Polityka prywatności | Nicole Petters

Privacy Policy

1. General provisions

1.1. This Website Privacy Policy is for informational purposes only, which means that it does not impose any obligations on Service Users or Online Store Customers. The privacy policy primarily contains rules regarding the processing of personal data by the Administrator in the Online Shop, including the basis, purposes and period of personal data processing and the rights of data subjects, as well as information on the use of cookies and analytical tools in the Online Shop.

1.2. The Administrator of personal data collected via the Website is Nicole Petters, conducting business activity under the name NICOLE PETTERS, entered in the Central Register and Information on Economic Activity of the Republic of Poland kept by the minister responsible for the economy, with the following address of the place of business: Franciszkańska 16, 44-218 Rybnik, and address for service: Franciszkańska 16, 44-218 Rybnik, NIP 6423242179, REGON 524125397, e-mail address: psychoterapia@nicolepetters.pl, telephone number: +48728938252 – hereinafter referred to as the ‘Administrator’ and also being the Website Service Provider and Seller.

1.3. Personal data in the Online Store is processed by the Administrator in accordance with applicable law, in particular in accordance with Regulation (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) – hereinafter referred to as ‘GDPR’ or ‘GDPR Regulation’. Official text of the GDPR: http://eur-lex.europa.eu/legal-content/PL/TXT/?uri=CELEX%3A32016R0679

1.4. Use of the Online Shop, including making purchases, is voluntary. Similarly, the provision of personal data by the Service Recipient or Customer using the Online Shop is voluntary, with two exceptions: (1) concluding contracts with the Administrator – failure to provide, in the cases and to the extent indicated on the Online Store website and in the Online Store Regulations and this privacy policy, the personal data necessary to conclude and perform a Sales Contract or a contract for the provision of Electronic Services with the Administrator results in the inability to conclude such a contract. In such a case, the provision of personal data is a contractual requirement and if the data subject wishes to conclude a given agreement with the Administrator, they are obliged to provide the required data. Each time, the scope of data required to conclude an agreement is indicated in advance on the Online Store website and in the Online Store Regulations; (2) the Administrator's statutory obligations – the provision of personal data is a statutory requirement resulting from generally applicable laws imposing on the Administrator the obligation to process personal data (e.g. processing data for the purpose of keeping tax or accounting records) and failure to provide such data will prevent the Administrator from performing these obligations.

1.5. The administrator shall exercise particular care to protect the interests of persons whose personal data it processes, and in particular shall be responsible for and ensure that the data it collects is: (1) processed lawfully; (2) collected for specified, lawful purposes and not further processed in a manner incompatible with those purposes; (3) factually correct and adequate in relation to the purposes for which they are processed; (4) stored in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; and (5) processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.

1.6. Taking into account the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons, the Controller shall implement appropriate technical and organisational measures to ensure that processing is performed in accordance with this Regulation and to be able to demonstrate this. These measures shall be reviewed and updated where necessary. The Controller shall use technical measures to prevent unauthorised persons from obtaining and modifying personal data transmitted electronically.

1.7. All words, expressions and acronyms appearing in this privacy policy and beginning with a capital letter (e.g. Seller, Online Shop, Electronic Service) should be understood in accordance with their definitions contained in the Online Store Regulations available on the Online Store's website. data) – hereinafter referred to as ‘GDPR’ or ‘GDPR Regulation’. Official text of the GDPR: http://eur-lex.europa.eu/legal-content/PL/TXT/?uri=CELEX%3A32016R0679 preventing unauthorised persons from obtaining and modifying personal data sent electronically

2. Basis for data processing

2.1. The controller is authorised to process personal data in cases where – and to the extent that – at least one of the following conditions is met: (1) the data subject has given consent to the processing of their personal data for one or more specific purposes; (2) processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract; (3) processing is necessary for compliance with a legal obligation to which the Controller is subject; or (4) processing is necessary for the purposes of the legitimate interests pursued by the Controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.

2.2. The processing of personal data by the Controller requires at least one of the grounds specified in section 2.1 of the privacy policy to be present in each case. The specific grounds for the processing of personal data of Service Users and Customers of the Online Store by the Controller are indicated in the next section of the privacy policy – in relation to the specific purpose of the processing of personal data by the Controller.

3. Purpose, basis and period of data processing on the website

3.1. In each case, the purpose, basis and period of processing of personal data by the Controller, as well as the recipients of such data, result from the actions taken by a given Service Recipient or Customer in the Online Shop or by the Controller.

3.2. In connection with the subject of the Seller's activity, if such data is part of psychological consultation, psychotherapy or psychological workshops purchased by the Customer in the Online Store as a Product, the Service Provider, with the Customer's consent, may process their personal data concerning health, revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, data concerning the sexuality or sexual orientation of that person, i.e. special category personal data referred to in Article 9 of the GDPR – so-called sensitive data (data referred to in Article 9(1) of the GDPR).

3.3. The Controller may process personal data within the Online Store for the following purposes, on the grounds and for the periods indicated below:

Performance of a Sales Agreement or an agreement for the provision of Electronic Services or taking action at the request of the data subject prior to the conclusion of the above-mentioned agreements - Article 6(1)(b) of the GDPR (performance of a contract) – processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract – Data is stored for the period necessary for the performance, termination or other expiry of the concluded Sales Agreement or agreement for the provision of Electronic Services.
Direct marketing – Article 6(1)(f) of the GDPR (legitimate interest of the controller) – processing is necessary for the purposes of the legitimate interests pursued by the Controller – consisting in caring for the interests and good image of the Controller, its Online Store and striving to sell Products - The data is stored for the duration of the legitimate interest pursued by the Controller, but no longer than the limitation period for the Controller's claims against the data subject in relation to the Controller's business activity. The limitation period is determined by law, in particular the Civil Code (the basic limitation period for claims related to business activities is three years, and for Sales Agreements two years).
The Administrator may not process data for direct marketing purposes if the data subject has effectively objected to this.
Marketing - Article 6(1)(a) of the GDPR (consent) - the data subject has consented to the processing of their personal data for marketing purposes by the Administrator - The data is stored until the data subject withdraws their consent to further processing of their data for this purpose.
Expression of opinion by the Customer on the concluded Sales Agreement - Article 6(1)(a) of the GDPR - the data subject has given consent to the processing of their personal data for the purpose of expressing an opinion - The data is stored until the data subject withdraws their consent to further processing of their data for this purpose.
Keeping tax records - Article 6(1)(c) of the GDPR in conjunction with Article 86(1) of the Tax Ordinance of 17 January 2017 (Journal of Laws of 2017, item 201, as amended) – processing is necessary for compliance with a legal obligation to which the Controller is subject – Data is stored for the period required by law, which requires the Controller to keep tax records (until the expiry of the limitation period for tax liabilities, unless tax laws provide otherwise).
Establishing, investigating or defending claims that may be raised by the Controller or that may be raised against the Controller - Article 6(1)(f) of the GDPR (legitimate interest of the controller) - processing is necessary for the purposes of the legitimate interests pursued by the Controller – consisting in establishing, pursuing or defending claims that may be raised by the Controller or against the Controller – The data are stored for the duration of the legitimate interest pursued by the Controller, but no longer than for the limitation period for claims that may be raised against the Controller (the basic limitation period for claims against the Controller is six years).
Use of the Online Store website and ensuring its proper functioning - Article 6(1)(f) of the GDPR (legitimate interest of the controller) - processing is necessary for the purposes of the legitimate interests pursued by the Controller - consisting in the operation and maintenance of the Online Store website - The data is stored for the duration of the legitimate interest pursued by the Controller, but no longer than the limitation period for the Controller's claims against the data subject in relation to the Controller's business activity. The limitation period is specified by law, in particular the Civil Code (the basic limitation period for claims related to business activities is three years, and for Sales Agreements two years).
Keeping statistics and analysing traffic in the Online Shop - Article 6(1)(f) of the GDPR (legitimate interest of the controller) – processing is necessary for the purposes of the legitimate interests pursued by the Controller – consisting in keeping statistics and analysing traffic in the Online Store in order to improve the functioning of the Online Store and increase sales of Products - The data is stored for the duration of the legitimate interest pursued by the Controller, but no longer than for the period of limitation of the Controller's claims against the data subject in relation to the Controller's business activity. The limitation period is determined by law, in particular the Civil Code (the basic limitation period for claims related to business activities is three years, and for Sales Agreements two years).

