Privacy Policy for moodo B2B in line with GDPR Privacy Policy
1. What do we care about? The Privacy Policy document is an expression of our care for the rights of those who visit www.moodo-b2b.pl and use the services offered through that website.
At the same time, the document meets the information obligation resulting from Art. (13) of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (OJ L 119, 4.5.2016, p. 1) (hereinafter referred to as GDPR).
We hope that in this Privacy Policy you will find answers to any questions regarding your personal data protection. If you have any doubts, you can always contact us by writing to the e-mail address: sklep@moodo.pl.
2. Who is the controller of your data?
The controller of your personal data is Moodo Urban Fashion Mode Spółka z ograniczoną odpowiedzialnością spółka komandytowa with its registered office in Gdańsk (80-125) at ul. Kartuska 418 B, entered into the Register of Entrepreneurs of the National Court Register by the District Court Gdańsk-Północ in Gdańsk, 7th Commercial Division of the National Court Register, KRS number 0000422634, REGON 221168240 and NIP 585-14-58-859.
3. How do we obtain your data? We obtain your personal data when you register at the moodoB2B store, when you register in the newsletter service and when you ask a question via the contact form on our website: https://moodo.pl/contact-pol.html.
4. What is the basis, purpose and scope?
We process your personal data depending on the purpose of their processing, which in turn determines the legal basis for their processing.
Communication (answering questions, complaints and requests)
Purpose of processing - We care about communication with you and your satisfaction with our services. Therefore, we would like to be able to contact you and respond to any of your questions, complaints or requests regarding the provision of our services.
Data categories - Your identification and contact data, data on the use of our services, data being the subject of your inquiries, complaints or requests.
Legal grounds: Article 6 (1) (f) of GDPR - our legally justified interest in keeping in touch with you and providing help / answers to your questions
Development of our moodo B2B website and online store
Purpose of processing - We want to continuously enhance our services as well as to improve their functionality and safety. This will allow us to improve our website. We would also like to inform you of the changes you make so that you can use our application in the most optimal manner.
Data categories - As presented in the cookie policy. Legal basis: Art. 6 (1)(f) of GDPR - our legitimate interests in the continuing improvement of our services.
Establishing, asserting or defending claims.
Purpose of processing - It may be necessary based on our services to clarify the actual or legal status in order to establish and to proceed on the case of claims resulting from the use of our services.
Data categories - Your identification and contact data, other data necessary to establish, assert or defend claims.
Legal basis: Art. 6(1)(f) of GDPR - our legitimate interest for possible security of claims and their assertion before courts or other competent national institutions.
Registration in the moodo B2B online store Purpose of processing - your data is necessary so that you can use our MOODO online store; for this purpose we need to identify you as a separate user and receive contact details that we can use to communicate with you.
Data categories - Company name, NIP (Tax ID), Full name, Correspondence address, E-mail address
Legal basis: Art. 6(1)(b) of the GDPR - necessary to take steps at your request before entering into a contract and for the performance of a contract. The data are provided optionally, but they are necessary for registration at the store.
Provision of moodo B2B online store services
Purpose of processing - Your data is necessary for you to use the MOODO online store.
Data categories - Company name, NIP (Tax ID), Full name, Correspondence address, Delivery address, E-mail address Telephone number,
Legal basis - Art. 6(1)(b) of GDPR - necessary for the performance of a contract.
Direct marketing
Purpose of processing - Our company conducts commercial activities for its own products and an important element is to support the sales of goods.
Data categories - e-mail, telephone number
Legal basis - Art. 6(1)(f) of GDPR - our legitimate interests. The phone number is provided optionally.
Ordering the MOODO Newsletter service
Purpose of processing - to enable you to access the MOODO newsletter service, we need to receive an e-mail address and/or telephone number to be able to communicate with you.
Data categories - The data that we collect for this purpose is your e-mail address.
Legal basis: Art. 6(1)(b) of the GDPR - necessary to take steps at your request before entering into a contract and for the performance of a contract. E-mail address has to be provided for registration in MOODO Newsletter.
Providing the Newsletter service
Purpose of processing - Your data is necessary for you to use the MOODO Newsletter service. We must have your e-mail address and/or telephone number to which we will be able to send messages.
Data categories - Your e-mail address and/or telephone number
Legal basis - Art. 6(1)(b) of GDPR - necessary for the performance of a contract. E-mail address is provided optionally, but it is necessary for using the MOODO Newsletter service.
