Polityka prywatności

1. Data controller and definitions.
1. The administrator of the personal data of the Customers / Users of the Internet Shop, also referred to as the Seller, is: IWC HOME sp. z o.o., telephone: 530457457, NIP: 9112025317, REGON: 36895348500000.
2. The Data Controller can be contacted:
1. at the mailing address: Warszawska 28, 56-400 Spalice;
2. at the following e-mail address: shop@iwchome.com
3. User - a natural person accessing the website/pages of the Online Shop or using the services or functionalities described in this Privacy and Cookies Policy.
4. Customer - a natural person with full legal capacity, a natural person who is a Consumer, a legal person or an organisational unit without legal personality, which is granted legal capacity by the law, who concludes a distance sales agreement with the Seller.
5. Online Shop - the online service operated by the Seller, available at the electronic addresses (sites): https://iwchome.com, through which the Customer/User can obtain information about the Goods and their availability and buy the Goods or order a service.
6. Newsletter - information, including commercial information within the meaning of the Act of 18 July 2002 on electronic service provision (Journal of Laws of 2020, item 344) originating from the Seller sent to the Customer/User electronically; its receipt is voluntary and requires the Customer/User's consent.
7. Account - a set of data stored in the Online Store and in the Seller's IT system concerning a given Client/User and the orders he/she places and contracts he/she concludes, using which the Client/User may place orders and conclude contracts.
8. RODO - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation).
 
2. Aims, legal basis and duration of data processing.
1. In order to perform the Distance Sales Contract, the Seller processes:
1. information relating to the User's device in order to ensure the correct operation of the services: IP address of the computer, information contained in cookies or other similar technologies, session data, browser data, device data, data relating to activity on the Site, including on individual pages;
2. geolocation information if the user has consented to the service provider's access to the geolocation. Geolocation information is used to provide more tailored offers of products and services;
3. the Users' personal data: name, surname, registered office address, correspondence address, e-mail address, telephone number, Tax Identification Number, bank account number or other personal data which is necessary to complete the purchase and which the Administrator requires to be provided during the purchase process.
2. This information does not contain data concerning the identity of Users, but in combination with other information may constitute personal data and therefore the Administrator covers it with the full protection afforded under the RODO.
3. This data is processed in accordance with Article 6(1)(b) of the RODO, for the purpose of providing the service, i.e. the contract for the provision of electronic services in accordance with the Terms and Conditions, and in accordance with Article 6(1)(a) of the RODO, in relation to the consent for the use of certain cookies or other similar technologies, expressed through the relevant settings of the Internet browser in accordance with the Telecommunications Law, or in relation to the consent for geolocalisation. The data is processed until the end of the Customer/User's use of the Online Shop.
4. The Administrator undertakes to take all measures required under Article 32 RODO, i.e., taking into account the state of the art, the cost of implementation and the nature, scope and purposes of the processing and the risk of violation of the rights or freedoms of natural persons of varying probability and seriousness, the Administrator implements appropriate technical and organisational measures to ensure a degree of security appropriate to the risk.
 
3. Marketing activities of the controller.
1. On the website of the Online Shop, the Data Controller may post marketing information about its products or services. The display of this content is carried out by the Data Controller in accordance with Article 6(1)(f) of the RODO, i.e. in accordance with the legitimate interest of the Data Controller to publish content related to the services provided and promotional content of campaigns in which the Data Controller is involved. At the same time, this action does not violate the rights and freedoms of Customers/Users, Customers/Users expect to receive content of similar content and even expect it or it is their direct purpose to visit the website/pages of the Online Shop.
 
4. Recipients of user data.
1. The Data Controller shall only disclose users' personal data to processors under concluded personal data processing entrustment agreements in order to perform services for the Data Controller, e.g. hosting and maintenance of the Site, IT services, marketing and PR services.
 
