1. DEFINITIONS
1.1. Administrator – Smart Vegetables Innovations Sp. z o. o. headquartered: Zdunowo 48, 09-142 Załuski, District Court for the M. St. Warsaw, XIV Economic Department KRS: 0000609752, Share capital: PLN 17,359,628.00, NIP: 5671907451, Regon 364053135.
1.2. Dane osobowe – information about a natural person identified or identifiable by one or more specific factors that determine physical, physiological, genetic, mental, economic, cultural or social identity, including device IP, location data, Internet identifier and information collected through cookies and other similar technology.
1.3. Polityka – this Privacy Policy.
1.4. RODO – Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016. on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC.
1.5. Serwis – Internet service operated by the Administrator at www.smart- vegetables.com
1.6. Użytkownik – any natural person visiting the Site or using one or more of the services or functionalities described in the Policy.
2. PROCESSING OF DATA IN CONNECTION WITH THE USE OF THE SITE
2.1. In connection with the User’s use of the Website, the Administrator collects Personal Data to the extent necessary to provide the individual services offered, as well as information about the User’s activity on the Website. Detailed rules and purposes of processing Personal Data collected during the User’s use of the Website are described below.
3. PURPOSES AND LEGAL BASIS OF DATA PROCESSING ON THE SITE
USE OF THE SERVICE
3.1. Personal data of all persons using the Website (including IP address or other identifiers and information collected through cookies or other similar technologies) are processed by the Administrator:
3.1.1. for the purpose of providing services electronically in terms of providing Users with access to content collected on the Website – in which case the legal basis for processing is the necessity of processing for the performance of the contract (Article 6(1)(b) RODO);
3.1.2. for analytical and statistical purposes, in which case the legal basis for the processing is the Administrator’s legitimate interest (Article 6(1)(f) of the RODO), which consists in conducting analyses of Users’ activities, as well as their preferences in order to improve the functionalities used and services provided;
3.1.3. for the purpose of possible establishment and investigation of claims or defense against claims – the legal basis of the processing is the legitimate interest of the Administrator (Article 6(1)(f) RODO), consisting in the protection of its rights;
3.2. The User’s activity on the Service, including his Personal Data, is recorded in system logs (a special computer program used to keep a chronological record containing information about events and activities that relate to the computer system used to provide services by the Administrator).
The information collected in the logs is processed primarily for purposes related to the provision of services. The Administrator also processes them for technical, administrative purposes, for the purpose of ensuring the security of the IT system and the management of this system, as well as for analytical and statistical purposes – in this regard, the legal basis for processing is the Administrator’s legitimate interest (Article 6(1)(f) RODO).
4. SOCIAL NETWORKS
4.1. The Administrator processes Personal Data of Users visiting the Administrator’s profiles maintained on social media (YouTube). This data is processed exclusively in connection with the running of the profile, including for the purpose of informing Users about the Administrator’s activities and promoting various events, services and products. The legal basis for the Administrator’s processing of Personal Data for this purpose is its legitimate interest (Article 6(1)(f) RODO), which is to promote its own brand.
5. COOKIES AND SIMILAR TECHNOLOGY
5.1. Cookies are small text files installed on the device of a User browsing the Website. Cookies collect information that facilitates the use of the website – for example, by remembering the User’s visits to the Website and the actions performed by him.
“SERVICE” COOKIES
5.2. The administrator uses the so-called. service cookies primarily to provide the User with services provided electronically and to improve the quality of these services. In this regard, the Administrator and other entities providing analytical and statistical services to the Administrator use cookies to store information or access information already stored in the User’s telecommunications end device (computer, phone, tablet, etc.). Cookies used for this purpose include:
5.2.1. user input cookies for the duration of the session (session ID);5/8
5.2.2. authentication cookies used for services that require authentication for the duration of the session (authentication cookies);
5.2.3. security cookies, such as those used to detect authentication abuse ( user centric security cookies);
5.2.4. multimedia player session cookies (e.g. flash player cookies), for the duration of the session ( multimedia player session cookies);
5.2.5. persistent cookies used to personalize the user interface for the duration of the session or a little longer ( user interface customization cookies).
6. ANALYTICAL AND MARKETING TOOLS USED BY THE
ADMINISTRATOR’S PARTNERS
6.1. The Administrator and its Partners apply various solutions and tools used for analytical and marketing purposes. Below you will find basic information about these tools. Detailed information in this regard, on the other hand, can be found in the privacy policy of the respective Partner.
GOOGLE ANALYTICS
6.2. Google Analytics cookies are files used by Google to analyze how the User uses the Website, to create statistics and reports on the functioning of the Website. Google does not use the collected data to identify the User, nor does it combine this information to enable identification. Detailed information about the scope and principles of data collection in connection with this service can be found at the following link: https://www.google.com/intl/pl/policies/privacy/partners.
7. MANAGING COOKIE SETTINGS
7.1. The use of cookies for the purpose of collecting data through them, including gaining access to data stored on the User’s device, requires the User’s consent. This consent may be withdrawn at any time.
7.2. Permission is not required only for cookies, the use of which is necessary for the provision of a telecommunications service (data transmission to display content).
