Is effective from 01.11.2021
The Controller of personal data collected via the Online Store is ADOT Sp. z o.o. with its seat in Sosnowiec 41-200, ul. Partyzantów 11, NIP 6443512386, email: [email protected], tel. +48 600994312, hereinafter referred to as the "Controller" and being the Seller at the same time.
How do we collect, process and what are your personal data used for?
We collect your personal data as a user of the Online Store at the time of:
creating an account in the Online Store in order to create a personal account and manage this account. Legal basis: necessity to perform the contract for provision of Account service (Article 6(1)(b) of the GDPR);
placing an order in the Online Store in order to perform the sales contract. Legal basis: necessity to perform the sales contract (Article 6(1)(b) of the GDPR);
subscription to the newsletter (Newsletter) in order to perform the contract the subject of which is the service provided electronically. Legal basis - consent of the data subject to perform the contract for the provision of the Newsletter service (Article 6(1)(a) of the GDPR).
By providing us with your personal data, you agree that we will use it to meet our obligations to you and provide you with the services you expect. The processing of your personal data takes place on the basis of article 6 of GDPR and for marketing purposes. The Controller refers to a legitimate interest, which is:
Creating a personal account on Cotec.pet (e.g. your first and last name; email address)
Processing orders in our online services system (e.g. your first and last name; e-mail address; postal address: postal code, city, street, country; date of birth; bank account details)
Sending marketing offers such as newsletters and catalogues (e.g. your email address, first and last name; postal address: postal code, city, street, country)
Contact in the event of difficulties with the delivery of the order (e.g. telephone number; postal address: postal code, city, street, country)
Answering questions and informing about new or modified services (e.g. your e-mail address)
Notifying winners of online competitions (e.g. your email address, name, home address and telephone number)
Account management and payment capacity control (e.g. first and last name, address, date of birth)
Analysing personal data to present marketing offers and information matching your profile (e.g. first and last name, shopping habits)
Verifying that you can legally make online purchases (e.g. date of birth)
Creating an account in the Online Store is free. Logging in to the Account is done by entering the e-mail address and password set in the Registration Form.
When using the Online Store's Website, additional information may be collected, in particular: the IP address assigned to your computer or the external IP address of the Internet provider, domain name, browser type, access time, type of operating system.
Your provision of personal data is voluntary, in connection with the concluded sales contracts or the provision of services via the Online Store's Website, with the reservation, however, that failure to provide the data specified in the forms in the registration process prevents the creation of a Customer Account, and in the case of placing an order, not creating a Customer Account will prevent the submission and implementation of your order.
Your personal data is stored:
A) if the basis for the processing of personal data is consent, the personal data are processed by the Controller until the consent is revoked, and after the consent is revoked, for a period of time corresponding to the period of limitation of claims that may be raised by the Seller and which may be raised against it. Unless a special provision provides otherwise, the limitation period is six years, and for claims for periodic benefits and claims related to running a business - three years.
B) if the basis for data processing is the performance of the contract, then the personal data is processed by the Controller as long as it is necessary to perform the contract, and after that time for a period corresponding to the period of limitation of claims. Unless a special provision provides otherwise, the limitation period is six years, and for claims for periodic benefits and claims related to running a business - three years.
What rights do you have?
1. The right to withdraw consent - legal basis: article 7(3) of GDPR.
you have the right to withdraw any consent you have given to the Seller.
withdrawal of consent takes effect from the moment of withdrawal of consent.
withdrawal of consent does not affect the processing carried out by the Seller in accordance with the law before its withdrawal.
withdrawal of consent does not entail any negative consequences for you, but it may prevent you from further using the services or functionalities that, according to the law, the Seller may only provide with consent.
2. The right to object to data processing - legal basis: article 21 of GDPR.
you have the right to object at any time - for reasons related to your particular situation - to the processing of your personal data, including profiling, if the Controller processes your data based on a legitimate interest, e.g. marketing of products and services, keeping statistics on the use of individual functionality of the Online Store and facilitating the use of the Online Store, as well as a satisfaction survey.
resignation in the form of an e-mail from receiving marketing messages regarding products or services will mean your objection to the processing of your personal data, including profiling for these purposes.
if your objection turns out to be justified and the Controller has no other legal basis to process personal data, your personal data to the processing of which you objected will be deleted.
3. The right to delete data ("the right to be forgotten") - legal basis: article 17 of GDPR.
you have the right to request the deletion of all or some of your personal data.
you have the right to request the deletion of personal data if:
personal data are no longer necessary for the purposes for which they were collected or processed;
you have withdrawn your specific consent to the extent to which your personal data was processed based on your consent;
you have objected to the use of your data for marketing purposes;
your personal data were processed unlawfully;
your personal data must be removed in order to comply with the legal obligation provided for in the Union law or the law of the Member State to which the Controller is subject,
personal data were collected in connection with the offering of information society services.
Despite your request to delete personal data, in connection with the objection or withdrawal of consent, the Seller may retain certain personal data to the extent that processing is necessary to establish, assert or defend claims, as well as to fulfill a legal obligation requiring processing pursuant to the Union law or the law of the Member State to which the Seller is subject. This applies in particular to personal data including: first name, last name, e-mail address, which data is stored for the purpose of considering complaints and claims related to the use of the Seller's services, or additionally the residence / correspondence address, order number, which data are kept for the purpose of considering complaints and claims related to concluded sales contracts or the provision of services.
4. The right to limit data processing - legal basis: article 18 of GDPR.
you have the right to demand that the processing of your personal data be restricted. Submitting a request, pending its consideration, prevents the use of certain functionalities or services, the use of which will involve the processing of data covered by the request. The seller will also not send any messages, including marketing messages.
you have the right to request the restriction of the use of your personal data in the following cases:
when you question the correctness of your personal data - then the Seller limits their use for the time needed to verify the correctness of the data, but no longer than for 7 days;
when the processing of data is unlawful, and instead of deleting the data, you request the restriction of their use;
when personal data are no longer necessary for the purposes for which they were collected or used, but you need them to establish, assert or defend claims;
when you have objected to the use of your data - then the restriction takes place for the time needed to consider whether - due to the special situation - the protection of your interests, rights and freedoms outweighs the interests of the Controller when processing your personal data.
5. The right to access data - legal basis: article 15 of GDPR.
you have the right to obtain confirmation from the Controller whether it processes your personal data, and if so, you have the right to:
access your personal data;
obtain information about the purposes of processing, categories of personal data processed, recipients or categories of recipients of these data, planned period of storage of your data or the criteria for determining this period (when it is not possible to determine the planned period of data processing), about your rights under the GDPR and about the right to lodge a complaint with the supervisory authority, about the source of this data, automated decision-making, including profiling, and about the security measures applied in connection with the transfer of this data outside the European Union;
obtain a copy of your personal data.
6. The right to rectify data - legal basis: article 16 of GDPR.
you have the right to request the Controller to immediately rectify your personal data that is incorrect. Taking into account the purposes of processing, you have the right to request that incomplete personal data be supplemented,
including by submitting an additional statement by sending a request to the e-mail address [email protected].
7. The right to data portability - legal basis: article 20 of GDPR.
you have the right to receive your personal data that you provided to the Controller, and then send them to another personal data Controller of your choice. You also have the right to request that your personal data be sent by the Controller directly to such an Controller, if technically possible.
In this case, the Controller will send your personal data in the form of a csv file, which is a commonly used, machine-readable format that allows you to send the received data to another personal data Controller.
8. In the event that you exercise your entitlement resulting from the above rights, the Controller shall meet the request or refuse to comply with it immediately, but no later than within one month after receiving it. However, if - due to the complexity of the request or the number of requests - the Seller will not be able to comply with the request within one month, it will meet it within the next two months, informing you in advance within one month of receiving the request - about the intended extension and its reasons.
9. You can submit complaints, inquiries and requests to the Controller regarding the processing of your personal data and the exercise of your rights.
10. You have the right to request the Seller to provide a copy of the standard information clause by sending an inquiry to the e-mail address [email protected]
11. You have the right to lodge a complaint with the President of the Personal Data Protection Office regarding the violation of your rights to the protection of personal data or other rights granted to you under the GDPR.
Who has access to the data?
We do not transfer, sell or exchange your personal data with other entities or business partners for marketing purposes.
Your personal data may be transferred to the following recipients or categories of recipients:
carriers / forwarders / couriers - if you use the method of delivery of the Product by courier in the Online Store, the Controller provides your personal data to the selected carrier, forwarder or courier performing the shipment at the request of the Controller;
entities handling electronic payments or by payment card - if you use the electronic payment method or payment card in the Online Store, the Controller provides your personal data to the selected entity servicing the above payments in the Online Store at the request of the Controller to the extent necessary to handle payments made by you.
Providers of the survey system - if you agree to express an opinion on the concluded Sales Agreement, the Controller provides your personal data to the selected entity providing the system of opinion surveys on the concluded Sales Agreements in the Online Store at the request of the Controller to the extent necessary for the Customer to express an opinion using the survey system
Your personal data is processed only by persons authorized by us or by processors with whom we work closely.
We have the right to share your personal data with entities authorized under the applicable law (e.g. law enforcement authorities). Your personal data is also used to profile marketing using Google Analytics, Google Adwords, Facebook Pixel. If you object to profiling - please use the browser settings.
We use Google Analytics and Google AdWords provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. We carry out activities in this area based on our legitimate interest, consisting in the creation of statistics and their analysis in order to optimize our websites and in the form of marketing of our own products or services.
Google Analytics automatically collects information about your use of our website. The information collected in this way is most often transferred to a Google server in the United States and stored there.
With the help of Google AdWords, we promote our website in search results and on third party websites.
Due to the fact that Google LLC is based in the USA and uses technical infrastructure located in the USA, it joined the EU-US-Privacy Shield program in order to ensure an adequate level of personal data protection required by the European law. As part of the agreement between the US and the European Commission, the latter has established an adequate level of data protection in the case of companies certified by the Privacy Shield.
If you are interested in details related to data processing as part of Google Analytics, we encourage you to read the explanations prepared by Google: https://support.google.com/analytics/answer/6004245
You can disable cookies used for remarketing in the settings of your Google account: https://adssettings.google.com .
We also use the marketing tools available on Facebook provided by Facebook Inc., 1601 S. California Ave. Palo Alto, CA 94304, USA. As part of these tools, we send you information on Facebook. We carry out activities in this area based on our legitimate interest in the form of marketing of our own products or services.
In order to send you personalized information in terms of your behaviour on our website, we have implemented Pixel Facebook as part of our pages, which automatically collects information about your use of our website in terms of pages viewed. The information collected in this way is most often transferred to a Facebook server in the United States and stored there.
You can also manage your privacy settings from your Facebook account.
How do we protect your data?
Your data is protected against theft, alteration, unauthorized access, etc. by means of technological and administrative solutions. We are constantly updating our security features so that they comply with the latest technologies and standards.
ADOT Sp. z o. o. protects your data using SSL (Secure Sockets Layer), which encrypts all information sent between the Customer and the Seller.
Thanks to the fact that all information sent is encrypted using SSL, card payments made on our website are extremely secure. The information is sent via an encrypted connection and your card details cannot be read by unauthorized persons. We handle all transactions in cooperation with companies authorized to process payments. These companies process the card details in accordance
with the international security standard PCI DSS, which has been developed by the issuing companies VISA, MasterCard, Diners, American Express and JCB. This guarantees the highest level of security when processing your data. In the case of card payments, we also reserve the right to confirm the Customer's identity. Transaction data, including personal data may be transferred to entities that handle electronic payments specified in § 5 of the Online Store Rules into the extent necessary to handle the payment for the order.
A “cookie” is a small text file stored on your computer or mobile device and downloaded by us at your each subsequent online visit to our store. ADOT Sp. z o. o. uses "cookies" to make your visit to our Online Store easier and more enjoyable. We do not use them to store your personal data or disclose this information to others.
There are two types of "cookies" - permanent and temporary (session cookies). Permanent cookies are saved on your computer or mobile device for up to 12 months. In contrast, session cookies are only stored temporarily and are deleted as soon as you close the browser.
We use permanent "cookies" to remember your home page preferences and to store login details if you choose the "Remember me" function.
We use session cookies when you use the product filter and to check if you are logged in. “Cookies” can be easily removed from your computer or mobile device from your browser. Instructions on how to use “cookies” and how to delete them can be found in the “Help” menu of your browser. You can also block cookies completely or choose to be notified each time they are sent.
If you choose to block "cookies", some features of the site may not be available.
“Third party cookies”
We use this type of “cookies” to collect statistics, in aggregate form, in analytical tools such as Google Analytics (external cookie administrator: Google Inc. based in the USA) and Trustpilot (external cookie administrator: Trustpilot A/S based in Copenhagen) and for the purpose of marketing the Products and popularizing the Online Store using the facebook.com social network (external cookie administrator: Facebook Inc. based in the USA or Facebook Ireland based in Ireland) and Google AdWords (external cookie administrator: Google Inc. based in USA). This applies to both permanent and temporary “cookies” (session cookies). Permanent cookies are saved on your computer or mobile device for up to 24 months.
You can delete cookies at any time using the functions available in the web browser you are using.
The cotec.pet website may contain links to websites whose content is beyond our control. Visits to such sites may result in a violation of privacy, for which we do not take any responsibility. We only provide links to help you find specific information.
The content on this site is protected by copyright and is the property of the company ADOT Sp. z o.o