1. General information

  1. This policy applies to the website operating at the following URL address: https://mbymako.com/
  2. The operator of the website and the Administrator of personal data is: Bartosz Kowalowski, ul. Kłodnicka 36A, 40-702 Katowice 6341346317
  3. The operator’s contact email address: kontakt@mbymako.com
  4. The Operator is the Administrator of your personal data with regard to data provided voluntarily on the Website.
  5. The Website uses personal data for the following purposes:
    • Preparing, packing, and shipping goods
    • Conducting online chat conversations
    • Handling inquiries via the form
    • Providing the ordered services
    • Presenting offers or information
  6. The Website obtains information about users and their behavior in the following ways:
    1. Through data voluntarily entered in forms, which is then entered into the Operator’s systems.
    2. By saving cookies on end-user devices (so-called “cookies”).

2. Selected data protection methods used by the Operator

  1. Places where users log in and enter personal data are protected at the transmission layer (SSL certificate). Thanks to this, personal data and login data entered on the website are encrypted on the user’s computer and can only be read on the target server.
  2. User passwords are stored in a hashed form. The hashing function works one-way — it is not possible to reverse it, which is currently the modern standard for storing user passwords.
  3. In order to minimize the risk of unauthorized access to data, the Operator uses complex passwords containing lowercase and uppercase letters, numbers, and special characters, no shorter than 8 characters.
  4. The website uses two-factor authentication, which provides an additional form of protection for logging in to the Website.
  5. An important element of data protection is the regular updating of all software used by the Operator to process personal data, which in particular means regular updates of software components.
  6. In order to protect data, the Operator regularly performs backups.

3. Hosting

  1. The Website is hosted (technically maintained) on the operator’s server: lh.pl
  2. In order to ensure technical reliability, the hosting company keeps logs at the server level. The following may be recorded:
    • resources identified by URL identifier (addresses of requested resources — pages, files),
    • time the request was received,
    • time the response was sent,
    • name of the client station — identification carried out via the HTTP protocol,
    • information about errors that occurred during the HTTP transaction,
    • the URL address of the page previously visited by the user (referrer link) — if the user entered the Website via a link,
    • information about the user’s browser,
    • information about the IP address,
    • diagnostic information related to the process of independently ordering services via registrars on the website,
    • information related to handling email correspondence directed to the Operator and sent by the Operator.

4. Your rights and additional information on how the data is used

  1. In some situations, the Administrator has the right to transfer your personal data to other recipients if it is necessary to perform the agreement concluded with you or to fulfill obligations incumbent on the Administrator. This applies to the following groups of recipients:
    • authorized employees and associates who use the data to achieve the purpose of the website’s operation
  2. Your personal data is processed by the Administrator no longer than is necessary to perform the activities related to it, as specified by separate regulations (e.g., accounting regulations). With regard to marketing data, the data will not be processed for longer than 3 years.
  3. You have the right to request from the Administrator:
    • access to your personal data,
    • rectification of the data,
    • erasure of the data,
    • restriction of processing,
    • and data portability.
  4. You have the right to object to the processing referred to in point 3.3(c) with respect to the processing of personal data for the purpose of pursuing legitimate interests carried out by the Administrator, including profiling, however the right to object may not be exercised if there are valid legally justified grounds for processing that override your interests, rights, and freedoms, in particular the establishment, pursuit, or defense of claims.
  5. You have the right to lodge a complaint against the Administrator with the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
  6. Providing personal data is voluntary, but necessary to use the Website.
  7. With respect to you, activities may be undertaken involving automated decision-making, including profiling, for the purpose of providing services under the concluded agreement and for the purpose of conducting direct marketing by the Administrator.
  8. Personal data is transferred to third countries within the meaning of personal data protection regulations. This means that we transfer it outside the European Union.

5. Information in forms

  1. The Website collects information provided voluntarily by the user, including personal data, if such data is provided.
  2. The Website may save information about connection parameters (time stamp, IP address).
  3. In some cases, the Website may save information facilitating linking the data in the form with the email address of the user completing the form. In such a case, the user’s email address appears within the URL address of the page containing the form.
  4. Data provided in the form is processed for the purpose resulting from the function of a given form, e.g., for handling a service request or commercial contact, service registration, etc. Each time, the context and description of the form clearly informs what it is used for.

6. Administrator logs

  1. Information about users’ behavior on the Website may be logged. This data is used for the purpose of administering the Website.

7. Important marketing techniques

  1. The Operator uses statistical analysis of website traffic via Google Analytics (Google Inc. based in the USA). The Operator does not provide the operator of this service with personal data, only anonymized information. The service is based on the use of cookies on the user’s end device. Regarding information about user preferences collected by Google’s advertising network, the user can view and edit information resulting from cookies using the tool: https://www.google.com/ads/preferences/
  2. The Operator uses the Facebook pixel. This technology causes the Facebook service (Facebook Inc. based in the USA) to know that a given person registered there is using the Website. In this case, it is based on data for which Facebook itself is the administrator; the Operator does not provide any additional personal data to Facebook. The service is based on the use of cookies on the user’s end device.
  3. The Operator uses remarketing techniques that allow advertising messages to be tailored to the user’s behavior on the website, which may give the impression that the user’s personal data is used to track them; however, in practice no personal data is transferred from the Operator to advertising operators. The technological condition for such actions is enabled cookie support.
  4. The Operator uses a solution that examines user behavior by creating heat maps and recording behavior on the website. This information is anonymized before being sent to the service provider so that it does not know which natural person it concerns. In particular, entered passwords and other personal data are not recorded.
  5. The Operator uses a solution that automates the operation of the Website with respect to users, e.g., it may send an email to the user after visiting a specific subpage, provided that the user has consented to receiving commercial correspondence from the Operator.

8. Information about cookies

  1. The Website uses cookies.
  2. Cookies (so-called “cookies”) are IT data, in particular text files, which are stored on the end-user device of the Website User and are intended for use of the Website’s web pages. Cookies usually contain the name of the website they come from, the time they are stored on the end device, and a unique number.
  3. The entity placing cookies on the end-user device of the Website User and obtaining access to them is the Website operator.
  4. Cookies are used for the following purposes:
    1. maintaining the Website user’s session (after logging in), thanks to which the user does not have to re-enter their login and password on each subpage of the Website;
    2. to achieve the purposes specified above in the section “Important marketing techniques”;
  5. The Website uses two main types of cookies: “session” cookies and “persistent” cookies. “Session” cookies are temporary files that are stored on the end-user device until logging out, leaving the website, or switching off the software (web browser). “Persistent” cookies are stored on the end-user device for the time specified in the cookie parameters or until they are deleted by the User.
  6. Software for browsing websites (a web browser) usually allows cookies to be stored on the end-user device by default. Website Users can change the settings in this regard. The web browser allows cookies to be deleted. It is also possible to automatically block cookies. Detailed information on this is provided in the help or documentation of the web browser.
  7. Restrictions on the use of cookies may affect some functionalities available on the Website’s web pages.
  8. Cookies placed on the end-user device of the Website User may also be used by entities cooperating with the Website operator, in particular by: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).

9. Managing cookies – how to give and withdraw consent in practice?

  1. If the user does not want to receive cookies, they may change their browser settings. We note that disabling cookies necessary for authentication processes, security, and maintaining user preferences may make it difficult, and in extreme cases may make it impossible, to use websites
  2. To manage cookie settings, choose the web browser you use from the list below and follow the instructions:

    Mobile devices: