Cart (0)
Cart is empty
For free delivery is missing -,--
Free delivery!
Total 0 zł
Price includes discounts
Make order
fusima.pl - logo
fusima.pl - logo
fusima.pl - logo

Privacy policy

Privacy policy of the fusima.online store

1. GENERAL PROVISIONS

  1. This Privacy Policy sets out the rules for the processing and protection of personal data of Customers of the Website available at https://fusima.online
  2. Terms not defined in this Privacy Policy may have the meanings given to them in the Terms and Conditions of the Website.
  3. Personal data is information about an identified or identifiable natural person to whom the data relates, i.e. a person who can be identified, directly or indirectly, in particular by reference to an identifier (characteristic) such as: name and surname, identification number, location data, online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of the natural person.
  4. Processing means any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure, sharing, matching or combining, restricting, erasing or destroying.
  5. Customers' personal data is processed in accordance with applicable regulations, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons
  6. with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter: “GDPR”) and the Act of May 10, 2018 on the protection of personal data
  7. In order to ensure the security of our Customers' personal data, we use appropriate technical
  8. and organizational measures to ensure the security of personal data processing.

2. DATA CONTROLLER

We inform you that the controller of your personal data is:

FUSIMA Magdalena Skrzypek-Jabłońska, Krasne 1036D, 36-007 Krasne, Podkarpackie Province, Poland

TIN: PL7921827809, e-mail: kontakt@fusima.pl

3. SCOPE OF CUSTOMER PERSONAL DATA PROCESSED

  1. The scope of Customer personal data processed by the Administrator includes:
    1. Customer data provided when completing the Registration Form: first name, last name, address, delivery address, e-mail address, telephone number, date of birth (optional), and in the case of Customers who are not Consumers, additionally the company name and tax identification number;
    2. Customer data made available to the Administrator by Facebook and Google, if the Customer has chosen the option of Registration via Facebook and Google (see point 9.4.);
    3. Customer data obtained by the Administrator in connection with the use of cookies and other similar technologies (see point 10);
    4. Customer data relating to Orders placed on the Website;
    5. other Customer data voluntarily provided by the Customer using the electronic forms available on the Website or other forms of contact with the Administrator's consultant.
  2. Due to the fact that the services offered on the Website are intended for adults, the Administrator does not knowingly process the personal data of children using the services.

4. PURPOSES AND LEGAL BASIS FOR THE PROCESSING OF CUSTOMERS' PERSONAL DATA

  1. Customers' personal data is or may be processed by the Administrator:
    1. for the purpose of concluding and performing a sales contract concluded via the Website - in this case, processing is necessary for the conclusion and performance of a contract to which the Customer is a party, or for taking action at the Customer's request prior to the conclusion of the contract (Article 6(1)(b) of the GDPR);
    2. for the purpose of Registration and maintenance of an Account on the Website - in this case, data processing is necessary for the performance of a contract for the provision of electronic services to which the Customer is a party, or for taking action at the Customer's request prior to entering into a contract (Article 6(1)(b) of the GDPR);
    3. for the Administrator's marketing purposes, resulting from the Customer's consent to the provision of commercial information (newsletter/bulletin), in which case the data is processed on the basis of the Customer's consent (Article 6(1)(a) of the GDPR);
    4. in order to handle the matter described by the Customer in the electronic form available on the Website and within the chat with the Customer's account manager – in this case, data processing is necessary for the conclusion and performance of the contract for the provision of electronic services
    5. (Article 6(1)(b) of the GDPR), and also takes place on the basis of a legitimate interest (Article 6(1)(f) of the GDPR) consisting in sales support;
    6. in order to provide electronic services in the scope of enabling Customers to view, play and read information and materials made available on the Website – in this case, data processing is necessary for the performance of a contract to which the Customer is a party (Article 6(1)(b) of the GDPR);
    7. for the purposes of the legitimate interests pursued by the Controller, related to the operation of the Website, including analyzing the Customer's use of the Website, ensuring the security and reliability of the services provided on the Website (Article 6(1)(f) of the GDPR);
    8. for the purposes of the legitimate interests pursued by the Administrator, which may include, among others, the establishment, pursuit and defense of claims, the prevention of crimes and the conduct of related investigations, the management of business activities and their further development, including risk management
    9. (Article 6(1)(f) of the GDPR);
    10. for the purpose of customer satisfaction surveys (e.g. through surveys sent to Customers by email by the Administrator and its Partners providing services in this area, based on an agreement concluded with the Administrator) – data processing is based on the legitimate interest of the Administrator
    11. (Article 6(1)(f) of the GDPR);
    12. for the Administrator's direct marketing purposes, including the selection of goods and services tailored to the needs of Customers
    13. (including profiling) based on cookies and other similar technologies referred to in point 10 – in this case, data processing is based on the legitimate interest of the Administrator
    14. (Article 6(1)(f) of the GDPR);
  2. Providing personal data on the Website is voluntary, but may be necessary for the performance of one or more services and purposes of personal data processing specified in point 3.1 above, which the Administrator will not be able to perform if personal data is not provided.
  3. The Customer's personal data collected through direct contact between the Customer and persons acting on behalf of the Administrator, including through the hotline or when contacting the Customer's account manager, are used solely for the purpose of contacting the Customer and providing information and advice to the Customer.

