1. GENERAL PROVISIONS

1.1. This Internet Shop's privacy policy is informational, which means that it is not a source of obligation for the Service Recipients or Customers of the Internet Shop.

1.2. The Administrator of the personal data collected by means of the Internet Shop is GRANOS GROUP SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ based in Zielona Góra, registered in the National Court Register under KRS number: 0000415189, the register court keeping the company's documentation: District Court in Zielona Góra VIII Economic Division of the National Court Register, having: registered address: ul. Źródlana 45, 65-001 Zielona Góra and address for delivery: ul. Sulechowska 4a/45, 65-001 Zielona Góra, NIP: 9731008593, REGON: 081029325, share capital: PLN 5,000.00, e-mail address: sklep@bolw.pl, phone number: 685065056 - hereinafter referred to as the "Administrator" and being both the Provider of the Internet Shop and the Seller.

1.3. The personal data of the Customer and the Client are processed in accordance with the Personal Data Protection Act of 29 August 1997. (Journal of Laws 1997 No. 133, item 883 as amended) (hereinafter referred to as: the Personal Data Protection Act) and the Act on electronic services of 18 July 2002. (Journal of Laws 2002 No. 144, item 1204 as amended).

1.4. The Administrator shall exercise due diligence in order to protect the interests of data subjects, and in particular to ensure that the data collected by him is processed lawfully; collected for specified, legitimate purposes and not subject to further processing incompatible with those purposes; materially correct and adequate in relation to the purposes for which they are processed, and stored in a form that allows identification of data subjects for no longer than it is necessary to achieve the purpose of processing.

1.5. All words, phrases and acronyms appearing on this site and beginning with a capital letter (e.g. Seller, Internet Shop, Electronic Service) shall be understood in accordance with their definitions contained in the Rules of the Internet Shop available on the websites of the Internet Shop.

2. PURPOSE AND SCOPE OF DATA COLLECTION AND RECIPIENTS OF DATA

2.1. Each time the purpose, scope and recipients of the data processed by the Administrator results from the actions taken by the Customer or the Client in the Internet Shop. For example, if the Customer, when placing an Order, selects personal collection instead of courier delivery, his/her personal data will be processed for the purpose of concluding and performing the Sales Agreement, but will no longer be made available to the carrier performing the delivery on behalf of the Administrator.

2.2. Possible purposes for collecting Customers' or Clients' personal data by the Administrator:

2.2.1. conclusion and performance of a Sales Agreement or an agreement for the provision of an Electronic Service (e.g. Account).

2.2.2. direct marketing of the Administrator's own products or services.

2.2.3. Expressing by the Customer an opinion about the Sales Agreement concluded.

2.3. Possible recipients of the Internet Shop Customers' personal data:

2.3.1.  In case of a Customer who uses the delivery method in the Internet Shop by mail or by courier, the Administrator shall make the collected personal data of the Customer available to the chosen carrier or agent executing the shipment on the order of the Administrator.

2.3.2. If the Customer uses electronic or credit card payment method in the Internet Shop, the Administrator shall make available collected personal data of the Customer to a chosen entity handling the aforementioned payments in the Internet Shop.

2.3.3. In the case of a Customer, who agreed to express an opinion on a Sales Agreement concluded, the Administrator shall make available collected personal data of the Customer to a selected entity operating the system of surveys providing opinions on Sales Agreements concluded at the Internet Shop.

2.3.4. In case of a Customer, who uses the instalment payment method at the Internet Shop, the Administrator shall make available collected personal data of the Customer to a chosen creditor servicing the aforementioned payments at the Internet Shop.

2.4. The Administrator may process the following personal data of Customers or Clients using the Online Store: first and last name; e-mail address; contact telephone number; delivery address (street, house number, apartment number, postal code, city, country), address of residence / business / office (if different from the delivery address). For Service Recipients or Clients who are not consumers, the Administrator may additionally process the company name and tax identification number (NIP) of the Service Recipient or Client

2.5.  Providing personal data, referred to in the above paragraph may be necessary to conclude and perform a Sales Agreement or an agreement for the provision of Electronic Services at the Online Store. In each case the scope of data required for the conclusion of the contract is previously indicated on the website of the Online Store and in the Rules of the Online Store.

3. COOKIES AND USAGE DATA

3.1. Cookies are small information in the form of text files sent by a server and stored on the side of the person visiting the website of the Online Store (e.g. on the hard drive of your computer, laptop or smartphone memory card - depending on the device used by the visitor to our Online Store). Detailed information about cookies, as well as the history of their creation can be found, among others, here: http://pl.wikipedia.org/wiki/Ciasteczko..

