1. This Privacy Policy defines the principles of collecting, processing, and using personal data obtained from you by the online store, operated at www.cocho.pl (hereinafter referred to as the "Website") by Olga Idzik conducting business under the name COCHO CONCEPT OLGA IDZIK, located at ul. inż. pilota Wigury nr 21, 90-319 Łódź, with NIP: 7252342040, REGON: 121474980, registered by the Mayor of the City of Trzebinia (hereinafter referred to as the "Online Store").
2. The Online Store makes every effort to ensure respect for your privacy and the protection of personal information provided by you when using the Website and making purchases within the Online Store, and for this purpose takes all necessary actions.
3. The Administrator of your personal data is Olga Idzik conducting business under the name COCHO CONCEPT OLGA IDZIK, located at ul. inż. pilota Wigury nr 21, 90-319 Łódź, with NIP: 7252342040, REGON: 121474980.
4. In matters related to the protection of personal data, you can contact the Administrator electronically at the email address: dokumenty@cocho.pl or in writing at the address: COCHO CONCEPT OLGA IDZIK, ul. inż. pilota Wigury nr 21, 90-319 Łódź, with NIP: 7252342040, REGON: 121474980.
5. The Online Store will collect the following personal data from you through the Website and other forms of communication, in case of making purchases and the registration process on the Website:
1) first name and last name,
2) residential address,
3) shipping address, if different from the residential address,
4) email address,
5) phone number,
6) date of birth.
6.Your personal data will be processed for the purpose of providing electronic services and concluding and executing sales contracts for goods ordered in the Online Store operated under the Website (the legal basis for data processing is art. 6 sec. 1 lit. b) of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)).
7. Furthermore, your data may be processed for marketing purposes if you give separate consent as referred to in art. 172 sec. 1 of the Act of 16 July 2004 Telecommunications Law (Journal of Laws of 2004 No. 171 item 1800, as amended) and within the meaning of the Act of 18 July 2002 on the provision of electronic services (Journal of Laws of 2020, item 1204, as amended). In the case of direct marketing, the legal basis for data processing is the legitimate interest pursued by the Administrator - art. 6 sec. 1 lit. f) of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation). In the case of marketing concerning a person other than the Administrator, the legal basis for data processing is your consent - art. 6 sec. 1 lit. a) of the aforementioned General Data Protection Regulation. Your consent may also be the legal basis for processing your data in other cases than those mentioned above.
8. Recipients of your personal data will be courier companies, payment operators, IT service providers, auction services, other persons cooperating with the Administrator, including LEGENDHOTELS POLSKA Spółka z ograniczoną odpowiedzialnością with its registered office in Sopot, address: ul. Bitwy pod Płowcami 59, 81 - 731 Sopot, KRS 000026628 (Sopot Marriott Resort & Spa). In the described cases, the amount of transferred data is limited to the required minimum. Additionally, the information provided by you may be made available to the relevant public authorities if required by applicable law.
9. Your personal data will be processed until the termination of the contract for the provision of electronic services, or until the expiration of claims under the sales contract, or until the obligation to store data resulting from legal provisions expires, in particular the obligation to store accounting documents concerning the sales contract. In the case of personal data processed for marketing purposes, your personal data will be processed for the duration of the contract or until objection or withdrawal of consent, provided that withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. With regard to personal data processed on the basis of consent, your personal data will be processed until the consent is withdrawn, provided that withdrawal of consent does not affect the lawfulness of processing carried out on the basis of consent before its withdrawal.
10. You have the right to access your data, rectify it, delete it, restrict processing, as well as the right to data portability and the right to object.
11. You have the right to lodge a complaint with the President of the Office for Personal Data Protection if you believe that the processing of your personal data violates the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
12. Your data may be transferred to third countries in connection with the applied technical solutions. In the case of such transfer, appropriate and adequate safeguards required by the provisions on the protection of personal data are applied.
13. Providing your personal data is voluntary, but failure to provide it will result in the inability to provide electronic services to you and to conclude and execute sales contracts for goods ordered in the online store operated under the website, and in the case of personal data processed for marketing purposes - the inability of the Administrator to provide marketing services to you.
14. The Online Store makes every possible effort to secure your data and protect it from the actions of third parties. We apply all necessary server, connection, and Website security measures to protect your data.
15. All connections related to your electronic payments, if you choose this option, will be made via a secure encrypted connection.
16. However, our actions may be insufficient if you do not adhere to security principles yourself. In particular, you must keep your login and password for the Website confidential and not disclose them to third parties. Please note that the Online Store will not ask you to provide this information except when logging in to the Website. To prevent unauthorized access to your account, please log out after using the Website.
17. You have the ability to view and edit your data at any time within the Website, after logging in using your email address and password. In case you forget your password or experience other login issues, please contact us at: e-sklep@cocho.pl
18. Periodically, links to other websites may appear within the Website. These websites operate independently of the Website and are not in any way supervised by the Online Store. These websites may have their own privacy policies, which we recommend you review. The Online Store www.cocho.pl is not responsible for the data handling policies of these websites.
19. During your visit to the Online Store, data such as IP address, domain name, browser type, and operating system type are automatically collected. This data may be collected through "cookies" ("cookies"), and the "Google Analytics" system.
20. By "cookies," we mean computer data, in particular text files, stored on end-users' devices for use with websites. These files allow the user's device to be recognized and display the website adapted to their individual preferences and optimize the use of websites. "Cookies" typically contain the name of the website from which they originate, the duration of their storage on the end-user's device, and a unique number. They are also used to create anonymous, aggregated statistics that help understand how users use websites, enabling the improvement of their structure and content, excluding personal identification of the user.
21. Two types of "cookies" are used - "session" and "persistent." The former are temporary files that remain on the user's device until logging out of the website or turning off the software (web browser). "Persistent" files remain on the user's device for the time specified in the "cookies" parameters or until they are manually deleted by the user. "Cookies" used by partners of the website operator, including website users, are subject to their own privacy policies.
22. Personal data collected using "cookies" may be collected solely for the purpose of performing specific functions for the user. Such data is encrypted in a way that prevents unauthorized access to it.
23. By default, software used for browsing websites allows the placement of "cookies" on the end-user's device. These settings can be changed to block the automatic handling of "cookies" in the web browser settings or to inform about each transmission to the end-user's device. Detailed information on the possibilities and methods of handling "cookies" is available in the software settings (web browser). Limiting the use of "cookies" may affect some functionalities available on the website.
24. In any case, you can block the installation of cookies or delete persistent cookies using your web browser settings. If you encounter any problems, we advise you to use the browser's help file or contact the manufacturer of the browser you are using.