en
Language and currency:
en |
Country of collecting the order:
Akrotiri
Save to shopping list
Create a new shopping list
Safe shopping
Idosell security badge

Privacy Policy

Privacy and Cookie Policy

Article 1. General provisions

  1. This Privacy and Cookie Policy contains information on processing by the Administrator of personal data of persons (hereinafter referred to as “Users”) using the AMOCARAT Group online shops available under the domain https://en.obsessive.com or https://en.exquisite.ossv.eu or https://en.freedom.ossv.eu hereinafter referred to as the “Online Shop”.
  2. The owner of the Online Shop and the administrator of personal data is AMOCARAT Sp. z o.o. with its headquarters in Czaniec (43-354), ul. Królewska 1, entered into the Register of Entrepreneurs of the National Court Register kept by the District Court in Bielsko-Biała, 8th Commercial Division of the National Court Register under the number KRS 0000754374, with a share capital of PLN 505,000.00, paid in full, NIP: 9372717816, REGON: 381622700, hereinafter referred to as “Amocarat Sp. z o.o.” or “Administrator”.
  3. The Administrator attaches great importance to the protection of privacy and confidentiality of personal data entered or provided by Users, and with due diligence selects and applies appropriate technical and organizational measures to protect the personal data being processed.
  4. The Administrator can be contacted in writing to the address indicated in section 2 above or via email to the following address: info@obsessive.com.
  5. The Privacy and Cookie Policy is general and presents the most important issues related to the processing of personal data. Details may be specific regulations or information clauses that the User will receive when collecting personal data from them when providing additional services or collecting data beyond the scope of this Policy, for example in connection with participation in a contest, promotional campaign.
  6. The Administrator processes personal data only to a minimum and adequate extent necessary to achieve the purposes for which it is collected. The purposes of collecting Users’ personal data are clearly defined and based on the law. The Administrator does not process personal data in a manner inconsistent with these purposes.
  7. The Administrator implements the Users’ rights regarding their personal data in accordance with the law, including the correctness of Users’ personal data and immediately responds to any requests for rectification or updating of data.
  8. The Administrator limits the storage of personal data in accordance with the law, only to the period necessary to achieve the purposes for which it is collected, unless there are reasons that allow for the extension of the period of data storage.
  9. If personal data is shared with other entities, it is done in a safe manner that is contractually secured or otherwise compliant with applicable law.
  10. Only persons duly authorized by the Administrator have full access to the databases. The Administrator protects personal data against disclosure to unauthorized persons, as well as against its processing in violation of applicable law.
  11. The Privacy and Cookie Policy may be updated or expanded according to the current needs of the Administrator in order to provide up-to-date and reliable information to Users.

Article 2. Grounds for the processing of personal data and the scope of data processed

1. Personal data is processed by the Administrator in accordance with the law, including in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repeal of Directive 95/46 / EC (hereinafter referred to as “GDPR”).

2. The Administrator may process personal data for the following purposes:

  • a) Establishing business relations, including answering questions asked by Users via e-mail or the contact form (on the basis of Article 6(1)(f) GDPR i.e. the Administrator's legitimate interest expressed in the wish to ensure an appropriate level of service provision);
  • b) Handling Users' requests directed via the hotline or contact number (on the basis of art. 6 section 1 letter f GDPR i.e. the Administrator's legitimate interest expressed in the wish to ensure an appropriate level of service provision);
  • c) Registering an account in the Online Shop, in order to create an individual account and manage this account, which is necessary for the execution of the contract for the provision of the Account service (pursuant to Article 6 (1) (b) of the GDPR);
  • d) Placing an order in the Online Shop, in order to conclude, perform and service a sales contract on the terms set out in the Online Shop Regulations (pursuant to Article 6 (1) (b) of the GDPR);
  • e) To enable online payments, including payment cards which is necessary for the handling of the sales contract (based on Article 6(1)(b) of the GDPR);
  • f) Fulfillment of the legal obligation incumbent on the Administrator with regard to tax and accounting obligations (pursuant to Article 6 (1) (c) of the GDPR in connection with tax and accounting regulations);
  • g) Marketing of own goods or services to the Administrator's customers as the Administrator’s legitimate interest (pursuant to Article 6 (1) (f) of the GDPR);
  • h) Marketing of the company's own goods or services in connection with the conclusion of a newsletter contract, i.e. an agreement for a service provided through electronic channels, and the sending of marketing content (based on Article 6(1)(b) of the GDPR);
  • i) Sending commercial and marketing information, including information on abandoned shopping carts, availability of goods, promotional offers, SMS messages based on the User's consent (based on Article 6(1)(a) of the GDPR);
  • j) Using the “post an opinion” service in order to perform the contract, the subject of which is a service provided electronically (pursuant to Article 6 (1) (b) of the GDPR);
  • k) Analytics may collect information about the links and references Users choose to click on or other actions they take in the Online Shop, as well as the IP address assigned to the User's computer or the Internet provider's external IP address, domain name, browser type, access time, operating system type, gender of the purchasing User, information contained in cookies or other similar technologies, session data, device data on the basis of the Administrator's legitimate interest in facilitating the use of services provided electronically and improving the functionality of these services (art. 6(1)(f) GDPR. Cookie data is processed in accordance with Article 6(1)(a) of the GDPR, in relation to consenting to the use of certain cookies or other similar technologies, geolocation, if the User has consented to access geolocation (based on Article 6(1)(a) of the GPDR). Geolocation information is used in order to provide more tailored offers of products and services;
  • l) To handle complaints from Users, in connection with a sales or service contract concluded (on the basis of Article 6(1)(b) of the GPDR) and to fulfil legal obligations due to non-conformity of goods/services with the contract or warranty (on the basis of Article 6(1)(c) of the GPDR);
  • m) Establishing, investigating and enforcing claims or defending against claims, as a legitimate interest of the Administrator (on the basis of Article 6(1)(f) GDPR).

3. In case of registering an account in the Online Shop, the User provides/sends:

  • a) An email address;
  • b) First name and surname;
  • c) Sex;
  • d) At a later date, the User may also supplement their address data for correspondence/shipment of goods: postal code and city, street with house/flat number, phone number;
  • e) At a later date, the User may also provide their phone number in order to receive marketing services (optionally and voluntarily);
  • f) At a later date, the User may also provide important dates from their life, e.g. date of birth, anniversary date, in order to receive discounts and participate in promotional campaigns directly related to these dates (e.g. a birthday discount code).

4. When registering an account in the Online Shop, the User independently sets a strong individual password to access their account. The User can change the password at a later time, as described in article 6.

5. In the case of placing an order in the Online Shop, the User provides the following data:

  • a) An email address;
  • b) First name and surname;
  • c) Address data for correspondence/shipment of goods: postal code and city, street with house/flat number;
  • d) Phone number for order processing and shipment of goods.

6. In the case of placing an order in connection with a business activity, the above scope of data is additionally supplemented with:

  • a) The business owner’s company;
  • b) NIP number;
  • c) Business address.

7. In the case of using the Newsletter service, the User provides an email address and/or a phone number. The User can also enter important dates from their life, such as birthdays, anniversaries. The User may unsubscribe from the Newsletter at any time by unchecking the box on their Account page or by clicking on the relevant link in each Newsletter or via Customer Service.

8. In the case of using the option of being informed about the availability of a given product or size, the User provides an email address.

9. When using the option of online payment and deciding by the User to save the payment card data, Amocarat Sp. z o.o. may have access to the User's data such as name, email address, payment card number along with its expiration date. However, Amocarat Sp. z o.o. will never have the CCV code information.

10. When using the Shop’s Website, additional information may be downloaded, in particular: the IP address assigned to the User’s computer or the external IP address of the Internet provider, domain name, browser type, access time, type of operating system, sex of the User making purchases, information contained in cookies or other similar technologies, session data, browser data, device data, data on activity on the Site, including on individual pages. This information does not contain data concerning the identity of Users, but in combination with other information may constitute personal data and therefore the Administrator covers it with the full protection granted under the GDPR.

11. In order to establish, investigate and enforce claims or defend against claims, some personal data provided by the User may be processed as part of using the functionality in the Online Shop such as: first name, surname, data on the use of services, if the claims result from the manner in which the User uses the services, other data necessary to prove the existence of the claim, including the extent of the damage suffered or to pursue the claim.

12. Provision of personal data to Amocarat Sp. z o. o. is voluntary, in connection with the concluded sales contracts or the provision of services via the Shop’s Website, under the condition that failure to provide the data specified in the forms in the Account registration process prevents registration and creation of an Account, as well as the consequence of not providing data may be the inability to establish a business relationship or conclude a contract or order the newsletter service.

Article 3. Rights of data subjects

1. Each User whose personal data is processed by the Administrator has the right to access their data and the right to rectify, delete, limit processing, the right to transfer data, the right to object for reasons related to its particular situation to data processing based on the Administrator’s legitimate interest, the right to object to processing for direct marketing purposes and the right to withdraw consent if the processing is based on consent.

2. The use of the rights referred to in the above paragraph may take place in any form, including by sending an appropriate request to the Administrator’s email address, providing the User’s first name and surname and email address (email).

3. The right to withdraw consent - legal basis: art. 7 sec. 3 GDPR.

  • a) The User has the right to withdraw any consent granted to Amocarat Sp. z o.o.
  • b) Withdrawal of consent is effective from the moment of withdrawal of consent;
  • c) Withdrawal of consent does not affect the processing carried out by Amocarat Sp. z o.o. in accordance with the law before its withdrawal.
  • d) Withdrawal of consent does not entail any negative consequences for the User, but it may prevent further use of services or functionalities that Amocarat Sp. z o.o., in accordance with the law, can only provide with consent.

4. Right to object against data processing - legal basis: art. 21 GDPR.

  • a) The User has the right to object to the processing of their personal data at any time, if Amocarat Sp. z o.o. processes their data based on a legitimate interest, e.g. marketing of Amocarat Sp. z o.o., keeping statistics on the use of individual functionalities of the Online Shop and facilitating the use of the Online Shop, as well as satisfaction surveys;
  • b) Resignation in the form of an email from receiving marketing messages regarding products or services will mean the User’s objection to the processing of their personal data, including profiling for these purposes;
  • c) If the User’s objection turns out to be justified, Amocarat Sp. z o.o. will have no other legal basis to process personal data, the User’s personal data will be deleted, the processing of which has been objected by the User.

5. Right to erasure of data (“right to be forgotten”) - legal basis: art. 17 GDPR.

6. The User has the right to request the deletion of all or some personal data.

  • a) The User has the right to request the deletion of personal data if:
    • Personal data is no longer necessary for the purposes for which it was collected or processed;
    • They withdrew their consent (to the extent that personal data were processed based on their consent);
    • They objected to the use of their data for marketing purposes;
    • Personal data is processed unlawfully;
    • Personal data must be removed in order to comply with the legal obligation provided for in the law of the European Union or the law of the Member State to which Amocarat Sp. z o.o. is subject to.
  • b) Despite the request to delete personal data, in connection with the objection or withdrawal of consent, Amocarat Sp. z o.o. may retain certain personal data to the extent that processing is necessary to establish, assert or defend claims, as well as to fulfil a legal obligation that requires processing under EU law or the law of a Member State to which Amocarat Sp. z o.o. is subject to. This applies in particular to personal data including: name, surname, email address, which data is kept for the purpose of handling complaints and claims related to the use of Amocarat Sp. z o.o. or, additionally, the address of residence/correspondence address, order number, tax identification number, business name, which data is retained for the purpose of the consideration of complaints and claims related to sales contracts or contracts for the provision of services.

7. The right to limit data processing - legal basis: art. 18 GDPR.

  • a) The User has the right to demand that the processing of their personal data be restricted. Submitting a request, pending its consideration, prevents the use of certain functionalities or services, the use of which will involve the processing of data covered by the request. Amocarat Sp. z o.o. will not send any messages, including marketing ones.
  • b) The User has the right to request the restriction of the use of personal data in the following cases:
    • When they question the correctness of their personal data – then Amocarat Sp. z o.o. limits its use for the time needed to verify the correctness of the data, but not longer than 30 days;
    • When the processing of data is unlawful, and instead of deleting the data, the User requests the restriction of its use;
    • When personal data is no longer necessary for the purposes for which it was collected or used, but it is needed by the User to establish, assert or defend claims;
    • When they objected to the use of their data – then the restriction takes place for the time needed to consider whether – due to the special situation – the protection of the interests, rights and freedoms of the User outweighs the interests that the Administrator performs when processing the User’s personal data.

8. The right to access data - legal basis: art. 15 GDPR.

9. The User has the right to obtain confirmation from the Administrator whether their personal data is processed by the Administrator, and if so, the User has the right to:

  • Get access to their personal data;
  • Obtain information about the purposes of processing, categories of personal data processed, recipients or categories of recipients of this data, the planned period of storage of the User’s data or the criteria for determining this period (when it is not possible to determine the planned period of data processing), about the rights of the User under the GDPR and about the right to lodge a complaint with the supervisory authority, about the source of this data, about automated decision-making, including profiling, and about the security measures applied in connection with the transfer of this data outside the European Union;
  • Obtain a copy of their personal data.

10. The right to rectify data - legal basis: art. 16 GDPR.

The User has the right to request the Administrator to immediately rectify their personal data that is incorrect. Taking into account the purposes of processing, the data subject has the right to request supplementing incomplete personal data.

11. The right to data portability - legal basis: art. 20 GDPR.

The User has the right to receive their personal data, which they provided to the Administrator, and then send it to another personal data administrator of their choice. The User also has the right to request that the personal data be sent by the Administrator directly to such an administrator, if technically possible.

12. In the event a User wants to exercise the above rights, Amocarat Sp. z o.o. fulfils the request or refuses to comply with it immediately, but not later than within one month after receiving it. However, if – due to the complexity of the request or the number of requests – Amocarat Sp. z o. o. is not able to meet the request within a month, it will meet it within the next two months, informing the User in advance within one month of receiving the request – about the intended extension of the deadline and its reasons.

13. The User may submit complaints, inquiries and requests to the Administrator regarding the processing of their personal data and the exercise of their rights.

14. The User has the right to lodge a complaint with the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw, in terms of violation of their rights to the protection of personal data or other rights granted under the GDPR.

Article 4. Recipients of personal data

1. Users’ data may be transferred to entities authorized to receive them under applicable law, including competent state authorities, in particular judicial authorities.

2. Personal data may also be transferred to trusted recipients, i.e.: payment operators, postal operators, couriers, an entity servicing accounting, partners providing technical and IT services (developing and maintaining IT systems and websites), marketing agencies, including newsletter operators, debt collection companies, law firms.

3. Personal data will not be transferred to a third country/international organization, if it does not conflict the provisions of applicable law. Personal data may be transferred to recipients in a given area in third countries, if the European Commission determines an adequate level of protection met in this area; or on the basis of binding corporate rules; or in connection with the performance of an order under which the delivery of goods is to be made in the territory of a third country; or on the basis of the explicit consent of the data subject.

  1. Service providers to whom personal data is transferred, depending on contractual arrangements and circumstances, or are subject to the instructions of Amocarat Sp. z o.o. as to the purposes and methods of processing this data (processors) or independently define the purposes and methods of their processing (separate administrators).
  • a) Processors. Amocarat Sp. z o.o. uses suppliers who process personal data only at the request of Amocarat Sp. z o.o. They include providers of hosting services, providers of IT systems and support services, including email archiving, providers of telecommunications services, backup and failure recovery services, and cybersecurity services, providers of accounting services, marketing systems, supplying systems to support newsletters, systems for analysing traffic in the Online Shop, systems for analysing the effectiveness of marketing campaigns;
  • b) Administrators. Amocarat Sp. z o.o. uses suppliers who do not act solely on instructions and set the goals and methods of using Users’ personal data themselves. They provide electronic payment and banking services.

5. Location. Service providers are based in Poland and other countries of the European Economic Area (EEA).

6. In the event of a purchase in the Online Shop, personal data may be transferred, depending on the User’s choice, to the following entities in order to deliver the ordered goods:

  • a) a courier company;
  • b) the InPost Paczkomaty Sp. z o.o. company with its headquarters in Kraków, providing delivery and service of the post office box system (Parcel Lockers);
  • c) Poczta Polska SA with its headquarters in Warsaw.

7. The navigation data may be used to provide Users with better service, analyse statistical data and adapt the Online Shop to Users’ preferences, as well as to administer the Online Shop.

8. In the event of a request, Amocarat Sp. z o.o. provides personal data to authorized state authorities, in particular to organizational units of the prosecutor’s office, the Police, the President of the Office for Personal Data Protection, the President of the Office of Competition and Consumer Protection or the President of the Office of Electronic Communications.

Article 5. Data retention periods and other information regarding data processing

1. Personal data will be kept only for the period necessary to achieve the specific purpose for which it was collected, and after its expiry for the period necessary to secure or pursue possible claims or fulfil the Administrator’s legal obligation (resulting from tax or accounting regulations).

2. Personal data processed for the purposes of marketing own products or services on the basis of a legitimate legal interest, will be stored until the data subject submits an objection.

3. Personal data processed for the purpose of marketing the Administrator's own products or services on the basis of the newsletter service ordered by the User will be processed for the duration of the contract, as well as for the period of the statute of limitations for claims, data relating to the dispatch of commercial and marketing content will be stored until the User withdraws his/her consent to their sending. The Administrator does not process personal data in a way that would involve making only automated decisions about the User.

