Cookie Policy

The following Cookie Policy sets out the rules for saving and accessing data on Users’ Devices using the Website for the purpose of providing services electronically by the Website Administrator.

§1 DEFINITIONS

• Website – website operating at the address: https://royalpack.com.pl
• External website – internet websites of Administrator’s partners, service providers or service recipients
• Administrator – the company ROYALPACK Sp. z o.o., operating at the following address: Aleja Brzozowa 2A, Słone, 66-008 Świdnica ,with the assigned tax ID number (NIP): 9730992496, with the REGON: 080502765, with the KRS: 0000983885, providing electronic services via the Website and storing and accessing information on the User’s devices
• User – a physical person for whom the Administrator provides services electronically via the Website.
• Device – an electronic device with software through which the User gains access to the Website
• Cookies – text data collected in the form of files placed on the User’s Device

§2 TYPES OF COOKIES

• Internal Cookies – files uploaded and read from the User’s Device by the Website’s ICT system
• External cookies – files placed and read from the User’s Device by ICT systems of External Websites
• Session cookies – files uploaded and read from the User’s Device by the Website or External Websites during one session of a given Device. After the session ends, files are deleted from the User’s Device.
• Permanent cookies – files uploaded and read from the User’s Device by the Website or External Websites until they are manually removed. These files are not deleted automatically after the end of the Device session, unless the User’s Device configuration is set to the Cookie delete mode after ending the Device session.

§3 SECURITY

• Storage and reading mechanisms – Cookies storage and reading mechanisms do not allow for downloading any personal data or any confidential information from the User’s Device. It is virtually impossible to transfer viruses, Trojans or other worms to the User’s Device.
• Internal Cookies – Internal Cookies used by the Administrator are safe for Users’ Devices
• External cookies – the Administrator is not responsible for the security of cookies from the partners of the Website. The list of partners is provided further in this Cookie Policy.

§ 4 PURPOSES FOR WHICH COOKIES ARE USED

• Statistical data – the Administrator and External websites use Cookie files to gather and process statistical data, such as statistics related to user visits, user Devices or user behavior. This data is collected in order to analyze and improve the Website.

§ 5 EXTERNAL WEBSITES

The Administrator cooperates with the following external websites that may place cookie files on User’s Devices:

• Google Analytics

§ 6 SPECIFYING THE CONDITIONS OF STORAGE AND ACCESS TO THE DATA ON THE USER’S DEVICES BY THE SERVICE AND EXTERNAL SERVICES

• The User may, at any time, independently change the settings for saving, deleting and accessing stored Cookie files
• Information on how to disable Cookies in the most popular computer browsers and mobile devices is available on the page: how to disable Cookies.
• The User may at any time delete any Cookie files saved up until now using the User’s Device tools through which the User uses the Website’s services.

§ 7 EXCLUSION OF LIABILITY

• The Administrator uses all possible measures to ensure the security of data placed in Cookie files. However, it should be noted that ensuring the security of this data depends on both Parties, including the User’s activity and the security status of the device he/she uses.
• The Administrator is not responsible for intercepting data contained in Cookie files, impersonating the User’s session or removing the data as a result of the User’s conscious or unconscious activity, viruses, Trojan horses and other spyware that may infect the User’s Device.
• Users, in order to protect themselves against the threats indicated in the previous sentence, should follow the rules of cybersecurity in the network.
• Services provided by third parties are beyond the Administrator’s control. These entities may at any time change their terms of service, purpose and use of cookies. To the scope permitted by law, the Administrator is not responsible for the operation of cookies used by partner websites. Users can, at any time, manage their cookie permissions and settings for any website.

§ 8 WEBSITE REQUIREMENTS

• Restricted saving of Cookies and access to Cookies on the User’s Device may cause some of the Website’s functions to fail.
• The Administrator does not bear any responsibility for improperly operating functions of the Website if the User restricts in any way the option of saving and reading cookies.

§ 9 CHANGES TO THIS COOKIE POLICY

•  The Administrator reserves the right to change this Cookie Policy at any time without the need to inform the Users.
• Any changes made to this Cookie Policy will always be published on this page.
• The introduced changes enter into force on the date of publication of the amended Cookie Policy.

§ 1 THE SCOPE OF THIS INFORMATION
Information on the processing of personal data by the company ROYALPACK sp. z o.o.. hereinafter referred to as the COMPANY, applies to the data received:

via electronic forms, as part of contracts with customers (only contact details), and by representatives in the field of purchasing, sales or marketing activities (e.g. as part of meetings or business correspondence, as part of conferences or other events, fairs, tenders, negotiations, transfer contact, business cards, etc.) The data may be obtained directly from the data subject. The information does not apply to the processing of personal data of employees, job applicants, or data entrusted for processing under the entrustment agreement.

