Privacy policy

Privacy policy of the Sunny Garden Online Store

 

§1. Introduction

 

  1. This privacy policy sets out the rules for the processing and protection of personal data Users and customers of the online store (including potential customers) using the online store available at the internet address: https://sunny-garden.uk hereinafter referred to as the shop. The document mainly describes the grounds, purposes and scope of personal data processing indicate the entities to which the data is processed are entrusted and also contains information on cookies and tools analytical methods used as part of the online store.
  2. The administrator of personal data collected via the online store, w within the meaning of the Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of individuals with regard to data processing personal data and on the free movement of such data, and repealing the Directive 95/46 / EC (general regulation on data protection) of 27 April 2016 (Journal of EU. L No. 119, page 1), hereinafter referred to as the GDPR
  3. Users’ personal data are processed in accordance with the provisions on protection personal data and the Act of 18 July 2002 on the provision of services by road electronic (Journal of Laws No. 144, item 1204, as amended).
  4. The administrator of personal data declares that the privacy policy plays the role informative, which means that it is not a source of obligations for Users and Online store customers. Its purpose is to define the actions taken by Administrator and a description of services, tools and services related to the online store functionalities used by customers of the online store, e.g. for registration account, placing an order, using the contact form or other activities undertaken as part of the online store.

§2 General information

 

  1. The administrator of the online store makes every effort to protect privacy Users and customers of the online store and any data and information that
    were obtained from Them. Selects and applies technical measures with due diligence protection, both programmatic and organizational, thus ensuring total protection against their disclosure, disclosure, loss, destruction, unauthorized modification or processing in violation of applicable law.
  2. The administrator informs that the online store uses a transmission protocol that ensures security of data transmission on the Internet, namely, it has installed SSL (Secure Socket Layer v3) protocol. It is a type of security that consists of encoding data before sending them from the client’s browser and decoding after safely reaching the store’s server. The information sent from the server to the client is also encoded, and after reaching the target decoded.
  3. The data collected by the Administrator are processed in accordance with the law, with respect principles of fairness and transparency, are collected to the minimum extent necessary for specified purposes and processed in accordance with them, not processed further processing inconsistent with these purposes, adequate and factually correct in in relation to its intended use and stored in an identifiable manner data subjects. The period of data storage depends on the purpose processing and limited to the time of achieving the intended purpose. Administrator of the online store on the terms set out in the regulations and in the policy

§3 Recipients of personal data of the online store

 

  1. In order to ensure the proper operation of the online store, including for implementation concluded sales contracts The Administrator uses the services of external entities. The administrator provides data only when it is necessary for the implementation of the given the purpose of processing personal data and only to the extent necessary for its implementation.
  2. Examples of recipients of personal data of customers of the online store are:
    • carriers, brokers, forwarders – in a situation where the customer purchasing from the online store selects the method of delivery by courier,
    • entities servicing electronic payments or payment cards – Administrator entrusts the Customer’s personal data to the entity servicing the given payment in to the extent necessary to perform the service,
    • service providers supporting the work of the online store administrator, e.g. computer software providers for running an online store, e-mail, hosting providers,
  3. Processing of personal data of Service Users and Customers of the online store
  4. The Sunny garden Administrator entrusts the following entities:
    • hosting company – to store data on the server on which an online store is installed,

§4 Acquisition, collection, purpose, scope and processing activities

 

