Vinply

Privacy policy

PRIVACY AND COOKIES POLICY 
ON THE VINPLY MOBILE APP


 

WHAT IS THE PRIVACY POLICY?

We would like to acquaint you with the details of our processing of your personal data in order to give you full knowledge and comfort in the use of our VINPLY Mobile App (hereinafter referred to as the "Mobile App")

As we are in the internet business ourselves, we know how important it is to protect your personal data. Therefore, we make a special effort to protect your privacy and the information you provide to us.


We carefully select and apply appropriate technical measures, in particular those of a programming and organisational nature, to ensure the protection of personal data processed. Our website uses encrypted data transmission (SSL), which ensures the protection of data identifying you.


In our Privacy Policy you will find all the most important information regarding our processing of your personal data. We ask you to read it and promise that it will not take more than a few minutes.

Who is the administrator of the Mobile Application?

The Administrator of the Mobile Application is ASMEDIO SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ with its registered office in Warsaw, ul. Grzybowska 85/217, 00-844 Warsaw, registered by the District Court for the capital city of Warsaw in Warsaw, 12th Commercial Department of the National Court Register, KRS: 0000832025, NIP: 5272922934, REGON: 385695096, share capital: PLN 5 000.00 (in other words: we).
 

PERSONAL DATA

What legal act governs the processing of your personal data?

Your personal data is collected and processed by us in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27.04.2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (Official Journal of the EU L 119, p. 1), commonly referred to as: GDPR. To the extent not regulated by the GDPR, the processing of personal data is governed by the Data Protection Act of 10 May 2018.

Who is the Administrator of your personal data?

The Administrator of your personal data is ASMEDIO SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ with its registered office in Warsaw, 85/217 Grzybowska Street, 00-844 Warsaw, registered by the District Court for the Capital City of Warsaw in Warsaw, XII Commercial Division of the National Court Register, KRS: 0000832025, NIP: 5272922934, REGON: 385695096, share capital: 5 000.00 PLN phone: +48 733 780 780,
e-mail: contact@vinply.com

You can contact us about your personal data via:
- e-mail: contact@vinply.com
- postal mail: 85/217 Grzybowska Street, 00 - 844 Warsaw,
- telephone: +48 733 780 780.
 

HOW DO WE PROCESS THE PERSONAL DATA YOU GIVE US?

What personal data do we process and for what purposes?
 

In our Mobile App, we offer you many different services for which we process different personal data for different purposes, based on different legal bases.

 

Objective

Personal data

Legal basis for processing

Data storage time

conclusion and performance of the contract

name, surname, e-mail address

Article 6(1)(b) GDPR, i.e. processing for the purpose of taking steps at your request prior to entering into a contract and processing necessary for the performance of a contract to which you are party

until the expiry of the limitation period for claims concerning the performance of the contract

setting up and maintaining your account, adjusting your preferences

e-mail address, occupation, marital status, education, image, interests, information about addictions, skills, preferences, zodiac sign, height, weight, eye colour

Article 6(1)(b) GDPR, i.e. processing for the purpose of taking steps at your request prior to entering into a contract and processing necessary for the performance of a contract to which you are party

until the expiry of the limitation period for claims concerning the performance of the contract

newsletter

email address

Article 6(1)(a) GDPR, i.e. processing on the basis of your consent to the processing of your personal data

until you withdraw your consent to the processing of your personal data

contact form

email address

Article 6(1)(f) GDPR i.e. processing for the purpose of pursuing our legitimate interest in maintaining continuity of communication and enabling contact with us in matters of business

until you object to the processing of your personal data

establishment, investigation, enforcement and defence of claims in proceedings before the courts and other state bodies

name, surname, residential address, Social Security Number /PESEL/, Taxpayer Identification Number /NIP/, Business ID /REGON/, e-mail address, telephone no., IP no., bank account no., payment card no.

Article 6(1)(f) GDPR, i.e. processing for the purpose of pursuing our legitimate interest in the establishment, investigation and enforcement of claims and the defence of claims before the courts and other state bodies

until the expiry of the limitation period for claims concerning the performance of the contract

fulfilment of legal obligations arising from legislation, in particular tax and accounting legislation

name, surname, company, Social Security Number /PESEL/, Taxpayer Identification Number /NIP/, Business ID /REGON/, , e-mail address, telephone no., correspondence address, payment card no.

Article 6(1)(c) of the GDPR, i.e. the processing is necessary for the fulfilment of legal obligations incumbent on us under the law, in particular tax and accounting regulations

until the expiry of the legal obligations incumbent on the Administrator which justified the processing of the personal data

Voluntariness of personal data

The provision of the required personal data is voluntary, but is a prerequisite for us to provide our services to you (e.g. to send you newsletters or set up accounts). 

