Privacy Policy
Privacy and Cookie Policy
Article 1. General provisions
- This Privacy and Cookie Policy contains information on processing by the Administrator of personal data of persons (hereinafter referred to as “Users”) using the online shop available under the domain https://obsessive.com/en hereinafter referred to as the “Online Shop”.
- The owner of the Online Shop and the administrator of personal data is AMOCARAT Sp. z o.o. with its headquarters in Czaniec (43-354), ul. Królewska 1, entered into the Register of Entrepreneurs of the National Court Register kept by the District Court in Bielsko-Biała, 8th Commercial Division of the National Court Register under the number KRS 0000754374, with a share capital of PLN 505,000.00, paid in full, NIP: 9372717816, REGON: 381622700, hereinafter referred to as “Amocarat Sp. z o.o.” or “Administrator”.
- The Administrator attaches great importance to the protection of privacy and confidentiality of personal data entered or provided by Users, and with due diligence selects and applies appropriate technical and organizational measures to protect the personal data being processed.
- The Administrator can be contacted in writing to the address indicated in section 2 above or via email to the following address: info@obsessive.com.
- The Privacy and Cookie Policy is general and presents the most important issues related to the processing of personal data. Details may be specific regulations or information clauses that the User will receive when collecting personal data from them when providing additional services or collecting data beyond the scope of this Policy, for example in connection with participation in a contest, promotional campaign.
- The Administrator processes personal data only to a minimum and adequate extent necessary to achieve the purposes for which it is collected. The purposes of collecting Users’ personal data are clearly defined and based on the law. The Administrator does not process personal data in a manner inconsistent with these purposes.
- The Administrator implements the Users’ rights regarding their personal data in accordance with the law, including the correctness of Users’ personal data and immediately responds to any requests for rectification or updating of data.
- The Administrator limits the storage of personal data in accordance with the law, only to the period necessary to achieve the purposes for which it is collected, unless there are reasons that allow for the extension of the period of data storage.
- If personal data is shared with other entities, it is done in a safe manner that is contractually secured or otherwise compliant with applicable law.
- Only persons duly authorized by the Administrator have full access to the databases. The Administrator protects personal data against disclosure to unauthorized persons, as well as against its processing in violation of applicable law.
- The Privacy and Cookie Policy may be updated or expanded according to the current needs of the Administrator in order to provide up-to-date and reliable information to Users.
Article 2. Grounds for the processing of personal data and the scope of data processed
1. Personal data is processed by the Administrator in accordance with the law, including in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repeal of Directive 95/46 / EC (hereinafter referred to as “GDPR”).
2. The Administrator may process personal data for the following purposes:
- a) Establishing business relations, including answering questions asked by Users via e-mail or the contact form (on the basis of Article 6(1)(f) GDPR i.e. the Administrator's legitimate interest expressed in the wish to ensure an appropriate level of service provision);
- b) Handling Users' requests directed via the hotline or contact number (on the basis of art. 6 section 1 letter f GDPR i.e. the Administrator's legitimate interest expressed in the wish to ensure an appropriate level of service provision);
- c) Registering an account in the Online Shop, in order to create an individual account and manage this account, which is necessary for the execution of the contract for the provision of the Account service (pursuant to Article 6 (1) (b) of the GDPR);
- d) Placing an order in the Online Shop, in order to conclude, perform and service a sales contract on the terms set out in the Online Shop Regulations (pursuant to Article 6 (1) (b) of the GDPR);
- e) To enable online payments, including payment cards which is necessary for the handling of the sales contract (based on Article 6(1)(b) of the GDPR);
- f) Fulfillment of the legal obligation incumbent on the Administrator with regard to tax and accounting obligations (pursuant to Article 6 (1) (c) of the GDPR in connection with tax and accounting regulations);
- g) Marketing of own goods or services to the Administrator's customers as the Administrator’s legitimate interest (pursuant to Article 6 (1) (f) of the GDPR);
- h) Marketing of the company's own goods or services in connection with the conclusion of a newsletter contract, i.e. an agreement for a service provided through electronic channels, and the sending of marketing content (based on Article 6(1)(b) of the GDPR);
- i) Sending commercial and marketing information, including information on abandoned shopping carts, availability of goods, promotional offers, SMS messages based on the User's consent (based on Article 6(1)(a) of the GDPR);
- j) Using the “post an opinion” service in order to perform the contract, the subject of which is a service provided electronically (pursuant to Article 6 (1) (b) of the GDPR);
- k) Analytics may collect information about the links and references Users choose to click on or other actions they take in the Online Shop, as well as the IP address assigned to the User's computer or the Internet provider's external IP address, domain name, browser type, access time, operating system type, gender of the purchasing User, information contained in cookies or other similar technologies, session data, device data on the basis of the Administrator's legitimate interest in facilitating the use of services provided electronically and improving the functionality of these services (art. 6(1)(f) GDPR. Cookie data is processed in accordance with Article 6(1)(a) of the GDPR, in relation to consenting to the use of certain cookies or other similar technologies, geolocation, if the User has consented to access geolocation (based on Article 6(1)(a) of the GPDR). Geolocation information is used in order to provide more tailored offers of products and services;
- l) To handle complaints from Users, in connection with a sales or service contract concluded (on the basis of Article 6(1)(b) of the GPDR) and to fulfil legal obligations due to non-conformity of goods/services with the contract or warranty (on the basis of Article 6(1)(c) of the GPDR);
- m) Establishing, investigating and enforcing claims or defending against claims, as a legitimate interest of the Administrator (on the basis of Article 6(1)(f) GDPR).
3. In case of registering an account in the Online Shop, the User provides/sends:
- a) An email address;
- b) First name and surname;
- c) Sex;
- d) At a later date, the User may also supplement their address data for correspondence/shipment of goods: postal code and city, street with house/flat number, phone number;
- e) At a later date, the User may also provide their phone number in order to receive marketing services (optionally and voluntarily);
- f) At a later date, the User may also provide important dates from their life, e.g. date of birth, anniversary date, in order to receive discounts and participate in promotional campaigns directly related to these dates (e.g. a birthday discount code).
4. When registering an account in the Online Shop, the User independently sets a strong individual password to access their account. The User can change the password at a later time, as described in article 6.
5. In the case of placing an order in the Online Shop, the User provides the following data:
- a) An email address;
- b) First name and surname;
- c) Address data for correspondence/shipment of goods: postal code and city, street with house/flat number;
- d) Phone number for order processing and shipment of goods.
6. In the case of placing an order in connection with a business activity, the above scope of data is additionally supplemented with:
- a) The business owner’s company;
- b) NIP number;
- c) Business address.
7. In the case of using the Newsletter service, the User provides an email address and/or a phone number. The User can also enter important dates from their life, such as birthdays, anniversaries. The User may unsubscribe from the Newsletter at any time by unchecking the box on their Account page or by clicking on the relevant link in each Newsletter or via Customer Service.
8. In the case of using the option of being informed about the availability of a given product or size, the User provides an email address.
9. When using the option of online payment and deciding by the User to save the payment card data, Amocarat Sp. z o.o. may have access to the User's data such as name, email address, payment card number along with its expiration date. However, Amocarat Sp. z o.o. will never have the CCV code information.
10. When using the Shop’s Website, additional information may be downloaded, in particular: the IP address assigned to the User’s computer or the external IP address of the Internet provider, domain name, browser type, access time, type of operating system, sex of the User making purchases, information contained in cookies or other similar technologies, session data, browser data, device data, data on activity on the Site, including on individual pages. This information does not contain data concerning the identity of Users, but in combination with other information may constitute personal data and therefore the Administrator covers it with the full protection granted under the GDPR.
11. In order to establish, investigate and enforce claims or defend against claims, some personal data provided by the User may be processed as part of using the functionality in the Online Shop such as: first name, surname, data on the use of services, if the claims result from the manner in which the User uses the services, other data necessary to prove the existence of the claim, including the extent of the damage suffered or to pursue the claim.
12. Provision of personal data to Amocarat Sp. z o. o. is voluntary, in connection with the concluded sales contracts or the provision of services via the Shop’s Website, under the condition that failure to provide the data specified in the forms in the Account registration process prevents registration and creation of an Account, as well as the consequence of not providing data may be the inability to establish a business relationship or conclude a contract or order the newsletter service.
Article 3. Rights of data subjects
1. Each User whose personal data is processed by the Administrator has the right to access their data and the right to rectify, delete, limit processing, the right to transfer data, the right to object for reasons related to its particular situation to data processing based on the Administrator’s legitimate interest, the right to object to processing for direct marketing purposes and the right to withdraw consent if the processing is based on consent.
2. The use of the rights referred to in the above paragraph may take place in any form, including by sending an appropriate request to the Administrator’s email address, providing the User’s first name and surname and email address (email).
3. The right to withdraw consent - legal basis: art. 7 sec. 3 GDPR.
- a) The User has the right to withdraw any consent granted to Amocarat Sp. z o.o.
- b) Withdrawal of consent is effective from the moment of withdrawal of consent;
- c) Withdrawal of consent does not affect the processing carried out by Amocarat Sp. z o.o. in accordance with the law before its withdrawal.
