Política de privacidad
BRIDGE SOLUTIONS HUB S.A. PRIVACY POLICY
§ 1. GENERAL PROVISIONS
1. Before using the Store (hereinafter: "Online Store"), the User should familiarize themselves with the content of this privacy policy (hereinafter: "Privacy Policy").
2. This document only applies to the processing of personal data for which Bridge Solutions HUB S.A., with its registered office in Warsaw, is the controller.
3. The controller of personal data collected via the website www.lovira.eu is Bridge Solutions Hub S.A. with its registered office in Warsaw, ul. Zygmunta Vogla 2A, 02-963 Warsaw, entered into the register of entrepreneurs kept by the District Court in Warsaw, XIII Commercial Division of the National Court Register, under KRS number: 0000887045, REGON: 142524552, NIP: 5222967030, share capital of PLN 1,505,000.00, (hereinafter referred to as "Controller" or "Bridge Solutions Hub S.A.").
4. The Controller has appointed a Data Protection Officer who can be contacted by sending an email to: iodo@bshub.pl
5. Personal data collected by the Controller via the website is processed in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as "GDPR," and the Personal Data Protection Act of 10 May 2018 (Journal of Laws of 2018, item 1000 as amended).
§ 2. TYPE OF PERSONAL DATA PROCESSED, PURPOSE, AND SCOPE OF DATA COLLECTION
1. Scope of personal data processed:
a) account registration in the store: email address
b) order fulfillment: first name and last name, user address, phone number, email address, (optional) NIP and company name.
c) when using the Online Store, additional information may be collected from the user's device, in particular: IP address assigned to the user's computer or the external IP address of the internet provider, domain name, browser type, access time, operating system type.
2. The Controller processes personal data on the lovira.eu website for the purpose of:
a) registering an account and accepting and fulfilling orders for product purchases based on (Article 6(1)(b) of the GDPR – contract performance), regardless of how these orders are accepted, including via the online store at www.lovira.eu
b) providing warranty services based on (Article 6(1)(b) of the GDPR – contract performance);
c) tax settlement of purchases made based on (Article 6(1)(c) of the GDPR – fulfillment of a legal obligation incumbent on the controller) in connection with the corporate income tax act and the goods and services tax act;
d) securing and pursuing potential claims based on (Article 6(1)(f) of the GDPR – legitimate interest of the controller or a third party),
e) direct marketing: products or services of Bridge Solutions Hub S.A. and attaching promotional materials of Bridge Solutions Hub S.A.'s business partners to shipments based on (Article 6(1)(f) of the GDPR – legitimate interest of the controller or a third party),
f) sending marketing content electronically (email, push notifications) based on (Article 6(1)(a) – consent of the data subject) in connection with the implementation of Article 398 of the Electronic Communication Law (PKE).
g) processing personal data also in an automated manner in the form of profiling, if the user gives consent based on (Article 6(1)(a) of the GDPR – consent of the data subject). The consequence of profiling will be assigning a profile to a given person for the purpose of making automated decisions or analyzing or predicting their preferences, behavior, and attitudes.
h) conducting correspondence with Customers or potential Customers and answering their questions in connection with contact, including via the contact form on the Online Store website based on (Article 6(1)(f) of the GDPR – legitimate interest of the controller or a third party);
i) analytical and statistical activities regarding users' use of the Online Store based on (Article 6(1)(f) of the GDPR – legitimate interest of the controller or a third party).
j) to facilitate the use of electronic services and to improve the functionality of these services, additional data may also be collected from users, i.e., device IP, domain IP, browser type, access time, operating system type, navigation data, including information about links and references that they decide to click or other actions taken on the website. The legal basis for this type of activity is the legitimate interest of the Controller based on (Article 6(1)(f) of the GDPR – legitimate interest of the controller or a third party).
3. Providing personal data by the user is voluntary, however, failure to provide the personal data necessary for account creation, placing and fulfilling an order results in the inability to place an order. Providing personal data when placing an order also enables direct marketing activities as referred to in point 1 letter e to be undertaken on your behalf.
