Privacy policy
1.This Privacy Policy sets out the rules for the processing of personal data, obtained through the website http://mainsltd.eu (hereinafter referred to as the "Website").
2. The Owner of the Website and the data administrator is MAINS Sp. z o.o. 95-060 Brzeziny
ul. J. Słowackiego 12, written into the National Court Register (KRS) of entrepreneurs kept by the District Court for Łódź Śródmieście in Łódź under the KRS number 0000743411, VAT tax number 8331402417, REGON number 380932976 (hereinafter referred to as the Service Provider).
3. The Service Provider makes special care to respect the privacy of the customers visiting the Website.
4. The personal data collected by the Service Provider through the Website are processed in accordance with the Regulation of the European Parliament and Council (EU) 2016/679 from the 27th of April 2016 concerning the protection of natural persons with regard to the processing of personal data and concerning the free movement of such data and the repeal of Directive 95/46 / EE (General Data Protection Regulation) - hereinafter referred to as the GDPR)
§ 1 Objectives and type of personal data processed
1. The Service Provider collects the information concerning the natural persons contacting by the Website with a Service Provider, concerning the natural persons performing the legal actions not directly related to their business activity, concerning the natural persons conducting the business activity or professional activity on their own behalf, and concerning the natural persons representing the legal persons or organizational units not being the legal persons to whom the Act grants legal capacity, conducting business activity or professional activity on its own behalf - hereinafter referred to as the Clients.
2. Customers' personal data is collected in the case of:
a) subscription to the newsletter;
b) using the contact form service on the Internet Website. Legal basis: indispensability to perform the contract for the provision of the contact form service (Article 6, paragraph 1, point b of the GDPR)
3.In the case of subscription to the Newsletter, the Customer provides:
a) email address;
b) name and surname.
in the case where the Customer is an entrepreneur, he also provides:
a. the entrepreneur's company;
4. In the case where you use the Newsletter service, the customer only provides his e-mail address.
5. During the use of the Website, the additional information may be downloaded, in particular: the type of browser, the IP address assigned to the Customer's computer or the external IP address of the Internet provider, access time, domain name, type of operating system.
6. From the Customers may be also collected the navigational data, including the information about links and references links in which the Customers choose to click or the other activities realized on the Website.
§ 2 The method of use of the collected data
1. The data will be stored / processed:
- only for a period of time necessary to answer the questions, solve the problems, negotiations or the time needed to settle the matter, in which the personal data have been entrusted,
- if the data concerns the contract concluded with the Service Provider - not shorter than by the period necessary or the implementation of the contract and resulting from the Polish law in the field of accounting reporting, the necessity of storage the documents and expiration of the claims that may result from the contract,
- if they have been collected for another purpose, to which the user has consented – so until the moment when the consent to their processing is withdrawn for this purpose.
2. The navigational data may be used to provide to the Website Customers with better service, statistical data analysis, as well as adjusting the Website to Customer’s preferences and the administration of the Website.
3.If the case where the Customer subscribes to the Newsletter - the Service Provider will provide at the Customer’s e-mail address, the electronic messages that contain commercial information - including the promotion and new products available from the Service Provider.
4. The Service Provider, when a request will be sent to him, provides the personal data to the authorized state authorities, e.g. the prosecutor's office, the Police, the President of the Office for Personal Data Protection, the President of the Office of Competition and Consumer Protection, he is obliged to disclose this data.
§ 3 Mechanism cookies, address IP
1.The website uses small files, commonly known as the cookies. They are saved by mainsltd.eu on the end device of the person visiting the Website, if the web browser allows it. They have a purpose to identifying the Website and simplifying of certain operations. Cookies files usually contain the name of the website they come from, the time they are stored on the end device and the unique number, the random number identifying this file. The information collected by using these types of files help to adapt the products offered by mainsltd.eu to the individual preferences and t real needs of persons visiting the Website, as well as the possibility of preparing the general statistics of visits presented as part of the product Website.
2. The Website uses two types of cookies files:
a) The session cookies are the temporary files stored on the User's end device until the logging out, leaving the website or turning off the software (web browser). The mechanism of session cookies does not allow to download any personal data as well as any confidential information from the User's computer.
b) Persistent cookies are the cookies stored in the User's device for the time specified in the parameters of cookies files or until they are deleted by the User or the time of expiration. The mechanism of persistent cookies is not the possibility of downloading any personal data as well as any confidential information from the User's computer.
3. The website uses the own cookies in order to:
a) analysis and research as well as the audience audit, in particular to create anonymous statistics that help to understand how the customers use the Website, which allows you to improve its structure and its content.
4. The website uses external cookies in order to:
a) collecting general and anonymous static data through the analytical tools of Google Analytics (administrator of external cookies: Google Inc with its registered office in the USA);
5. The cookie mechanism is safe for the Website Users' computers. In their browsers the Users have the option of restricting or disabling the cookies access to their computers. In the case of use this option, the use of the Website will be possible, however, it may be limited due to functions that require the cookies files.
6. The Service Provider may collect the IP addresses of Website Users. The IP address is the number assigned to the computer of the User visiting the Website by the internet service provider it allows the access to the Internet. The IP address is usually assigned to the computer dynamically - it changes during each connection to the Internet, therefore it is treated as the non-personal identifying information. The Website uses the IP address when it diagnosing the technical problems with the server, creating the statistical analyzes, as information which is helpful in administering and improving the Website, as well as for the security purposes and possible identification charging the server, as well as unauthorized automatic programs serving for browsing the content presented on the Website.
8. The website contains the links and references links to the other websites. The Service Provider is not responsible for the principles of privacy protection applicable on these websites.
§ 4 Access to data and security
1. The Customer of the Service Provider has the right to withdraw his consent given to the Service Provider, including the consent to the processing of personal data, according to the regulation of article 7 paragraph 3 of the GDPR at any time, which has effect from the moment of withdrawal of consent, without affecting the processing performed by the Service Provider in accordance with the law, before the moment of its withdrawal.
2. Only the authorized employees of the Service Provider have the access to personal data of Customers, collected through the Website.
3. Customers' personal data may be transferred to other entities on the basis of legal regulations or on the basis of consent given by the Customer.
4. The Service Provider provides to the clients, who have an account, the access to their personal data and also the possibility of modifying this data at any time.
5. The customer has the opportunity to delete the personal data from the data set. The Service Provider may refuse to delete the Customer's data, if the Customer has violated the regulations being in force on the Website, and if the retention of data is necessary to clarify these circumstances and to determine liability, and in particular, pursuing claims by the Service Provider's from a particular Customer.
6. In the case of the subscription to the newsletter, the Customer has the opportunity to delete his e-mail address from the mailing list.
7. According to the provisions of Article 21 of the GDPR, the Customer has the right to object to the use of data, and in particular to the profiling, if the Website processes the Customers’ data based on a legitimate business activity, e.g. the marketing of his products and services, keeping statistics in order to facilitate the use of the Website, satisfaction level studies.
8.1. Resignation from receiving the marketing messages concerning the products or services is tantamount for the Service Provider to submitting the objection, by the Customer, to the processing of his personal data, including profiling for these purposes.
8.2. In the case where the objection is justified and the Service Provider does not have a different legal basis for processing the data - the Customer's data, for which use he objected, will be removed.
9. According to the provisions of the Article 17 of the GDPR, the Customer has the right to request deletion of all or part of the data.
9.1. The Customer has the right to request deletion of data, in particular in the case when he withdrew the consent given earlier, in the field that that the personal data were processed on the basis of his earlier consent, the Customers’ personal data is no longer needed for the purposes for which is was collected, or for the purposes in which it was processed by the Website, the Customer has objected to the use of his data for the purposes of marketing, the personal data is processed unlawfully, the personal data must be removed in connection with the fulfillment of the legal obligation provided by the law of European Union or by the law of the Member State, to which the Service Provider is the subject, personal data were collected as a result of offering the services of information society.
10. According to the regulation of Article 18 of GDPR The person to whom the data relate has the right to request from the administrator to limit the processing of the data in the following cases:
a) when this person disputes the correctness of personal data - for the period which allows the administrator to check the correctness of this data,
b) where the processing is unlawful and the person who is the data subject opposes the removal of personal data, demanding to limit their use,
c) where the administrator no longer needs the personal data for the purpose of processing, but this data is needed to the person which this data applies to, for the purpose to determine, by the data subject to establishing, pursuing the claims or defending the claims,
d) when the person who is the data subject has objected to the processing of the data – until the moment of determination if the legitimate grounds on the side of administrator are superior to the grounds of opposition of the person who is the data subject.
11. Despite the request to delete the personal data by the Customer, in the connection with rising the opposition or withdrawal of his consent, the Service Provider can keep some personal data, however he can keep it in such extent which is necessary for the purpose of determining, pursuing the claims or defending the claims, e.g.: first name and last name, e-mail address(handling the complaints and claims related to the use of the Service Provider's services), as well as the address of residence or mailing address, order number.
12. According to regulation of Article 15 of the GDPR the person who is the data subject, is entitled to obtain from the administrator confirmation whether the personal data concerning this person is processed, and, if it is, this person is entitled to access to this data and the following information:
a) the purposes of data processing,
b) categories of relevant personal data,
c) information concerning the recipients or concerning the categories of recipients to whom the personal data have been disclosed or will be disclosed, and in particular concerning the recipients in third countries or the recipients in international organizations,
d) as far as possible, the planned period of storage of personal data, and if this is not possible, the criteria used for determining this period,
e) information on the right to request from the administrator to rectify, delete or limit the processing of personal data concerning to the person who is the subject of this data and about the right to object to such processing,
f) information concerning the right to submit a complaint to the supervisory office,
g) if personal data have not been collected from the person who is the subject of this data - all available information about the data source,
h) information concerning the automated decision-making, including the profiling and, at least in these cases, the important information on the rules of decision-making, as well as concerning the significance and expected consequences of such processing for the person who us the data subject.
12.1. The person who is the data subject may obtain from the administrator a copy of his personal data processed.
13. According to the regulation of Article 16 of GDPR the person who is the data subject has the right to request from the administrator to immediately correct the personal data, that is incorrect. Taking into consideration the account the purposes of processing, the person who is the data subject has the right to request the completion of incomplete personal data, including the presentation of additional statement, which he will send to the e-mail address: office@mainsltd.eu.
15. According to the regulation of Article 20 of the GDPR, the person who is the data subject has the right to receive personal data concerning him, which he provided to the administrator, and he has the right to send this personal data to another administrator, or to ask the Seller to send this data directly to the administrator indicated by this person, if it is technically possible. In the case of request to transfer the personal data, it will be realized in a format that allows the machine reading. The administrator undertakes to comply the request within no more than two months from the date of reception of such request.
16. The person who is the data subject may submit to the administrator the complaints, inquiries and requests regarding to the processing of his personal data and regarding to the exercise of his rights.
17. The person who is the data subject has the right to demand from the Seller a copy of standard contractual clauses, by sending a request to the Seller to the e-mail address: office@mainsltd.eu
18. The person who is the data subject has the right to submit a complaint to the President of the Office for Personal Data Protection, about the violation of his right to protection of the personal data or the other rights granted by the GDPR.
§ 5 Final provisions, Privacy Policy changes
1. Please ask the questions related to the Privacy Policy to the e-mail address: office@mainsltd.eu
2. Date of the entry into force: 16th September 2018.