Privacy policy

Privacy Policy

§1
[GENERAL PROVISIONS]

This document defines the Privacy Policy of cobrick.com internet website, which includes, in particular, regulations on personal data protection and security of other data provided to the shop by the User.
The Privacy Policy constitutes an integral appendix to ToS.

§ 2
[DEFINITIONS]

Controller - co.brick Sp. z o.o. with registered seat in Gliwice ul. Gwarków 8 lok. 12, 44-100 Gliwice, registered under KRS no. 0000546609, NIP 6312656512, e-mail: office@cobrick.com;
Service – internet website cobrick.com with all its subsites;
Parties – Controller and User;
User – natural person who uses the Service and provides within its framework his or her personal data.

§ 3
[PERSONAL DATA PROTECTION]

The Controller is the administrator of the personal data in the understanding of the General Data Protection Regulation of April 27th, 2016. (GDPR)
The Controller processes the data in the scope and time and for the purpose specified each time in the contents shared under the form used to collect personal data from the user.
The personal data shall be transferred exclusively to Controller’s trustworthy subcontractors, i.e. IT service providers, accounting company, administration.

§ 4
[USER’S RIGHTS]

In case of changes to personal data, the User should update the data by sending an appropriate message to the Controller.
The user has the right to request access to the content of his or her personal data, data rectification and deletion and the right to limit the processing of the data. Moreover, the user holds the right to withdraw the consent, at any time, regardless of the impact on compliance with law on data processing, the right to data transfer and the right to object to the processing of personal data.
The User has the right to file a complaint with the President of Personal Data Protection Office.
It is voluntary to provide personal data, however lack of consent to process the data renders use of the Service impossible.
The Controller may refuse to delete User’s personal data, if the preservation of the personal data is required due to the obligation imposed on to the Controller by the provisions of law.

§ 5
[TECHNICAL DATA PROTECTION]

The Controller shall take all technical and organisational measures possible in order to ensure the safety of User’s personal data and protect the said data against accidental or intentional destruction, accidental loss, alteration, unauthorised or unlawful disclosure or access. The information is stored and processed on servers with high level of protection and maintaining proper safety levels in compliance with the requirements of Polish law.
The Controller is obliged to store backup containing User’s personal data.
The entrusted data are stored on high-end equipment and servers located in appropriately protected data centres, which can be accessed only by authorised personnel.
The Controller conducts the actions related to personal data processing in compliance with all legal and technical requirements imposed on him by the provisions on protection of personal data.

§ 6
[COOKIE POLICY]

For User’s convenience the Service uses cookies, among others in order to adjust the Service to the needs of the Users and for statistical purposes. Cookies are small size text files send by internet service, that is visited by the internet user, to the user’s device.
The Service uses two types of cookies: session cookies and persistent cookies. Session cookies are temporary files, stored in User’s terminal device until the User logs out, leaves the website or disables the software (internet browser). Persistent cookies are stored at User’s terminal device through definite period of time, defined in the cookies’ parameters or until they are deleted by the User.
The Service uses the following types of Cookies:
“essential” - enable the use of services available in the framework of the Service, e.g. they are used to handle user authorisation,
“security” - ensure security, e.g. they are used to detect misuse of services offered by the Service,
“performance” - allow to collect the information on the way the Service is used,
“functional” - allow to save the settings selected by the User, as well as User’s interface, e.g. regarding choice of language, region the User comes from, font size, Service layout etc.
“advertising” - allow to provide the user with personalised advertisements, adjusted to User’s interests,
“integrational” - related to third party services used in the Service e.g. Google Analytics, tawk.to.
Third party Services, the materials of which we present, may also use cookies, which allow logging, and are used to deliver adds relevant to the preferences and behaviour of the user.
Settings regarding cookies can be modified from the level of internet browser Lack of modifications to those settings is understood as acceptance of the use of the cookies.

§ 7
[LOGS]

In line with the practice of majority of www services, we store HTTP requests directed to our server (server’s logs). In relation to the above we store:
IP addresses, from which the users view the contents of our Service;
time when the request was received;
time when the response was sent;
name of client station - identification executed by HTTP protocol;
information on issues which occurred during the execution of the HTTP transaction,
reference link - URL address of the website previously visited by the User;
information on Users browser.
Data collected in log files are used exclusively for the purpose of Service administration.
The collected logs are stored for indefinite period of time as additional material used for Service administration. Their content is made available only to authorised Service administrators. Log files may be used to create statistics supporting system administration. Collective summary in the form of such statistics does not contain any traits characterising particular persons visiting the Service.

§ 8
[CONTACT]

The User may at any time contact the Controller in order to obtain the information on whether and how the Controller uses his or her personal data.
The User may also ask the Controller to delete his or her personal data in total or given part of it.
To contact the Controller please send an email to: office@cobrick.com

NEWSLETTER SUBSCRIPTION

We are processing your personal data indicated in the above form. The Controller of the personal data is co.brick Sp. z o.o. with registered seat in Gliwice ul. Gwarków 8 lok. 12, 44-100 Gliwice, registered under KRS no. 0000546609, NIP 6312656512, e-mail: office@cobrick.com Personal data shall be processed for the purpose of direct marketing of Controller’s products and services (Article 6, section 1, letter F GDPR). Personal data shall be stored up to the time you unsubscribe to the newsletter or file a complaint against processing your personal data in this way. It is voluntary to provide personal data, however in case data is not provided we will not be able to send you any message. You have the right to ask for access to the content of your personal data, data rectification or deletion and the right to limit the processing of the data. Moreover, you hold the right to transfer the data, the right to object to the processing of personal data and the right to file a complaint with the President of Personal Data Protection Office. The personal data shall be transferred exclusively to our trustworthy subcontractors, i.e. IT service providers.

JOB APPLICATION

We are processing your personal data indicated in the above form. The Controller of personal data is co.brick Sp. z o.o. with registered seat in Gliwice ul. Gwarków 8 lok. 12, 44-100 Gliwice, registered under KRS no. 0000546609, NIP 6312656512, e-mail: office@cobrick.com Personal data shall be processed for the purpose of recruitment procedure i.e. based on Article 6, section 1, letter F of General Data Protection Regulation of April 27th 2016 (GDPR). Personal data shall be processed for the period of one month from the date of finalising the recruitment process. If you check the box - Your data will also be processed in relation to the recruitment processes which will take place in the future. At that time the data will be processes based on your consent, until you withdraw the consent. It is voluntary to provide personal data, however in case data is not provided you will not be considered in the recruitment process. You have the right to access to the content of your personal data, data rectification or deletion and the right to limit the processing of the data. Moreover, the user holds the right to withdraw the consent, at any time, regardless of the impact on compliance with law on data processing, the right to data transfer and the right to object to processing personal data. You are entitled to file a complaint with the President of Personal Data Protection Office. The personal data shall be transferred exclusively to our subcontractors, i.e. IT service providers...