Privacy policy


Privacy Policy of "excellentpro.pl"



§1 General Provisions


  1. This document is an attachment to the Terms and Conditions. By using our services, you entrust us with your information. This Privacy Policy serves solely to help understand what information and data are collected, for what purpose, and how we use them. These data are very important to us, so we ask you to carefully read this document as it defines the principles and methods of processing and protecting personal data. This document also outlines the principles of using "Cookies".
  2. We hereby declare that we comply with the principles of personal data protection and all legal regulations provided for by the Personal Data Protection Act and the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons concerning the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation - GDPR).
  3. A person whose personal data is being processed has the right to contact us to obtain comprehensive information on how we use their personal data. We always strive to clearly inform about the data we collect, how we use them, for what purposes they serve, and to whom we transfer them, how we ensure the protection of these data when transferring them to other entities, and provide information on the institutions to contact in case of doubts.
  4. The Seller uses technical measures such as physical data protection measures, IT infrastructure and telecommunications infrastructure protection measures, protection measures within software tools and databases, and organizational measures to ensure the proper protection of processed personal data, particularly securing personal data against unauthorized access by third parties, obtaining by an unauthorized person, and their use for unknown purposes, as well as accidental or intentional change, loss, damage, or destruction of such data.
  5. Under the principles set out in the Terms and Conditions and in this document, we have exclusive access to the data. Access to personal data may also be entrusted to other entities through which payments are made, which collect, process, and store personal data following their regulations, and entities responsible for order fulfillment. Access to personal data is granted to the aforementioned entities to the extent necessary and only to the extent that ensures the fulfillment of services.
  6. Personal data are processed only for the purposes for which you have given your consent by clicking the appropriate fields in the form provided on the Website or in another clear manner. The legal basis for processing your personal data is the consent to the processing of data or the requirement to perform the service (e.g., ordering a Product) that you ordered from us (in accordance with Article 6(1)(a) and (b) of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons concerning the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) - GDPR).


§2 Privacy Principles


  1. We take privacy seriously. We respect privacy and provide the fullest and guaranteed convenience in using our services.
  2. We value the trust that Users place in us by entrusting us with their personal data to fulfill orders. We always use personal data fairly and in a way that does not betray that trust, only to the extent necessary to fulfill the order, including its processing.
  3. The User has the right to obtain clear and complete information about how we use their personal data and for what purposes they are needed. We always clearly inform about the data we collect, how and to whom we transfer it, and provide information on the entities to contact in case of doubts, questions, or comments.
  4. In case of doubts regarding the use of your personal data, we will promptly take actions to clarify and resolve such doubts, fully and exhaustively answering all related questions.
  5. We will take all reasonable steps to protect Users' data from improper and uncontrolled use and secure it comprehensively.
  6. The administrator of your personal data is Gurgul Investment sp. z o.o., ul. Polna 3, 44-285 Kobyla, NIP: 6392018818, REGON: 384767161, KRS: 0000812023. Email: info@e-tipsy.eu
  7. The legal basis for processing your personal data is Article 6(1)(b) GDPR. Providing data is not mandatory but necessary to take appropriate actions preceding the conclusion of the contract and its performance. We will transfer your personal data to other recipients who have been entrusted with the processing of personal data on our behalf. Your data will be transferred based on Article 6(1)(f) GDPR, where the legitimate interest is the proper performance of contracts/orders. Furthermore, we will share your personal data with other business partners. The collected personal data are stored within the European Economic Area (EEA) but may also be transferred to a country outside this area and processed there. Each data transfer operation is performed in accordance with applicable law. If data is transferred outside the EEA, we use standard contractual clauses and the privacy shield as safeguards concerning countries where the European Commission has not determined an adequate level of data protection.
  8. Your personal data related to the conclusion and performance of the contract for the execution of contracts will be processed for their duration, as well as for a period no longer than prescribed by law, including the Civil Code and the Accounting Act, i.e., no longer than 10 years from the end of the calendar year in which the last contract was performed.
  9. Your personal data processed to conclude and perform future contracts will be processed until you object.
  10. You have the right to access your personal data and receive a copy of the processed personal data, correct your incorrect data, request the deletion of data (right to be forgotten) in cases provided for in Article 17 GDPR, request the restriction of data processing in cases specified in Article 18 GDPR, object to data processing in cases specified in Article 21 GDPR, transfer the provided data, processed in an automated manner.
  11. If you believe that personal data is being processed unlawfully, you can file a complaint with the supervisory authority (Personal Data Protection Office, ul. Stawki 2, Warsaw). If you need additional information related to data protection or want to exercise your rights, contact us by mail at the correspondence address.
  12. We make every effort to protect against unauthorized access, unauthorized modification, disclosure, and destruction of information in our possession. In particular:
    1. We control the methods of collecting, storing, and processing information, including physical security measures to protect against unauthorized access to the system.
    2. We provide access to personal data only to those employees, contractors, and representatives who need to access it. Furthermore, under the agreement, they are obligated to maintain strict confidentiality, allow us to control and verify how they fulfill their duties, and in case of failure to meet these obligations, they may face consequences.
  13. We will comply with all applicable data protection laws and regulations and cooperate with data protection authorities and law enforcement agencies. In the absence of data protection regulations, we will act in accordance with generally accepted data protection principles, social norms, and established customs.
  14. The detailed method of protecting personal data is contained in the personal data protection policy (ODO: security policy, personal data protection regulations, IT system management instructions). For security reasons, due to the procedures described in it, it is available only for state control authorities.
  15. If you have any questions about how we handle personal data, please contact us through the site from which you were redirected to this Privacy Policy. The request for contact will be promptly forwarded to the appropriate designated person.
  16. The User always has the right to notify us if:
    • they no longer wish to receive information or messages from us in any form;
    • they want to receive a copy of their personal data in our possession;
    • they want to correct, update, or delete their personal data in our records;
    • they want to report violations, improper use, or processing of their personal data.
  17. To facilitate our response or address the provided information, please provide your name and further details.


§3 Scope and Purpose of Collecting Personal Data


  1. We process necessary personal data to provide services and for accounting purposes only, such as:
    1. to place an order,
    2. to conclude a contract, complaint, and withdrawal from the contract,
    3. to issue a VAT invoice or other receipt.
    4. to monitor traffic on our websites;
    5. to collect anonymous statistics to determine how users use our website;
    6. to determine the number of anonymous users of our websites;
    7. to control how often selected content is shown to users and which content is most frequently viewed;
    8. to control how often users choose a particular service or from which service level contact occurs most frequently;
    9. to examine newsletter subscriptions and contact options;
    10. to use a system of personalized recommendations for e-commerce;
    11. to use tools for both email and telephone communication as a result;
    12. to integrate with the social network;
    13. for possible online payments.
  2. We collect, process, and store the following user data:
    1. first and last name,
    2. residential address,
    3. delivery address (if different from residential address),
    4. tax identification number (NIP),
    5. email address,
    6. phone number (mobile, landline),
    7. information about the internet browser used,
    8. purchase preferences for UV lamps, cases, hybrid varnishes, nail gels, etc.
    9. other voluntarily provided personal data.
    10. Providing the above data is entirely voluntary but also necessary for the full provision of services.
    11. The purpose of collecting and processing or using the data:
      1. direct marketing, archival purposes of advertising campaigns;
      2. fulfilling obligations imposed by law by collecting information about undesirable actions;
      3. those inherently related to the provision and performance of services, providing you with the Product, and those related to ensuring your participation in activities related to the Service (we collect and use data, particularly to contact people who have ordered and use the Product, people who participate in events organized by us, or other forms of activity, such as contact when handling complaints, evaluating applications, etc.);
      4. to verify the quality of services provided, to conduct market statistics, and to profile users (see Profiling and "cookies" below);
      5. for commercial and promotional purposes (e.g., sending a newsletter to the email address provided by the user, sending commercial information about various products and services, ours and our trusted partners, sending information about various competitions, promotional actions, both ours and our trusted partners). Importantly, consent to process personal data in this way is always voluntary, and we do not condition the use of our services on it; the scope of using data for marketing and commercial purposes depends on what the user has agreed to.
    12. We may send personal data to servers located outside the user's country of residence or to affiliated entities, third parties based in other countries, including countries within the EEA (European Economic Area) for processing personal data on our behalf following this Privacy Policy and applicable laws, customs, and data protection regulations.
    13. Your personal data will be stored no longer than necessary for the proper quality of service and depending on the mode and purpose of their acquisition, we store them for the duration of the service and after its completion for purposes:
      1. fulfilling obligations resulting from legal provisions, tax and accounting regulations;
      2. preventing fraud or crimes;
      3. statistical and archival purposes.
      4. Marketing activities – for the duration of the contract, granting separate consent for data processing – until the completion of activities related to the transaction, your objection to such processing, or withdrawal of consent.
      5. Sales and promotional activities – e.g., competitions, promotional actions – for the duration and settlement of such actions.
      6. Operational activities – until the expiration of obligations imposed by the GDPR and relevant national regulations, to demonstrate diligence in personal data processing
      7. to pursue any claims related to the concluded contract;
    14. Given that in many countries to which these personal data are transferred, there is no equivalent level of legal protection for personal data as in the user's country. Personal data stored in another country may be accessed in accordance with the law of that country, for example, by courts, law enforcement, and national security authorities, in compliance with applicable laws. Subject to lawful disclosure requests, we commit to requiring data processors outside the user's country to take steps to protect data in accordance with the regulatory framework of their national law.


    §4 Cookie Policy


    1. We automatically collect information contained in cookies to collect User data. A cookie is a small piece of text that is sent to the User's browser and which the browser sends back upon subsequent visits to the site. They are mainly used to maintain sessions, e.g., by generating and sending a temporary identifier after logging in. We use "session" cookies stored on the User's end device until they log out, close the website, or close the web browser, and "persistent" cookies stored on the User's end device for a specified time in the cookie parameters or until they are deleted by the User.
    2. Cookies adapt and optimize the site and its offer to the needs of Users through actions such as creating view statistics and ensuring security. Cookies are also necessary to maintain sessions after leaving the website.
    3. The Administrator processes data contained in cookies each time the site is visited by visitors for the following purposes:
      1. optimizing site use;
      2. identifying Service Recipients as currently logged in;
      3. adapting graphics, selection options, and all other site content to the individual preferences of the Service Recipient;
      4. remembering data automatically and manually filled in, placed in Order Forms, or provided by visitors in login data;
      5. collecting and analyzing anonymous statistics presenting how the site is used in the admin panel and Google Analytics;
      6. creating remarketing lists based on information about preferences, behavior, how to use interests from the Site and collecting demographic data, and then sharing these lists in AdWords and Facebook Ads;
      7. creating data segments based on demographic information, interests, preferences in choosing viewed products/services;
      8. using demographic data and interest data in Analytics reports.
    4. The User can block and delete the collection of cookies on their device at any time using their web browser.
    5. Blocking the ability to collect cookies on the User's device may make it difficult or impossible to use some functionalities of the site, which the User is fully entitled to but must be aware of the functional limitations.
    6. A User who does not want cookies to be used as described above can delete them manually at any time. To familiarize yourself with the detailed instructions, visit the website of the manufacturer of the web browser currently used by the User.
    7. More information about Cookies is available in the help menu of each web browser. Examples of web browsers supporting mentioned cookies:
      1. Internet Explorer cookie settings
      2. Chrome cookie settings
      3. Firefox cookie settings
      4. Opera cookie settings
      5. Safari cookie settings
      6. Cookies in Android
      7. Cookies in Blackberry
      8. Cookies in iOS (Safari)
      9. Cookies in Windows Phone