Recipients of personal data 

Providing the required personal data by you is voluntary and is a condition for the provision of Services by the Administrator of personal data via the App.

DATA PROCESSING TIME

  • The current list of entities to which we disclose your personal data can be found under this link: list of suppliers

Automated decision-making (including profiling)

We do not make automated decisions about you or use profiling.

Will we transfer your personal data outside the EEA or to an international organisation?

Your personal data will not be transferred outside the EEA or to an international organisation. 

WHAT RIGHTS DO YOU HAVE IN RELATION TO OUR PROCESSING OF YOUR PERSONAL DATA?

On the basis of the GDPR you have the right to: 
- request access to your personal data,
- request rectification of your personal data,
- request erasure of your personal data,
- request restriction of processing of your personal data,
- object to processing of your personal data,
- request portability of your personal data.

If you submit any of the above-mentioned requests to us, we will inform you without undue delay - and in any case within one month of receipt of the request - about the action taken on your request. 

If necessary, we may extend the one-month period by a further two months due to the complexity of the request or the number of requests.

In any case, we will inform you of the extension within one month of receipt of the request and provide you with the reasons for the delay.
 

Right of access to personal data (Article 15 GDPR)

You have the right to be informed if we process your personal data. If we process your personal data you have the right to: 
- to access your personal data,
- to be informed about the purposes of the processing, the categories of personal data processed, the recipients or categories of recipients of that data, the intended period of storage of your data or the criteria for determining that period, your rights under the GDPR and your right to lodge a complaint with the President of the Personal Data Protection Authority, the source of that data, automated decision-making, including profiling, and the safeguards applied in relation to the transfer of that data outside the European Union; 
- to obtain a copy of your personal data.

If you wish to request the rectification of personal data or their completion, please submit your request to: contact@vinply.com.

Right to rectification of personal data (Article 16 GDPR)

If your personal data is incorrect, you have the right to request us to rectify your personal data immediately. You also have the right to request that we complete your personal data. If you wish to request rectification or completion of your personal data, please submit your request to: contact@vinply.com.

THE RIGHT TO ERASURE OF PERSONAL DATA, THE SO-CALLED "RIGHT TO BE FORGOTTEN" (ART. 17 GDPR)

You have the right to request the Data Administrator to erase your personal data when:
•    Your personal data is no longer necessary for the purposes for which it was collected or otherwise processed;
•    you have withdrawn specific consent, to the extent that personal data were processed on the basis of your consent;
•    Your personal data has been unlawfully processed;
•    you have objected to the processing of your personal data for direct marketing purposes, including profiling, to the extent that the processing of your personal data is related to direct marketing;
•   you have objected to the processing of your personal data in connection with processing necessary for the performance of a task carried out in the public interest or processing necessary for the purposes of the legitimate interests pursued by the Administrator of the personal data or by a third party.

Despite your request for erasure, the Administrator may continue to process your personal data in order to establish, assert or defend your claims, of which you will be informed.

If you wish to request the deletion of your personal data, please submit your request to: contact@vinply.com.

THE RIGHT TO REQUEST RESTRICTIONS ON THE PROCESSING OF PERSONAL DATA (ARTICLE 18 OF THE GDPR)

You have the right to request the restriction of the processing of your personal data when:
•    you question the correctness of your personal data - the Data Administrator will restrict the processing of your personal data for a period of time allowing to verify its correctness;
•    the processing of your data is unlawful and instead of erasing your personal data you request the restriction of the processing of your personal data;
•    Your personal data is no longer needed for the purposes of the processing, but it is needed to establish, assert or defend your claims;
•    you have objected to the processing of your personal data - until such time as it is ascertained whether the legitimate interests pursued by the Administrator override the grounds set out in your objection.

 If you wish to request the restriction of the processing of your personal data, please submit your request to: contact@vinply.com.

THE RIGHT TO OBJECT TO THE PROCESSING OF PERSONAL DATA (ARTICLE 21 OF THE GDPR)

You have the right to object at any time to the processing of your personal data, including profiling, in relation to:
•    processing necessary for the performance of a task carried out in the public interest or processing necessary for the purposes of the legitimate interests pursued by the Administrator of the personal data or by a third party;
•    processing for direct marketing purposes.

If you wish to object to the processing of your personal data, please submit your request to: contact@vinply.com.

