Privacy policy

This Privacy Policy is an expression of care for the rights of individuals visiting the website and using the services offered through it. It also fulfils the information obligation under Article 13 of Regulation (EU) No 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals in relation to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) Journal of Laws EU L119 from 4 May 2016, p. 1) (hereinafter GDPR).

The website owner attaches particular importance to respecting the privacy of website users. Data obtained through the website is particularly protected and secured against unauthorized access. The privacy policy is made available to all interested parties. The website is open to the public.

The website owner’s primary goal is to provide the website users with privacy protection at a level that meets at least the requirements set by applicable law, in particular by the provisions of the GDPR and by the Act of 18 July 2002 on the provision of electronic services.

The website owner may collect personal data and data of a different nature. The collection of this data is done, depending on their nature – automatically or as a result of actions of the website visitors.

Every person using the website in any way accepts all the rules contained in this Privacy Policy. The website owner reserves the right to make changes to this document.

  1. General information, cookie files
    1. The website is owned and operated by PUH Pilot Unlimited, based in Warsaw, address: ul. Staniewicka 5, 03-310 Warsaw, entered into the Register of Entrepreneurs of the National Court Register kept by the District Court in the Commercial Department of the National Court Register under the KRS number, NIP number: 7010333379, REGON number: 145995565. Under the provisions of the GDPR, the website owner is also the Controller of Personal Data of the website users (“Controller”).
    2. As part of the activities performed, the Controller uses cookies in such a way that it observes and analyses the traffic on the website, as well as undertakes remarketing activities, however, as part of these activities, the Controller does not process personal data within the meaning of the GDPR.
    3. The website gathers information about website users and their behaviour in the following ways:
      1. the website automatically collects information that is contained in cookies
      2. through data voluntarily entered by website users in the forms available on the website
      3. by automatically collecting web server logs by the hosting operator.
    4. Cookies are IT data, in particular, text files, which are stored on the website user’s terminal device and are intended to be used for browsing the website’s pages. Cookies usually contain the name of the website from which they originate, their storage time on the terminal device and a unique number.
    5. During a visit to the website, website users’ data may be automatically collected concerning a user’s visit to the website and including, among others, IP address, type of Internet browser, domain name, number of page views, type of operating system, visit, screen resolution, number of screen colours, website addresses from which the service was accessed, time of using the service. The data is not personal data, nor does it enable the identification of a website user.
    6. The website may contain links to other websites. The website owner is not responsible for the privacy policy of these sites. At the same time, the website owner encourages the user to read the privacy policy provided on these websites. This Privacy Policy does not apply to other websites.
    7. The entity placing cookies on the user’s terminal device and accessing them is the website owner.
    8. Cookies are used:
      1. to adapt the content of the website pages to the user’s preferences and optimise the use of websites; in particular, these files enable the identification of the user’s device and proper display the website tailored to their individual needs,
      2. to develop statistics that help to understand how website users interact with the pages to improve its structure and content,
      3. to maintain the session of the website user (after logging in) so that the user does not need to re-enter login and password on each page of the website.
    9. The website uses the following types of cookies:
      1. “essential” cookies enabling the use of services available on the website, e.g. authentication cookies,
      2. cookies aimed at ensuring security e.g. used to detect fraud,
      3. “performance” cookies used to obtain information on how users of the website use the website,
      4. “advertising” cookies which allow providing website users with advertising content more suited to their interests,
      5. “functional” cookies, which enable “remembering” the settings selected by the website user and adapting the website to the website user, e.g. in terms of the selected language.
    10. Two basic types of cookies are used on the Website: “session” cookies and “persistent” cookies. The session cookies are temporary files stored in the terminal device until leaving the website, logging out by the website user or turning off the software (web browser). The persistent cookies are stored on the user’s terminal device for a period specified in cookie parameters or until the user deletes them.
    11. In most cases, the software used for browsing websites allows the storage of cookies on the Website User’s terminal device by default. The website users can make changes to the cookies settings at any time. These settings can be modified in the options menu of the user’s web browser (software), among others, in a way that prevents the automatic handling of cookies or enables notifications which the User receives each time cookies are placed on his/her device. Details on the possibility and methods of managing cookie files are available in the settings of the web browser.
    12. Restrictions on the use of cookies may affect some of the functionalities available on the website.
    13. Cookies placed on the website user’s terminal device can also be used by advertisers and partners cooperating with the website owner.
  2. Processing of personal data, information on forms
    1. Personal data of website users may be processed by the Controller:
      1. if the website user agrees to this in the forms placed on the website to take the actions to which these forms relate (Article 6(1)(a) of the GDPR), or
      2. when processing is necessary for the performance of a contract to which the website user is a party (Article 6(1)(b) of the GDPR) if the service enables the conclusion of a contract between the Controller and the website user.
    2. The website processes personal data that is only voluntarily provided by website users. The Controller processes the personal data of the website users only to the extent necessary for the purposes specified in point 1(a) and (b) above and for the period necessary to achieve those purposes, or until the website user’s consent is withdrawn. Failure to provide data by the website user may, in some situations, result in the inability to achieve the purposes for which data is necessary.
