PerfectCup

The protection of private information of the Users of the https://perfectcup.pl/ website (hereinafter referred to as the “Site”) is extremely important to us, thus we make every effort for you to be safe when visiting our Site.

Please get acquainted with the contents of this document (hereinafter referred to as the “Privacy Policy”) aimed at explaining the principles of taking care of your personal data when you visit the Site. Each time when you visit the Site, you are subject to this Privacy Policy, therefore we kindly ask you to get acquainted with its contents each time you access it.

This Privacy Policy presents, among others, the principles of contacting Perfect Cup Sp. z o.o. with registered seat in Cholerzyn 467, 32-060 Cholerzyn, Małopolskie Voivodeship, registered in the Register of Entrepreneurs of the District Court for Kraków Śródmieście in Kraków, XII Commercial Department of the National Court Register with the number: 0000753841, Tax Identification Number (NIP): 9442261624, REGON no.: 381598315, (hereinafter referred to as the “Company”), the principles of collecting, storing and processing personal data by the Company, the origin of personal data, scope and purpose of processing personal data, duration of personal data processing and the rights of individuals concerning their personal data.

Glossary

The following terms have the following meaning:

“Privacy Policy” – means this document titled “Privacy Policy”;
“Company” – means Perfect Cup Sp. z o.o. with registered seat in Cholerzyn 467, 32-060 Cholerzyn, Małopolskie Voivodeship, registered in the Register of Entrepreneurs of the District Court for Kraków Śródmieście in Kraków, XII Commercial Department of the National Court Register with the number: 0000753841, Tax Identification Number (NIP): 9442261624, REGON no.: 381598315;
“Internet Shop“ – means the website available at the following address: https://perfectcup.pl/;
“Customer” – means a natural person acting on his or her own behalf or on behalf of a legal person or organisational unit without a legal personality, but possessing legal capacity under the law, who used the Internet Shop by browsing the website available at the following address: https://perfectcup.pl/ or by sending his or her personal data for the purpose of registering an Personal Account in the Internet Shop or placing an order in the Internet Shop or to subscribe to the Newsletter;
“Personal Account” – panel assigned individually to the Customer after registering the data in the Internet Shop system, designated with a personal name (username) and password provided by the Customer in the Company’s IT system, allowing the Customer to use the Internet Shop’s additional functionalities;
“Order Form” – a form that can be used by the Customer to order the Goods offered by the Company in the Internet Shop and specifying the method of delivery, in which the Customer provides the following data: name, surname, optionally company name, address, e-mail address, telephone number;
“Account Registration” – means the form used to register the Customer in the Internet Shop to create a Personal Account via the Internet Shop, through which the User provides the following personal data: name, surname, optionally company name, address, e-mail address, telephone number, password;
“Logging into the Personal Account” – means the form used by the Customer to log into his or her Personal Account in the Internet Shop – after previous Registration – through which the Customer provides the following personal data: username or e-mail address, password;
“Contact Form” – means the form available on the Site in the “Contact” tab, intended for contacting the Company to obtain specific information about products, order placed by the Customer or technical problems with the Site, through which the User provides his or her name, surname and e-mail address;
“Services”– mean the following Company activities taken up as result of the Customer’s personal data provision: sending the Newsletter via e-mail, provided that the Customer agreed to subscribe to the Newsletter or conclusion of a sales agreement between the Company and the Customer, or keeping a Personal Account or sending a return message including specific information about products, order placed by the Customer or technical problems with the Site;
“Newsletter” – means the information bulletin concerning novelties and promotions in the Internet Shop, to the subscription of which the Customer agreed by providing his or her e-mail address in the Site’s “Newsletter” box or by ticking the “Sign up to our newsletter” option when providing data for the Personal Account registration;

§ 1. Preliminary provisions

1. This Internet Shop is administered by the Company.
2. This Privacy Policy enters into force from 20 February 2019 and specifies, among others, the principles of contacting the Company, the principles of collecting, storing and processing personal data by the Company, including data that can be provided by you via the Internet Shop site by filling out the Order Form; the origin of personal data, scope and purpose of processing personal data, duration of personal data processing and the rights of individuals concerning their personal data.
3. This Privacy Policy does not apply to persons under the age of 16 and we intentionally do not collect the personal data of such persons.

5. The Internet Shop can include external links (hyperlinks) to Internet sites, plug-ins or applications belonging to other entities. Clicking in the aforementioned links or granting consent to the connection can cause the collection or sharing of your information. We have no control over these sites and we are not liable for their privacy policies. After leaving our Internet Shop site, we encourage you to read the privacy policy of any visited site.

5. By agreeing to our Privacy Policy, the Customer declares that he or she got acquainted with its contents, agrees to its conditions and is obliged to comply with them.