- d) Withdrawal of consent does not entail any negative consequences for the User, but it may prevent further use of services or functionalities that Amocarat Sp. z o.o., in accordance with the law, can only provide with consent.
4. Right to object against data processing - legal basis: art. 21 GDPR.
- a) The User has the right to object to the processing of their personal data at any time, if Amocarat Sp. z o.o. processes their data based on a legitimate interest, e.g. marketing of Amocarat Sp. z o.o., keeping statistics on the use of individual functionalities of the Online Shop and facilitating the use of the Online Shop, as well as satisfaction surveys;
- b) Resignation in the form of an email from receiving marketing messages regarding products or services will mean the User’s objection to the processing of their personal data, including profiling for these purposes;
- c) If the User’s objection turns out to be justified, Amocarat Sp. z o.o. will have no other legal basis to process personal data, the User’s personal data will be deleted, the processing of which has been objected by the User.
5. Right to erasure of data (“right to be forgotten”) - legal basis: art. 17 GDPR.
6. The User has the right to request the deletion of all or some personal data.
- a) The User has the right to request the deletion of personal data if:
- Personal data is no longer necessary for the purposes for which it was collected or processed;
- They withdrew their consent (to the extent that personal data were processed based on their consent);
- They objected to the use of their data for marketing purposes;
- Personal data is processed unlawfully;
- Personal data must be removed in order to comply with the legal obligation provided for in the law of the European Union or the law of the Member State to which Amocarat Sp. z o.o. is subject to.
- b) Despite the request to delete personal data, in connection with the objection or withdrawal of consent, Amocarat Sp. z o.o. may retain certain personal data to the extent that processing is necessary to establish, assert or defend claims, as well as to fulfil a legal obligation that requires processing under EU law or the law of a Member State to which Amocarat Sp. z o.o. is subject to. This applies in particular to personal data including: name, surname, email address, which data is kept for the purpose of handling complaints and claims related to the use of Amocarat Sp. z o.o. or, additionally, the address of residence/correspondence address, order number, tax identification number, business name, which data is retained for the purpose of the consideration of complaints and claims related to sales contracts or contracts for the provision of services.
7. The right to limit data processing - legal basis: art. 18 GDPR.
- a) The User has the right to demand that the processing of their personal data be restricted. Submitting a request, pending its consideration, prevents the use of certain functionalities or services, the use of which will involve the processing of data covered by the request. Amocarat Sp. z o.o. will not send any messages, including marketing ones.
- b) The User has the right to request the restriction of the use of personal data in the following cases:
- When they question the correctness of their personal data – then Amocarat Sp. z o.o. limits its use for the time needed to verify the correctness of the data, but not longer than 30 days;
- When the processing of data is unlawful, and instead of deleting the data, the User requests the restriction of its use;
- When personal data is no longer necessary for the purposes for which it was collected or used, but it is needed by the User to establish, assert or defend claims;
- When they objected to the use of their data – then the restriction takes place for the time needed to consider whether – due to the special situation – the protection of the interests, rights and freedoms of the User outweighs the interests that the Administrator performs when processing the User’s personal data.
8. The right to access data - legal basis: art. 15 GDPR.
9. The User has the right to obtain confirmation from the Administrator whether their personal data is processed by the Administrator, and if so, the User has the right to:
- Get access to their personal data;
- Obtain information about the purposes of processing, categories of personal data processed, recipients or categories of recipients of this data, the planned period of storage of the User’s data or the criteria for determining this period (when it is not possible to determine the planned period of data processing), about the rights of the User under the GDPR and about the right to lodge a complaint with the supervisory authority, about the source of this data, about automated decision-making, including profiling, and about the security measures applied in connection with the transfer of this data outside the European Union;
- Obtain a copy of their personal data.
10. The right to rectify data - legal basis: art. 16 GDPR.
The User has the right to request the Administrator to immediately rectify their personal data that is incorrect. Taking into account the purposes of processing, the data subject has the right to request supplementing incomplete personal data.
11. The right to data portability - legal basis: art. 20 GDPR.
The User has the right to receive their personal data, which they provided to the Administrator, and then send it to another personal data administrator of their choice. The User also has the right to request that the personal data be sent by the Administrator directly to such an administrator, if technically possible.
12. In the event a User wants to exercise the above rights, Amocarat Sp. z o.o. fulfils the request or refuses to comply with it immediately, but not later than within one month after receiving it. However, if – due to the complexity of the request or the number of requests – Amocarat Sp. z o. o. is not able to meet the request within a month, it will meet it within the next two months, informing the User in advance within one month of receiving the request – about the intended extension of the deadline and its reasons.
13. The User may submit complaints, inquiries and requests to the Administrator regarding the processing of their personal data and the exercise of their rights.
