PRIVACY POLICY
§ 1 General Provisions
- The personal data administrator is the company Dustyvibez Music, located at Nowy Świat 33/13, 00-029 Warsaw, with NIP number: 7582379974. You can contact Dustyvibez Music in writing at the address provided in the previous sentence or by email at: contact@dustyvibez.com
- Based on Article 37 of GDPR, the company „Dustyvibez Music” has not appointed a Data Protection Officer.
- The privacy policy is an integral part of the Terms and Conditions. By using the services we offer, you entrust us with your information. This document is intended to help you understand what information and data are collected and for what purpose they are used. These data are very important to us, so please read this document carefully as it defines the rules and methods for processing and protecting personal data. This document also defines the rules for the use of „Cookies”.
- We inform you that we adhere to the principles of personal data protection and all legal regulations provided for by the Personal Data Protection Act and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons concerning the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
- Upon the request of the person whose personal data are being processed, we provide comprehensive information on how their personal data are used. We always strive to inform clearly about the data we collect, how we use it, what purposes it serves, to whom we transfer it, how we protect these data when transferring to other entities, and we provide information about institutions to contact in case of any doubts.
§ 2 Privacy Principles
- We respect your privacy. We want to guarantee you the convenience of using our services.
- We value the trust you place in us by entrusting us with your personal data to provide services. We always use personal data fairly and in a way that does not betray your trust, only to the extent necessary to provide services.
- As a User, you have the right to receive full and clear information about how we use your personal data and for what purposes they are necessary. We always inform clearly about the data we collect, how and to whom we share it, and we provide information about entities to contact in case of any doubts.
- In case of any doubts regarding our use of your personal data, we will immediately take action to clarify and address such doubts. We provide exhaustive answers to all related questions.
- We will take all reasonable actions to protect your data from misuse and unauthorized use.
- The legal basis for processing your personal data is:
- Article 6(1)(a) the data subject has given consent to the processing of their personal data for one or more specific purposes
- Article 6(1)(b) processing is necessary for the performance of a contract to which the data subject is a party or to take steps at the request of the data subject prior to entering into a contract
- Article 6(1)(c) processing is necessary for compliance with a legal obligation to which the controller is subject
- Article 6(1)(d) processing is necessary to protect the vital interests of the data subject or another natural person
- Article 6(1)(e) processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
- Article 6(1)(f) processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party
- Your personal data related to the conclusion and performance of a contract will be processed for the duration of the contract, and also for a period not longer than provided by law, including the Civil Code and the Accounting Act, i.e., no longer than 10 years from the end of the calendar year in which the last contract was performed.
- Your personal data processed for the purpose of concluding and performing future contracts will be processed until you object.
- You have the right to: access your personal data and receive a copy of the personal data being processed, rectify your incorrect data; request the deletion of data (the right to be forgotten) in the circumstances provided for in Article 17 of the GDPR; request the restriction of data processing in the cases indicated in Article 18 of the GDPR, object to data processing in the cases indicated in Article 21 of the GDPR, transfer the provided data, processed in an automated manner.
- If you believe that your personal data is being processed unlawfully, you can file a complaint with the supervisory authority (Personal Data Protection Office, ul. Stawki 2, Warsaw). If you need additional information related to personal data protection or want to exercise your rights, please contact us by mail at the correspondence address.
- We comply with all applicable laws and regulations regarding data protection and will cooperate with data protection authorities and law enforcement authorities. In the absence of data protection regulations, we will act in accordance with generally accepted data protection principles, social norms, and established customs.
- If you have any questions, please contact us via the page from which you were redirected to this Privacy Policy. The request for contact will be immediately forwarded to the appropriate person designated for this purpose.
- To facilitate our response or address the provided information, please provide your name and surname.
§ 3 Scope and Purpose of Collecting Personal Data
- We process the necessary personal data to provide services and for accounting purposes only.
- We collect, process, and store the following user data:
- name and surname,
- residential address,
- delivery address (if different from the residential address),
- tax identification number (NIP),
- email address,
- phone number (mobile, landline),
- information about the used web browser,
- other personal data voluntarily provided to us.
- Providing the above data is entirely voluntary but also necessary for the full provision of services.
- We may transfer personal data to servers located outside your country of residence or to affiliated entities, third parties located in other countries, including countries within the EEA (European Economic Area) for processing personal data on our behalf in accordance with this Privacy Policy and applicable laws, customs, and data protection regulations.
- Entities providing essential services for operating the website may have access to your data, such as:
- Hosting companies providing hosting or related services for the Administrator
- Companies through which the Newsletter service is provided
- IT service and support companies performing maintenance or responsible for maintaining IT infrastructure
- Companies intermediating online payments for goods or services offered within the Website (in case of purchase transactions on the Website)
- Companies intermediating mobile payments for goods or services offered within the Website (in case of purchase transactions on the Website)
- Companies responsible for maintaining the Administrator’s accounting (in case of purchase transactions on the Website)
- Companies responsible for delivering physical products to the User (postal/courier services in case of purchase transactions on the Website)
§ 4 Cookies
- We use cookies or similar technologies (hereinafter collectively referred to as „cookies”) which should be understood as IT data, in particular text files, intended for the use of websites and stored in end-user devices of users browsing the websites. Information collected using cookies allows us to tailor services and content to individual needs and preferences of users, as well as to compile general statistics on users’ use of websites. Data collected using cookies are collected solely to perform specific functions for the benefit of users and are encrypted in a way that prevents unauthorized access.
- On our website, we use the following cookies:
- Internal cookies – files placed and read from the User’s Device by the Service’s IT system
- External cookies – files placed and read from the User’s Device by IT systems of external Services. Scripts of external Services that can place cookies on the User’s Devices have been intentionally placed on the Service through scripts and services made available and installed in the Service
- Session cookies – files placed and read from the User’s Device by the Service during one session of a given Device. After the session ends, the files are deleted from the User’s Device.
- Persistent cookies – files placed and read from the User’s Device by the Service until they are manually deleted. The files are not deleted automatically after the Device session ends unless the User’s Device configuration is set to delete cookies after the Device session ends.
- Within our website, the following types of cookies are used in terms of the necessity to provide services:
- necessary cookies, enabling the use of services available within the website, in particular, authentication cookies used for services requiring authentication;
- security cookies, in particular, used to detect abuses in the field of authentication;
- performance cookies, enabling the collection of information about how the websites are used;
- functional cookies, allowing „remembering” the settings selected by the user and personalizing the user interface;
- advertising cookies, enabling the delivery of advertising content to users tailored to their interests.
- Software for browsing websites (web browser) usually allows cookies to be stored on the end user’s device by default. The user browsing the website can independently and at any time change the settings for cookies, specifying the conditions for their storage and access by cookies to their device. Changes to settings, as mentioned in the previous sentence, can be made using the settings of the web browser. These settings can be changed in particular in such a way as to block the automatic handling of cookies in the web browser settings or to inform about each placement of cookies on the user’s device. Detailed information about the possibility and methods of handling cookies is available in the software settings (web browser).
- Using the website without changing the settings regarding cookies means consenting to the placement of cookies. The client can always withdraw consent by changing the settings for cookies. Information on how to configure cookie settings in exemplary web browsers can be found here:
§ 5 Social Media Plugins
- Social media plugins, so-called plug-ins, may be present on our website.
- Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA Facebook. To see Facebook plugins go to: https://developers.facebook.com/docs/plugins
- Twitter is operated by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. To see Twitter plugins go to: https://dev.twitter.com/web/tweet-button
- The plugin transmits only the information to its provider about which of our web pages you have accessed and at what time. If, while browsing our site or staying on it, the user is logged into their account, e.g., on Facebook or Twitter, the provider can link your interests, preferences, and other data obtained, e.g., by clicking the Like button or leaving a comment or entering the profile name in the searches. Such information will also be transmitted by the browser directly to the provider.
- To avoid recording a visit on a selected account by the Plug-in on our website, you must log out of your account before browsing our website.
§ 6 Rights and Obligations
- We have the right and, in cases specified by law, also a statutory obligation to provide selected or all information concerning personal data to public authorities or third parties who submit such a request for information based on applicable Polish law.
- The user has the right to:
- access personal dataThe user has the right to access their personal data, executed upon a request submitted to the Administrator
- rectify personal dataThe user has the right to request the Administrator to immediately rectify their incorrect personal data and/or complete incomplete personal data, executed upon a request submitted to the Administrator
- delete personal dataThe user has the right to request the Administrator to immediately delete personal data, executed upon a request submitted to the Administrator In the case of user accounts, the deletion of data involves anonymizing the data that allows the identification of the User. The Administrator reserves the right to withhold the execution of the request for data deletion to protect the legally justified interests of the Administrator (e.g., if the User has violated the Terms and Conditions or the data were obtained as a result of correspondence). In the case of the Newsletter service, the User can independently delete their personal data using the link included in each sent email.
- restrict the processing of personal dataThe user has the right to restrict the processing of personal data in the cases indicated in Article 18 of the GDPR, including questioning the accuracy of personal data, executed upon a request submitted to the Administrator
- transfer personal dataThe user has the right to obtain from the Administrator their personal data in a structured, commonly used, machine-readable format, executed upon a request submitted to the Administrator
- object to the processing of personal dataThe user has the right to object to the processing of their personal data in the cases specified in Article 21 of the GDPR, executed upon a request submitted to the Administrator
- file a complaintThe user has the right to file a complaint with the supervisory authority responsible for data protection.