7.3. Service cookies, which are necessary for the use of the website, are automatically installed on the User’s device. Their use is necessary for the provision of the telecommunications service (data transmission to display content) – the User does not have the option to opt out of these cookies if he wants to use the Website.
7.4. Functional, performance, analytical, advertising and other cookies (uncategorized cookies that are analyzed but not classified in any category) are not automatically installed by the Administrator. With regard to these types of cookies, the User can manage his preferences by:
7.4.1. Reject all cookies by clicking the “I accept” command in the cookie banner;
7.4.2. change your preferences for specific subcategories of cookies i.e.:
(a) functional cookies;
(b) performance cookies;
(c) analytical cookies;
(d) advertising cookies;
(e) other unclassified cookies
by clicking the “Settings” command in the cookie banner and then moving the slider of the selected cookie subcategory to the accept position and clicking the “Save and close” command
7.5. It is also possible to withdraw consent to the use of cookies via browser settings. Detailed information on this can be found at the following links:
7.5.1. Internet Explorer: https://support.microsoft.com/pl-pl/help/17442/windows-internet- explorerdelete-manage-cookies
7.5.2. Mozilla Firefox: http://support.mozilla.org/pl/kb/ciasteczka
7.5.3 Google Chrome: http://support.google.com/chrome/bin/answer.py?hl=pl&answer=95647
7.5.4. Opera: http://help.opera.com/Windows/12.10/pl/cookies.html
7.5.5 Safari: https://support.apple.com/kb/PH5042?locale=en-GB
8. PERIOD OF PROCESSING OF PERSONAL DATA
8.1. The period of data processing by the Administrator depends on the type of service provided and the purpose of processing. As a rule, data are processed for the duration of providing the service or fulfilling the order, until the withdrawal of the consent given, or until an effective objection to data processing is made in cases where the legal basis for data processing is the legitimate interest of the Administrator.
8.2. The processing period may be extended if the processing is necessary for the establishment and assertion of possible claims or defense against claims, and thereafter only if and to the extent required by law. After the expiration of the processing period, the data shall be irreversibly deleted or anonymized.
9. USER RIGHTS
9.1. You have the right to access the content of your data and to request rectification, deletion, restriction of processing, the right to data portability and the right to object to data processing, as well as the right to lodge a complaint with the supervisory authority for the protection of Personal Data.
9.2. To the extent that your data is processed on the basis of consent, you may withdraw this consent at any time by contacting the Administrator.
9.3. The User has the right to object to the processing of data for marketing purposes, if the processing is carried out in connection with the legitimate interest of the Administrator, as well as – for reasons related to the User’s particular situation – in other cases where the legal basis for data processing is the Administrator’s legitimate interest (e.g. in connection with the implementation of analytical and statistical purposes).
9.4. For more information about your rights under RODO, please follow this link:
https://smart-vegetables.com/wp-content/uploads/2018/08/Polityka-Przetwarzania-Danych-Osobowych.pdf
10. DATA RECIPIENTS
10.1. In connection with the performance of services, Personal Data will be disclosed to external entities, including, in particular, suppliers responsible for the operation of IT systems, entities such as banks and payment operators, entities providing accounting services, couriers (in connection with the performance of an order), marketing agencies (in connection with marketing services) and entities related to the Administrator, including companies in its capital group.
10.2. If the User’s consent is obtained, his data may also be shared with other entities for their own purposes, including marketing purposes.
10.3. The Administrator reserves the right to disclose selected information concerning the User to competent authorities or third parties who make a request for such information, relying on the relevant legal basis and in accordance with the provisions of the applicable law.
11. TRANSFER OF DATA OUTSIDE THE EOG
11.1. The level of protection of Personal Data outside the European Economic Area (EEA) differs from that provided by European law. For this reason, the Administrator transfers Personal Data outside the EEA only when necessary and with an adequate level of protection, primarily by:
11.1.1. Cooperation with processors of Personal Data in countries for which a relevant decision of the European Commission has been issued regarding the determination of ensuring an adequate level of protection of Personal Data;
11.1.2. Use of standard contractual clauses issued by the European Commission;
11.1.3. application of binding corporate rules, approved by the competent supervisory authority
11.2. The Administrator always informs about its intention to transfer Personal Data outside the EEA at the stage of collection.
12. SECURITY OF PERSONAL DATA
12.1. The Administrator conducts a risk analysis on an ongoing basis to ensure that Personal Data is processed by the Administrator in a secure manner – ensuring, first and foremost, that only authorized persons have access to the data and only to the extent necessary for the tasks they perform. The Administrator ensures that all operations on Personal Data are recorded and performed only by authorized employees and associates.
12.2. The Administrator shall take all necessary measures to ensure that its subcontractors and other cooperating entities also provide guarantees to apply appropriate security measures whenever they process Personal Data on behalf of the Administrator.
13. CONTACT INFORMATION
13.1. Contact with the Administrator is possible through the e-mail address admin@green-factory.com or the mailing address of Smart Vegetables Innovations sp. z o. o.
13.2. The Administrator has appointed a Data Protection Officer, who can be contacted via e-mail iod@green-factory.com on any matter concerning the processing of Personal Data.
14. PRIVACY POLICY CHANGES
14.1. The policy is reviewed on an ongoing basis and updated as necessary.
14.2. The current version of the Policy has been adopted and is effective as of 17.02.2022.