3.2. The Administrator can process data contained in Cookies while the visitors use the website of the Internet Shop for the following purposes:

3.2.1. identifying Customers as logged in to the Internet Shop and showing that they are logged in;

3.2.2. remembering about Products added to the basket in order to place an Order;

3.2.3. storing data from completed Order Forms, surveys or logging data to the Online Shop;

3.2.4. adjust the content of the Internet Shop to individual preferences of the Customer (e.g. colors, font size, page layout) and optimise the use of the Internet Shop pages;

3.2.5. conduct anonymous statistics presenting the manner of use of the Internet Shop website

3.3. By default, most web browsers available on the market accept the storage of Cookies. Everyone has the possibility to determine the conditions of using cookies through the settings of their own web browser. This means that you can, for example, partially restrict (e.g. temporarily) or completely disable the storage of cookies - in the latter case, however, this may affect some of the functionality of the Online Store (for example, it may not be possible to follow the path of the Order through the Order Form due to failure to remember the Products in the shopping cart during the subsequent steps of submitting the Order).

3.4. The settings of your Internet browser regarding Cookies are important from the point of view of your consent to the use of Cookies by our Online Store - according to the regulations such consent can also be expressed through the settings of your Internet browser. If you do not give such consent, you should change your Internet browser's cookie settings accordingly.

3.5. Detailed information about changing the settings for cookies and their removal in the most popular web browsers are available in the help section of your web browser and on the following pages:

• Chrome browser
• Firefox brower
• the Internet Explorer browser
• the Opera browser
• the Safari browser
• in Microsoft Edge browser

3.6. The Administrator also processes anonymised usage data related to the use of the Internet Shop (IP address, domain) in order to generate statistics to help administer the Internet Shop. This data is aggregate and anonymous, i.e. it does not contain any identifying characteristics of the persons visiting the Internet Shop website. The data are not disclosed to third parties.

4. THE BASIS FOR DATA PROCESSING

4.1. Providing personal data by the Customer or the Client is voluntary, although the failure to provide personal data indicated on the website of the Online Store and in the Rules of the Online Store necessary for the conclusion and implementation of a Sales Agreement or an agreement for the provision of Electronic Services will result in inability to conclude this contract.

4.2. The basis for the processing of the Customer's or Client's personal data is the need for the performance of a contract to which they are a party or to take action at their request prior to entering into such a contract. In the case of data processing for the purposes of direct marketing of the Administrator's own products or services, such processing shall be based on (1) prior consent of the Customer or Client or (2) fulfilment of the Administrator's legally justified purposes (pursuant to Article 23.4 of the Act on Personal Data Protection, a legally justified purpose is considered to be direct marketing of the Administrator's own products or services).

4.3.  In case of data processing for the purpose of Customer's expression of an opinion on a Sales Agreement concluded, such processing shall be based on Customer's or Client's consent.

5. THE RIGHT TO CONTROL, ACCESS AND CORRECTION OF YOUR DATA

5.1.  The Customer has the right to access his/her personal data and correct them.

5.2.  Every person has the right to control the processing of data concerning him/her included in the Administrator's data filing system, and in particular the right to: demand the data to be completed, updated, rectified, temporarily or permanently suspended or deleted, if they are incomplete, outdated, untrue or collected in violation of the Act, or are no longer necessary for the purpose for which they were collected.

5.3.  If the Customer or Client has given consent to the processing of data for the purpose of direct marketing of the Administrator's own products or services, the consent may be revoked at any time.

5.4. If the Administrator intends to process or processes the Customer's or Client's data for the purpose of direct marketing of the Administrator's own products or services, the data subject shall also be entitled to (1) submit a written, reasoned request to cease processing his/her data due to his/her particular situation, or (2) object to the processing of his/her data.

5.5. In order to exercise the rights referred to above, the Controller may be contacted by sending a relevant message in writing or by e-mail to the address of the Controller indicated at the beginning of this Privacy Policy.

6. FINAL PROVISIONS

6.1. The Internet Shop can contain links to other websites. The Administrator encourages to get acquainted with the privacy policy of other websites. This privacy policy applies only to this Internet Shop.

6.2. The Administrator shall apply technical and organisational measures to ensure the protection of the processed personal data appropriate to the threats and the category of data protected, and in particular it shall protect the data against their disclosure to unauthorised persons, taking by an unauthorised person, processing in violation of the applicable regulations and against change, loss, damage or destruction.

6.3. The Administrator shall adequately provide the following technical measures to prevent acquisition and modification by unauthorized persons of personal data transmitted electronically:

6.3.1. Security of the data set against unauthorized access.

6.3.2. Access to an Account only after providing an individual login and password.

6.3.3. SSL certificate.