    §5 Rights and Obligations


    1. We have the right and, in cases specified by law, also the statutory obligation to disclose selected or all information about personal data to public authorities or third parties who request such information based on applicable Polish law.
    2. The User has the right to access the content of their personal data, which they provide, the User can correct, supplement this data at any time, and also has the right to request that it be deleted from their databases or stop processing it, without giving any reason. To exercise their rights, the User can send an appropriate message at any time to the email address or in another way that delivers/transfers such a request.
    3. Processing personal data of natural persons who are our clients is based on:
      1. the justified interest of the data controller (e.g., creating a database, analytical and profiling activities, including activities related to product usage analysis, direct marketing of own products, securing documentation for defense against potential claims or for claiming claims)
      2. consent (including in particular consent for email marketing or telemarketing)
      3. performance of the concluded contract
      4. obligations resulting from the law (e.g., tax law or accounting regulations).
    4. Processing personal data of natural persons who are potential clients is based on:
      1. the justified interest of the data controller (e.g., creating a database, direct marketing of own products)
      2. consent (including in particular consent for email marketing or telemarketing)
    5. A request from the User to delete personal data or stop processing it may result in the complete inability to provide services or seriously limit them.
    6. We place special emphasis on profiling and indicate that:
      1. for profiling purposes, we usually process data that has previously been encrypted with SSL;
      2. we use typical data for this purpose: email address and IP or cookies
      3. we profile to analyze or predict personal preferences and interests of people using our Services or products or services and to match the content on our Services or products to these preferences
      4. we profile for marketing purposes, i.e., matching the marketing offer to the aforementioned preferences.
    7. We commit to act in accordance with applicable law and principles of social coexistence.
    8. Information on out-of-court consumer dispute resolution. The authorized entity within the meaning of the Act on out-of-court consumer dispute resolution is the Financial Ombudsman, whose website address is: www.rf.gov.pl.


    §6 Basic Security Principles


    1. Every user should take care of their data security and the security of their devices used to access the Internet. Such a device should have antivirus software with an up-to-date regularly updated database of definitions, types, and types of viruses, a secure version of the web browser used, and an enabled firewall. The user should check whether the operating system and installed programs have the latest and compatible updates because attacks exploit detected vulnerabilities in installed software.
    2. Access data to online services, such as logins, passwords, PINs, electronic certificates, etc., should be secured in a place inaccessible to others and impossible to hack from the Internet. They should not be disclosed or stored on the device in a form that allows unauthorized access and reading by unauthorized persons.
    3. Be cautious when opening strange attachments or clicking links in emails that were not expected, for example, from unknown senders or from the spam folder.
    4. It is recommended to enable anti-phishing filters in the web browser, which are tools that check whether the displayed website is authentic and not used for phishing information, e.g., by impersonating a person or institution.
    5. Files should only be downloaded from trusted places, services, and websites. We do not recommend installing software from unverified sources, especially from unknown publishers with an unverified reputation. This also applies to mobile devices, such as smartphones and tablets.
    6. When using a home wireless Wi-Fi network, set a secure and difficult-to-crack password; it should not be a pattern or string of characters that is easy to guess (e.g., street name, host's name, date of birth, etc.). It is also recommended to use the highest possible encryption standards for wireless Wi-Fi networks that can be enabled on the equipment, e.g., WPA2.


    §7 Use of Social Media Plugins


    1. Plugins, so-called plug-ins, of social networks like facebook.com and Twitter, and others, may be present on our websites. The related services are provided by Facebook Inc. and Twitter Inc., respectively.
    2. Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA. To view Facebook plugins, go to: https://developers.facebook.com/docs/plugins
    3. Twitter is operated by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. To view Twitter plugins, go to: https://dev.twitter.com/web/tweet-button
    4. The plugin transmits only the information about which of our websites you accessed and at what time to its provider. If, while viewing our site or staying on it, the user is logged into their account on Facebook or Twitter, the provider can combine your interests, information preferences, and other data obtained, e.g., by clicking the "Like" button or leaving a comment, or entering a profile name in searches. Such information will also be transmitted by the browser directly to the provider.
    5. More detailed information on data collection and use by Facebook or Twitter and data privacy protection can be found on the following websites:
      1. Data protection/privacy advice issued by Facebook: http://www.facebook.com/policy.php
      2. Data protection/privacy advice issued by Twitter: https://twitter.com/privacy
    6. To avoid recording a visit to the selected user's account by Facebook or Twitter on our website, you must log out of your account before starting to browse our websites.


    Copyright Note on the Terms and Conditions


    The owner of all material copyright rights to the template of this policy is LEGATO Legal Office, which has granted a non-exclusive and non-transferable right to use this document for purposes related to its own commercial activities on the Internet and extends legal protection to the aforementioned document for the duration of the contract. Copying and distributing the template of this document without the consent of LEGATO Legal Office is prohibited and may be subject to both criminal and civil liability. Online sellers can find out more about the possibility of using the privacy and cookie policy template on the website http://www.kancelaria-legato.pl