Privacy and cookies policy

Website administrator https://thetruckfamilia.com/ there is a GROUP MAWY EU SP. WITH O.O. based in Tworków,

KRS: 0001100130, NIP: 6392032155, REGON: 528367909 address: ul. Główna 120a, 47-451 Tworków.

Contact with the Administrator:

  • by email: info@thetruckfamilia.com
  • by traditional mail: ul. Główna 120a, 47 – 451 Tworków
  • by phone (on working days, from 9.00 a.m. to 4.00 p.m.): +48 889 650 958

The Privacy Policy is dedicated to website users https://thetruckfamilia.com/ and customers of the online store, regardless of whether they act as consumers or entrepreneurs.

The Privacy Policy is part of the Regulations available at https://thetruckfamilia.com/gb/content/5-rules-of-the-online-shop.

The purpose of the Administrator is to provide proper information on matters related to the processing of personal data, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC ("GDPR").

Website user rights

The user has the following rights in connection with the processing of his personal data (Articles 12-21 of the GDPR):

  • to information regarding processed data (Articles 12 and 13 of the GDPR),
  • access to the content of your personal data (in accordance with Article 15 of the GDPR),
  • submitting a request to correct personal data (Article 16 of the GDPR), i.e. correcting incorrect data and completing incomplete data,
  • submit a request to limit the processing of personal data (Article 18 of the GDPR),
  • submit a request to transfer your personal data to another Administrator (Article 20 of the GDPR),
  • object to the processing of data for reasons related to a special situation (in accordance with Article 21(1) of the GDPR), however, this right is not absolute - i.e. despite the objection, the Administrator may still process personal data if he proves that there are important , legitimate grounds for processing that override rights and freedoms or grounds for establishing, pursuing or defending claims,
  • object to the processing of personal data carried out for the purposes of direct marketing, to the extent that the processing is related to such direct marketing.
  • submitting a request to delete personal data (in accordance with Article 17 of the GDPR) - the so-called "the right to be forgotten", this right applies when the Administrator processes data unlawfully, when the user objects to the processing of data for marketing purposes and when the data must be deleted for the Administrator to fulfill the obligation arising from the law.

In addition, the website user has the right to lodge a complaint with the supervisory authority, i.e. the President of the Personal Data Protection Office.

Personal data and their processing

Personal data includes any information enabling the identification of a natural person. The Administrator obtains personal data to the minimum extent necessary to achieve the purposes specified below.

Data processing is not always straightforward. The specificity of the website means that the Administrator also obtains data indirectly m.in. from the so-called cookies. Providing personal data is voluntary, but some of them may be necessary to ensure the proper use of the services provided by the Administrator.

How, based on what legal basis and what type of personal data does the Administrator process?

Sales agreement

The purpose of data processing may be the conclusion and implementation of a sales contract. Data necessary to perform the contract are collected from persons concluding a sales contract with the Administrator, i.e. name and surname, data regarding the business activity, contact details (address, e-mail address, telephone number). The legal basis for data processing is the necessity to perform the contract or take steps to conclude it (Article 6(1)(b) of the GDPR).

Account Registration

The purpose of data processing may be the provision of free services electronically, i.e. opening and maintaining an account on the website. The data necessary for registration is collected from people creating an account, i.e. name and surname, data regarding the business activity, contact details (address, e-mail address, telephone number). The legal basis for data processing is the necessity to perform the contract for the free provision of services by electronic means or to take steps to conclude it (Article 6(1)(b) of the GDPR).

Commercial information - marketing consent

Only with the user's consent, the Administrator may process data for marketing purposes. Personal data includes data that the user provides in order to receive commercial and marketing information from the Administrator, i.e. name, surname, e-mail address or telephone number, data regarding the business activity being processed. The legal basis for data processing is consent (Article 6(1)(a) of the GDPR). Such consent may be withdrawn at any time.

Newsletter

If there is such an option on the website, the user can subscribe to the newsletter. The personal data that the user provides in order to receive the newsletter include: name, surname, e-mail address or telephone number, data regarding the business activity being processed. The legal basis for data processing is consent (Article 6(1)(a) of the GDPR). Such consent may be withdrawn at any time.

Links to other sites

The website may contain links to other websites. If you click on a link from another site, you will be redirected to that site. Please note that these third parties are not operated by us. Therefore, the Administrator recommends independently reading the privacy policies of these websites. The Administrator has no control over and is not responsible for the content, privacy policies or practices of third parties.

The legitimate interest of the Administrator

The administrator may process data within its legitimate interest (Article 6(1)(f) of the GDPR), e.g. to pursue possible claims. Whenever the Administrator processes personal data on the basis of a legitimate interest, he tries to analyze and balance his interest and the potential impact on the data subject (positive and negative) and the rights of this person under the provisions on the protection of personal data.