§ 3. DISCLOSURE OF PERSONAL DATA
1. Users' personal data may be transferred to the following recipients or categories of recipients: suppliers, service providers of the Company, Logistics Center, postal operators and courier companies, which, on behalf of Bridge Solutions Hub S.A., deliver shipments to Customers, external providers specializing in providing marketing services (e.g., marketing agencies) in connection with the design, planning, and placement of advertisements, banks and debt collection, legal or advisory firms that provide Bridge Solutions Hub S.A. with professional financial services.
2. In the case of a Customer who makes a purchase in the Online Store, the recipient of the data is also the hosting service provider. Users' personal data is stored exclusively within the European Economic Area (EEA).
§ 4. RIGHT TO CONTROL, ACCESS, AND RECTIFY OWN DATA
1. The data subject has the right to access the content of their personal data and the right to rectification, erasure, restriction of processing, the right to data portability, the right to object, the right to withdraw consent at any time without affecting the lawfulness of processing carried out on the basis of consent before its withdrawal.
2. Legal grounds for the user's request:
a) access to personal data – Article 15 of the GDPR
b) rectification of data – Article 16 of the GDPR.
c) erasure of data (the so-called right to be forgotten) – Article 17 of the GDPR.
d) restriction of processing – Article 18 of the GDPR.
e) data portability – Article 20 of the GDPR.
f) objection – Article 21 of the GDPR
g) withdrawal of consent – Article 7(3) of the GDPR.
3. To exercise the rights referred to in point 2, you can send an appropriate e-mail message to: iodo@bshub.pl.
4. If a user exercises a right resulting from the above rights, the Controller shall fulfill the request or refuse to fulfill it immediately, but no later than within one month of receiving it. However, if – due to the complex nature of the request or the number of requests – the Controller is unable to fulfill the request within one month, it shall fulfill it within the next two months, informing the user beforehand, within one month of receiving the request, about the intended extension of the deadline and its reasons.
5. In the event that the processing of personal data is found to violate the provisions of the GDPR, any data subject has the right to lodge a complaint directly with the supervisory authority: the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
§ 5. PERIOD OF PERSONAL DATA STORAGE
1. Your data will be processed for the following periods:
a) if the basis for data processing is the performance of a contract, as long as it is necessary for the performance of the contract, and after that period for a period corresponding to the limitation period for claims. Unless a specific provision states otherwise, the limitation period is six years, and for claims for periodic benefits and claims related to conducting business activity – three years.
b) if the basis for data processing is consent, as long as the consent is not withdrawn, and after the withdrawal of consent for a period corresponding to the limitation period for claims that the Controller may raise and that may be raised against them. Unless a specific provision states otherwise, the limitation period is six years, and for claims for periodic benefits and claims related to conducting business activity – three years.
c) fulfilling obligations arising from the warranty – in accordance with the warranty period resulting from the Online Store Regulations – available on the website lovira.eu (hereinafter: "Store Regulations") and relevant legal provisions.
d) tax settlement of sales – for a period of 5 years from the end of the tax year in which the sale was made;
e) marketing of our products and services – for a period of up to 5 years from your last purchase; you have the right to object to the processing of your data for marketing purposes at any time
f) conducting marketing communication – until you withdraw your consent to such contact or object to the processing of your data for marketing purposes;
g) responding to questions asked via the contact form – for the duration of the correspondence itself and then for a period of 24 months,
h) using an account in the Online Store – for the period the Customer has an account in the Online Store, in accordance with its regulations; after the Customer deletes the account, we may still process the Customer's data for the purpose of defending against claims, if justified by the circumstances;
i) analytical and statistical activities regarding the use of the Online Store – for the period of the user's account existence,
§ 6. USE OF "COOKIES"
1. Cookies
a) The online store uses mechanisms such as: "cookies", "Local Storage", "Session Storage", which are used for automatic data storage (hereinafter collectively referred to as "cookies"). Cookies are used to better adapt the Store to the needs of Users.