5. PERIOD OF PROCESSING OF THE CUSTOMER'S PERSONAL DATA

  1. The Administrator processes the Customer's personal data in the manner and for the period necessary to achieve the purposes for which the data was collected.
  2. In the case of data processing:
    1. for the purpose of concluding and performing a contract (including a sales contract) – the Customer's data will be processed for the duration of the contract;
    2. on the basis of the Customer's consent – the Customer's data will be processed until the consent is withdrawn;
    3. for the purpose of ensuring compliance with the legal obligations imposed on the Administrator - the Customer's data will be processed for the period required by law;
    4. for the Administrator's direct marketing purposes, including the selection of goods and services to the Customers' needs (profiling) - the Customer's data will be processed until the Customer objects;
    5. for the purposes of pursuing other legitimate interests of the Administrator - the data will be processed until the Customer's objection is taken into account or the limitation period for claims expires, unless
    6. otherwise provided for in the detailed provisions of this policy.
  3. After the processing period has expired, the data is deleted or anonymized.

6. CUSTOMER RIGHTS AND OBLIGATIONS

  1. If the processing of personal data is based on the Customer's consent, such consent is voluntary and may be withdrawn at any time without affecting the lawfulness of the processing carried out prior to the withdrawal of consent. The statement of withdrawal of consent should be submitted by e-mail to the Administrator's e-mail address.
  2. The Customer also has the following rights:
    1. to delete their personal data;
    2. to restrict the processing of their personal data;
    3. to access the content of their data and to rectify (correct) it;
    4. to receive a copy of their data or to transfer it, provided that this right does not adversely affect the rights and freedoms of others (including trade secrets or intellectual property rights) and will be exercised to the extent technically possible;
    5. to object to the processing of their personal data when the processing is based on the legitimate interest of the data controller or a third party.
  3. The controller will exercise the Customer's rights, subject to the exceptions specified in the provisions of the GDPR.
  4. A registered Customer may also correct or update their personal data relating to their Account themselves. To do so, log in to your Account, go to the “Account Settings” tab and make the appropriate changes in the Personal Data field.
  5. In order to exercise the rights specified in points 6.1 and 6.2, an email should be sent to fusima.krasne@gmail.com.
  6. The Customer is entitled to lodge a complaint with the supervisory authority: the President of the Personal Data Protection Office, if they believe that the processing of their data violates the provisions of the GDPR.