5. Transfer of personal data to third countries
1. Personal data will not be processed in third countries.
 
6. Rights of data subjects
1. Every data subject has the right:
1. access (Article 15 RODO) - to obtain confirmation from the Data Controller as to whether or not personal data about him or her is being processed. If data about a person is being processed, he or she is entitled to access it and to obtain the following information: the purposes of the processing, the categories of personal data, the recipients or categories of recipients to whom the data have been or will be disclosed, the duration of data retention or the criteria for determining it, the data subject's right to request rectification, erasure or restriction of the processing of personal data and to object to such processing;
2. to obtain a copy of the data (Article 15(3) RODO) - to obtain a copy of the data undergoing processing, the first copy being free of charge and for subsequent copies the Data Controller may charge a reasonable fee based on administrative costs;
3. to rectification (Article 16 RODO) - to request the rectification of personal data concerning him/her which is inaccurate or the completion of incomplete data;
4. to erasure (Article 17 of the RODO) - to request the erasure of her personal data where the Controller no longer has a legal basis for the processing or the data are no longer necessary for the purposes of the processing;
5. to restrict processing (Article 18 RODO) - to request the restriction of processing of personal data when
1. the data subject questions the accuracy of the personal data - for a period allowing the Controller to verify the accuracy of the data,
2. the processing is unlawful and the data subject objects to the erasure by requesting a restriction of use,
3. The controller no longer needs the data, but it is needed by the data subject to establish, assert or defend a claim,
4. the data subject has objected to the processing - until it is established whether the legitimate grounds on the part of the controller override the grounds of the data subject's objection;
6. to data portability (Article 20 RODO) - to receive in a structured, commonly used, machine-readable format the personal data concerning him or her which he or she has provided to the Controller, and to request that these data be sent to another Controller where the data are processed on the basis of the data subject's consent or a contract with him or her and where the data are processed by automated means;
7. to object (Article 21 RODO) - to object to the processing of his/her personal data for the legitimate purposes of the controller on grounds relating to his/her particular situation, including profiling. The Controller shall then assess the existence of valid legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or grounds for establishing, asserting or defending claims. If, according to the assessment, the interests of the data subject outweigh the interests of the controller, the Controller shall be obliged to cease processing for these purposes;
8. to withdraw consent at any time and without giving any reason, but the processing of personal data carried out prior to the withdrawal of consent will continue to be lawful. Withdrawal of consent will result in the Administrator ceasing to process the personal data for the purpose for which the consent was given.
2. In order to exercise the aforementioned rights, the data subject should contact, using the contact details provided, the Data Controller and inform him/her of which right and to what extent he/she wishes to exercise it.
 
7. The President of the Office for Personal Data Protection.
1. The data subject has the right to lodge a complaint with the supervisory authority, which in Poland is the President of the Office for the Protection of Personal Data with its seat in Warsaw, ul. Stawki 2, who can be contacted as follows:
2. by post: ul. Stawki 2, 00-193 Warsaw;
3. via the electronic mailbox available at: https://www.uodo.gov.pl/pl/p/kontakt;
4. Hotline: 606-950-000.
 
8. Data Protection Officer.
1. In any case, the data subject may also directly contact the Data Protection Officer of the Controller by email or in writing to the address of the Controller as set out in section 1, point 2 of this Privacy and Cookies Policy.
 
9. Changes to the Privacy Policy.
1. The Privacy and Cookies Policy may be supplemented or updated according to the current needs of the Administrator in order to provide up-to-date and reliable information to Customers/Users.
 