4. The Administrator uses IP addresses collected during internet connections only for technical purposes related to server administration. In addition, IP addresses are used to collect general, statistical demographic information (e.g. about the region from which the connection is made).

Article 6. Security management – password

1. Amocarat Sp. z o.o. provides Users with a secure and encrypted connection when sending personal data and when logging in to the User Account on the Website. Amocarat Sp. z o.o. uses an SSL certificate issued by one of the world’s leading companies in the field of security and encryption of data sent over the Internet.

2. In the event that the User who has an account in the Online Shop has lost the access password in any way, the Online Shop enables generating a new password. The password is stored in an encrypted form in a way that prevents its reading. In order to generate a new password, please provide your email address in the form available under the link “Forgot your password”, provided next to the account login form in the Online Shop. The User will receive an email to the email address provided during registration or saved in the last change of the account profile, containing a redirection to a dedicated form available on the Shop’s Website, where the User will be able to set a new password.

3. Amocarat Sp. z o.o. never sends any correspondence, including electronic correspondence with a request for login details, and in particular the access password to the User’s account.

Section 7. Cookies

1. The Administrator uses cookies and similar technologies to collect and save information (hereinafter collectively referred to as “cookies”), which should be understood as IT data, in particular text files, stored in Users’ end devices intended for the use of the Online Shop pages.

2. The Administrator uses cookies only after the Store User has given prior consent in this regard. Consent to the use of all cookies by the Online Shop is given by clicking on the button: "I confirm all" when the message about the use of cookies by the Online Shop is displayed. The User can also adjust his/her preferences regarding cookies by clicking on the button "I confirm selected".

3. The User of the Online Shop may not agree to the Online Shop's use of cookies other than necessary, for this purpose he/she may click the button "Confirm required".

4. The information collected using cookies allows to:

  • a) Ensure the functioning, security and reliability of the Online Shop’s pages;
  • b) Adjust the content of the Online Shop’s pages to the User’s preferences and optimize the use of the pages, improve the website (properly display the website, tailored to the individual needs of the User);
  • c) Analyse and create statistics that help to understand how the Users of the Online Shop use websites, which allows improving their structure and content. They also enable the development of general statistics of visits to the presented products in the Online Shop.

5. Personal data collected using cookies is collected only to perform specific functions for Users and is encrypted in a way that prevents access by unauthorized persons.

6. Types of cookies:

  • a) Necessary cookies: These cookies are necessary for the website to function and cannot be switched off in our systems. Necessary cookies are usually used in response to actions taken by the User, such as: setting privacy options, logging in or filling in forms. You can change your browser settings to block them, but the website will not function properly then.
  • b) Analytical cookies: This type of cookie allows us to measure the number of visits and collect information about traffic sources, thanks to which we can improve the operation of our website. They also help us find out which pages are the most popular or how visitors are moving around our site. If you block this type of cookie, we will not be able to collect information about the use of the website and we will not be able to monitor its performance.
  • c) Functional cookies: This type of cookies help us improve the effectiveness of our marketing activities and to adapt them to your needs and preferences, e.g. by remembering all choices made on the pages.
  • d) Advertising cookies: In order to promote certain services, articles or events, we may use advertisements displayed on other websites. This type of cookie is used to make advertising messages more relevant and tailored to your preferences. The cookies also prevent the same advertisements from appearing again. These ads are only used to inform about the activities carried out.
  • e) Session cookies: This is temporary information stored in the browser’s memory until the end of the browser session, i.e. until it is closed. These cookies are mandatory for certain applications or functionalities to function properly. The mechanism of session cookies does not allow the collection of any personal data or any confidential information from Users’ computers;
  • f) Permanent cookies: Thanks to them, the use of frequently visited websites is easier (e.g. they provide optimal navigation, remember the selected resolution, content layout, etc.). This information remains in the browser’s memory for a longer period. This time depends on the choice that can be made in the browser settings. This type of cookie allows information to be transferred to the server each time a given page is visited. The mechanism of permanent cookies does not allow the collection of any personal data or any confidential information from Users’ computers;
  • g) Own cookies (first party cookies): Cookies placed on websites directly by Amocarat sp. z o.o.;
  • h) Third-party cookies: Cookies “placed on websites by entities other than Amocarat sp. z o.o.”;

Note: “cookies” may be caused by Amocarat sp. z o.o. using scripts, components that are located on the servers of an Amocarat sp. z o.o. partner located in a different location – a different country, including a completely different legal system. In the event that Amocarat sp. z o.o. calls up website components from outside the Amocarat sp. z o.o. system, standard rules of the “cookie” policy may apply other than the privacy policy / “cookies” of Amocarat sp. z o.o.

7. Amocarat Sp. z o.o. uses its own cookies for the purpose of:

  • a) Authentication of the User in the Online Shop and ensuring the User’s session in the Online Shop (after logging in), thanks to which the User does not have to re-enter the login and password on each subpage of the Online Shop;
  • b) Analysis and research as well as audience audit, in particular to create anonymous statistics that help to understand how customers use the Shop’s Website, which allows improving its structure and content.

8. Amocarat Sp. z o.o. uses external cookies for the purpose of:

  • a) Popularizing the Online Shop using the facebook.com social network service (external cookie administrator: Facebook Inc. based in the USA or Facebook Ireland based in Ireland);
  • b) Presenting on the information pages of the Shop a map showing the location of Amocarat Sp. z o.o., using the maps.google.com website (external cookie administrator: Google Inc. based in the USA);
  • c) Collecting general and anonymous static data via Google Analytics analytical tools (external cookie administrator: Google Inc., based in the USA);

9. “Cookies” are generally not personal data. However, certain information stored in cookie files (e.g. regarding preferences), especially when combined with other information about the website user, may be considered personal data. Personal data collected using “cookies” may be processed only to perform specific functions for the User, described above. Such data is encrypted in a way that prevents access by unauthorized persons.

10. The cookie mechanism is safe for the computers of the Online Shop Users. In particular, it is not possible for viruses or other unwanted software or malware to enter Users’ computers in this way.

11. However, in their browsers, Users have the option to limit or disable the access of cookies to their computers. If you use this option, the use of the Online Shop will be possible, except for functions that, by their nature, require cookies.

12. The User can change the cookie settings from the level of consent displayed when entering the website.

13. In addition, below we present how you can change the settings of popular web browsers in terms of using cookies:

14. Amocarat Sp. z o.o. may collect the Users’ IP addresses. An IP address is a number assigned to the computer of a visitor to the Online Shop by an internet service provider. The IP number allows access to the Internet. In most cases, it is assigned dynamically to the computer, i.e. it changes every time you connect to the Internet, and for this reason it is commonly treated as non-personal identifying information. The IP address is used by Amocarat Sp. z o.o. when diagnosing technical problems with the server, creating statistical analyses (e.g. determining from which regions we record the most visits), as information useful in administering and improving the Online Shop, as well as for security purposes and possible identification of burdening the server, unwanted automatic programs for browsing the Online Shop.

15. The web browsing software (web browser) usually allows the storage of cookies on the User's terminal device by default. Users can change their settings in this respect. The web browser makes it possible to delete cookies. It is also possible to automatically block cookies.

16. Restrictions on the use of cookies may affect some of the functionality available on the websites of the Online Shop.

17. Cookies placed on the User's terminal device and used may also be used by advertisers cooperating with the Online Shop and partners of the Online Shop.

18. Cookies may be used by the Google network to display advertisements tailored to the User's use of the Online Shop. For this purpose, they may retain information about the User's navigation path or the time spent on a particular page: https://policies.google.com/technologies/partner-sites.

19. We recommend that the User reads the privacy policies of these companies to understand the use of cookies used in statistics: Google Analytics Privacy Policy.

20. With regard to the information on the User's preferences collected by the Google advertising network, the User can view and edit the information resulting from cookies using the following tool: https://www.google.com/ads/preferences/.

21. The Online Shop website includes plug-ins that may transmit Customer/User data to Administrators such as: Google Maps, Google reCAPTCHA, IdoAccounts, IdoSell, IAI S.A., Google.

22. Below is a basic list of cookies that are collected by the Administrator:

Name (cookie ID) Purpose of the cookie Duration of storage
Functional cookies
en.obsessive.com
monit_token Identifies the shop's customer. 365 days
shop_monit_token Identifies the shop's customer. 30 minutes
client Identifies the logged-in customer / basket of the non-logged-in customer. 1 day
affiliate It stores information about the partner ID from which the shop was entered. 90 days
ordersDocuments Stores information about the print status of a document. Session (until you log out)
_idsui File required for the so-called lightweight login function on the website. 1095 days
_idsual File required for the so-called lightweight login function on the website. 1095 days
_IAI_SRC It only stores the source from which the page was accessed. 90 days
login Stores information about whether the user has logged in to the site. Session (until you log out)
CPA Includes information on the variables for the CPA / CPS programmes in which the site participates. 28 days
IAIRSABTVARIANT Variant identifier for the A/B test and IdoSell RS engine configuration. 30 days
basket_id The site user's shopping cart identifier, assigned for the duration of the ongoing session. 365 days
page_counter Counter of pages visited. 1 day
LANGID Stores information about the language selected by the site user. 180 days
REGID Stores information about the site user's region. 180 days
CURRID Stores information about the currency of the site selected by the user. 180 days
IAIABT It stores the A/B test identifier, for the purpose of testing and improving shop functionality. 30 days
IAIABTSHOP It stores the identifier of the shop participating in the A/B test. 30 days
IAIABTVARIANT Stores the identifier of the variant drawn as part of the ongoing A/B test. 30 days
toplayerwidgetcounter Stores the number of times a pop up message has been displayed. Session (until you log out)
samedayZipcode Stores information about the site user's postcode, which is required to offer courier delivery on the SameDay service. 90 days
applePayAvailability Stores information about whether an ApplePay payment method is available for the user. 30 days
paypalMerchant PayPal account ID. 1 day
toplayerNextShowTime Stores information about the time at which the next pop up message is to be displayed. Session (until you log out)
rabateCode_clicked Stores information about the closure of the active discount bar. 1 day
freeeshipping_clicked Stores information about the closing of the free delivery bar. 1 day
redirection Stores information on the closure of the pop-up message indicating the suggested language for the shop. Session (until you log out)
filterHidden When the option to collapse the filter for goods is clicked, it saves which filter is to be collapsed when the goods list is refreshed. 365 days
toplayerwidgetcounterclosedX It stores information about closing the pop-up message. Session (until you log out)
cpa_currency Includes currency information for CPA / CPS programmes in which the site participates. 60 minutes
basket_products_count Stores information on the number of products in the basket. Session (until you log out)
wishes_products_count Stores information on the number of products in the favorites list. Session (until you log out)
remembedered_mfa Stores remembered user information for multi-factor authentication (MFA) 365 days
IAI S.A.
iai_accounts_toplayer Ensures the correct display of the pop up message informing about the IdoAccounts login service (https://www.idosell.com/en/idoaccounts-is-a-system-that-facilitates-the-process-of-logging-in-to-many-stores-with-one-account-and-placing-orders-in-online-stores/). 30 days
IdoSell
platform_id Stores information about whether the page is displayed in the mobile app. Session (until you log out)
paypalAvailability Stores information on whether a PayPal payment method is available for the user. 1 day
ck_cook Stores information about whether the user of the website has consented to cookies. 3 days
IdoAccount
accounts_terms Stores information on whether the user has accepted consent to use the IdoAccounts service. 365 days
express_checkout_login They are used to remember your preferences and other information, such as your preferred language, the number of results you see on a search results page (e.g. 10 or 20), and whether you want to have Google SafeSearch turned on 365 days
Google
NID These cookies (NID, ENID) are used to remember your preferences and other information, such as your preferred language, how many results you prefer to have shown on a search results page (for example, 10 or 20), and whether you want to have Google’s SafeSearch filter turned on. This cookie is also required to offer the Google Pay payment service. 180 days
Google reCAPTCHA
GRECAPTCHA This cookie is set by Google reCAPTCHA, which protects our site against spam enquiries on contact forms. 1095 days
PayPal
enforce_policy  This cookie is generally provided by PayPal and supports payment services on the website. 365 days
L7_az This cookie is necessary for the PayPal login-function on the website. 60 minutes
LANG This cookie is generally provided by PayPal and supports payment services on the website. 1 day
nsid  Used in the context of transactions on the Website. The cookie is required for secure transactions. Session (until you log out)
ts This cookie is generally provided by PayPal and supports payment services on the website. Session (until you log out)
ts_c This cookie is generally provided by PayPal and is used to prevent fraud. 1095 days
tsrce  This cookie is generally provided by PayPal and supports payment services on the website. 3 days