7. ENTITIES TO WHICH CUSTOMERS' PERSONAL DATA IS DISCLOSED

  1. The Administrator discloses Customers' personal data if it has a legal basis for doing so, in particular when it is necessary to perform the services provided to Customers.
  2. Customers' personal data may also be disclosed at the request of public authorities or other entities authorized to access such data on the basis of legal provisions, in particular when it is necessary to ensure the security of the Administrator's systems.
  3. The recipients of Customers' personal data may include, in particular:
    1. entities authorized to obtain Customer data on the basis of applicable legal provisions;
    2. entities whose services are used by the administrator to deliver goods and services to Customers,
    3. in particular:
  • entities providing services or making ICT systems available to the administrator;
  • entrepreneurs providing delivery and maintenance services for software used to operate the Website;
  • payment system operators;
  • entities providing postal and courier services;
  • law firms and consulting companies with which the administrator cooperates;

trusted marketing partners of the Administrator:

8. TRANSFER OF DATA OUTSIDE THE EEA

  1. The controller transfers personal data outside the European Economic Area (EEA) only when necessary and with an adequate level of protection, primarily through:
    1. cooperation with personal data processors in countries for which a relevant decision has been issued by the European Commission;
    2. the use of standard contractual clauses issued by the European Commission;
    3. the use of binding corporate rules approved by the competent supervisory authority;
    4. in the case of data transfers to the US – cooperation with entities participating in the Privacy Shield program, approved by Commission Implementing Decision (EU) 2016/1250 of July 12, 2016 on the adequacy of the protection provided by the EU-US Privacy Shield (list of entities
    5. from the US participating in this program is available at: https://www.privacyshield.gov/list).
  2. Where applicable, the controller shall always inform the data subject of the intention to transfer personal data outside the EEA at the time of collection. At the request of the Customer, the controller shall provide him with a copy of his data that will be transferred outside the EEA.

9. SOCIAL MEDIA

  1. The Website may include features that allow you to share content through third-party social media applications, such as the “Like” button on Facebook or widgets on Instagram. All of these social media applications may collect and use data about your activity on the Website. Any personal data provided by the Customer through such social media applications may be collected and used by other users of the above social media applications, and interactions conducted through them are subject to the privacy policies of the companies that are the providers of the applications. We have no influence and take no responsibility for the above entities and their use of Customer data.
  2. In order to use the Account access service and related services, the Customer may register and log in via their Facebook or Google social media account. Facebook and Google may then automatically transfer the following personal data of the Customer to the Administrator:
    1. numerical social media identifier (ID)
    2. first and last name
    3. gender
    4. profile picture
    5. date of birth
    6. other public information.
  3. In the case referred to in point 9.2, no additional registration is required to create an Account
  4. on the Website.
  5. The legal basis for the processing of the Customer's personal data in connection with their use of the optional Registration and login via Facebook and Google is the Customer's consent (Article 6(1)(a) of the GDPR).
  6. The Administrator uses the Pixel tool provided by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA, to study the reactions of visitors to the Website. We want to understand how our marketing activities on Facebook are received and how they can be improved. The data collected is anonymous and does not allow us to draw any conclusions about you. The data is stored and processed by Facebook, which makes it possible to link it to your Facebook user profile, and Facebook may use the data in accordance with Meta's data protection policy (see Meta's privacy policy). If you wish to object to the use of Facebook Pixel's user response survey, you can do so at: https://www.facebook.com/ads/preferences/?entry_product=ad_settings_screen