  1. The Administrator obtains information about Users, including by collecting logs server, IP addresses, software and hardware parameters, pages viewed, number mobile device identification and other device and usage data systems. The collection of the above information will take place in connection with
    using the online store. This data is not used by Administrator to identify the User / Customer.
  2. Navigational data, including information about links and information, may also be collected from the Customers links or other activities undertaken in the online store to facilitate using services provided electronically and to improve functionality these services.
  3. The administrator reserves the right to filter and block transmitted messages through the internal message system, in particular if they are spam,
    contain prohibited content or otherwise threaten the safety of Users online store.
  4. As part of the online store, the Administrator processes personal data Customers for the following purposes:
    • taking action before concluding the contract at the request of the client; guarantee full service for the Store User, including setting up and managing the account / accounts, contacting Users in response to inquiries sent by contact form, contacting Users via e-mail in response to sent inquiries,
    • fulfillment of orders, services and products created or co-created by Administrator,
    • performance of the sales contract or the contract for the provision of Services by road electronic,
    • keeping statistics on the use of individual functionalities available in online store, to facilitate the use of the online store and ensuring IT security of the online store,
    • providing information about services provided to the User on the basis of a separate agreement with external entities,
    • considering complaints, complaints and requests as well as answering questions.
  5. The administrator informs that he collects, processes and stores the following customer data: name and surname, e-mail address (e-mail address), contact telephone number in the purpose of contacting the customer in matters relating to the order placed, delivery address of goods (street, house number, apartment number, zip code, city, country), address residence / business / seat (if different from the delivery address).
  6. Personal data that is collected for the purposes indicated in the privacy policy will be stored for the duration of the services (including electronic services and shipping goods) provided by the Administrator and for the period resulting from the deadlines limitation of claims, tax law, consumer rights or other rights in this regard.
  7. The basis for data processing in connection with customer service, which includes contact with The customer in order to answer the sent inquiry via mail
    electronic, the contact form is 6 sec. 1 lit. a GDPR, i.e. consent to processing. If a contract is concluded after contact, the data will be processed on pursuant to Article 6 (1) (b) of the GDPR. The legal basis for the processing after possible the end of the contact will be a justified purpose in the form of archiving correspondence on the need to demonstrate its course in the future (pursuant to Article 6 (1) (f) of the GDPR).
  8. The data of the User who, by creating an account, will register in the online store will be collected on the basis of consent to processing (Article 6 (1) (a) of the GDPR). When The user decides to conclude a contract, the data will be processed on the basis of art. 6 paragraph 1 lit. b GDPR.
  9. The account is created by completing the registration form and the application basic personal data, i.e. e-mail address, etc., as well as a password consisting of the type of characters and their number in accordance with the instructions. Creating an account is free and requires consent to provide data by the User and confirmation read the privacy policy of the store.
  10. By placing an order in the online store, the customer provides personal data that is used to perform the contract, i.e. in connection with the performance of the contract (Article 6 paragraph 1 letter b of the GDPR), for archival and statistical purposes, the data will be processed on on the basis of the Administrator’s legitimate interest (Article 6 (1) (f) of the GDPR).
  11.  The basis for data processing in order to establish, assert or defend claims may be raised by the Administrator or what may be raised against the Administrator is art. 6 sec. 1 lit. f GDPR.
  12. Data about orders will be processed for the time necessary to perform the order, a then until the expiry of the limitation period for claims under the contract. In addition, after this deadline, the data may still be processed for purposes statistical.
  13. As part of the functionality of the online store, the Administrator provides the possibility contact him using the interactive form. Using with
    the form requires the provision of personal data necessary to contact User and answer the questions contained in the form. User may also provide other data to facilitate contact or commissioning a service. Providing data marked as mandatory is required to handle the inquiry and / or acceptance
    orders, and failure to do so may result in the inability to handle it. Pass other data is voluntary.
  14. In order to identify the sender and handle his inquiry sent by the shared one form – the legal basis for processing is the necessity of processing to be performed contracts for the provision of services (Article 6 (1) (b) of the GDPR).
  15. Plugs and other tools are installed on the Sunny Garden Online Store website social networks provided by social networks such as Facebook, Instagram By displaying the store page on which such a plug was placed, User’s browser will establish a direct connection with Facebook servers. The content of the plugin is provided by the respective Service Provider directly to User’s browser and integrated with the website. This integration enables the Service Provider receiving information that the User’s browser has displayed the store’s website Internet Sunny Garden If the User is logged into one of the services social networks, the service provider will be able to assign directly a visit to the Website to a given profile in a given social network. In a situation where the User of the online store clicks the “Like” button or “Share”, then the relevant information will also be sent directly to the server of a given Service Provider and stored there. In addition, this information will remain published on a given social networking site and will appear, for example, on a Facebook wall. The purpose and scope of data collection and their further processing and use by Service Providers, as well as the possibility of contact and Users’ rights in this regard and the possibility of introducing settings to protect privacy have been indicated in the privacy policy of each Service Provider.