THE RIGHT TO REQUEST PORTABILITY OF PERSONAL DATA (ARTICLE 20 GDPR)

You have the right to receive your personal data from us in a structured, commonly used machine-readable format and to send it to another Administrator. 
By default, we will provide you with your personal data in CSV format. If you prefer to have your data made available to you in another format please indicate your preferred format in your request. Where possible, we will endeavour to provide you with the data in your preferred format.

You may also request that we transfer your personal data directly to another Administrator (if technically possible).

If you wish to request a transfer of your personal data please submit your request to: contact@vinply.com.

Can you withdraw your consent to the processing of personal data?

You may withdraw the consent you have given to the processing of your personal data at any time.

The withdrawal of your consent to process your personal data does not affect the lawfulness of the processing carried out on the basis of your consent before its withdrawal.
If you wish to withdraw your consent to the processing of your personal data, please submit your request to: contact@vinply.com. 

If you wish to withdraw your consent to the processing of your personal data for the purpose of providing the "Newsletter" service, you can opt out here

COMPLAINT TO THE SUPERVISORY AUTHORITY

If you believe that the processing of your personal data breaches the GDPR you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work or the place where the alleged breach occurred.

In Poland, the supervisory authority under GDPR is the President of the Office for Personal Data Protection, which replaced the GIODO as of 25 May 2018. 
You can find more information here.
 

„COOKIES”

GENERAL INFORMATION

When you browse the websites of the Mobile Application, "cookies", hereinafter referred to as Cookies, are used, i.e. small text information that is stored on your terminal device in connection with the use of the Mobile Application. Their use is for the proper functioning of the Mobile Application websites.

These cookies allow us to identify the software you are using and to customise the Application according to your needs.

Cookies usually contain the name of the domain they come from, the time they are stored on your device and the value assigned to them.

SECURITY

The cookies we use are safe for your device. In particular, it is not possible for viruses or other unwanted software or malware to enter your device via cookies.

TYPES OF "COOKIES"

We use two types of cookies:

  • Session cookies: they are stored on your device and remain there until the end of the browser session. The saved information is then permanently deleted from the memory of your device. The mechanism does not allow session cookies to download any personal data or any confidential information from your device.
  • Permanent cookies: these are stored on your device and remain there until you delete them. Ending a browser session or switching off the device does not delete them from your device. The mechanism of persistent cookies does not allow collecting any personal data or any confidential information from your device.

OBJECTIVES

We also use third-party cookies for the following purposes:

  • to compile statistics which help us to understand how users of the Mobile Application use the websites in order to improve their structure and content by means of Google Analytics, the provider of which is Google Ireland Ltd., based in Ireland, Google's privacy policy is available at the following link: https://policies.google.com/privacy?fg=1;
  • to profile you in order to provide you with targeted advertising material using Google Ads, the provider of which is Google Ireland, Google's privacy policy is available at the following link: https://policies.google.com/privacy?fg=1;
  • profiling you in order to display tailored content to you on ad networks, using the Facebook Ads
    online advertising tool, whose Administrator is Facebook Ireland, based in Ireland, Facebook's privacy policy is available at the following link: https://www.facebook.com/help/cookies/;
  • creating statistics and content performance and, through the Hotjar 
    tools, whose Administrator is Hotjar Ltd, based in Malta, Hotjar's privacy policy is available at the following link: https://www.hotjar.com/legal/policies/privacy/
  • popularizing the Service using YouTube.com, whose administrator is Google Ireland Ltd. based in Ireland, the Privacy Policy is available at the following link: https://policies.google.com/privacy?hl=en&gl=pl;
  • popularizing the Online Store using the LinkedIn.com social networking site, the administrator of which is LinkedIn Ireland Ltd. based in Ireland, the Privacy Policy is available at the following link: https://www.linkedin.com/legal/privacy-policy?trk= uno-reg-guest- home-privacy-policy.

To learn about the use of Cookies, we recommend that you read the privacy policies of the companies mentioned above.

Cookies may be used by advertising networks, in particular the Google network, to display advertisements tailored to your preferences. For this purpose, information may be stored on how you navigate the web or when you use the Mobile Application. 

To view and edit information about your preferences collected by the Google advertising network, you can use the tool provided under the link https://www.google.com/ads/preferences/.

By means of the settings of your Internet browser or through the configuration of the Service, you may, independently and at any time, modify the settings concerning Cookies, specifying the conditions for their storage and access by Cookies to your device. You can change these settings so as to block the automatic handling of Cookies in your web browser settings or inform about their placement on your device each time. Detailed information on the possibility and methods of using Cookies is available in the settings of your software (web browser).

 

ATTACHMENTS