6. Rights of the data subject

6.1. Right of access, rectification, restriction, erasure, or transfer – the data subject has the right to request from the Controller access to their personal data, rectification, erasure ("right to be forgotten"), or restriction of processing, and has the right to object to processing, as well as the right to transfer their data. Detailed conditions for exercising the above-mentioned rights are set out in Articles 15-21 of the GDPR.

6.2. The right to withdraw consent at any time – a person whose data is processed by the Controller on the basis of expressed consent (pursuant to Article 6 paragraph 1 letter a) or Article 9 paragraph 2 letter a) of the GDPR Regulation) has the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

6.3. Right to lodge a complaint with a supervisory authority – an individual whose data is processed by the Controller has the right to lodge a complaint with a supervisory authority in the manner and procedure specified in the provisions of the GDPR Regulation and Polish law, in particular the Personal Data Protection Act. The supervisory authority in Poland is the President of the Personal Data Protection Office.

6.4. Right to object – the data subject has the right to object at any time, on grounds relating to their particular situation, to the processing of personal data concerning them based on Article 6(1)(e) (public interest or task) or (f) (legitimate interest of the controller), including profiling based on these provisions. In such a case, the controller may no longer process the personal data unless they demonstrate compelling legitimate grounds for processing that override the interests, rights and freedoms of the data subject, or grounds for the establishment, exercise or defense of legal claims.

6.5. Right to object to direct marketing – if personal data are processed for direct marketing purposes, the data subject has the right to object at any time to the processing of their personal data for such marketing purposes, including profiling, to the extent that the processing is related to such direct marketing.

6.6. In order to exercise the rights referred to in this point of the privacy policy, you can contact the Administrator by sending an appropriate message in writing or by e-mail to the Administrator's address indicated at the beginning of the privacy policy or using the contact form available on the Online Store website.

7. Cookies in the online store and analytics

7.1. Pliki Cookies (ciasteczka) są to niewielkie informacje tekstowe w postaci plików tekstowych, wysyłane przez serwer i zapisywane po stronie osoby odwiedzającej stronę Sklepu Internetowego (np. na dysku twardym komputera, laptopa, czy też na karcie pamięci smartfonu – w zależności z jakiego urządzenia korzysta odwiedzający nasz Sklep Internetowy). Szczegółowe informacje dot. plików Cookies, a także historię ich powstania można znaleźć m. in. tutaj: https://pl.wikipedia.org/wiki/HTTP_cookie.

7.2. Pliki Cookies, które mogą być wysyłane przez stronę Sklepu Internetowego można podzielić na różne rodzaje, według następujących kryteriów:

Ze względu na ich dostawcę: własne (tworzone przez stronę Sklepu Internetowego Administratora) oraz należące do osób/podmiotów trzecich (innych niż Administrator)
Ze względu na ich okres przechowywania na urządzeniu osoby odwiedzającej stronę Sklepu Internetowego: sesyjne (przechowywane do czasu wylogowania się ze Sklepu Internetowego lub wyłączenia przeglądarki internetowej) oraz stałe (przechowywane przez określony czas, zdefiniowany przez parametry każdego pliku lub do czasu ręcznego usunięcia)
Ze względu na cel ich stosowania:
niezbędne (umożliwiające prawidłowe funkcjonowanie strony Sklepu Internetowego),
funkcjonalne/preferencyjne (umożliwiające dostosowanie strony Sklepu Internetowego do preferencji osoby odwiedzającej stronę),
analityczne i wydajnościowe (gromadzące informacje o sposobie korzystania ze strony Sklepu Internetowego),
marketingowe, reklamowe i społecznościowe (zbierające informacje o osobie odwiedzającej stronę Sklepu Internetowego w celu wyświetlania tej osobie reklam, ich personalizacji, mierzeniu skuteczności i prowadzenia innych działań marketingowych w tym również na stronach internetowych odrębnych od strony Sklepu Internetowego, takich jak portale społecznościowe albo inne strony należące do tych samych sieci reklamowych co Sklep Internetowy)

7.3. Administrator może przetwarzać dane zawarte w plikach Cookies podczas korzystania przez odwiedzających ze strony Sklepu Internetowego w następujących konkretnych celach:

Cele stosowanie plików Cookies w Sklepie Internetowym Administratora:

identyfikacji Usługobiorców jako zalogowanych w Sklepie Internetowym i pokazywania, że są zalogowani (pliki Cookies niezbędne)
zapamiętywania Produktów dodanych do koszyka w celu złożenia Zamówienia (pliki Cookies niezbędne)
zapamiętywania danych z wypełnianych Formularzy Zamówienia, ankiet lub danych logowania do Sklepu Internetowego (pliki Cookies niezbędne lub/i funkcjonalne/preferencyjne)
dostosowywania zawartości strony Sklepu Internetowego do indywidualnych preferencji Usługobiorcy (np. dotyczących kolorów, rozmiaru czcionki, układu strony) oraz optymalizacji korzystania ze stron Sklepu Internetowego (pliki Cookies funkcjonalne/preferencyjne)
prowadzenia anonimowych statystyk przedstawiających sposób korzystania ze strony Sklepu Internetowego (pliki Cookies analityczne i wydajnościowe)
wyświetlania i renderowania reklam, ograniczania liczby wyświetleń reklam oraz ignorowania reklam, których Usługobiorca nie chce oglądać, mierzenia skuteczności reklam, a także personalizacji reklam, to jest badania cech zachowania osób odwiedzających Sklep Internetowy poprzez anonimową analizę ich działań (np. powtarzające się wizyty na określonych stronach, słowa kluczowe itp.) w celu stworzenia ich profilu i dostarczenia im reklam dopasowanych do ich przewidywanych zainteresowań, także wtedy kiedy odwiedzają oni inne strony internetowe w sieci reklamowej firmy Google Ireland Ltd. oraz Facebook, tj. Meta Platforms Ireland Ltd. (pliki Cookies marketingowe, reklamowe i społecznościowe)

7.4. Sprawdzenie w najpopularniejszych przeglądarkach internetowych, jakie pliki Cookies (w tym okres funkcjonowania plików Cookies oraz ich dostawca) są wysyłane w danej chwili przez stronę Sklepu Internetowego jest możliwe w następujący sposób:

W przeglądarce Chrome:
(1) w pasku adresu kliknij w ikonkę kłódki po lewej stronie, (2) przejdź do zakładki „Pliki cookie”.

W przeglądarce Firefox:
(1) w pasku adresu kliknij w ikonkę tarczy po lewej stronie, (2) przejdź do zakładki „Dopuszczone” lub „Zablokowane”, (3) kliknij pole „Ciasteczka śledzące między witrynami”, „Elementy śledzące serwisów społecznościowych” lub „Treści z elementami śledzącymi”

W przeglądarce Internet Explorer:
(1) kliknij menu „Narzędzia”, (2) przejdź do zakładki „Opcje internetowe”, (3) przejdź do zakładki „Ogólne”, (4) przejdź do zakładki „Ustawienia”, (5) kliknij pole „Wyświetl pliki”

W przeglądarce Opera:
(1) w pasku adresu kliknij w ikonkę kłódki po lewej stronie, (2) przejdź do zakładki „Pliki cookie”.

W przeglądarce Safari:
(1) kliknij menu „Preferencje”, (2) przejdź do zakładki „Prywatność”, (3) kliknij w pole „Zarządzaj danymi witryn”

Niezależnie od przeglądarki, za pomocą narzędzi dostępnych np. na stronie: https://www.cookiemetrix.com/ lub: https://www.cookie-checker.com/

7.5. Standardowo większość przeglądarek internetowych dostępnych na rynku domyślnie akceptuje zapisywanie plików Cookies. Każdy ma możliwość określenia warunków korzystania z plików Cookies za pomocą ustawień własnej przeglądarki internetowej. Oznacza to, że można np. częściowo ograniczyć (np. czasowo) lub całkowicie wyłączyć możliwość zapisywania plików Cookies – w tym ostatnim wypadku jednak może to mieć wpływ na niektóre funkcjonalności Sklepu Internetowego (przykładowo niemożliwym może okazać się przejście ścieżki Zamówienia poprzez Formularz Zamówienia z uwagi na niezapamiętywanie Produktów w koszyku podczas kolejnych kroków składania Zamówienia).