§ 2. Cookies

The Site uses “Cookies”. When the User visits the Site, a message is displayed with notification about the Site’s use of Cookies. The message is visible for the User until the time of agreement. Agreement takes place when the User clicks the box with the inscription: “Agree”.
Specific information concerning Cookies, specifying what are Cookies and how they are used by the Site is available when the User clicks the box with the inscription: “Cookies Policy” appearing along with the message about the Site’s use of Cookies and in the “Cookies Policy” tab.

§ 3. Personal data

Personal data is information about an identified natural person or natural person that can be identified. Personal data does not include data anonymised in such a way that persons who the data concerns cannot be identified at all or anymore.
The Company is the administrator of personal data obtained from Customers.

Personal data is processed in compliance with the law and with consideration of the principles of reliability, transparency and adequacy.
The Internet Shop site does not collect or process personal data for the purpose of their transmission or sale to external entities for marketing purposes. The Company also does not send messages on behalf of third parties.
We can collect, process, store and transmit various types of your personal data that we grouped in the following manner:

Identity Data, including the name, surname, username or a similar identifier.

Contact Data, including the company name, settlement address, delivery address, e-mail address, telephone number.

Transaction Data, including the carried out transactions and payments.

Processing purpose/activity			Personal data type						Processing basis
Customer account creation			Identity Data Contact Data						Agreement conclusion and performance
Order processing			Identity Data Account Data		Contact		Data		Agreement conclusion and performance
Enabling Newsletter subscription			Identity Data Contact Data						Agreement conclusion and performance Approval for sending commercial information electronically and approval for direct marketing executed via telecommunication terminal equipment.
Management relations:	of	Customer	Identity Data Account Data	Contact		Data		Agreement performance Our legal obligation
								Administrator’s legitimate		interest
								(possessing up-to-date data and

Notification about amendments to regulations and policies Request for assessment or filling out a questionnaire	Marketing and Communication Data			analysis of the customers’ method of using our services)
Management and guaranteeing safety to the Company and its Internet Shop (diagnostics and system upkeep, data analysis, testing, server management and hosting)	Identity Data Technical Data	Contact	Data	Administrator’s legitimate interest (conducting business, IT processes’ management, ensuring network safety, fraud prevention) Our legal obligation
Ensuring appropriate content of the Internet Shop site and advertising, including analysis of the effectiveness of conducting advertising campaigns	Identity Data Contact Data Account Data			Administrator’s legitimate interest (verification of the customer’s method of using our services to develop and improve the quality of service provision and to develop marketing strategies)
	User Data Marketing and Communication Data
	Technical Data
Provision to the Customer of return messages on specific information about products, orders placed by the Customer or technical problems with the Site	Contact Data			Taking up action prior conclusion Agreement performance	to	Agreement

The provision of personal data is voluntary, however the lack of approval for data processing prevents Account Registration and order processing.
One of the method of personal data protection applied by us is the so-called profiling. We can use your Identity, Contact, Technical, Usage and Account Data to create the preference profiles of our Customers and based on them, adapt our services and contents received from us. We can thus decide which of our Services can be suitable for you.

§ 5. Disclosure of personal data and international transfers

For the purposes specified in the aforementioned article, we can disclose your personal data to third parties, such as courier, marketing, accounting, IT, servicing (including hosting, cloud computing) companies, and to the Fiscal Office and other public authority bodies in the Republic of Poland.
When a Customer selects payment via:

the Pay Pal system – his or her personal data are transmitted in the scope necessary to process a payment to PayPal (Europe) S.a r.l. & Cie, S.C.A with registered seat at L-1150 in Luxembourg, then PayPal is the Customer’s personal data administrator;
the Tpay.com system – his or her personal data are transmitted in the scope necessary to process a payment to Krajowy Integrator Płatności S.A. with registered seat in Poznań, address: ul. Św. Marcin 73/6, 61-808 Poznań, KRS no.: 0000412357, Tax Identification Number (NIP): 7773061579, REGON no.: 300878437, then Krajowy Integrator Płatności S.A. is the Customer’s personal data administrator;

We require all third parties to maintain safety measures in relation to your personal data and their processing in accordance with the law. We do not allow our suppliers to use the Users’ personal data for their own purposes and we allow processing it for specific purposes and in accordance with our instructions.
Due to the fact that we use services of other suppliers, e.g. the Mailchimp system operated by The Rocket Science Group LLC from the United States, your personal data can be transmitted outside of the EEA. In such cases, we ensure a similar degree of data protection by providing at least one of the following protective measures:

the transfer of personal data to States deemed by the European Committee as ensuring adequate personal data protection,
the use of data protection clauses adopted by the European Committee, guaranteeing the same protection as in the European Union, or
when using the services of suppliers based in the United States, we can provide them with data as part of the Privacy Shield, which requires them to ensure similar protection as in the European Union.