5. How long do we keep your data?
If you sign up to the MOODO B2B online store, your personal data will be processed by us until you unregister from the MOODO online store and for the next 60 days. After the expiry of that period, the necessary data will be stored only for the purposes of handling complaints and claims related to our services, for the period of limitation for such claims set out by law. After that time, we will erase your data.
If you register for the newsletter service, we will process your personal data until you unregister from the service and for the next 60 days. After the expiry of that period, the necessary data will be stored only for the purposes of handling complaints and claims related to our services, for the period of limitation for such claims set out by law. After that time, we will erase your data.
If you enter your data in the contact sheet, your personal data will be processed for the period necessary to process the inquiry and for the next 60 days. After the expiry of that period, the necessary data will be stored only for the purposes of handling complaints and claims related to our services, for the period of limitation for such claims set out by law. After that time, we will erase your data.
6. Which powers do you have as a Data Subject?
In accordance with Art. 7, 15 - 22 and 77 of GDPR, each natural person is entitled to the following rights:
Right of access (Art. 15 of GDPR) - The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data. In accordance with Art. 15, the controller shall provide a copy of the personal data undergoing processing.
Right to rectification (Art. 16 of GDPR) - The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her.
Right to erasure ("right to be forgotten") (Art. 17 of GDPR) - The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies:
1) the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed,
2) the data subject withdraws consent on which the processing is based,
3) the data subject objects to the processing pursuant to Art. 21(1) and there are no overriding legitimate grounds for the processing.
Right to restriction of processing (Art. 18 of GDPR) - The data subject shall have the right to obtain from the controller restriction of processing where one of the following applies:
1) the data are inaccurate - until they are rectified,
2) the data subject has objected to processing pursuant to Art. 21(1) pending the verification whether the legitimate grounds of the controller override those of the data subject;
3) the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead.
Right to data portability (Art. 19 of GDPR) - You shall have the right to receive your personal data to then send them to another data controller. You can also request your personal data to be sent directly to another controller, if technically feasible. The exercise to the right to data portability may be subject to restrictions if it adversely affects the rights and freedoms of others.
Right to object (Art. 21 of GDPR) - You have the right at any time to object to the processing of your personal data, including profiling, when it is based on legitimate interests. If your objection is justified and there is no other legal basis to process your personal data, we will not process your data. Should you object to the processing of your data for direct marketing purposes, we will not process your data for this purpose.
The right to withdraw the consent (Art. 7 of GDPR) - Any consent for personal data processing by us is freely given and you have the right to withdraw it at any time. Withdrawal of the consent shall not affect the lawfulness of processing done by MOODO based on consent before its withdrawal.
Right to lodge a complaint with a supervisory authority (Article 77 of GDPR) - If you think that the processing of your personal data violates your rights, you have the right to lodge a complaint with the competent Supervisory Authority, i.e. the President of the Office for Personal Data Protection, to the address: ul. Stawki 2, Warsaw 00-193.
7. How to exercise your rights?
To exercise any of the above rights, you can contact us by writing to the following address: kontakt@moodo.pl or by writing to the correspondence address: Moodo Urban Fashion Mode, 80-125 Gdańsk, ul. Kartuska 418 B. MOODO
8. How to contact our Data Protection Officer?
We have appointed the Data Protection Officer in our company, who you can contact in all matters concerning personal data processing by sending an e-mail to: iod@moodo.pl.
9. Who do we share your data with?
Your personal data may be transferred to recipients located in the European Economic Area (hereinafter referred to as the "EEA") and outside of it (to the Third Countries).
Transfer of your personal data to the Third Countries may only take place under conditions specified in Chapter V of GDPR, to countries against which the European Commission issued a decision stating the adequate level of protection referred to in Art. 45 of GDPR.
You can obtain a copy of your personal data which we transfer to the Third Countries as well as information about the place where they are made available by writing to our e-mail: kontakt@moodo.pl.
The recipients of your data are entities that act only on our request, providing services necessary for the functioning of our company and services offered by us (e.g. hosting, CRM, accounting and mailing).
We can also provide your data in the case of a request of competent public authorities, to the extent of and under relevant laws.
11. Can there be changes in the Privacy Policy?
We reserve the right to change this Privacy Policy; at the same time, we undertake to immediately publish a new version of the Privacy Policy at www.moodo.pl and to inform our Clients of any changes by e-mail.
12. Are there any other regulations we have introduced?
In addition to this Privacy Policy, the rules of personal data processing are described in the Terms of MOODO CLUB.
13. Cookies. What are cookie files?
When viewing www.moodo.pl, “cookies” are used, i.e. small text information that is saved in your end device. These files make it possible to identify software you are using and adjust the website and web store individually to your needs. By default, web browsers allow to store “cookies” on the end device.