§ 2 ADMINISTRATOR AND CONTACT DETAILS

The Administrator of your personal data is ROYALPACK sp. z o.o. with its registered office in Słone, al. Brzozowa 2,66-008 Świdnica.

In all matters related to your data, please contact the Data Administrator:
e-mail: ad@royalpack.com.pl

§ 3 THE SOURCE AND SCOPE OF DATA PROCESSING
The following data will be processed:
1. Personal data – collected in order to perform the contract, an order or to issue an invoice in accordance with art. 6 sec. 1 point b) of the GDPR. The data will be processed for the period of performance of obligations and the period of limitation of claims resulting from the law provisions.
2. ICT contacts – collected for the purposes of business contacts in accordance with Art. 6 sec. 1 point f) of the GDPR. The data will be processed until the objection is submitted pursuant to art. 21 of the GDPR. During the data processing period, the COMPANY representatives may contact you in order to present you an offer, invite you to a meeting, or as part of other marketing activities. From time to time, you may receive information regarding our COMPANY’s products, services or activities, and other information related to areas of our business activity. If you are a representative of a supplier or service provider, representatives of our COMPANY may also contact you to obtain an offer, information or documents. In this case, the processing of your data will be undertaken in order to implement the legitimate interest of the Administrator, which is marketing and sale of products and services, as well as building and strengthening business relationships. You have the right to object to such processing of your personal data,  in accordance with the information provided in the section AUTHORIZATIONS.

§ 4 TRANSFER OF THE DATA
1. Contact details are stored at the COMPANY’S headquarters and on the COMPANY’s equipment, however, they are available remotely to sales representatives employed outside our headquarters. Therefore, we would like to inform you that personal data may be transferred to a country outside the EU in which the COMPANY operates
2. The data may be made available to suppliers, service providers and partners with whom the COMPANY cooperates to the extent necessary to provide services for customers, business contacts and marketing activities.
3. In the case of transfer of data to a third country for which no decision of the European Commission has been issued stating an adequate level of protection, the COMPANY applies appropriate safeguards through standard data protection clauses adopted by the European Commission or the supervisory authority (in accordance with Art. 46 sec. 2 point c) and d) of the GDPR). Any inquiries regarding the processing of your data and how to obtain a copy of the standard data protection clauses should be sent using the information provided in the section “Administrator and contact details”.

§ 5 EFFECTS OF NOT PROVIDING YOUR DATA
In the case of data collected by company representatives for the purpose of purchasing, sales or marketing activities – providing the data is voluntary, but if you do not provide your data, we may not be able to contact you in the future. In the case of persons who are a party to a contract /an order concluded with our company, providing the data necessary to perform the contract and fulfill our legal obligations is a condition for the conclusion and performance of the contract.

§ 6 AUTHORIZATIONS
In accordance with the provisions of the GDPR, you have the right to:
1. access your data;
2. rectify your data;
3. delete your data;
4. limit the processing of your data;
5. transfer your data;

6. raise objection (when the basis for data processing is the legitimate interest of the Administrator);
7. withdraw your consent (when your consent is the basis for data processing). The exercise of these rights depends on the conditions set out in the GDPR. In the event of refusal to accept your request, you will receive a reply with the justification for the refusal.

In order to exercise your rights, please contact us using the information provided in the section “Administrator and contact details”.

§ 7 Please note that:

•  you have the right to delete your data and the right to request the restriction of data processing only in the cases specified in the provisions of the GDPR;
• you have the right to transfer your data only if the legal basis for data processing is your consent or the performance of a contract;
• the Administrator may refuse to delete your data despite your request, provided that one of the exceptions listed in the GDPR applies, e.g. when data processing is necessary to fulfill a legal obligation or to establish, assert or defend claims
• in some cases, the Administrator may refuse to take into account your objection to your data processing on the basis of the legitimate interest of the Administrator, when there are valid legitimate grounds for data processing that override your interests, rights and freedoms or when there are grounds for establishing, pursuing or defending claims – such a right is not granted to the Administrator when the data is processed for direct marketing purposes (e.g. business contacts).
• You have the right to lodge a complaint with the competent supervisory authority, that is the President of the Personal Data Protection Office, appointed pursuant to Art.34.of the Personal Data Protection Act of 10 May 2018.
• The Administrator hereby informs that he does not use automatic profiling.