PRIVACY POLICY

We present this Privacy Policy to inform Users of our website about what personal data we collect, how and for what purpose this process is carried out, and how our website uses cookies.

Dear User!

When you use our website, your privacy is protected at a level that meets the standards set out in generally applicable law, in particular:

    • Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter: GDPR);
    • The Personal Data Protection Act of 29 August 1997 (Journal of Laws 2016, item 922, as amended);
    • The Act of 18 July 2002 on the provision of electronic services (Journal of Laws 2020, item 344, as amended);
    • The Act of 16 July 2004 – Telecommunications Law (Journal of Laws 2021, item 576, as amended).

Your data will be processed for the period required by law, as well as for the duration during which a claim or complaint may be filed. Data that we process for the purpose of direct marketing of the services we offer will be processed until you object to such processing.

I. General Information

1. This Privacy Policy governs the rules for processing personal data as well as collecting and using information about Users within the website available at https://nevankit.com (hereinafter: the Website).

2. This Privacy Policy has been created and adopted by NEVAN Rafał Łapiński, NIP: 8461574737.

3. The Controller of personal data within the meaning of the GDPR is NEVAN Rafał Łapiński, based in Warsaw at Władysława Korotyńskiego 40/18, 02-123 Warsaw (hereinafter: the Controller).

4. The Controller processes the personal data of Users of the Website for the following purposes:

    • fulfilling obligations imposed on the entity by applicable law;
    • executing tasks and orders carried out by the entity;
    • collecting analytical and statistical data;
    • handling complaints and any potential claims;
    • managing messages submitted via electronic forms available on the Website, via email, or by phone;
    • sending marketing content to Users (marketing communication is provided based on cookies, analytical data, and direct marketing).

5. The Website may contain links that—when clicked—redirect to other websites managed by different controllers. We have no influence over the privacy policies or cookie usage practices of those entities, we are not responsible for them, and we encourage Users of our Website to review those documents on the respective sites.

II. Information on the Processing of Personal Data

1. Our Website collects the following categories of data.

1) Data provided by Users via the electronic form available on the Website.

      • A User of our Website may contact us via the contact form available on the site.
      • When choosing this form of communication, the User should enter their first name, last name, shipping address, email, phone number, and respond to the additional thematic questions indicated in the form.
      • The data listed above will be used for contact purposes, i.e., to send a response to the submitted form, as well as to arrange courier service.
      • Submitting the contact form does not automatically mean that the request has been accepted or that courier service has been ordered. The User will be informed about the confirmation of service execution in a separate email or by phone.

2) Data automatically recorded when the User visits the Website (server logs).

      • These are primarily anonymous details concerning the User’s IP address, the web browser they use, its language, the device from which the User connected to our Website along with its operating system, as well as the time of visit and the number of page views generated.
      • The data collected in this way is analyzed for statistical purposes using Google Analytics. This tool operates based on cookies.
      • Importantly, the collected information is not shared in a manner that would allow the identification of the User and is not disclosed by us to individuals not authorized to administer the Website.
      • Your data is stored solely to support the administration of our website. Its analysis allows us to optimize its content and introduce solutions expected by our Users.
      • If you wish, you may review Google’s privacy policy by visiting: https://www.google.com/intl/pl/policies/privacy.

2. A User whose data is processed has the right to:

1) access their personal data and request its rectification or deletion, in accordance with Articles 15–17 of the GDPR;

2) request the restriction of data processing, in cases specified in Article 18 of the GDPR;

3) data portability under Article 20 of the GDPR, that is, to receive from the Controller the data concerning them in a structured, commonly used, machine-readable format;

4) withdraw consent at any time, without affecting the lawfulness of processing carried out based on consent before its withdrawal;

5) lodge a complaint with the President of the Personal Data Protection Office at the address of the Office (ul. Stawki 2, 00-193 Warsaw).

3. To exercise the rights referred to in point 2 (sub-points 1–4), the User should contact the Controller of the Website using the contact details provided in section “VII. Contact with the Data Controller.”

4. Data may be subject to profiling in accordance with Article 4(4) of the GDPR.

5. The User is obliged to provide current and truthful data.

6. Providing personal data is always voluntary, but necessary for communication purposes, and in the event of choosing our offer, it is also required for the conclusion and proper performance of the contract.

III. Recipients of Personal Data

1. Client data may be disclosed to entities authorized to receive it under applicable law or as a result of performing a contract concluded directly with the Client, when such disclosure is necessary to carry out our services.

2. Personal data may be entrusted to trusted recipients, in particular:

    • the entity providing accounting services;
    • the courier company;
    • entities intermediating in payment processing.

3. To the extent that Users’ data is processed using cookies for statistical purposes with the use of Google Analytics, the Controller transfers Users’ data to a third country — the United States. Google Inc. has joined the EU–U.S. Privacy Shield agreement. According to the decision of the European Commission of 12 July 2016, ref. IP/16/216, the transfer of personal data to entities based in the United States that have joined the above-mentioned agreement ensures an adequate level of data protection in accordance with Article 45 of the GDPR.

IV. Data Security

1. Our Website uses technologies and personal data protection procedures that ensure an appropriate level of privacy protection for its Users.

2. We store the personal data of Users in a database that is secured with technical and organizational measures ensuring its protection, in accordance with personal data protection regulations, and in particular in accordance with:

    • the GDPR;
    • the Act of 16 July 2004 – Telecommunications Law (Journal of Laws 2021, item 576, as amended);
    • the Act of 18 July 2002 on the provision of electronic services (Journal of Laws 2020, item 344, as amended).

3. Users’ personal data is protected, among other ways, through the following measures:

    • Access to the personal data database is granted only to individuals authorized by the Controller.
    • The Website Administrator periodically changes administrative passwords.
    • The Website is secured with an SSL certificate, ensuring that personal data entered by the User is encrypted on their device and can only be read on the target server.
    • To protect personal data, the Controller regularly performs backup copies.

V. Cookies

1. When using our Website, cookies (so-called “browser cookies”) are stored on the User’s end device.

2. You can read our full Cookie Policy at: https://nevankit.com/cookie-policy

VI. Changes to the Privacy Policy

1. The Privacy Policy of the Website may be modified solely to enhance protection standards or to ensure compliance with applicable legal requirements.

2. Users of the Website will be informed of any changes to the Privacy Policy via a message sent to the email address they provided, if they have consented to such form of communication.

VII. Contact with the Data Controller

1. Any comments, irregularities, or requests regarding this Privacy Policy should be sent by email to info@nevankit.com.

2. After reviewing your request, we will provide a response by sending a return email to the address from which we received your message.