b) Bridge Solutions HUB S.A. uses Local Storage and Session Storage technology in its Services because this technology is similar in its principle of operation to "cookies". This is a dedicated part of the browser's memory that allows web applications to store data locally. Data in Local Storage is stored long-term by the browser and is not deleted after the browser is closed. They also do not have a defined validity period. Data stored in Session Storage is deleted after the browser is closed. The User can delete data stored in Local or Session Storage at any time.
c) Cookies that are necessary for using our website serve, among other things, to ensure the stability of its operation (they measure traffic, protecting us from overload), remember privacy preferences selected by the User, and fill in online forms provided by us. We use these cookies by default, meaning we save them on the User's computer or smartphone when they enter our website (in accordance with Article 399 of the Electronic Communications Law).
d) We use other cookies only if the User gives us their consent.
e) Essential cookies – ensure the proper functioning of our website and its basic features. Without them, the User will not be able to use our online services correctly. These cookies are exempt from the obligation to obtain User consent (Article 399 of the Electronic Communications Law).
f) Analytical cookies – our website uses cookies provided by external analytical cookie providers. Analytical cookies allow tracking the number and sources of visits, so we can measure and improve the performance of our website. This type of cookie helps us understand which subpages are most or least visited and how visitors navigate our site. If the User refuses to save analytical cookies on their computer or smartphone, the visit will not be included in our statistics, but at the same time, this will not limit any functionalities on our website for the User.
g) Marketing cookies – we use these cookies to personalize the content displayed to the User. Marketing cookies may be used in our advertising campaigns conducted on third-party websites. If the User agrees to the use of marketing cookies, they may receive information about the websites of our trusted partners where the User has responded to our advertisements. If the User opts out of marketing cookies, general and unpersonalized advertisements will be displayed. As with analytical cookies, if the User refuses to save marketing cookies on their computer or smartphone, this will not limit any functionalities on our website for the User.
2. Purposes of using "cookies"
Bridge Solutions HUB S.A. uses "cookies" for the purpose of:
a) authenticating the User and enabling logging in to the User's account;
b) adapting Services to the User's preferences;
c) conducting analyzes and research on the performance of Services and ways of using Services;
d) ensuring the security of Services;
e) conducting marketing activities and providing Users with advertisements tailored to their preferences on Bridge Solutions HUB S.A. websites and on the Internet.
3. Use of "cookies" for marketing purposes
a) "Cookies" enable the creation of User interest profiles and allow understanding what content the User might be interested in, as well as displaying advertisements based on these interests. For this purpose, Bridge Solutions HUB S.A. may collect data through "cookies" placed on the User's device via external websites. In connection with the above, advertisements within the Services belonging to Bridge Solutions HUB S.A. may also be displayed based on User behavior on other websites.
b) If the User consents, data on their activity in the Services will be shared with Bridge Solutions HUB S.A.'s marketing partners, in particular advertising technology providers, advertising networks, media houses, interactive agencies, and advertisers. A list of marketing partners can be found here List of Marketing Partners.
c) Codes and "cookies" may be placed by partners in the Services belonging to Bridge Solutions HUB S.A. These codes and files allow for the analysis of User activity on the Internet, in order to display advertisements tailored to the User's interests and preferences, thanks to the automated comparison of interests and preferences with model interests and preferences of internet users (profiling). In connection with the above, the User, when using other services, may see advertisements displayed based on their activity in Bridge Solutions HUB S.A. Services.
d) The Services also use a form of internet marketing known as "retargeting". This allows partners to display advertisements to Users based on their interactions with websites unrelated to Bridge Solutions HUB S.A. Services.
e) Behavioral marketing is conducted within the Services, which does not involve collecting personal data directly identifying the User, such as name, surname, or residential address. In certain cases, however, especially concerning registered Users, it is possible to link specific information derived from "cookies" to the User.
