GDPR Privacy Policy including Cookie Policy

This Privacy Policy sets out the rules for storing and accessing information, among other things, on the User’s devices using Cookies files, serving the purpose of fulfilling the sale of goods ordered by the User electronically through the online store, owned by Agatinia Sp. z o.o., located in Warsaw at ul. Marszałkowska 138/81.

§ 1
[General Information]

  1. The website is operated by Agatinia Sp. z o.o. with its registered office in Warsaw, at ul. Marszałkowska 138/81, registered in the National Court Register kept by the District Court for the capital city of Warsaw in Warsaw, XII Commercial Division of the National Court Register under the KRS number 0000555145, with a share capital of 5000 PLN, tax identification number (NIP): 525-26-16-393, REGON: 361359879 (hereinafter referred to as the “Administrator”).
  2. In this policy:
    • Cookies – means computer data, in particular small text files, stored and stored on devices through which the User uses the website of the Service.
    • Administrator’s Cookies – means Cookies placed by the Administrator, related to the provision of electronic services by the Administrator through the Service.
    • Third-party Cookies – means Cookies placed by the Administrator’s partners through the website of the Service.
    • Service – means a website or application under which the Administrator operates an online service, operating at the domain
    • Device – means an electronic device through which the User accesses the Service.
    • User/Client – means an entity for whom, in accordance with the Regulations and the law, electronic sales are provided or with whom an Agreement for the provision of electronic services may be concluded.
  3. As part of the Service’s activities, User data, including personal data, may be collected, processed, and used.
  4. User data may be collected as a result of: their voluntary provision by Users and the use of Administrator’s cookies and third-party cookies.
  5. The Administrator ensures that personal data is processed in accordance with the law, in particular with the GDPR and the principles of processing provided therein, namely:
    • in accordance with the law and based on one of the processing grounds specified in the GDPR (lawfulness principle);
    • fairly and transparently, always informing about the processing of personal data at the time of their collection, including the purpose and legal basis of the processing (fairness and transparency principle);
    • for specific and legally justified purposes and without further processing in a manner inconsistent with these purposes (purpose limitation principle);
    • to the extent necessary to achieve the purpose for which the personal data were collected (minimization principle);
    • processing accurate data and taking all reasonable steps, if necessary, to promptly delete or rectify personal data that are inaccurate in light of the processing purposes (accuracy principle);
    • only for the period necessary to achieve the processing purposes (storage limitation principle);
    • in a manner ensuring data security, including protection against unauthorized or unlawful processing, as well as accidental loss, destruction, or damage, by implementing appropriate technical or organizational measures (integrity and confidentiality principle);
    • in a manner ensuring the ability to demonstrate compliance with legal processing requirements (accountability).
  6. The Administrator ensures compliance with this Policy by all of its employees and collaborators, regardless of the legal form governing the mutual relations between the Administrator and these entities.

§ 2
[Personal Data]

  1. The Administrator processes User’s personal data for the purpose of order fulfillment and other purposes specified in this policy. Personal data means information about an identified or identifiable natural person. Processing of personal data includes any operation performed on personal data.
  2. Through the Website, the Administrator may collect and then process personal data for purposes such as:
    • order fulfillment – based on Article 6(1)(a) of the GDPR;
    • statistics and analysis of User behavior on the Website, which is a legitimate interest of the Administrator – based on Article 6(1)(f) of the GDPR;
    • processing of personal data for tax and accounting purposes – based on Article 6(1)(c) of the GDPR.
  3. The Administrator may disclose personal data to its subcontractors (entities whose services are used in processing), such as:
    • providers of IT services (e.g., email delivery tools providers, hosting providers);
    • entities providing marketing services;
    • suppliers – to the extent necessary for delivery.
  4. The Administrator does not transfer personal data outside the European Economic Area except for providing data to the Administrator’s subcontractors (entities that process data on its behalf), who provide IT and marketing services to the Administrator: Google LLC.
  5. Personal data processed for:
    • order fulfillment are processed for a period of 3 years from the date of their collection;
    • statistics and analysis of User behavior on the Website are processed for a period of 3 years from the date of their collection.
  6. The User whose data is processed has the following rights:
    • right of access to the provided personal data and the right to obtain their copy;
    • right to rectify personal data;
    • right to erase personal data;
    • right to request restriction of processing personal data;
    • right to data portability;
    • right to object to the processing of personal data;
    • right to lodge a complaint with a supervisory authority.
  7. If processing is based on consent, the User whose data is processed also has the right to withdraw consent to the processing of personal data at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
  8. To exercise the above-mentioned rights, Users whose data is processed may contact the Administrator in writing, by telephone, or by email.
  9. The exercise of the specified rights will only be possible upon positive verification of the identity of the data subject.

§ 3

  1. As part of the Website’s activity, cookies files are used and stored on end devices (computers or mobile devices) of Users. By using cookies, it should be understood as their storage and accessing them by the Administrator.
  2. Cookies are computer data, especially text files, which are stored on the User’s end device and are intended for using websites. Cookies typically contain the name of the website they come from, the time of storing them on the end device, content (e.g., action identifiers), and a unique number.
  3. Cookies are used for:
    • storing user preferences to customize the Website’s content to the User’s preferences. In particular, these files allow recognizing the User’s device and displaying the Website accordingly, adapting it to their needs and preferences;
    • ensuring the correct operation of the Website;
    • collecting analytical data for creating statistics and analyses regarding the use of the Website to improve services offered to all users – collected data does not refer to a specific individual.
  4. Two main types of cookies are used on the Website: “session” cookies and “persistent” cookies. “Session” cookies are temporary files stored on the User’s end device until the end of the session (e.g., leaving the Website, deleting them by the User, or turning off the software). “Persistent” cookies are stored on the User’s end device for the time specified in the parameters of the cookies files or until they are deleted by the User.
  5. Using cookies does not make any configuration changes to the User’s end device and the software installed on it.
  6. Default settings of web browsers usually allow storing cookies files on users’ end devices of websites. However, these settings can be changed by the User.
  7. The User has the option to determine the conditions for using cookies files using the software settings (web browser) installed on their end device. The change may involve partially or completely limiting the ability to save cookies files on the User’s end device.
  8. The Administrator informs that, in accordance with the provisions of the Telecommunications Law, the end-user’s consent to store information or access to information already stored on the end-user’s telecommunications end device may also be expressed by the user using the settings of the software installed on the end device they use. Therefore, if the User does not want to give such consent, they should change the settings of their web browser.
  9. Detailed information on changing browser settings regarding cookies and their deletion can be obtained on the official website of a specific browser. In particular, the above information can be found at the following website addresses:
    • Firefox browser;
    • Chrome browser;
    • Microsoft Edge browser;
    • Opera browser;
    • Safari browser.

§ 4
[Tools Used on the Website]

  1. The Administrator, as part of the Website, uses IT tools provided by external entities. The use of these tools may involve the use of cookies provided by these entities.
    [Google Analytics]
  2. The Administrator uses the Google Analytics tool on the Website provided by Google.
  3. Google LLC is headquartered in the USA, thus outside the European Economic Area.
  4. Users can prevent the use of their data in Google Analytics. More information on how to do this can be found at the following link:
  • No products in the cart.