10. Cookies.
1. The online shop performs the functions of obtaining information about Customers, Users and their behaviour in the following ways:
1. by means of the information voluntarily entered in the forms for the purposes arising from the function of the specific form;
2. by storing cookies (so-called ‘cookies’) on terminal equipment;
3. through the collection of web server logs by the webshop's hosting operator (necessary for the correct operation of the website).
2. Cookies are IT data, in particular text files, which are stored on the Customer's / User's terminal device and are intended for the use of the website of the Internet Shop. Cookies usually contain the name of the website they come from, the time they are stored on the end device and a unique number.
3. The Online Shop uses cookies only after the Customer/User of the Shop has given their prior consent in this respect. Consent to the Online Shop's use of all cookies is given by clicking on the button: ‘Close’ while the message about the use of cookies by the Online Shop is displayed or by closing this message.
4. If the Customer/User of the Online Shop does not agree to the Online Shop's use of cookies, he/she can use the option: ‘I do not give my consent’, also available in the message about the use of cookies by the Online Shop or make changes in the settings of the Internet browser he/she is currently using (however, this may result in incorrect operation of the Online Shop website).
5. To manage your cookie settings, select your browser/system from the list and follow the instructions: Internet Explorer, Chrome, Safari, Firefox, Opera, Android, Safari (iOS), Windows Phone.
6. The legal basis for the processing of personal data derived from cookies is the legitimate interests of the Data Controller to provide high quality services, to ensure the security of the services.
7. The Online Shop uses two main types of cookies: ‘session’ (session cookies) and “permanent” (persistent cookies). ‘Session’ cookies are temporary files which are stored on the User's terminal device until they log off, leave the Online Shop or switch off the software (web browser). ‘Persistent’ cookies are stored on the Customer's/User's terminal device for the time specified in the parameters of the cookies or until they are deleted by the Customer/User.
 
Functional cookies (required)
Iwchome.com
prompt_token: 365 days, cookie
Identifies the shop customer.
 
shop_monit_token: 30 minutes, cookie
Identifies the shop customer.
 
client: 1 day, cookie
Identifies a logged in customer / basket of a non-logged in customer.
 
affiliate: 90 days, cookie
Stores information about the affiliate ID from which the shop was accessed.
 
ordersDocuments: cookie
Stores information about the print status of a document.
 
__idsui: 1095 days, cookie
File necessary for the functioning of the so-called light login on the website.
 
__idsual: 1095 days, cookie
File required for the so-called lightweight log-in function on the website.
 
__IAI_SRC: 90 days, cookie
Stores only the source from which the page was accessed.
 
login: cookie
Stores information about whether the user has logged in to the website.
 
CPA: 28 days, cookie
Contains information about the variables for the CPA / CPS programmes in which the site participates.
 
__IAIRSABTVARIANT__: 30 days, cookie
Variant identifier for the A/B test and configuration of the IdoSell RS engine.
 
basket_id: 365 days, cookie
Site user's basket ID, given for the duration of the ongoing session.
 
page_counter: 1 day, cookie
Counter of pages visited.
 
LANGID: 180 days, cookie
Stores information about the language selected by the site user.
 
REGID: 180 days, cookie
Stores information about the region of the website user.
 
CURRID: 180 days, cookie
Stores information about the currency selected by the site user.
 
__IAIABT__: 30 days, cookie
Stores the A/B test ID, for the purpose of testing and improving shop functionality.
 
__IAIABTSHOP__: 30 days, cookie
Stores the identifier of the shop participating in the A/B test.
 
__IAIABTVARIANT__: 30 days, cookie
Stores the identifier of the variant drawn as part of the ongoing A/B test.
 
toplayerwidgetcounter[]: cookie
Stores the number of times a pop up message has been displayed.
 
samedayZipcode: 90 days, cookie
Stores information about the site user's zipcode, which is required to offer courier delivery on the SameDay service.
 
applePayAvailability: 30 days, cookie
Stores information about whether an ApplePay payment method is available for the user.
 
paypalMerchant: 1 day, cookie
PayPal account ID.
 
toplayerNextShowTime_: cookie
Stores information about the time at which the next pop up message is to be displayed.
 
discountCode_clicked: 1 day, cookie
Stores information about the closing of the active rebate bar.
 
freeeshipping_clicked: 1 day, cookie
Stores information about the closing of the free-shipping information bar.
 
