The administrator of the Website and of your personal data is Blend PR Magdalena Gajek with its registered office at os. Sobieskiego 26c/131, 60-688 Poznań, with NIP: 5961728254.
Administrator – Blend PR Magdalena Gajek with its registered office at os. Sobieskiego 26c/131, 60-688 Poznań, with NIP: 5961728254.
User – every person visiting and using the Website www.blendpr.pl.
Website and Online Store – www.blendpr.pl.
Form/Forms – places on the Website where the User can provide personal data for a specified reason such as Newsletter subscription, placing an order, contact with the User.
GDPR – the Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
The Administrator of your personal data is Blend PR Magdalena Gajek with its registered office at os. Sobieskiego 26c/131, 60-688 Poznań, with NIP: 5961728254.
Providing your personal data is voluntary, however, not providing the required personal data (marked as obligatory on the Website) means that the Administrator will not be able to provide the service.
Any personal data that is not obligatory or necessary are provided by the User voluntarily and the Administrator processes such personal data on the basis of Article 6 section 1 letter a) of GDPR (consent). The User gives consent for such personal data being processed and made anonymous by the Administrator.
The Administrator processes the User’s personal data for the following purposes and on the basis of the following legal grounds:
Article 6 of GDPR: Lawfulness of processing:
Section 1 letter a) the data subject has given consent to the processing of his or her personal data for one or more specific purposes;
Section 1 letter b) processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
Section 1 letter c) processing is necessary for compliance with a legal obligation to which the controller is subject;
Section 1 letter f) processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child.
The Administrator collects and processes only personal data provided by the User (the exception are automatically collected data such as cookies and login data – more information on those can be found below).
The User has rights regarding their personal data under the provisions of Articles 15-21 of GDPR:
The Administrator shall draw attention to the fact that the abovementioned rights are not absolute and there are exceptions to them. The rights shall not adversely affect the rights and freedoms of others such as copyrights or professional secrecy. To find out more, please read the GDPR document.
However, the User can always exercise the right to file a complaint with the supervisory authority.
The User has the right to withdraw their consent to process their personal data at any given time, which will result in deleting the e-mail address of the User from the e-mailing list of the Administrator. The consent withdrawal does not affect the processing of personal data prior to the withdrawal.
In some cases, not all personal data will be deleted. In such cases, personal data might be stored for defense against claims for as long as it is required by legal regulations.
The Administrator shall process each and every request from the User, informing the User about the actions required by legal regulations.
The User’s personal data might be transferred to a non-EU country (third country). In such a case, personal data will be transferred only to the recipients who joined the Privacy Shield agreement or to those recipients that guarantee the highest level of data protection.
Because the Administrator uses the services from Google, Facebook, LinkedIn, and Instagram, the User’s personal data might be transferred to the United States of America (the USA) where the personal data are stored on the servers.
Detailed information on data protection can be found in the privacy policies available on the websites of each of the abovementioned providers:
Google LLC: https://policies.google.com/privacy?hl=pl
Facebook Ireland Ltd.: https://www.facebook.com/privacy/explanation
The User’s personal data are stored by the Administrator as long as there are services being provided, there are legal bases for processing of personal data, and:
The User’s personal data are stored and protected with due diligence, according to the internal procedures implemented by the Administrator. The Administrator processes personal data using appropriate technical and organizational measures required by the law regulations, especially by legal regulations regarding personal data. This is to protect personal data against unauthorized access. The access to personal data is granted only to authorized persons who are obliged to keep them confident.
The User shall ensure the security of personal data provided to the Administrator via Internet – in particular, does not share the login details with third parties, uses an antivirus and updates the software.
The Administrator uses external service providers. The recipients of the User’s personal data (such as courier service providers, payment system operators, accountants, newsletter providers) guarantee they use the appropriate technical and organizational measures required by the law regulations, including GDPR. The User’s personal data are disclosed to the following recipients:
The Administrator has not appointed the Data Protection Officer and performs the tasks of the Data Protection Officer autonomously.
The User acknowledges that their personal data might be disclosed to the authorized government bodies – for the purpose of compliance with a legal obligation – at their request and after ensuring there are grounds for obtaining such personal data from the Administrator.
The User’s personal data are not used for the automated decision-making which affects the rights, obligations and freedom of the User, as stipulated in GDPR.
The User’s personal data (obtained on the Website) might be subject to profiling in order to personalize the Administrator’s offer (mainly through behavioral advertising). It should not, however, have any effect on the legal situation of the User, especially on the contracts they entered into or will enter into. It only helps to adjust the content of the advertising to the interests of the User. That information is anonymous and is not associated with any personal data provided by the User (for example, during the online purchase). It includes only statistical data such as sex, age, interests, approximate location, and behavior on the Website.
Every User has the right to object to profiling if it has any negative effect on the rights and obligations of the User.
To be able to use the Website, the User is required to have:
software allowing to read the content in the given formats such as .pdf, video, mp3, mp4.
a) Facebook Pixel – it manages Facebook ads and marketing actions (legitimate interest pursued by the Administrator). This tool is provided by Facebook Inc. and its affiliates. This analytical tool measures how effective ads are, shows what actions the Users take, and helps to reach the target group (Facebook Ads, Facebook Insights). Information collected by Facebook Pixel is anonymous and does not identify you. It shows general data about the users: location, age, sex, interests. The provider can combine these data with other data that you provide on your Facebook account and then use the combined data according to their goals.
The Administrator recommends to read the details of Facebook Pixel and ask directly the provider for any clarification you might need. Also, you should manage the privacy settings on your Facebook account. More information can be found at https://www.facebook.com/privacy/explanation.
b) Google Analytics – it analyzes the Website statistics. Google Analytics uses its own cookies to analyze actions and behavior of the Users. The files store information such as from what website a user entered other website. It helps to create and use statistics to improve the services provided by the Administrator and to optimize the Website (legitimate interest pursued by the Administrator). This tool is provided by Google LLC. While using Google Analytics, the Administrator does not collect any data that could be used to identify the User. The Administrator recommends to read the details of Google Analytics, turn off cookies and ask directly the provider for any clarification you might need at https://support.google.com/analytics#topic=3544906.
c) Plug-ins to social media – Facebook, Instagram, LinkedIn.
When the User clicks on the plug-in icon, they are redirected to the website of an external provider – in this case to the specific social media portal such as Facebook. Next, the User can click ‘like it’ or ‘Share’ and to like the Administrator’s fan page on Facebook or to share the content (a post, article, video, etc.).
When you enter the Website for the first time, you have to accept cookies or take other actions specified in the message on the Website to be able to use the Website. By using the Website, you accept cookies. If you do not want to give such consent, leave the Website. You can also change the cookies settings in your browser – clear or turn them off. You can find all the necessary information in ‘Help’ section of your browser.
Date of the latest update: 02.04.2020