser
    12. The Administrator may use Google Analytics and Universal services in the Online Store Analytics provided by Google Inc. (1600 Amphitheater Parkway, Mountain View, CA 94043, USA). These services help the Administrator analyze traffic in the Online Store. The collected data is processed as part of the above services in an anonymous manner (these are the so-called. operational data that prevents person identification) to generate statistics helpful in administering the Online Store. These data are aggregated and anonymous, i.e. they do not contain identifying features (personal data) of website visitors Online Store. The Administrator using the above services in the Online Store collects data such as sources and medium of acquiring visitors to the Online Store and their behavior on the Online Store website, information on devices and browsers from which they visit the site, IP and domain, geographical data and data demographics (age, gender) and interests.
    13. It is possible for a person to easily block sharing of Google Analytics information about its activity on the Online Store website - you can install it for this purpose browser add-on provided by Google Inc. available here: https://tools.google.com/dlpage/gaoptout?hl=pl
  8. OTHER
    1. The Online Store may contain links to other websites. The administrator urges after going to other websites, read the privacy policy established there. This the privacy policy applies only to the Administrator's Online Store.

Follow us

My account

close