redirection: cookie
Stores information when the pop-up message informing about the suggested language for the shop is closed.
 
filterHidden: 365 days, cookie
When the option to collapse a filter for goods is clicked, stores information about which filter to collapse when the goods list is refreshed.
 
toplayerwidgetcounterclosedX_: cookie
Stores information when a pop-up message is closed.
 
cpa_currency: 60 minutes, cookie
Holds information about the currency for CPA / CPS programmes in which the site participates.
 
basket_products_count: cookie
Stores information about the number of goods in the basket.
 
wishes_products_count: cookie
Stores information about the number of goods in the favourites list.
 
remembered_mfa: 365 days, cookie
Stores information about a remembered user for multi-factor authentication (MFA).
 
IAI S.A.
 
iai_accounts_toplayer: 30 days, cookie
Ensures that the pop up message informing about the IdoAccounts login service (https://www.idosell.com/pl/tysiace-gotowych-do-uzycia-funkcji/logowanie-do-sklepu-z-konta-w-innym-serwisie/) is displayed correctly.
 
IdoSell
 
platform_id: cookie
Stores information about whether the page is displayed on a mobile app.
 
paypalAvailability_: 1 day, cookie
Stores information about whether a PayPal payment method is available for the user.
 
ck_cook: 3 days, cookie
Stores information about whether the user of the site has consented to cookies.
 
IdoAccounts
 
accounts_terms: 365 days, cookie
Stores information about whether the user has accepted consent to use the IdoAccounts service.
 
express_checkout_login: 365 days, cookie
CookieNameExpressCheckoutLogin
 
Google
 
NID: 180 days, cookie
These cookies (NID, ENID) are used to remember the user's preferences and other information, such as the preferred language, the number of results displayed on the search results page (for example, 10 or 20) and whether the user wishes to have the Google SafeSearch filter enabled. This file is also necessary to offer the Google Pay payment service.
 
Google reCAPTCHA
 
_GRECAPTCHA: 1095 days, cookie
This cookie is set by Google reCAPTCHA, which protects our website from spam requests on contact forms.
 
PayPal
 
ts: cookie
This cookie is usually provided by PayPal and handles payment services on the site.
 
ts_c: 1095 days, cookie
This cookie is usually provided by PayPal and is used for fraud prevention.
 
x-pp-s: cookie
This cookie is typically provided by PayPal and handles payment services on the site.
 
enforce_policy: 365 days, cookie
This cookie is typically provided by PayPal and supports payment services on the site.
 
tsrce: 3 days, cookie
This cookie is typically provided by PayPal and supports payment services on the site.
 
l7_az: 60 minutes, cookie
This cookie is necessary for the PayPal login function on the website.
 
LANG: 1 day, cookie
This cookie is usually provided by PayPal and supports payment services on the website.
 
nsid: cookie
Used in the context of transactions on the Website. The cookie is required for secure transactions.
 
Analytical cookies
IAI S.A.
 
__IAI_AC2: 45 days, cookie
Activity Tracking identifier for the collection of the history of sources prior to placing an order, as well as the source through which the order was placed according to the last click attribution model.
 
Google Maps
 
SID: 3650 days, cookie
Contains digitally signed and encrypted records of the user's Google account ID and last login time. The combination of these cookies (SID, HSID) allows Google to block many types of attacks, such as attempts to steal the content of forms submitted on Google services.
 
Advertising cookies
iwchome.com
 
RSSID: 180 days, cookie
IdoSell RS user ID, used to display tailored product recommendations on the website.
 
__IAIRSUSER__: 60 minutes, cookie
IdoSell RS user ID, used for the purpose of displaying tailored product recommendations on the site.
 
