SUMI-E.ART GALLERY

Privacy Policy

This privacy policy describes how we process information about you, including personal data and cookies, or “cookies.

1. general information

1.1 This policy applies to the Website, operating at url: sumi-e.art.
1.2 The operator of the service and the Administrator of personal data is: Monika Buchalska.
1.3 Operator’s email contact address: kontakt@sumi-e.art.
1.4 The Operator is the Administrator of your personal data with respect to the data you voluntarily provide on the Website.
1.5 The Service uses personal data for the following purposes:
a) Handling inquiries through the form.
(b) Preparation, packaging, shipping of goods.
1.6 The Service performs the functions of obtaining information about users and their behavior in the following ways:
a) Through voluntarily entered data in the forms, which are entered into the Operator’s systems.
(b) By storing cookies (so-called “cookies”) on end devices.

2 Selected data protection methods used by the Operator

2.1 The login and personal data entry sites are protected in the transmission layer (SSL certificate). This ensures that the personal and login data entered on the site are encrypted on the user’s computer and can only be read on the target server.
2.2 User passwords are stored in hashed form. The hashing function works in a one-way fashion – it is not possible to reverse its operation, which is the current modern standard for storing user passwords.
2.3 The Operator periodically changes its administrative passwords.
2.4 In order to protect data, the Operator regularly makes security copies.
2.5 An important element of data protection is regular updating of all software used by the Operator to process personal data, which in particular means regular updates of software components.

3. hosting

3.1 The Service is hosted (technically maintained) on the servers of the operator: cyberFolks.pl.
3.2 The hosting company, in order to ensure technical reliability, keeps logs at the server level. The following may be recorded:
a) Resources specified with a URL identifier (addresses of requested resources – pages, files).
b) Time of arrival of a request.
c) Time of sending a response.
d) Client station name – identification carried out by the HTTP protocol.
e) Information about errors that occurred during the execution of HTTP transactions.
f) URL of the page previously visited by the user (referer link) – in case the user accessed the Website via a link.
g) Information about the user’s browser.
h) Information about the IP address.
i) Diagnostic information related to the process of self-ordering services via registrars on the Website.
j) Information related to the handling of electronic mail addressed to the Operator and sent by the Operator.

4. your rights and additional information about how your data will be used

4.1 In certain situations, the Administrator has the right to transfer your personal data to other recipients, if this is necessary for the performance of the contract concluded with you or for the fulfillment of obligations incumbent on the Administrator. This applies to such groups of recipients:
a) Hosting company on the basis of entrustment.
b) Couriers.
c) Postal operators.
d) Payment operators.
4.2 Your personal data processed by the Administrator for no longer than it is necessary to perform the related activities specified by separate regulations (e.g. on accounting). With respect to marketing data, data will not be processed for longer than 3 years.
4.3 You have the right to request from the Administrator:
a) Access to personal data concerning you.
(b) Their corrections.
(c) Deletions.
(d) Restrictions on processing.
(e) Data portability.
4.4 You have the right to object, with respect to the processing indicated in Section 4.3, to the processing of personal data for the purpose of carrying out the legitimate interests pursued by the Controller, including profiling, whereby the right to object will not be exercised if there are valid legitimate grounds for processing that override your interests, rights and freedoms, in particular the establishment, assertion or defense of claims.
4.5 You have the right to complain about the Administrator’s actions to the President of the Office for Personal Data Protection, 2 Stawki Street, 00-193 Warsaw.
4.6 Providing personal data is voluntary, but necessary to operate the Service.
4.7 Automated decision-making, including profiling for the purpose of providing services under the concluded agreement and for the purpose of direct marketing by the Administrator.
4.8 Personal data is not transferred from third countries within the meaning of data protection regulations. This means that we do not send them outside the European Union.

5. information in forms

5.1 The Service collects information voluntarily provided by the user, including personal data, if provided.
5.2 The Service may record information about the connection parameters (time stamp, IP address).
5.3 The Service, in some cases, may record information to facilitate linking the data in the form with the e-mail address of the user completing the form. In such a case, the e-mail address of the user appears inside the url of the page containing the form.
5.4 The data provided in the form are processed for the purpose resulting from the function of the specific form, e.g. to perform the process of service request or business contact, registration of services, etc. Each time the context and description of the form clearly informs what it is used for.

6. administrator’s logs

Information of user behavior on the site may be subject to logging. This data is used to administer the site.

7. important marketing techniques

The operator uses statistical analysis of website traffic, through Google Analytics (Google Inc., based in the USA). The operator does not transmit personal data to the operator of this service, only anonymized information. The service is based on the use of cookies on the user’s terminal device. Regarding the information about user preferences collected by the Google advertising network, the user can view and edit the information resulting from cookies using the tool: https://www.google.com/ads/preferences/.

8 Information about cookies

8.1 The Service uses cookies.
8.2 Cookies (so-called “cookies”) are IT data, in particular text files, which are stored in the Service User’s terminal equipment and are intended for use on the Service’s websites. Cookies usually contain the name of the website from which they originate, the time of storing them on the terminal equipment and a unique number.
8.3 The entity placing cookies on the terminal equipment of a Service User and having access to them is the Service operator.
8.4 Cookies are used for the following purposes:
a) Maintaining the session of the Service user (after logging in), so that the user does not have to re-enter his/her login and password on each sub-page of the Service.
b) Realization of the purposes specified above in the section “Important marketing techniques”;
8.5 The Service uses two main types of cookies: “session” cookies and “permanent” cookies (persistent cookies). “Session” cookies are temporary files that are stored on the User’s terminal device until the User logs out, leaves the website or shuts down the software (web browser). “Permanent” cookies are stored on the User’s end device for the time specified in the parameters of the cookies or until they are deleted by the User.
8.6 Web browsing software (Internet browser) usually allows the storage of cookies on the User’s end device by default. Users of the Website may change their settings in this regard. The Internet browser allows the removal of cookies. It is also possible to automatically block cookies. Detailed information on this subject is contained in the help or documentation of your Internet browser.
8.7 Restrictions on the use of cookies may affect some of the functionality available on the Website.
8.8 Cookies placed on the Website User’s end device may also be used by entities cooperating with the Website Operator, in particular this concerns companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Instagram (Instagram Inc. based in the USA).

9. cookie management – how to give and withdraw consent in practice?

9.1 If you do not want to receive cookies, you can change your browser settings. We stipulate that disabling cookies necessary for authentication processes, security, maintenance of user preferences may hinder, and in extreme cases may prevent the use of the websites.
9.2 To manage your cookie settings, select the web browser you are using from the list below and follow the instructions:

Edge
Internet Explorer
Chrome
Safari
Firefox
Opera

Mobile devices:

Android
Safari (iOS)

Ta strona internetowa wykorzystuje pliki cookie, aby poprawić komfort korzystania z niej. Spośród nich pliki cookie, które są sklasyfikowane jako niezbędne, są przechowywane w przeglądarce, ponieważ są niezbędne do działania podstawowych funkcji witryny. Używamy również plików cookie stron trzecich, które pomagają nam analizować i rozumieć sposób korzystania z tej witryny. Te pliki cookie będą przechowywane w przeglądarce użytkownika wyłącznie za jego zgodą. Użytkownik ma również możliwość rezygnacji z tych plików cookie. View more
Akceptuję