There are two types of cookies:
• session cookies - stored on your device, where they remain until the browser session is closed. Recorded information is then permanently deleted from your device memory. The session cookies mechanism does not allow for downloading any personal data or confidential information from your device.
• permanent cookies: stored on your device, where they remain until they are deleted. Ending the session of a given browser or turning off the device does not remove them from your device. The permanent cookies mechanism does not allow for downloading any personal data or confidential information from your device.
Which third-party cookies do we use?
At the www.moodo-b2b.pl website and store, we use “cookies” for the following purposes:
· create statistics that help to understand how customers use their website, which makes it possible to improve its structure and content via Google Analytics, whose controller is Google Inc., based in the USA; the Google Privacy Policy is available at the following links:
http://www.google.com/intl/pl/policies/privacy,
http://www.google.com/intl/pl/policies/privacy/partners;
· creating statistics of user activity and interests from through the user’s Facebook account. The cookie controller is Facebook, Inc., based in the USA, or Facebook Ireland, based in Ireland; the Facebook Privacy Policy is available at the following link:
https://www.facebook.com/help/cookies;
We recommend reading the privacy policies of the above companies to understand the use of “cookies”.
What cookie files do we use?
· user identification and creation of statistics on their traffic and optimisation of displayed advertisements. The controller is Moodo Urban Fashion Mode Spółka z ograniczoną odpowiedzialnością Sp. k. 80-125 Gdańsk, ul. Kartuska 418B based in Poland. The data are made available to IAI Spółka Akcyjna, Aleja Piastów 30, 71-064 Szczecin in Poland, to operate the IAI-Shop.com software. It is impossible to identify the person. We do not store IP or any personal data in cookies.
“client” and " _IAI_AC” - permanent cookies with session ID, lifespans of 1 day and 7 days, respectively.
"page _ counter" - the number of sub-pages viewed, which can be used by the client for built-in and their own JavaScript scripts that carry out specific actions (e.g. reduction of the number of advertisements displayed at the same time); lifespan of 1 day.
“affiliate" - the login of the client (store partner’s) who, as part of the partnership program, referred the user to the store and set only in such a case; lifespan of 90 days.
· monitoring traffic on the MOODO website and store, observing user preferences. The controller is Moodo Urban Fashion Mode Spółka z ograniczoną odpowiedzialnością Sp. k. 80-125 Gdańsk, ul. Kartuska 418B based in Poland. The types of cookies and data collected by them are presented in the table below:
File name - Purpose -What information is collected
Smuuid - A cookie tracking anonymous visits. It is assigned to each visitor - unique identifier - the cookie itself does not contain any information enabling the identification of the contact and learning the personal data of the person visiting the website - the connection to the contact tab is done inside SALESmanago.
Smclient - Identification cookie, assigned to identified monitored contacts - the cookie itself does not contain any information enabling the identification of the contact and learning the personal data of the person visiting the website - the connection to the contact tab is done inside SALESmanago.
smform - A cookie supporting contact forms and pop-ups - Information on behaviour of forms and pop-ups - number of visits, last visit timestamp, information on whether the pop-up has been closed/minimised
smg - User identification cookie - Random identifier in the UUID format
smvr - A cookie storing visit information (coded base64) - Values coded by base64
smwp - Information about the WebPush consent form - true/false value
Smg - User identification cookie - global identifier within the entire system - Random identifier in the UUID format
smrcrsaved - A cookies storing information whether the identifier is stored in SALESmanago (deprecated) - true/false value
smOViewsPopCap - A cookie recording the information on the pop-up display capping - SM:X|, where a number is inserted for X The “cookies” used are safe for your devices. In particular, it is not possible for viruses or other unwanted software or malware to access your devices through “cookies”.
How to remove cookies?
By using the web browser settings, you can change the “cookie” settings on your own at any time. These settings can be changed in the web browser settings. Detailed information about the option and ways of Cookies operation can be found in the settings of your software (web browser).
Below are the links to the "cookie" management instructions for the most popular browsers:
Blocking “cookies” in Firefox: https://support.google.com/chrome/answer/95647?hl=pl
Blocking “cookies” in Internet Explorer: http://support.microsoft.com/kb/278835/pl
Blocking “cookies” in Chrome: http://support.google.com/chrome/bin/answer.py?hl=pl&answer=95647
Blocking “cookies” in Safari: http://safari.helpmax.net/pl/oszczedzanie-czasu/blokowanie-zawartosci/