Information Clause for Telephone or Electronic Communication

  1. Personal data processing

    We process personal data:

    1. in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the “GDPR”;
    2. in accordance with the rules specified in this document, hereinafter the “Information Clause”.

    All the rules for our processing of personal data are comprehensively described in our Privacy Policy.

  2. The Controller

    We are responsible for the purpose and manner of our use of your personal data. The entity responsible (hereinafter referred to as the “Controller”) for personal data processing is:

    Winderen Sp. z o.o.
    ul. Młyńska 27, 22-400 Zamość
    Poland
    Tel. no. +48 (84) 538 75 84

  3. Contact details for matters connected with personal data

    In the matters connected with personal data processing you can contact us using the following details:

    Winderen Sp. z o.o.
    ul. Młyńska 27, 22-400 Zamość
    Poland

  4. Purpose and legal basis of the processing

    If you contact us by telephone or electronic means of communication (e-mail, website contact form, instant messaging, social media, etc.), we will process your Telemetric Data. If you voluntarily provide us with your personal data we will process this data to the extent necessary to carry out the matter regarding which you contacted us. We will process the data you provide for the purposes and on the grounds described below:

    1. performance of a contract or order, including pre-contractual action, performance of a service or order (especially if placed by means of electronic communication) and delivery of goods – performance of the contract;
    2. monitoring technical support services – our legitimate interest connected with monitoring the use of the technical support services we provide and documenting their scope and the process of their provision;
    3. processing Telemetric Data for the purposes of identification and rectification of errors, troubleshooting, optimising and securing IT infrastructure, pursuing and defending any claims – our legitimate interest in connection with our business activities;
    4. handling and recording correspondence – our legitimate interest connected with the organisation of our business processes, documenting the circumstances of contract execution and making it possible to pursue or defend any claims;
    5. making it possible to pursue or defend any claims – our legitimate interest.

  5. Recipient categories

    We make available or entrust the processing of your personal data to partners (persons or entities) and other data recipients only in cases justified by the performance of a contract, legal obligation, our legitimate interest or with your express consent. Every recipient receives only as much data as necessary for fulfilling a given processing purpose.

    Your personal data is made available to other data controllers:

    1. postal operators (entities carrying out postal or courier activities) – e.g. for the purpose of shipment and correspondence delivery;
    2. telecommunications operators and other entities providing telecommunications services delivered by electronic means – in connection with handling and registration of correspondence;
    3. public bodies and entities (courts, revenue authorities, customs, police etc.) – e.g. in connection with pursuing or defending claims;

    We entrust the processing of your personal data to the following processing entities:

    1. IT service providers (entities which operate our information systems or provide us with technical support services, entities which provide data communication tools, including statistical and marketing tools, telecommunications operators, cloud service providers) – such as Google Ireland Limited, Apple Distribution International Limited in Ireland, Microsoft Ireland Operations Limited;
    2. subcontractors (e.g. our advisers, consultants, auditors, legal, tax, accounting assistance, tax representatives) – for the purpose of subcontracting certain services and work on the basis of relevant personal data processing agreements;

    Some data may be transferred to a third country (outside the European Economic Area). We transfer data to the following entities: Google Ireland Limited, Apple Distribution International Limited w Irlandii, Microsoft Ireland Operations Limited, Klaviyo Inc., which may process data at their data processing centres located in the United States of America and possibly other countries based on:

    1. the legal mechanisms and standard contractual clauses used by IT service providers to ensure adequate protection of data when it is transferred outside the EEA;
    2. a finding by the European Commission that third countries ensure an adequate level of protection of personal data;
    3. the so-called Privacy Shield standard.

  6. Period of data processing

    Your personal data will be processed for a period no longer than necessary for the purposes of the processing:

    1. execution of a contract or an order – up to 31 days from the order pick-up or contract execution;
    2. identification and rectification of errors, troubleshooting, optimisation and security of the ICT infrastructure – up to 2 years from the collection;
    3. monitoring technical support services – up to 5 years from the time of last login/transaction or up to 90 days from the date of recognition of your right to: deletion of data, restriction of processing, objection to processing;
    4. handling and recording correspondence, making it possible to pursue or defend claims – up to 10 years from the occurrence of the last event;

    If your personal data is used as evidence in legal proceedings – it may be stored for longer than indicated above, until the legal conclusion of those proceedings.

  7. Your rights

    According to the GDPR, you have the right to the protection of your personal data, in particular you have the right to:

    1. make a request to the Controller to provide you with access to your personal data;
    2. rectification of your personal data;
    3. delete your personal data;
    4. restrict the processing of your personal data;
    5. object to the processing of your personal data, including processing for the purpose of maintaining business relations and direct marketing (once the objection is raised, the data will not be processed to the extent of the objection);
    6. transfer your personal data;
    7. withdraw your consent to the processing of your personal data at any time, provided that the withdrawal of consent does not affect the lawfulness of the processing carried out on the basis of your consent before its withdrawal;
    8. lodge a complaint with a supervisory authority – the President of the Personal Data Protection Office;

    You can also exercise your rights by contacting us as described in section 3.

Country: Deutschland

If this is wrong, please pick your country below to get the best Winderen experience

To the shop