7.6. Ustawienia przeglądarki internetowej w zakresie plików Cookies są istotne z punktu widzenia zgody na korzystanie z plików Cookies przez nasz Sklep Internetowy – zgodnie z przepisami taka zgoda może być również wyrażona poprzez ustawienia przeglądarki internetowej. Szczegółowe informacje na temat zmiany ustawień dotyczących plików Cookies oraz ich samodzielnego usuwania w najpopularniejszych przeglądarkach internetowych dostępne są w dziale pomocy przeglądarki internetowej oraz na poniższych stronach (wystarczy kliknąć w dany link):

7.7. Administrator może korzystać w Sklepie Internetowym z usług Google Analytics, Universal Analytics dostarczanych przez firmę Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Irlandia). Usługi te pomagają Administratorowi prowadzić statystyki i analizować ruch w Sklepie Internetowym. Gromadzone dane przetwarzane są w ramach powyższych usług do generowania statystyk pomocnych w administrowaniu Sklepu Internetowego i analizie ruchu w Sklepie Internetowym. Dane te mają charakter zbiorczy. Administrator korzystając z powyższych usług w Sklepie Internetowym gromadzi takie dane jak źródła i medium pozyskania osób odwiedzających Sklep Internetowy oraz sposób ich zachowania na stronie Sklepu Internetowego, informacje na temat urządzeń i przeglądarek z których odwiedzają stronę, IP oraz domenę, dane geograficzne oraz dane demograficzne (wiek, płeć) i zainteresowania.

7.8. Możliwe jest zablokowanie w łatwy sposób przez daną osobę udostępniania do Google Analytics informacji o jej aktywności na stronie Sklepu Internetowego – w tym celu można na przykład zainstalować dodatek do przeglądarki udostępniany przez firmę Google Ireland Ltd. dostępny tutaj: https://tools.google.com/dlpage/gaoptout?hl=pl.

7.9. W związku z możliwością korzystania przez Administratora w Sklepie Internetowym z usług reklamowych i analitycznych dostarczanych przez Google Ireland Ltd., Administrator wskazuje, że pełna informacja o zasadach przetwarzania danych osób odwiedzających Sklep Internetowy (w tym informacji zapisanych w plikach Cookies) przez Google Ireland Ltd. znajduje się w polityce prywatności usług Google dostępnej pod adresem internetowym: https://policies.google.com/technologies/partner-sites.

8. Final provisions

8.1. The Online Store may contain links to other websites. The Administrator encourages users to review the privacy policies posted on other websites after visiting them. This privacy policy applies only to the Administrator's Online Store.

5. Data profiling in the online store

5.1. The GDPR imposes on the Controller an obligation to provide information on automated decision-making, including profiling, referred to in Article 22(1) and (4) of the GDPR, and – at least in these cases – relevant information on the principles underlying such decision-making, as well as on the significance and envisaged consequences of such processing for the data subject. With this in mind, the Controller provides information on possible profiling in this section of the privacy policy.

5.2. The Administrator may use profiling in the Online Store for direct marketing purposes, but the decisions made on its basis by the Administrator do not concern the conclusion or refusal to conclude a Sales Agreement or the ability to use Electronic Services in the Online Store. The effect of using profiling in the Online Store may be, for example, granting a discount, sending a discount code, reminding about unfinished purchases, sending a Product proposal that may suit the individual's interests or preferences, or offering better terms compared to the standard offer of the Online Store. Despite profiling, the individual freely decides whether to use the discount or better terms received and make a purchase in the Online Store.

5.3. Profiling in the Online Store involves the automatic analysis or forecasting of a given person's behavior on the Online Store website, e.g., by adding a specific Product to the shopping cart, viewing a specific Product page in the Online Store, or by analyzing previous purchase history in the Online Store. The condition for such profiling is that the Administrator possesses the personal data of the individual in question so that it can then send them, for example, a discount code.

5.4. The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or significantly affects him or her in a similar manner.

4. Recipients of data in the online store

4.1. For the proper functioning of the Online Store, including the performance of Sales Agreements, it is necessary for the Administrator to use the services of external entities (such as a software provider, courier or payment processor). The Administrator uses only the services of such processors who provide sufficient guarantees to implement appropriate technical and organisational measures so that the processing meets the requirements of the GDPR and protects the rights of data subjects.

4.2. Personal data may be transferred by the Controller to a third country, in which case the Controller ensures that this will be done in relation to a country that provides an adequate level of protection in accordance with the GDPR, and in the case of other countries, that the transfer will be based on standard data protection clauses. The Controller ensures that the data subject has the possibility to obtain a copy of their data. The Controller transfers the collected personal data only in the case and to the extent necessary to achieve the purpose of data processing in accordance with this privacy policy.

4.3. The Administrator does not transfer data in every case and not to all recipients or categories of recipients indicated in the privacy policy – the Administrator transfers data only when it is necessary to achieve a given purpose of personal data processing and only to the extent necessary to achieve it.

4.4. The personal data of Service Users and Customers of the Online Store may be transferred to the following recipients or categories of recipients:

4.4.1. entities handling electronic or card payments – in the case of a Customer who uses electronic or card payment methods in the Online Store, the Administrator provides the collected personal data of the Customer to the selected entity handling the above payments in the Online Store at the request of the Administrator to the extent necessary to handle the payment made by the Customer.

4.4.2. opinion survey system providers – in the case of a Customer who has agreed to express their opinion on the concluded Sales Agreement, the Administrator shall make the collected personal data of the Customer available to the selected entity providing the opinion survey system for the concluded Sales Agreements in the Online Store at the request of the Administrator to the extent necessary for the Customer to express their opinion using the opinion survey system.

4.4.3. service providers supplying the Administrator with technical, IT and organisational solutions enabling the Administrator to conduct business activity, including the Online Store and Electronic Services provided through it (in particular, suppliers of computer software for running the Online Store, e-mail and hosting providers, and providers of software for company management and technical support to the Administrator) – the Administrator makes the collected personal data of the Customer available to a selected provider acting on its behalf only in the case and to the extent necessary to achieve a given purpose of data processing in accordance with this privacy policy.

4.4.4. accounting, legal and advisory service providers providing the Administrator with accounting, legal or advisory support (in particular, an accounting office, law firm or debt collection company) – The Controller shall make the collected personal data of the Customer available to a selected supplier acting on its behalf only in the case and to the extent necessary to achieve the specific purpose of data processing in accordance with this privacy policy.

4.4.5. providers of social plugins, scripts and other similar tools placed on the Online Shop website, enabling the browser of a person visiting the Online Shop website to download content from the providers of the aforementioned plugins (e.g. logging in using social media login details) and transferring the visitor's personal data to these providers for this purpose, including:

4.4.5.1. Meta Platforms Ireland Ltd. – The Administrator uses Facebook social plugins on the Online Store website (e.g. the Like button, Share button or logging in using Facebook login details) and Instagram, and therefore collects and shares the personal data of the Service User using the Online Store website with Meta Platforms Ireland Ltd. (4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland) to the extent and in accordance with the privacy policies available – in the case of Facebook – here: https://www.facebook.com/about/privacy/ and – in the case of Instagram – here: https://help.instagram.com/519522125107875/? helpref=hc_fnav (this data includes information about activities on the Online Store website – including information about the device, websites visited, purchases, advertisements displayed and how the services are used – regardless of whether the Service User has a Facebook or Instagram account and whether they are logged into Facebook or Instagram).

4.4.5.2. TikTok Technology Limited – The Administrator uses TikTok social media plugins on the Online Store website and, as a result, collects and shares the personal data of Service Users who use the Online Store website with TikTok Technology Limited (10 Earlsfort Terrace, Dublin, D02 T380, Ireland) to the extent and in accordance with the privacy policy available here: https://www.tiktok.com/legal/privacy-policy?lang=pl (this data includes information about activities on the Online Store website – including information about the device, websites visited, purchases, advertisements displayed and how the services are used – regardless of whether the Service User has a TikTok account and is logged into TikTok).

4.4.5.3. Google Ireland Ltd. – The Administrator uses YouTube social plugins on the Online Store website and, in connection with this, collects and shares the personal data of the Service User using the Online Store website with Google Ireland Ltd. (Gordon House, Barrow Street, Dublin 4, Ireland) to the extent and in accordance with the privacy policy available here: https://policies.google.com/privacy?hl=pl (this data includes information about activities on the Online Store website – including information about the device, websites visited, purchases, advertisements displayed and how the services are used – regardless of whether the Service User has a Google account and whether they are logged into that account.