Privacy Policy
Last updated: 13/12/2024
This Privacy Policy outlines the principles of processing personal data of Users using the 507 CREATIVES website, available at www.507creatives.com.pl . The Administrator makes every effort to protect the privacy of website visitors and ensure the security of processed personal data. This document is for informational purposes and does not constitute an agreement with Users.
1. Definitions
- Administrator -- 507 CREATIVES SP. Z.O.O SP. KOMANDTYTOWA with its registered office in Warsaw at ul. Rejsu 2/4 02-654 Warsaw, NIP: 5252803846, REGON: 384515620, email address: mamsprawe@507.com.pl, which is responsible for processing Users' personal data in accordance with applicable law.
- User -- any natural person visiting the website www.507creatives.com.pl or using the functionalities offered by this website.
- Personal Data -- information about an identified or identifiable natural person, processed by the Administrator in connection with the use of the website.
2. Legal Basis for Data Processing
The Administrator processes Users' personal data based on:
- Article 6(1)(a) GDPR -- User's consent to the processing of personal data for one or more specific purposes;
- Article 6(1)(b) GDPR -- necessity of processing data for the performance of a contract to which the User is party or to take steps at the User's request prior to entering into a contract;
- Article 6(1)(c) GDPR -- compliance with a legal obligation to which the Administrator is subject;
- Article 6(1)(f) GDPR -- legitimate interests pursued by the Administrator, such as ensuring website security, establishing, exercising, or defending against claims.
3. Purposes of Data Processing
Users' data will be processed particularly for the following purposes:
- Ensuring proper website functioning (e.g., displaying content, website navigation);
- Processing orders, services, or contracts with Users (if applicable);
- Responding to Users' questions and inquiries, handling contact submissions;
- Website traffic analysis, statistics, improving service quality and website functionality;
- Ensuring system security and integrity (e.g., preventing abuse, attempted breaches).
4. Types of Processed Data
The Administrator may process the following data categories:
- Contact data (e.g., name, email address, phone number) voluntarily provided by the User for contact purposes, newsletter subscription, or order processing;
- Technical data, such as IP address, browser type, device type, screen resolution, browser language, location (general), operating system, dates and times of website access;
- Data concerning User activity on the website (e.g., visited subpages, time spent on the website, clicks).
5. Cookies and Similar Technologies
The website uses cookies and similar technologies for:
- Ensuring proper website operation;
- Remembering User preferences;
- Traffic analysis and offer optimization;
- Content and advertising personalization (if applicable).
Users can independently manage cookie settings in their web browser (including blocking or deleting them). Limiting the use of cookies may affect some website functionalities.
6. Data Retention Period
Users' personal data will be stored only for the period necessary to achieve the purposes for which they were collected, or for the time required by law. In the case of data processed based on consent -- until its withdrawal. After these periods, the data will be deleted or anonymized.
7. Sharing Personal Data
The Administrator may share personal data with third parties only to the extent necessary to achieve specific purposes, including:
- Entities providing hosting, IT, analytical, and marketing services;
- Entities executing orders on behalf of the Administrator (e.g., couriers, logistics companies, payment operators);
- Public authorities, if the obligation to disclose data results from legal provisions.
When transferring data outside the European Economic Area (EEA), the Administrator will ensure appropriate protection mechanisms, such as standard contractual clauses.
8. Users' Rights
Users have the following rights under GDPR:
- Right to access their data and receive a copy;
- Right to rectification (correction) of data;
- Right to erasure of data (the “right to be forgotten”);
- Right to restriction of processing;
- Right to data portability;
- Right to object to data processing;
- Right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
To exercise these rights, please contact the Administrator at mamsprawe@507.com.pl. Users also have the right to lodge a complaint with the supervisory authority (President of the Personal Data Protection Office) if they believe that the processing of personal data violates legal provisions.
9. Data Security
The Administrator implements appropriate technical and organizational measures to ensure personal data security, including protection against unauthorized access, loss, destruction, or unauthorized modification.
10. Changes to the Privacy Policy
The Administrator reserves the right to make changes to this Privacy Policy to adapt it to applicable law or introduce new website functionalities. Changes will be published on this subpage along with their current implementation date. Continued use of the website after changes are introduced means acknowledgment and acceptance of them.