10. COOKIES AND OTHER SIMILAR TECHNOLOGIES

  1. In accordance with the practice of most websites, when using the Website, the Customer's personal data may be collected automatically in system logs, through cookies - the Google Analytics system.
  2. Cookies are files stored on the Customer's end device, used to identify Customers and provide statistical information about Customer traffic, Customer activity, and how the Website is used. They allow, among other things, to adapt the content and services to Customer preferences.
  3. The Website uses session cookies, which are deleted after closing the browser window, as well as persistent cookies, which are stored for a specified period of time (specified in the cookie parameters or until they are deleted by the Customer) on the end devices used by the Customer.
  4. The Administrator uses the following types of cookies:
    1. necessary for the use of services, e.g. used for services requiring authentication;
    2. used to facilitate logging into the Account via social media;
    3. used to ensure security;
    4. enabling the collection of information on how the services are used;
    5. enabling the preservation of settings selected by the Customer and personalization of the Customer's interface;
    6. enabling the delivery of content to Customers that is more tailored to their preferences and interests.
  5. The Customer may independently and at any time change the settings for cookies, specifying the conditions for their storage and access by cookies to the Customer's end device, using the settings of their web browser.
  6. The Customer may delete cookies at any time using the functions available in the web browser they are using. However, this may limit some of the functionalities available on the Website.
  7. The Administrator uses Google Analytics tools. More information about how Google Analytics tools work can be found at: http://www.google.com/analytics/learn/privacy.html. Google has developed a browser add-on that blocks Google Analytics. The add-on communicates with the Google Analytics JavaScript (ga.js) protocol to indicate that website visit data should not be sent to Google Analytics. The browser add-on that blocks Google Analytics does not block the transmission of data to the website itself or to other web analytics services. The customer has the option of using the above-mentioned add-on whenever they do not want their data to be processed for analytical purposes by Google Analytics.
  8. As part of the use of Google Analytics, the Administrator also collects information about user activity on the website using tags. Tags are small pieces of website code that enable, among other things, the measurement of user traffic and behavior, the collection of information about the effectiveness of online advertising and social media channels, the use of remarketing and targeting of advertisements to a target group, and the testing and improvement of the website.
  9. Using the Website involves sending requests to the server on which the Website operates. Each request sent to the server is recorded in the server logs. The logs include, among other things, the IP address, date and time of the server, information about the web browser and operating system used by the Customer. The logs are saved and stored on the server. The data saved in the server logs are not associated with specific persons using the Website and are not used for identification purposes. Server logs are only auxiliary material used to administer the Website, and their content is not disclosed to anyone other than persons authorized to administer the server.

11. PROCESSING OF PERSONAL DATA OF THIRD PARTIES

  1. If the Customer places any personal data of Third Parties on the Website, they may do so only on condition that they do not violate applicable law and the personal rights of those persons. Third Parties are natural persons whose personal data the Customer places on the Website or as part of the submission or performance of a Project.
  2. The Administrator may process the personal data of Third Parties entrusted to it by the Customer if the Customer confirms that it is authorized to transfer the personal data of Third Parties.
  3. In cases where the Customer places the data of Third Parties on the Website as part of activities other than purely personal or domestic activities, the Customer acts as the administrator of such data within the meaning of the provisions of the GDPR.
  4. In the case referred to in point 11.3 above, the Customer shall conclude an agreement with the relevant Administrator for the processing of third party data on the terms set out in points 11.6 to 11.10 below.
  5. Third-party data entrusted by the Customer shall be processed by the Administrator for the purpose of proper performance of the contract for the provision of electronic services concluded with the Customer in connection with the Customer's use of the Website or the execution of an Order.
  6. The scope of the entrusted data includes all personal data of Third Parties entrusted in connection with
  7. the Customer's use of the Website or in connection with the Order placed, in particular name and surname, address, gender, image, date of birth or age.
  8. The Customer agrees to further entrust the processing of Third Party data (so-called sub-processing) for the purpose of performing the contract concluded with the Customer.
  9. Personal data of Third Parties entrusted by the Customer will be processed by the Administrator in accordance with Article 28 of the GDPR.
  10. If any Administrator finds that the personal data of Third Parties is being processed in violation of the provisions of the GDPR, applicable law or the personal rights of Third Parties, the Administrator will take steps to remove such data as soon as possible.

12. FINAL PROVISIONS

  1. This Privacy Policy is reviewed on an ongoing basis and updated as necessary to reflect any changes in the way personal data is processed.
  2. The current version is available on the Website.
  3. This Privacy Policy is effective as of January 1, 2022.