14. The User has the right to lodge a complaint with the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw, in terms of violation of their rights to the protection of personal data or other rights granted under the GDPR.
Article 4. Recipients of personal data
1. Users’ data may be transferred to entities authorized to receive them under applicable law, including competent state authorities, in particular judicial authorities.
2. Personal data may also be transferred to trusted recipients, i.e.: payment operators, postal operators, couriers, an entity servicing accounting, partners providing technical and IT services (developing and maintaining IT systems and websites), marketing agencies, including newsletter operators, debt collection companies, law firms.
3. Personal data will not be transferred to a third country/international organization, if it does not conflict the provisions of applicable law. Personal data may be transferred to recipients in a given area in third countries, if the European Commission determines an adequate level of protection met in this area; or on the basis of binding corporate rules; or in connection with the performance of an order under which the delivery of goods is to be made in the territory of a third country; or on the basis of the explicit consent of the data subject.
- Service providers to whom personal data is transferred, depending on contractual arrangements and circumstances, or are subject to the instructions of Amocarat Sp. z o.o. as to the purposes and methods of processing this data (processors) or independently define the purposes and methods of their processing (separate administrators).
- a) Processors. Amocarat Sp. z o.o. uses suppliers who process personal data only at the request of Amocarat Sp. z o.o. They include providers of hosting services, providers of IT systems and support services, including email archiving, providers of telecommunications services, backup and failure recovery services, and cybersecurity services, providers of accounting services, marketing systems, supplying systems to support newsletters, systems for analysing traffic in the Online Shop, systems for analysing the effectiveness of marketing campaigns;
- b) Administrators. Amocarat Sp. z o.o. uses suppliers who do not act solely on instructions and set the goals and methods of using Users’ personal data themselves. They provide electronic payment and banking services.
5. Location. Service providers are based in Poland and other countries of the European Economic Area (EEA).
6. In the event of a purchase in the Online Shop, personal data may be transferred, depending on the User’s choice, to the following entities in order to deliver the ordered goods:
- a) a courier company;
- b) the InPost Paczkomaty Sp. z o.o. company with its headquarters in Kraków, providing delivery and service of the post office box system (Parcel Lockers);
- c) Poczta Polska SA with its headquarters in Warsaw.
7. The navigation data may be used to provide Users with better service, analyse statistical data and adapt the Online Shop to Users’ preferences, as well as to administer the Online Shop.
8. In the event of a request, Amocarat Sp. z o.o. provides personal data to authorized state authorities, in particular to organizational units of the prosecutor’s office, the Police, the President of the Office for Personal Data Protection, the President of the Office of Competition and Consumer Protection or the President of the Office of Electronic Communications.
Article 5. Data retention periods and other information regarding data processing
1. Personal data will be kept only for the period necessary to achieve the specific purpose for which it was collected, and after its expiry for the period necessary to secure or pursue possible claims or fulfil the Administrator’s legal obligation (resulting from tax or accounting regulations).
2. Personal data processed for the purposes of marketing own products or services on the basis of a legitimate legal interest, will be stored until the data subject submits an objection.
3. Personal data processed for the purpose of marketing the Administrator's own products or services on the basis of the newsletter service ordered by the User will be processed for the duration of the contract, as well as for the period of the statute of limitations for claims, data relating to the dispatch of commercial and marketing content will be stored until the User withdraws his/her consent to their sending. The Administrator does not process personal data in a way that would involve making only automated decisions about the User.
4. The Administrator uses IP addresses collected during internet connections only for technical purposes related to server administration. In addition, IP addresses are used to collect general, statistical demographic information (e.g. about the region from which the connection is made).
Article 6. Security management – password
1. Amocarat Sp. z o.o. provides Users with a secure and encrypted connection when sending personal data and when logging in to the User Account on the Website. Amocarat Sp. z o.o. uses an SSL certificate issued by one of the world’s leading companies in the field of security and encryption of data sent over the Internet.
2. In the event that the User who has an account in the Online Shop has lost the access password in any way, the Online Shop enables generating a new password. The password is stored in an encrypted form in a way that prevents its reading. In order to generate a new password, please provide your email address in the form available under the link “Forgot your password”, provided next to the account login form in the Online Shop. The User will receive an email to the email address provided during registration or saved in the last change of the account profile, containing a redirection to a dedicated form available on the Shop’s Website, where the User will be able to set a new password.
3. Amocarat Sp. z o.o. never sends any correspondence, including electronic correspondence with a request for login details, and in particular the access password to the User’s account.
Section 7. Cookies
1. The Administrator uses cookies and similar technologies to collect and save information (hereinafter collectively referred to as “cookies”), which should be understood as IT data, in particular text files, stored in Users’ end devices intended for the use of the Online Shop pages.
2. The Administrator uses cookies only after the Store User has given prior consent in this regard. Consent to the use of all cookies by the Online Shop is given by clicking on the button: "I confirm all" when the message about the use of cookies by the Online Shop is displayed. The User can also adjust his/her preferences regarding cookies by clicking on the button "I confirm selected".
3. The User of the Online Shop may not agree to the Online Shop's use of cookies other than necessary, for this purpose he/she may click the button "Confirm required".
4. The information collected using cookies allows to:
- a) Ensure the functioning, security and reliability of the Online Shop’s pages;
- b) Adjust the content of the Online Shop’s pages to the User’s preferences and optimize the use of the pages, improve the website (properly display the website, tailored to the individual needs of the User);
- c) Analyse and create statistics that help to understand how the Users of the Online Shop use websites, which allows improving their structure and content. They also enable the development of general statistics of visits to the presented products in the Online Shop.
5. Personal data collected using cookies is collected only to perform specific functions for Users and is encrypted in a way that prevents access by unauthorized persons.
6. Types of cookies:
- a) Necessary cookies: These cookies are necessary for the website to function and cannot be switched off in our systems. Necessary cookies are usually used in response to actions taken by the User, such as: setting privacy options, logging in or filling in forms. You can change your browser settings to block them, but the website will not function properly then.
- b) Analytical cookies: This type of cookie allows us to measure the number of visits and collect information about traffic sources, thanks to which we can improve the operation of our website. They also help us find out which pages are the most popular or how visitors are moving around our site. If you block this type of cookie, we will not be able to collect information about the use of the website and we will not be able to monitor its performance.
- c) Functional cookies: This type of cookies help us improve the effectiveness of our marketing activities and to adapt them to your needs and preferences, e.g. by remembering all choices made on the pages.
- d) Advertising cookies: In order to promote certain services, articles or events, we may use advertisements displayed on other websites. This type of cookie is used to make advertising messages more relevant and tailored to your preferences. The cookies also prevent the same advertisements from appearing again. These ads are only used to inform about the activities carried out.
- e) Session cookies: This is temporary information stored in the browser’s memory until the end of the browser session, i.e. until it is closed. These cookies are mandatory for certain applications or functionalities to function properly. The mechanism of session cookies does not allow the collection of any personal data or any confidential information from Users’ computers;
- f) Permanent cookies: Thanks to them, the use of frequently visited websites is easier (e.g. they provide optimal navigation, remember the selected resolution, content layout, etc.). This information remains in the browser’s memory for a longer period. This time depends on the choice that can be made in the browser settings. This type of cookie allows information to be transferred to the server each time a given page is visited. The mechanism of permanent cookies does not allow the collection of any personal data or any confidential information from Users’ computers;
- g) Own cookies (first party cookies): Cookies placed on websites directly by Amocarat sp. z o.o.;
- h) Third-party cookies: Cookies “placed on websites by entities other than Amocarat sp. z o.o.”;
Note: “cookies” may be caused by Amocarat sp. z o.o. using scripts, components that are located on the servers of an Amocarat sp. z o.o. partner located in a different location – a different country, including a completely different legal system. In the event that Amocarat sp. z o.o. calls up website components from outside the Amocarat sp. z o.o. system, standard rules of the “cookie” policy may apply other than the privacy policy / “cookies” of Amocarat sp. z o.o.
7. Amocarat Sp. z o.o. uses its own cookies for the purpose of:
- a) Authentication of the User in the Online Shop and ensuring the User’s session in the Online Shop (after logging in), thanks to which the User does not have to re-enter the login and password on each subpage of the Online Shop;
- b) Analysis and research as well as audience audit, in particular to create anonymous statistics that help to understand how customers use the Shop’s Website, which allows improving its structure and content.
8. Amocarat Sp. z o.o. uses external cookies for the purpose of:
- a) Popularizing the Online Shop using the facebook.com social network service (external cookie administrator: Facebook Inc. based in the USA or Facebook Ireland based in Ireland);
- b) Presenting on the information pages of the Shop a map showing the location of Amocarat Sp. z o.o., using the maps.google.com website (external cookie administrator: Google Inc. based in the USA);
- c) Collecting general and anonymous static data via Google Analytics analytical tools (external cookie administrator: Google Inc., based in the USA);
9. “Cookies” are generally not personal data. However, certain information stored in cookie files (e.g. regarding preferences), especially when combined with other information about the website user, may be considered personal data. Personal data collected using “cookies” may be processed only to perform specific functions for the User, described above. Such data is encrypted in a way that prevents access by unauthorized persons.
10. The cookie mechanism is safe for the computers of the Online Shop Users. In particular, it is not possible for viruses or other unwanted software or malware to enter Users’ computers in this way.
11. However, in their browsers, Users have the option to limit or disable the access of cookies to their computers. If you use this option, the use of the Online Shop will be possible, except for functions that, by their nature, require cookies.
12. The User can change the cookie settings from the level of consent displayed when entering the website.
13. In addition, below we present how you can change the settings of popular web browsers in terms of using cookies:
- Cookie settings in Internet Explorer
- Cookie settings in the EDGE browser;
- Cookie settings in Firefox
- Cookie settings in Chrome
- Cookie settings in Safari and iOS.
14. Amocarat Sp. z o.o. may collect the Users’ IP addresses. An IP address is a number assigned to the computer of a visitor to the Online Shop by an internet service provider. The IP number allows access to the Internet. In most cases, it is assigned dynamically to the computer, i.e. it changes every time you connect to the Internet, and for this reason it is commonly treated as non-personal identifying information. The IP address is used by Amocarat Sp. z o.o. when diagnosing technical problems with the server, creating statistical analyses (e.g. determining from which regions we record the most visits), as information useful in administering and improving the Online Shop, as well as for security purposes and possible identification of burdening the server, unwanted automatic programs for browsing the Online Shop.
15. The web browsing software (web browser) usually allows the storage of cookies on the User's terminal device by default. Users can change their settings in this respect. The web browser makes it possible to delete cookies. It is also possible to automatically block cookies.
16. Restrictions on the use of cookies may affect some of the functionality available on the websites of the Online Shop.
17. Cookies placed on the User's terminal device and used may also be used by advertisers cooperating with the Online Shop and partners of the Online Shop.
18. Cookies may be used by the Google network to display advertisements tailored to the User's use of the Online Shop. For this purpose, they may retain information about the User's navigation path or the time spent on a particular page: https://policies.google.com/technologies/partner-sites.
19. We recommend that the User reads the privacy policies of these companies to understand the use of cookies used in statistics: Google Analytics Privacy Policy.
20. With regard to the information on the User's preferences collected by the Google advertising network, the User can view and edit the information resulting from cookies using the following tool: https://www.google.com/ads/preferences/.
21. The Online Shop website includes plug-ins that may transmit Customer/User data to Administrators such as: Google Maps, Google reCAPTCHA, IdoAccounts, IdoSell, IAI S.A., Google.
22. Below is a basic list of cookies that are collected by the Administrator:
Host (cookie category) | Name (cookie ID) | Purpose of the cookie | Duration of storage |
---|---|---|---|
Google.com | _Ga | This cookie is linked to Google Analytics – which is a significant update to Google's most widely used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It's included in every page request on your site and is used to calculate user, session, and campaign metrics in your site analytics reports. The stored user data is anonymized. | 2 years (since last update) |
Google.com | _Gid | This cookie is from Google Universal Analytics – which is a significant update to Google's most widely used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. It's included in every page request on your site and is used to calculate data about users, sessions, visits in your sites' analytics reports. | 1 day |
Google.com | _gcl_au | This cookie is from Google Analytics – which is a significant update to Google's most widely used analytics service. This cookie is used to distinguish unique users by assigning a randomly generated number as a client identifier. The Google Tag Manager cookie is used to load measurement and marketing pixels. | always |
Google.com | __utma | This cookie is usually stored in your browser the first time you visit. If a cookie has been deleted by your browser operator and your operator subsequently visits pwc.com, a new cookie is __utma stored with a different unique identifier. In most cases, this cookie is used to identify unique visitors to the pwc.com website and is updated each time the page is viewed. In addition, this cookie comes with a unique identifier used by Google Analytics to ensure both the validity and availability of the cookie as an additional security measure. | 2 years from setup/upgrade |
Google.com | __utmc | Historically, this cookie has worked in conjunction with the __utmb cookie to determine whether or not a user is about to establish a new session. For backward compatibility purposes with websites still using the urchin.js tracking code, this cookie will continue to be stored and will expire when the user closes their browser. However, if you debug website tracking and use the tracking code ga.js, you should not interpret the existence of this cookie in relation to a new or expired session. | Not applicable |