Cookies

Virtually every website currently uses the so-called Cookies, i.e. files used to automatically collect personal data from website users. It is no different in the case of the Administrator's Page. The information obtained in this way is saved on the computer of the user who uses it.

There are two basic purposes for using Cookies: maintaining the user's session and saving it, and ensuring security (e.g. when detecting abuse). In this respect, the use of cookies is necessary.

Cookies may not be necessary, but they make the use of the website much easier. They are exploited m.in. in order to:

  • remembering specific user choices regarding displaying a specific message or displaying it a specified number of times (e.g. under the options: recently viewed, basket, storage),
  • monitoring user activity on the website,
  • collecting anonymous, aggregate statistics allowing for improving the functionality of the website,
  • marketing.

In this respect, the Administrator uses the services of external entities, the list of which evolves depending on the market shape and technical possibilities. These entities include:

  • Google Analytics (Google Privacy Policy) - through it, the Administrator observes the traffic and behavior of users on the website.
  • Google reCAPTCHA (Google Privacy Policy) - through them, the Administrator can distinguish whether the data was entered by a natural person or using machine and automatic processing. These cookies protect the website against abuse. The use of these Cookies may be justified by the Administrator's interest (Article 6(1) sentence 1(f) of the GDPR).

It should be emphasized that at no stage is the user obliged to accept Cookies (except for technical Cookies). Via a web browser, it is possible to introduce a configuration that will prevent cookies from being stored on your computer. It is also possible to delete existing Cookies. However, failure to accept cookies may negatively affect the operation of the website and, in some cases, even prevent the use of certain functions.

If you want to learn how to manage Cookies, including how to disable them in your browser, you can use your browser's help file. You can read information about this by pressing the F1 key in your browser. In addition, relevant instructions can be found on the following subpages, depending on the browser used

By using the appropriate options of your browser, you can delete Cookies or block the use of Cookies in the future at any time.

Access logs

Based on the analysis of access logs, the Administrator collects information regarding the use of the website by users and their IP addresses. The purpose of obtaining this data is to diagnose any problems related to the operation of the server, to assess the risk of possible security breaches and to manage the website.

How long does the Administrator store data?

The data storage period depends on the legal basis for their processing:

  • in the case of consent (e.g. to provide commercial information), this period lasts until it is withdrawn,
  • when processing data for the purpose of performing a contract - for the duration of the contract and the limitation period for claims arising from it,
  • when processing data based on obligations arising from applicable legal provisions, the Administrator processes data for as long as necessary pursuant to these provisions,
  • when processing data as part of the legitimate interest of the Administrator, processing continues as long as this interest lasts.

The processing period of the above data may be extended if data processing is necessary to determine and pursue claims or defend against claims. After the above periods, the data is immediately deleted or anonymized.

Data recipients

Sometimes the Administrator has the right to transfer user data if it is necessary to provide services, fulfill obligations and properly comply with applicable law.

The Administrator may use the services of external entities to perform certain tasks, e.g. delivery of Goods, accounting services, legal services, marketing or IT services. If necessary, the data may also be obtained by authorized authorities.

User data may be transferred to the following entities:

  • above entities processing personal data under agreements entrusting the processing of personal data (so-called processors),
  • entities providing services, e.g. courier, hosting,
  • debt collection companies (personal data is transferred only to the extent that it is actually necessary to achieve a given goal),
  • auditors and statutory auditors, legal advisors, tax advisors,
  • bodies supervising compliance with the law, regulatory bodies and other public administration bodies.

Outside the above scope, data is not made available to third parties, except where the user expressly expresses his or her voluntary consent (which he or she may revoke at any time).

Sharing data with entities outside the EEA (European Economic Area)

The Administrator may transfer the acquired data to other entities only if the legal basis allows it.

Some of the Administrator's service providers may be based outside the European Economic Area (EEA). When transferring data outside the EEA, the Administrator exercises increased caution. Verifies whether deliveries guarantee a high level of personal data protection, consistent with legal requirements in force in the EEA. In the case of transfer of personal data to entities based in the United States, the Administrator verifies whether the entity has joined the EU-US data protection program and is on the list of certified organizations maintained by the United States Department of Commerce.

Data protection

The Administrator uses all available physical, technical and organizational measures to ensure proper protection of personal data. In particular, it protects them against destruction, accidental loss, disclosure to unauthorized persons, alteration and verifies the scope of access. The administrator implements the rights of persons affected by data processing.

Privacy Policy Update

The Administrator declares that this Privacy Policy will be updated on an ongoing basis m.in. in the event of introduction of new legal requirements or guidelines. The administrator will also take into account changes in the technology used in the process of data processing and their protection, changes in the purposes of processing, categories of data obtained and legal bases for their processing.