Privacy Policy

Dear Customer!
We care about your privacy, and it is important to us that you feel comfortable and safe while using our website.
Below, we present the most important information about the principles of processing your personal data and the use of cookies.

1. Personal Data Administrator
   HYPER sp. z o.o.
   ul. Gajowa 1
   43-100 Tychy
   REGON: 520875003
   NIP: 6462993375
   Entered into the Register of Entrepreneurs of the National Court Register (Krajowy Rejestr Sądowy – National Court Register) maintained by the District Court KATOWICE-WSCHÓD IN KATOWICE, VIII COMMERCIAL DIVISION OF THE NATIONAL COURT REGISTER, under KRS number 0000944268
   Share capital: 5,000.00 PLN
    
2. Personal Data
   1. Providing Data
      Providing your personal data is voluntary; however, in some cases, it may be necessary to conclude a contract and to achieve the purposes listed below.
   2. Purposes of Data Processing
      In our online store, we process your personal data for the following purposes:
      a) fulfilling your order
      b) transferring your personal data to ING Bank Śląski S.A. (“Bank”) in connection with:
      - the Bank providing infrastructure services to the online store to handle online payments (legal basis: Article 6(1)(f) of the Regulation).
      - the Bank handling and settling payments made by customers of the online store via the Internet using payment instruments (legal basis: Article 6(1)(f) of the Regulation).
      - the Bank verifying the proper performance of contracts concluded with the online store, in particular to ensure the protection of payers’ interests in connection with their complaints (legal basis: Article 6(1)(f) of the Regulation).
      c) sending the Newsletter (upon prior consent),
      
      In connection with the processing of personal data for the purposes specified in point b, your personal data may be made available by the online store to other recipients or categories of recipients of personal data, which may include:
      a) ING Bank Śląski S.A. (ING Bank Śląski Joint-Stock Company)
      In cases where providing your personal data is necessary to conclude a contract with the online store, providing such data is a condition for concluding the contract. Providing data in this situation is voluntary; however, failure to provide it will result in the inability to conclude a contract with the online store.
      In cases where your personal data is transferred to the Bank in connection with handling and settling payments made to the online store via the Internet using payment instruments, providing such data is required to carry out the payment and for the Bank to confirm its completion to the online store.
      In cases where your personal data is transferred to the Bank for verifying the proper performance of contracts concluded with the online store, particularly to ensure the protection of payers’ interests in connection with complaints, providing such data is required to fulfill the agreement concluded between the online store and the Bank.
   3. Legal Basis for Data Processing
      - Sales contract (Article 6(1)(b) RODO)
      - Your consent given in the Store (Article 6(1)(a) RODO)
      - Service agreement (Article 6(1)(b) RODO)
      - Our legal obligation, e.g., related to accounting (Article 6(1)(c) RODO)
      - Our legitimate interest in establishing, pursuing, or defending claims (Article 6(1)(f) RODO)
       
3. Period of Personal Data Processing
   Your personal data will be processed by us only for as long as we have a legal basis to do so, that is, until:
   - the legal obligation requiring us to process your personal data ceases,
   - the possibility of pursuing claims related to the agreement concluded via our Service expires,
   - you withdraw your consent to data processing, if that was its legal basis
   (depending on which occurs last in your particular case).
    
4. Personal Data Security
   We take due care to properly secure the personal data entrusted to us – in particular, to protect it from access by unauthorized persons.
   Our website uses SSL certificate encryption for secure connections.
    
5. Your Rights
   You have the right to:
   - access your personal data
   - rectify it
   - request its deletion
   - request restriction of processing
   - limit processing
   
   As well as the right to:
   - object to processing
   - request data transfer to another controller
   - lodge a complaint with a supervisory authority if you believe your data is being processed unlawfully
    
6. Data Recipients (Entities Whose Services We Use)
   We use the services of external entities to which your data may be transferred. Below is a list of such entities:
   - payment provider
   - accounting office
   - hosting provider
   - persons cooperating with us under civil law contracts, supporting our ongoing operations
   - software provider facilitating business operations (e.g., accounting software)
    
7. Scope of Processed Personal Data
   In our Service, we process the following personal data: full name, shipping address,
   company data for issuing a VAT invoice for the ordered goods, email address, phone number (if provided), and computer IP address.
    
8. Cookies
   Information on the use of cookies by the Service can be found at https://www.bobuxpolska.pl/cookies.pdf
    
9. Contact with the Administrator
   If you wish to exercise your rights concerning personal data or have questions regarding our privacy policy, please email us at: 

For matters not regulated herein, the provisions of the Civil Code and relevant Polish laws shall apply, as well as the laws of the European Union, in particular the RODO (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC).