Safe and Sound Privacy policy
-
General Information
This Privacy Policy sets out the rules for the processing of personal data of users of the online store available at https://www.safeandsound.pl/.
We respect our customers’ privacy and take appropriate care to protect their personal data. We do not sell personal data. Personal data is processed in accordance with applicable law, in particular Regulation (EU) 2016/679 (GDPR) and other applicable data protection laws.
-
Data Controller
The controller of your personal data is:
Safe and Sound - Paweł Kostrzewa
Bukowa 1
05-800 Pruszków
Poland
NIP: 5342264118
If you have any questions regarding the processing of your personal data, you can contact us at:
e-mail: kontakt@safeandsound.pl
phone: +48 501 352 499
-
Scope of Personal Data Processed
We may process the following categories of personal data:
name and surname,
e-mail address,
phone number,
delivery address,
billing address,
invoice details, including company name, tax number and registered address where applicable,
order history,
communication history with the customer,
technical data related to the use of the Store, including IP address and data collected through cookies or similar technologies, where used.
Your data may be collected when you place an order, contact us, subscribe to the newsletter, or use the Store’s website.
-
Purposes and Legal Bases of Processing
We process personal data for the following purposes:
a) to conclude and perform the sales contract and process orders
legal basis: Article 6(1)(b) GDPR,
b) to comply with legal obligations, including accounting and tax obligations
legal basis: Article 6(1)(c) GDPR,
c) to handle complaints, returns, customer communication, and to establish, exercise or defend legal claims
legal basis: Article 6(1)(f) GDPR, our legitimate interest,
d) to send marketing communications, including newsletters, where the user has given separate consent
legal basis: Article 6(1)(a) GDPR,
e) to ensure transaction security, prevent fraud and protect the Store
legal basis: Article 6(1)(f) GDPR.
-
Recipients of Personal Data
We do not disclose your personal data to third parties except where this is necessary to operate the Store, fulfil orders, process payments, comply with legal obligations, or where you have given your consent.
Personal data may be shared, where necessary, with:
delivery companies and postal operators,
payment service providers,
IT, hosting and technical service providers,
accounting service providers,
legal or organisational support providers,
public authorities where required by law.
Depending on the payment method chosen by the customer, payment-related data may be shared with providers such as Przelewy24, PayU, PayPal, or Stripe.
-
Transfers Outside the EEA
As a rule, we aim to process personal data within the European Economic Area.
However, some external service providers used by the Store may process personal data outside the EEA. Where such transfers take place, they are carried out using appropriate safeguards required under applicable law.
-
Data Retention Period
We retain personal data for no longer than necessary for the purposes for which it was collected, and afterwards for the period required by law or necessary to protect potential claims.
In particular:
data related to orders and contracts — for the duration of the contract and the limitation period for claims,
data required for tax and accounting purposes — for the period required by law,
data processed on the basis of consent — until the consent is withdrawn,
technical data and cookies — for the period resulting from browser settings, tool configuration, or the purpose for which they are used.
-
Rights of the Data Subject
Each person whose data is processed has the right to:
access their personal data,
request rectification of inaccurate data,
request erasure of data,
request restriction of processing,
request data portability,
object to processing where the legal basis is the controller’s legitimate interest,
withdraw consent at any time where processing is based on consent,
lodge a complaint with the competent supervisory authority.
In Poland, the supervisory authority is the President of the Personal Data Protection Office.
-
Whether Providing Data Is Mandatory
Providing personal data is generally voluntary. However, providing data necessary to place and fulfil an order, issue an invoice, deliver goods, or handle a complaint is required in order to conclude and perform the contract.
Failure to provide the required data may make it impossible to place or fulfil an order.
-
Automated Decision-Making
Personal data is not used for decisions producing legal effects concerning the user based solely on automated processing.
If profiling or automated decision-making is introduced in the future, this Privacy Policy will be updated accordingly.
-
Cookies
The Store uses cookies and similar technologies in order to:
ensure the proper operation of the website,
maintain user sessions,
support the shopping cart and checkout process,
analyse website traffic,
improve security,
adapt website operation to user preferences.
Some third-party services used within the Store, in particular payment providers or technical tool providers, may also use cookies or similar technologies in accordance with their own privacy rules.
Users may manage cookies through their browser settings.
-
Data Security
We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, destruction or unlawful modification, including encrypted connections (SSL/TLS) and restricted access to data.
-
Changes to this Privacy Policy
We may update this Privacy Policy where required by law, changes in the way the Store operates, or changes in the technologies and services used.
The current version of this Privacy Policy is always available on the Store’s website.
-
Contact
Please send any questions, applications and suggestions relating to the protection of your privacy, and personal data in particular, to kontakt@safeandsound.pl or by telephone on 501352499.
Log in with Facebook
Log in with Google