4. Social Media Services
a) Bridge Solutions HUB S.A. Services use "cookies", plugins, and other social tools provided by social media services such as: Facebook, Twitter, Instagram, and Google. When using Bridge Solutions HUB S.A. Services, the User's browser will establish a direct connection with the servers of the social media administrators (service providers), whereby they receive information that the User is using the Bridge Solutions HUB S.A. Service, even if they do not have a profile with a given service provider or are not currently logged in with them. This information, along with the IP address of the User's device, is transmitted to the server of the given service provider and stored there. It should be emphasized that some servers are located outside the European Economic Area, e.g., in the USA. In such a case, personal data is transferred to third countries where possibilities for exercising data subject rights and effective legal remedies apply, and the administrator and service provider ensure adequate protection of personal data by applying binding corporate rules or adopted standard data protection clauses.
b) If the User clicks "Like" or "Share" buttons, the relevant information will be sent directly to the given service provider, which may lead to its publication on the respective social media service.
c) Regarding the transfer of personal data to service providers, Bridge Solutions HUB S.A. and the service providers are joint controllers of Users' personal data, with the User exercising their rights directly in relation to the relevant service provider. The purpose and scope of data collection and its further processing and use by service providers, as well as contact possibilities and User rights in this regard and the possibility to make settings ensuring User privacy, are described in the privacy policies of individual service providers:
ca) Facebook: https://www.facebook.com/legal/FB_Work_Privacy,
cb) Instagram: https://help.instagram.com/519522125107875?helpref=page_content,
cc) Google: https://policies.google.com/privacy?hl=pl
5. Managing "cookies" - Essential cookies
a) The User has the option to disable "cookies" in their browser. However, the User must be aware that this may cause difficulties in using the Services provided via the Website. Stored cookies can be deleted by using appropriate functions of the internet browser, programs designed for this purpose, or tools available within the operating system used by the User. Failure to make changes to the settings of the browser used for managing "cookies" will result in "cookies" being automatically placed on the User's end device.
b) Due to the diversity of browsers and applications used to operate internet services, "cookie" management may vary depending on the browser used. Therefore, before starting to use the Services, we recommend familiarizing yourself with how to manage privacy/security features. Desktop devices: Internet Explorer, Chrome, Safari, Firefox, Opera. Mobile devices: Chrome, Safari, Windows Phone, Blackberry.
c) To clear data from mobile applications, depending on the system installed on the mobile device, you should:
ca) For Android system: go to Settings, then Apps, find the application, select Storage, and choose "Clear data."
cb) For iOS system: clearing application data is not possible. The only solution is to uninstall and reinstall the application.
6. Other cookies
a) During a visit to our website, a banner will be displayed informing that it uses cookies. If "Accept all" is selected, it means that all cookies placed on our website have been accepted, the User agrees to the transfer of cookies to our partners and confirms that they have read the information about cookies and the purposes of their use, as well as cases in which data collected with the help of cookies are transferred to our partners.
b) For essential cookies, consent is not required, as these types of files ensure the full and uninterrupted functioning of our site. These cookies are exempt from the obligation to obtain User consent in accordance with Article 398 of the Electronic Communications Law.
c) No consent to the installation of cookies
d) If the User does not want our cookies to be saved on their device, they can select the "Reject all" option. By choosing this option, you will reject all cookies, except for technically essential ones, that we use on our website.
e) Modifying cookie settings
f) The User can manage their cookie preferences in detail by selecting the "Change settings" field on the displayed cookie banner.
§ 7. FINAL PROVISIONS
1. This document is effective from March 1, 2025.
2. This document is adopted by the Management Board of Bridge Solutions Hub S.A. and is subject to periodic reviews for updates, especially in the event of changes in legal regulations.
3. The Administrator applies technical and organizational measures ensuring the protection of processed personal data appropriate to the risks and categories of data protected, and in particular secures data against unauthorized access, unauthorized acquisition, processing in violation of applicable regulations, and alteration, loss, damage, or destruction.
4. The Administrator provides appropriate technical means to prevent unauthorized persons from acquiring and modifying personal data transmitted electronically.
5. In matters not regulated by this Privacy Policy, the provisions of the GDPR and other relevant provisions of Polish law shall apply accordingly.