Google.com | __utmz | This cookie stores the type of referral that a user uses to access pwc.com, whether through a direct method, a referral link, a website search, or a campaign such as an advertisement or email link. It is used to calculate search engine traffic, ad campaigns, and page navigation. The cookie is updated each time the page is viewed. | 6 months from set/upgrade |
Google.com | _gaexp | This is a cookie related to Google Optimize. Used to determine whether a user is included in an A/B experiment and whether experiments in which the user is included expire. | Depends on how long the experiment lasts, usually around 90 days |
Facebook Advertising | _fbp | This cookie is set by Facebook in order to display ads on Facebook or the Facebook Display Network to users who have previously visited our website. | 3 months |
Amocarat, Analytical HTTP Cookie | __hssrc | It collects statistical data related to the user's visits to the website, such as the number of visits, the average time spent on the website, and what pages were loaded. The goal is to segment website visitors by factors such as demographics and geographic location to allow media and marketing agencies to structure and understand target audiences to enable the creation of individualized online advertising. | session |
Amocarat, Analytical HTTP Cookie | ___hstc | It collects statistical data related to the user's visits to the website, such as the number of visits, the average time spent on the website, and what pages were loaded. The goal is to segment website visitors by factors such as demographics and geographic location to allow media and marketing agencies to structure and understand target audiences to enable the creation of individualized online advertising. | 6 months |
Hubspot http Cookie | hubspotutk | It stores information about the identity of the website visitor. This cookie is passed to HubSpot's marketing platform when you submit a form and is used to remove duplicate contacts. | 180 days |
Pintrest | _pin_unauth | Used by Pinterest to track the use of services. | 365 days |
adult_confirm | |||
HotJar Analytical | _hjid | Used by HotJar's session logging software to evaluate the performance of our website. | 365 days |
HotJar Analytical | _hjSessionUser_1242070 | Used by HotJar software to record sessions to evaluate the performance of our website. | Session |
HotJar Analytical | _hjSessionUser_2868906 | Used by HotJar software to record sessions to evaluate the performance of our website. | session |
Visme HTTP cookie | PHPSESSID | Preserves the user's session state during page requests. | session |
Third-party cookies Browsing/Session Cookies | cachat | It allows us to store information about you, your preferences for future visits, site traffic, and site interactions in order to offer you better experiences and tools in the future. | 365 days |
Amocarat Functional | am_promo_notification | Displays promotions | 1 week |
Amocarat, Functional/Statistical | ajs_anonymous_id | These cookies are typically used for analytical purposes and help determine the number of visitors to a particular website by tracking whether a user has visited the website before. | 1 year |
Advertising .clickonometrics.pl | __goadservices | Allows you to personalize the ads we show you | 2 years |
en.obsessive.com essential | monit_token | Identifies the store's customer. | 365 days |
en.obsessive.com essential | shop_monit_token | Identifies the store's customer. | 30 min |
en.obsessive.com essential | client | Identifies the logged-in customer/non-logged-in customer's cart. | 14 day |
en.obsessive.com essential | affiliate | It stores information about the ID of the partner from whom the store was entered. | 90 days |
en.obsessive.com essential | ordersDocuments | Stores information about the print status of a document. | Session (until you log out) |
en.obsessive.com essential | _idsui | This file is necessary for the so-called light login on the website. | 1095 days |
en.obsessive.com essential | _idsual | This file is necessary for the so-called light login on the website. | 1095 days |
en.obsessive.com essential | _IAI_SRC | It only stores the source from which the page was accessed. | 90 days |
en.obsessive.com essential | login | It stores information about whether the user has logged in to the website. | Session (until you log out) |
en.obsessive.com essential | CPA | It provides information on the variables for CPA/CPS programs in which the party participates. | 28 days |
en.obsessive.com essential | _IAIRSABTVARIANT | Variant ID for the A/B test and IdoSell RS engine configuration. | 30 days |
en.obsessive.com essential | basket_id | The identifier of the website user's shopping cart, assigned for the duration of the session. | 365 days |
en.obsessive.com essential | page_counter | Counter of visited pages. | 1 day |
en.obsessive.com essential | LANGID | It stores information about the language selected by the user of the website. | 180 days |
en.obsessive.com essential | REGID | Stores information about the user's region of the page. | 180 days |
en.obsessive.com essential | CURRID | It stores information about the currency selected by the website user. | 180 days |
en.obsessive.com essential | IAIABT | Stores the A/B testing ID for testing and improving the functionality of the store. | 30 days |
en.obsessive.com essential | IAIABTSHOP | Stores the ID of the store participating in the A/B test. | 30 days |
en.obsessive.com essential | IAIABTVARIANT | Stores the ID of the variant drawn as part of an ongoing A/B test. | 30 days |
en.obsessive.com essential | toplayerwidgetcounter | Stores the number of times a pop-up message is displayed. | Session (until you log out) |
en.obsessive.com essential | samedayZipcode | It stores information about the postal code of the website user, which is necessary to offer courier delivery in the SameDay service. | 90 days |
en.obsessive.com essential | applePayAvailability | Stores whether an ApplePay payment method is available to you. | 30 days |
en.obsessive.com essential | paypalMerchant | PayPal account ID. | 1 day |
en.obsessive.com essential | toplayerNextShowTime | It stores information about the time when the next pop-up message is to be displayed. | Session (until you log out) |
en.obsessive.com essential | rabateCode_clicked | It stores information about the closure of the bar informing about the active discount. | 1 day |
en.obsessive.com essential | freeeshipping_clicked | It stores information about the closure of the bar informing about free delivery. | 1 day |
en.obsessive.com essential | redirection | It stores information about the closure of a pop-up message informing about the suggested language for the store. | Session (until you log out) |
en.obsessive.com essential | filterHidden | When you click the option to collapse the filter for items, it saves information about which filter is to be collapsed when the list of items is refreshed. | 365 days |
en.obsessive.com essential | toplayerwidgetcounterclosedX | Stores information about the closure of a pop-up message. | Session (until you log out) |
en.obsessive.com essential | cpa_currency | It provides currency information for CPA/CPS programs in which the site participates. | 60 minutes |
en.obsessive.com essential | basket_products_count | It stores information about the number of items in the shopping cart. | Session (until you log out) |
en.obsessive.com essential | wishes_products_count | It stores information about the number of items in the favorites list. | Session (until you log out) |
en.obsessive.com essential | Remembedered_mfa | hereEnterKeyLiteral | 365 days |
IAI S.A. necessary | iai_accounts_toplayer | Ensures correct display of the pop-up message informing about the IdoAccounts (https://www.idosell.com/pl/tysiace-gotowych-do-uzycia-funkcji/logowanie-do-sklepu-z-konta-w-innym-serwisie/) login service. | 30 days |
IdoSell necessary | platform_id | It stores information about whether the page is displayed in the mobile application. | Session (until you log out) |
IdoSell necessary | paypalAvailability | Stores whether a PayPal payment method is available to you. | 1 day |
IdoSell necessary | ck_cook | It stores information about whether the website user has consented to cookies. | 3 days |
IdoAccounts necessary | accounts_terms | It stores information about whether the user has accepted consent to use the IdoAccounts service. | 365 days |
IdoAccounts necessary | express_checkout_login | They are used to remember your preferences and other information, such as your preferred language, the number of results you see on a search results page (e.g. 10 or 20), and whether you want to have Google SafeSearch turned on | 365 days |
Google Essential | NID | These cookies (NID, ENID) are used to remember your preferences and other information, such as your preferred language, the number of results displayed on a search results page (for example, 10 or 20), and whether you want Google SafeSearch enabled. This cookie is also necessary to provide the Google Pay payment service. | 180 days |
Google reCAPTCHA necessary | GRECAPTCHA | This cookie is set by Google reCAPTCHA, which protects our website from spam inquiries in contact forms. | 1095 days |
IAI S.A. Analytical | SID | They contain digitally signed and encrypted records of the user's Google Account ID and last sign-in time. The combination of these cookies (SID, HSID) allows Google to block many types of attacks, such as attempts to steal the content of forms submitted in Google services. | 3650 days |
IAI S.A. Analytical | _IAI_AC2 | An Activity Tracking ID for collecting the history of pre-order sources, as well as the source that led to the order using the last click attribution model. | 45 days |
en.obsessive.com Advertising | RSSID | IdoSell RS user ID, used for the purpose of displaying tailored product recommendations on the website. | 180 days |
Advertising en.obsessive.com | IAIRSUSER | IdoSell RS user ID, used for the purpose of displaying tailored product recommendations on the website. | 60 minutes |
Publicity Photoslurp | ps_analytics | It keeps track of what photos or galleries a particular user has viewed. This information is used for marketing purposes. | 29 days |
enforce_policy Necessary | PayPal | This cookie is usually provided by PayPal and serves the payment services of the website. | 365 days |
L7_az Necessary | PayPal | This cookie is essential for the PayPal login function on the website. | 60 minutes |
LANG Necessary | PayPal | This cookie is usually provided by PayPal and serves the payment services of the website. | 1 day |
NSID Necessary | PayPal | Used in the context of transactions on the Website. A cookie is required for a secure transaction. | Session (until you log out) |
Ts Necessary | PayPal | This cookie is usually provided by PayPal and serves the payment services of the website. | Session (until you log out) |
ts_c Necessary | PayPal | This cookie is usually provided by PayPal and is used to prevent fraud | 1095 days |
tsrce Necessary | PayPal | This cookie is usually provided by PayPal and serves the payment services of the website. | 3 days |
x-pp-s Necessary | PayPal | This cookie is usually provided by PayPal and serves the payment services of the website. | Session (until you log out) |