x-pp-s  This cookie is generally provided by PayPal and supports payment services on the website. Session (until you log out)
Amocarat
am_promo_notification Displays promotions. 1 day
PHPSESSID Preserves user session state across page requests. Session (until you log out)
Advertising cookies
SALESmanago
smclient Assigned to the identified and monitored contacts. A cookie itself does not contain any information that enables to identify contacts and to recognize e.g. personal data of the website visitor. Connection to the contact card takes place in the SALESmanago system. 365 days
Smuuid Tracks anonymous visits; it is assigned to anyone who lands on the website. Unique ID – cookie itself does not contain any information that enables to identify contacts and to recognize e.g. personal data of the website visitor. Connection to the contact card takes place in the SALESmanago system. 365 days
Smevent Assigned to the identified and monitored contacts. A cookie contains eventId assigned after the event cart, deleted when the event purchase takes place. 30 days
smform Handles contact forms and pop-ups. Information about a form and pop-up behavior- a number of visits, a timestamp of the last visit, information about closing/minimizing pop-ups. 365 days
smg Identifies a user. Random ID in UUID format. 365 days
Smg Identifies a user- global ID for the whole system. Random ID in UUID format. 365 days
smvr tores information about visits (coded base64). Values coded by base64. 3650 days
smwp Information about Web Push agreement forms. True/false value. 365 days
smrcrsaved Saves information if an ID was signed to SALESmanago (deprecated). True/false value. 365 days
smOViewsPopCap Saves information about pop-up capping. SM:X" , where X is replaced with a number. 1 day
smcfds Stores information about displayed forms on website. Values coded by base64. 1 day
smps Stores information about displayed popups on website. Values coded by base64. 1 day
_smvs Stores information about first visit source on website. Values coded by base64. 1 day
Meta (Facebook)
fbsr_ Contains the signed request for the Facebook App user. Session (until you log out)
fbss_ Shared session Facebook. 365 days
fbs_ Facebook session. 30 minutes
Meta Pixel The Meta Pixel is a piece of code that allows you to measure the effectiveness of your advertising by understanding the actions taken by users of the site and allows you to make sure that your shop ads are shown to the right people. 999 days
_fbp Cookie used for user profiling and to match advertising to user profile as accurately as possible. 90 days
fr Cookie used for user profiling and to match advertising to user profile as accurately as possible. 90 days
_fbc Store last visit. 730 days
tr Cookie used for user profiling and to match advertising to user profile as accurately as possible. 365 days
sb This cookie helps identify and apply additional security measures in case someone tries to access your Facebook account without authorization, for example by entering random passwords. It is also used to record information that will allow Facebook to recover a user's account if they forget their password, or to provide additional authentication if it suspects someone has hacked into their account. This includes, for example, "sb" and "dbln" cookies, which can securely identify a user's browser. 402 days
usida Collects a combination of the user’s browser and unique identifier, used to tailor advertising to users. Session (until you log out)
wd This cookie helps direct traffic between servers and analyze how fast Meta Products load on different users. Thanks to cookies, Meta can also record the aspect ratio and dimensions of a user's screen and windows, and know whether the user has high contrast mode enabled, so it can present its sites and applications correctly. It can, for example, use "dpr" and "wd" cookies, among others, to provide the user with optimal device screen parameters. 9 days
locale This cookie contains the display locale of the last logged in user on this browser. 9 days
datr The purpose of the datr cookie is to identify the web browser being used to connect to Facebook independent of the logged in user. This cookie plays a key role in Facebook's security and site integrity features. 7 days
obsessive.com
RSSID IdoSell RS user ID, used for the purpose of displaying tailored product recommendations on the website. 180 days
IAIRSUSER IdoSell RS user ID, used for the purpose of displaying tailored product recommendations on the website. 60 minutes
Photoslurp
ps_analytics Tracks which photos or galleries the specific user has seen. This information serves for marketing purposes. 29 days
clickometrics.pl
__goadservices Allows us to personalize the ads we display. 2 lata
Google Analytics
__gads To provide advertising delivery or retargeting. 395 days
Third-party cookies
cachat It allows us to store information about you, your preferences for future visits, site traffic, and site interactions in order to offer you better experiences and tools in the future. 365 days
Analytics cookies
IAI S.A.
_IAI_AC2 Activity Tracking identifier to collect the history of pre-order sources as well as the source through which the order was placed according to the last click attribution model. 45 days
Google Maps
SID Contain digitally signed and encrypted records of a user’s Google Account ID and most recent sign-in time. The combination of these cookies (SID, HSID) allows Google to block many types of attack, such as attempts to steal the content of forms submitted in Google services. 3650 days
pixelpixelpixelpixelpixelpixelpixelpixelpixelpixelpixelpixelpixel