Privacy policy | Wigs Wholesale | Catalog Lovewigs.com

Table of Contents:

General Provisions
Data Controller
Contact Details
Principles of Personal Data Processing
Purposes and Legal Bases for Personal Data Processing
Data Retention Period
Categories of Personal Data
Data Sharing
Customer Rights

GENERAL PROVISIONS
1. This Privacy Policy sets out the rules for the processing and protection of personal data of Customers using the website available at https://products.lovewigs.com.
2. This Privacy Policy fulfils the information obligation incumbent upon the Controller pursuant to Article 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as the “GDPR”).
DATA CONTROLLER
The Data Controller of the personal data of the Website’s Customers is Hair Partners sp. z o.o., NIP 1132932095, REGON 366665150, KRS: 0000666096, with its registered office in Warsaw (04-306) at ul. Szaserów 38, e-mail address: export@hairpartners.pl (hereinafter referred to as the “Controller”).
CONTACT DETAILS
The Controller may be contacted via e-mail at: export@hairpartners.pl or in writing at the following address: Hair Partners sp. z o.o., ul. Szaserów 38, 04-306 Warsaw, Poland.
PRINCIPLES OF PERSONAL DATA PROCESSING
1. The Controller processes Customers’ personal data in accordance with the provisions of the GDPR.
2. The Controller applies technical and organisational measures required under EU law to ensure the protection of processed personal data and to safeguard such data against disclosure to unauthorised persons, acquisition by unauthorised persons, processing in breach of applicable regulations, as well as alteration, loss or destruction.
PURPOSES AND LEGAL BASES FOR PERSONAL DATA PROCESSING
Customers’ personal data will be processed for the following purposes:
1. responding to enquiries submitted via e-mail, telephone or the contact form, which constitutes the Controller’s legitimate interest (Article 6(1)(f) GDPR),
2. analytical activities, in particular analysing traffic on our website for statistical purposes, which constitutes the Controller’s legitimate interest (Article 6(1)(f) GDPR).
DATA RETENTION PERIOD
1. Customers’ data will be stored for the following periods:
  1. data related to responding to enquiries submitted via e-mail, telephone or the contact form – for the duration of the correspondence, unless further retention is justified by the limitation period for claims or results from generally applicable laws, or is justified by the overriding interest of the Controller arising from the pursuit of legitimate interests,
  2. statistical data – until an objection is raised, but no longer than 5 years from the Customer’s last activity on the website, unless further retention is justified by the limitation period for claims or results from generally applicable laws, or is justified by the overriding interest of the Controller arising from the pursuit of legitimate interests.
CATEGORIES OF PERSONAL DATA
1. The Controller collects, processes and stores the following Customer data:
  1. in connection with contact via e-mail, telephone or the contact form: e-mail address, company name, VAT number and telephone number,
2. In other respects, the Controller processes only data necessary to achieve the relevant purpose.
3. When using the website, the Controller automatically collects and stores information such as: IP address, request URL, device identifier, time spent on individual pages, browser type, browser language, date and time of access, screen resolution, type and version of operating system, as well as other similar information.
DATA SHARING
1. Customers’ personal data may be transferred to entities to whom the Controller entrusts personal data processing under agreements, as well as to entities authorised to obtain personal data under applicable law.
2. In order to perform agreements concluded via the website and to ensure the proper functioning of the Store, the Controller shares Customers’ personal data in particular with entities providing:
  1. postal services,
  2. hosting services,
  3. IT services and services related to the provision of software and tools used in particular for analytical research, statistics, website traffic tracking, marketing automation and CRM systems,
  4. marketing services related to the operation of the website.
3. Entities providing services to the Controller may store Customers’ data outside the European Economic Area. In such cases, Users’ data will be transferred only to countries ensuring an adequate level of protection, and to countries not ensuring such a level only where appropriate safeguards are provided, including, inter alia, on the basis of standard contractual clauses adopted by the European Commission.
CUSTOMER RIGHTS
1. The Customer has the right to access their data and the right to request rectification, erasure or restriction of processing. Where the legal basis for processing personal data is the Controller’s legitimate interest, the Customer has the right to object to the processing of their personal data.
2. Where the processing of the Customer’s personal data is based on consent, the Customer has the right to withdraw such consent. Withdrawal of consent does not affect the lawfulness of processing carried out on the basis of consent before its withdrawal.
3. Where the Customer’s data is processed for the purpose of concluding and performing a contract or on the basis of consent, the Customer also has the right to data portability, i.e. to receive their personal data from the Controller in a structured, commonly used and machine-readable format. The Customer may transmit such data to another controller.
4. The Customer also has the right to lodge a complaint with a supervisory authority responsible for personal data protection.