 
8. Cookies are used for the following purposes:
1. the creation of statistics which help us to understand how the Customers/Users of the Internet Shop use the websites, which enables us to improve their structure and content;
2. maintaining a Customer/User session (after logging in), so that the Customer/User does not have to re-enter his/her login and password on each sub-page of the Online Shop;
3. to define the profile of the customer/user in order to display product recommendations and tailored material to him/her on advertising networks, in particular the Google network.
9. The web browsing software (web browser) usually allows cookies to be stored on the Customer/User's terminal device by default. Customers/Users may change their settings in this respect. The web browser allows cookies to be deleted. It is also possible to automatically block cookies.
10. Restrictions on the use of cookies may affect some of the functionality available on the web pages of the Online Shop.
11. Cookies are placed on the Customer's/User's terminal device and may also be used by advertisers cooperating with the Online Shop and the Online Shop's partners.
12. Cookies may be used by the Google network, to display advertisements tailored to the way the Customer/User uses the Online Shop. For this purpose, they may retain information about the user's navigation path or the length of time they stayed on a particular page: https://policies.google.com/technologies/partner-sites.
13. We recommend that you read the privacy policies of these companies to understand the use of cookies used in statistics: Google Analytics Privacy Policy.
14. With regard to the information about the Customer's/User's preferences collected by the Google advertising network, the Customer/User can view and edit the information resulting from the cookies using the tool: https://www.google.com/ads/preferences/.
15. The website of the Online Shop contains plug-ins that may transmit Customer/User data to Administrators such as: Google Maps, PayPal, Google reCAPTCHA, IdoAccounts, IdoSell, IAI S.A., Google.
16. In order to properly perform the Distance Selling Agreement, the Data Controller may share the Customers‘/Users’ data with courier companies. The currently available delivery methods in the Online Shop are available at: https://iwchome.com/pl/delivery.html.
17. In order to properly perform the Distance Selling Agreement, the Administrator may share the Customers‘/Users’ data with online payment systems. The currently available payment methods in the form of prepayments in the Online Shop are available at: https://iwchome.com/pl/payments.html.
 
11. Newsletter.
1. The Customer may agree to receive commercial information by e-mail by selecting the appropriate option in the registration form or at a later date in the relevant tab. In the case of such consent, the Client/User will receive information (Newsletter) of the Online Store, as well as other commercial information sent by the Seller to the email address provided by the Client/User.
2. The Customer may unsubscribe from the Newsletter at any time on his/her own by unchecking the relevant box on his/her Account page or by going to the form https://iwchome.com/pl/newsletter.html, clicking on the relevant link in the content of each Newsletter or via the Customer Service.
 
12. Account.
1. The Customer/User may not post content, including opinions and other data of an unlawful nature, on the Online Shop or provide the Seller.
2. The Customer/User gains access to the Account after registration.
3. As part of the registration, the Customer/User provides the account type or gender, first name, surname, company name, VAT ID, sales document details, shipping details, email address and selects a password. The Customer/User ensures that the data provided by him/her in the registration form, are correct. Registration requires a thorough reading of the Terms and Conditions and indicating on the registration form that the Customer/User has read the Terms and Conditions and fully accepts all of its provisions.
4. At the moment of granting the Customer/User access to the Account, an agreement for the provision of electronic services concerning the Account is concluded between the Seller and the Customer for an indefinite period of time. The Consumer may withdraw from this agreement under the terms of the Terms and Conditions.
5. Registration of an Account on one of the pages of the Online Shop shall simultaneously constitute registration allowing access to the other pages under which the Online Shop is available.
6. The Customer/User may terminate the contract for the provision of electronic services at any time with immediate effect by informing the Vendor by email or in writing to the Data Controller's address as set out in section 1, item 2 of this Privacy and Cookies Policy.
7. The Seller has the right to terminate the contract for the provision of services concerning the Account in the event of discontinuation of the provision or transfer of the Online Shop service to a third party, violation of the law or the provisions of the Terms and Conditions by the Client/User, as well as in the event of inactivity of the Client/User for a period of 6 months. The contract is terminated by giving seven days' notice. The Seller may stipulate that re-registration of the Account will require the Seller's permission.

pixelpixel