§5 Rights of data subjects

  1. The GDPR grants the Customers / Users the rights in question, their list listed below. They are available for no reason, but are not absolute and
    will not be entitled to all processing activities personal data. In a situation where the Customer / User wants to implement any of the his rights, he may at any time send a declaration of will to e-mail address of the online store or the address of the Administrator’s office.
    1. The right to access data pursuant to Art. 15 GDPR.
    The Customer / User may contact the Administrator at any time for the purpose of confirmation whether his data is being processed, and if this is the case, the customer has the right to:
    • to gain access to personal data,
    • to receive information about the purposes of processing and the categories being processed personal data, about the recipients or categories of recipients of this data, the planned period of storage of the Client’s / User’s data, or criteria for determining this period (when the determination of the planned period data processing is not possible), about the rights they are entitled to The customer / user under the GDPR (when determining the planned period of data processing is not possible), about the rights To the customer under the GDPR.
    • to obtain a copy of your personal data.
  2. The right to rectify data based on art. 16 GDPR. The Customer / User has the right to request the Administrator immediately rectify his personal data that is incorrect. He also has the right to request supplementing your personal data. To correct or complete please send your personal data to the e-mail address online store.
  3. The right to delete data (“the right to be forgotten”) – implemented on pursuant to Art. 17 GDPR.
    • The Client / User may request the Administrator to remove it
    all or some of his data,
    • The Client / User has the right to request the deletion of his personal data,
    when:
    • personal data are no longer necessary for the purposes for which they were
    collected or in which they were processed,
    • withdrew a specific consent to the extent that the personal data were
    processed based on the consent of the Client / User,
    • he has objected to the use of his data for purposes
    marketing,
    • personal data has been collected in relation to the services offered
    information society
    • despite the Client / User requesting the deletion of data
    personal data in connection with the objection or withdrawal of consent,
    The administrator may keep certain personal data to the extent that
    processing is necessary to establish, assert or defend claims,
    as well as for the fulfillment of a legal obligatory obligation
    processing pursuant to Union or Member State law,
    to which the Administrator is subject,
    • deletion of personal data or termination of their processing by
    The administrator may not be able to provide services
    provided through the online store or by limitation
    the possibility of using the functionality of the online store.
  4. Expressing consent to the processing of personal data and the right to withdraw consents based on art. 7. paragraph 3 GDPR
    • The customer / user accepting the statements posted by Administrator in the interactive form available on the store’s website Internet, consents to the processing of his data in the specified goals,
    • The customer / user has the option to consent to its processing data for additional purposes by accepting statements optional proposed in the forms available on the website online store,
    • The customer has the right to withdraw any consent given to the Administrator, withdrawal of consent will take effect from the moment of withdrawal of consent,withdrawal of consent will not cause any negative consequences for The customer, however, may prevent further use of the services or functionalities that the Administrator may provide in accordance with the law only with consent,
    • withdrawal of consent does not affect the processing of personal data made by the Administrator in accordance with the law before its withdrawal.
  5. The right to object to data processing pursuant to Art. 21 GDPR
    • a) The customer / user has the right to object to reasons related to his particular situation in relation to his processing personal data, including rofiling, if the Administrator processes personal data based on a legitimate interest,
    • b) sent by the Client / User in the form of an e-mail opt-out of receiving marketing information regarding products and services means that the Customer / User objects to processing his data, including profiling these purposes,
    • c) if the Administrator has no other legal basis permitting processing of the Client’s / User’s data and the objection raised will turn out legitimate Personal data against which the objection has been raised will be deleted.
  6. The right to submit a request to limit the processing of personal data implemented on the basis of art. 18 GDPR The Customer / User has the right to request the restriction of their personal data, when:
    • he questions the correctness of his personal data – Data Controller personal data will limit the processing of your personal data in time
    allowing to check the correctness of this data,
    • the processing of the Client’s / User’s personal data is inconsistent with law, and instead of deleting personal data, the Customer / User requests
    limitations on the processing of your personal data,
    • the personal data of the Client / User are no longer necessary for the purposes processing, but they are necessary for the purposes of establishment, investigation or defense claims of the Client / User,
    • when the Client / User objected to the processing of their data personal data – then the processing is limited until the time determining whether the legitimate interests of the Administrator personal data override the grounds indicated in the objection Customer / User.
  7. The right to request the transfer of personal data (Article 20 of the GDPR) The Customer / User has the right to receive their data from the Administrator in a structured, commonly used and usable format machine-readable and to be sent to another Data Administrator The Client / User also has the right to request the Administrator to do so personal data was sent directly by the personal data of the Client / User another Administrator (if technically possible).

§6 Profiling

  1. As part of running an online store, the administrator may use profiling for purposes related to direct marketing, i.e. for example sending a code to a given person rebate or granting a rebate, reminders about unfinished purchases, displaying a specific advertisement based on his previous activity on the website store, send you a product proposal that may match your preferences or interests of a given Person.
  2. Despite the use of profiling by the Administrator, it is still final and free a decision regarding, for example, using the proposed discount and making a purchase in a given the online store is taken over by the person.
  3. The data subject has the right not to be made subject to the decision which is based only on automated processing, including profiling, and triggers against this A person’s legal effects or similarly affect it.

§7 Cookies policy, operational data and analytics

  1. The online store uses small files called cookies, they are saved and stored on a computer or other end device Users and customers of the store, if the web browser allows it. Cookies they usually contain the name of the domain they come from, the time they are stored on Device and assigned value.
  2. Cookies are used to optimize the process of using the store’s website in order to collecting statistical data that allow to identify the method of use Users from the website of the online store, which allows improving the structure of the store internet. They are also necessary to maintain the client’s session after leaving His online store.
  3. The administrator uses two types of cookies:
    • a) session cookies (temporary): they are stored on the end device Customer and remain there until the end of the browser session. Saved the information is then permanently deleted from the device’s memory. Cookies mechanism session cookies does not allow the collection of any personal data or any confidential information from the Customer’s device,
    • b) persistent cookies: they are stored on the Customer’s device and remain there until the moment of their deletion. Ending the session of a given browser or switching off device does not remove them from the Customer’s device. Cookies mechanism persistent data does not allow the collection of any personal data or any confidential information from the Customer’s device.
  4. The service administrator uses external cookies in order to:
    • collecting general and anonymous static data using the following tools: Google Analytics (the cookie administrator is Google Inc. based in the United States United),
    • popularizing the online store using a social networking site facebook.com (administrator of external cookies: Facebook Inc. based in the USA
    or Facebook Ireland based in Ireland),
  5. The administrator uses the Google Analitycs tracking code to analyze website statistics an online online store and Ads advertising management; specific
    information on Google Analytics can be found on the website https://support.google.com/analytics/answer/6004245.
  6. To create personalized advertisements based on the behavior of People visitors to the online store, monitoring events on the online store website
    The administrator uses the Facebook conversion pixel (JavaScript code snippet). Information collected as part of the Facebook pixel are anonymous, i.e. they do not allow the Administrator to identification of a given Person, provide only information about the activities undertaken within the framework of pages. Detailed information on the use of data by Facebook collected via the pixel are available on the site https://www.facebook.com/privacy/explanation.
  7. The customer at any time using the web browser he uses, may change cookie settings, including blocking the possibility collecting cookies. Doing so may make it difficult or impossible to use services and tools of the online store, including preventing the order from being placed.
  8. If the Customer decides that he does not agree to the use of cookie files in purposes described above, you can delete them manually at any time. Detailed instruction The procedures and information on cookies are included in the browser’s help menu website currently used by the Client. Sample web browsers The cookies that support the aforementioned cookies are: Internet Explorer, Mozilla Firefox, Google Chrome, Opera, Safari, Microsoft Edge.
  9. Some external entities operating within the online store allow Users withdraw their consent to their collection and use of data on the needs of advertising based on the customer’s activity. More information on this topic and you can choose, for example, on the website: www.youronlinechoices.com.

§8 Final provisions

  1. This privacy policy contains links to other websites, it is recommended reading the privacy policies and regulations of these websites.
  2. The above privacy policy applies only to the Administrator’s online store.
  3. It is possible to extend the offer of the online store which thus creates the ability to change the content of the privacy policy, about which you will be informed an appropriate message on the store’s website.
  4. If you have any questions or concerns about the privacy policy, i the security of your personal data, please contact us by e-mail:
    savekruk@gmail.com
  5. If you want to update or delete your personal data, if you cannot or you don’t want to do it yourself, please contact us by e-mail savekruk@gmail.com In the above cases, you can also correspond with us at:
    Magdalena Kruk
    6 Brown Close, GL510DS
    Cheltenham
Useful links
Menu
Categories
Menu
Contact

Sunny Garden 6 Brown Close GL51 0DS Cheltenham

+44 7450 215997
 

contact@sunny-garden.uk

Facebook Ebay
Shopping Basket

Holiday from 20.08-16.09.24. Our wedding. Dismiss