§ 6. Data safety

The Company’s Customer personal data processing takes place with maintenance of all principles concerning the safety of personal data protection, meeting the requirements specified by law. We introduced the necessary safety measures that are to protect your data against accidental loss, unauthorised access or use, change or disclosure. We limit access to your data to employees, representatives, service providers and other third parties, to which the data sharing is necessary in terms of our business activity. They will only process your personal data in accordance with the Company’s instructions and are obliged to maintain confidentiality.
The Company adopted suitable procedures of conduct in the case of an infringement suspicion. We will notify you and the competent supervisory body about the infringement when we are legally obliged to.

§ 7. Duration of data processing

Your personal data will be stored for a period no longer than necessary to achieve the purpose for which it was collected (i.e. time necessary to process an order, manage the Customer’s account), unless a longer period of time is required due to the necessity of fulfilling our legal, accounting or reporting obligations and for a period required to pursue claims, resulting from regulations of the Civil Code.
Personal data processed for accounting and tax-related purposes are processed by us for a period of 5 years counted from the end of the calendar year in which the tax obligation emerged.
In specific circumstances, you can request the removal of your personal data according to § 9.

In specific circumstances, we can anonymise your personal data (thus ensuring irreversible prevention of person identification) for research and statistical purpose, in the case of which we can store the data for an indefinite period of time, without further obligation to notify you about the fact.

§ 8. Customer rights related to personal data protection. Complaint to the supervisory body

In specific situations, the Customer is entitled to request the Company to provide access to, correct, change, limit or remove his or her personal data administered by the Company and is entitled to file a complaint in regards to the Company’s processing of his or her personal data. For this purpose, it is necessary to send an e- mail to the following e-mail address: [email protected].
We point out that we will not always be able to satisfy your request concerning the removal of your personal data, specifically due to particular legal obligations or pursuing claims. In such cases, we will inform you of this fact when such a request is submitted. If you want to receive more information regarding particular rights presents as part of this article, please contact us using the Company’s contact data.

The Customer is entitled to withdraw the consent for personal data protection at any time by sending a relevant message to the following e-mail address: [email protected] or by clicking the deactivation link sent on a case-by-case basis in a Newsletter or other marketing message. The withdrawal of consent does not affect the compliance with law of processing done based on it prior to its withdrawal. This means that the consent withdrawal concerns the future and not the data processing that took place in the past, in the period between granting and withdrawing the consent.
The Customer is entitled to request the Company to send his or her personal data administered by the Company to another personal data administrator, provided that the technical and organisational requires allow for the transmission of such personal data.
The Company will promptly – in any case within a month from the receipt of the request – provide the Customer, who submitted one of the request specified in this article, with information about activities taken up in relation to that request, or about a possible extension of the deadline due to the request’s nature of number of requests, or about the reasons for not taking up any activities and about the possibility of filing a complaint to the supervisory body and utilising legal protection measures in a court.
The exercise of the aforementioned rights is free of charge, however the Company can charge the Customer with a reasonable fee if the presented request or requests are unjustified, repeating or excessive. In such cases, we can also refuse to satisfy such a request.
To satisfy particular requests, the Company can request the Customer to provide specific information to verify his or her identity and ensure the use of particular rights. This is a safety measured aimed at ensuring that personal data are not disclosed to unauthorised persons.
The Customer, whose personal data are administered by the Company, is entitled to file a complaint to the supervisory body, especially in a member state of:

his or her habitual residence,

his or her place of work, or

place of alleged infringement,

if he or she deems the personal data processing as infringing the GDPR. The complaint can be sent via mail to the address of the Head of the Personal Data Protection Office, ul. Stawki 2, 00 – 193 Warsaw or via e-mail to the following e-mail address: [email protected].

§ 9. Company’s liability and warranty claim

1. Exercising due diligence, the Company takes care for the Site’s correct operation, it is not however liable for technical limitations in the ability to use the Site, resulting from the technical condition of the User’s Equipment and due to the User’s data transmission (Internet connection) failure.
2. The Company kindly asks to report any irregularities related to the Site’s operation to the following e-mail address: [email protected].
3. The Company processes warranty claims specified in the preceding paragraph of this article within 7 days from the date of their submission by notifying the User about the positive or negative consideration of a claim and specifies the reasons for its decision on a case-by-case basis.
4. The User is also entitled to use extrajudicial methods of complaint processing. In case of a dispute with the Consumer, extrajudicial settlement can also be sought via the ODR online platform available at: http:// ec.europa.eu/consumers/odr/ can serve its extrajudicial settlement.

§ 10. Final provisions, Privacy Policy amendment, amendment notification

The Company reserves the right to amend this Privacy Policy. An amendment enters into force as of the date of publishing the new Privacy Policy on the Internet Shop site. Any significant amendments to this Policy will be communicated via a proper notification displayed on the Internet Shop site.
The Company’s contact data are specified in article 2 of this Privacy Policy’s glossary.
In all cases related to the Company’s processing of your personal data, we kindly ask to contact us at the following e-mail address: [email protected].