    3. The following personal data of the website user may be collected through the forms placed on the website or to perform contracts that may be concluded on the website: name, surname, address, e-mail address, telephone number, login, password.
    4. The data contained in the forms, provided to the Controller by the service user, may be transferred by the Controller to third parties, cooperating with the Controller in connection with the Controller’s fulfilment of the purposes specified in point 1 letters a and b above.
    5. The data provided in the forms placed on the website are processed for the purposes resulting from the functions of a specific form; besides, they may also be used by the Controller for archival and statistical purposes. The consent of the data subject is given by checking the appropriate box on the form.
    6. If the website has such functionalities, the website user, by checking the appropriate box in the registration form, may refuse or agree to receive commercial information by means of electronic communication, under the Act of 18 July 2002 on providing services by electronic means (Journal of Laws of the Republic of Poland of 2002, No. 144, item 1024 as amended). If the website user has agreed to receive commercial information through electronic communication, he or she has the right to withdraw such consent at any time. The right to withdraw consent to receive commercial information is exercised by sending an e-mail including a relevant request, as well as the name and surname of the website user, to the address of the website owner.
    7. Data entered in a form may be passed on to organisations that provide technical services, in particular, information about the owner of the registered domain, which may be passed on to Internet domain operators, especially the Research and Academic Computer Network (NASK), payment services and other entities with which the Controller cooperates in this respect.
    8. Personal data of the website users are stored in a database in which technical and organizational measures have been taken to ensure the protection of the processed data in accordance with the requirements set out in the relevant legislation.
    9. To prevent re-registration of persons whose participation in the website has been terminated due to unauthorized use of the website’s services, the Controller may refuse to delete personal data necessary to block the possibility of re-registration. The legal basis for the refusal is Article 19 section 2 par. 3 in conjunction with Article 21 sec. 1 of the Act of 18 July 2002 on the provision of electronic services (i.e. of 15 October 2013, Journal of Laws of the Republic of Poland of 2013, item 1422). The Controller may also refuse to delete personal data of the website users in other cases provided for by law.
    10. In the cases provided for by law, the Controller may share some of the personal data of Website Users with third parties for purposes related to the protection of third party rights.
    11. The Controller reserves the right to send e-mails to all website users with notifications about important changes on the website and changes in this Privacy Policy. The Controller may send electronic letters of a commercial nature, especially advertisements and other commercial information content, provided that the user of the website has agreed to it. Advertisements and other commercial content may also be attached to incoming and outgoing letters from the system account.
  3. Website users’ rights regarding their data. Under Art. 15 – 22 GDPR, every website user has the following rights:
    1. The right of access to data (Article 15 GDPR) The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed, and, where that is the case, access to the personal data. Pursuant to Article 15, the controller shall provide the data subject with a copy of the personal data to be processed.
    2. The right of rectification (Art. 16 GDPR) The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate personal data concerning him or her.
    3. The right to erasure (‘right to be forgotten’) (Art. 17 GDPR) The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay and the controller shall have the obligation to erase personal data without undue delay where one of the following grounds applies:
      1. the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
      2. the data subject withdraws consent on which the processing is based
      3. the data subject objects to the processing pursuant to Article 21(1) and there are no overriding legitimate grounds for the processing;
    4. The right to restriction of processing (Art. 18 GDPR) The data subject shall have the right to obtain from the controller restriction of processing where one of the following applies:
      1. the accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data
      2. the data subject has objected to processing pursuant to Article 21(1) pending the verification whether the legitimate grounds of the controller override those of the data subject.
      3. The processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead.
    5. The right to data portability (Art. 20 GDPR) The data subject shall have the right to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided. The data subject shall have the right to have the personal data transmitted directly from one controller to another, where technically feasible. The right referred to in this paragraph shall not adversely affect the rights and freedoms of others.
    6. The right to object (Art. 21 GDPR) Where personal data are processed for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data concerning him or her for such marketing, which includes profiling to the extent that it is related to such direct marketing.

    The above users’ rights may be exercised against payment in cases where the applicable law provides for it.

    If the above rights are violated or if the website user finds that his/her data is processed by the Controller contrary to applicable law, the website user has the right to lodge a complaint with the supervisory authority.

  4. Server logs
    1. In accordance with the accepted practice of most websites, the website operator stores HTTP queries directed to the website operator’s server (information on some behaviours of website users are subject to logging in the server layer). The resources viewed are identified by their URLs. The exact list of information stored in the webserver log files is as follows:
      1. the public IP address of the computer from which the query came,
      2. the name of the client station – identification carried out by HTTP protocol, if possible,
      3. website user’s username provided in the authorization (login) process,
      4. date and time of the query,
      5. HTTP response code,
      6. the number of bytes sent by the server,
      7. the URL of the page previously visited by the user of the service (the referrer link) – if the website was accessed via a link,
      8. information about the website user’s web browser,
      9. information about errors that occurred in the execution of an HTTP transaction.

      The above data is not associated with specific individuals browsing the pages available on the website. In order to ensure the highest possible quality of the website, the website operator occasionally analyses log files to determine which pages are visited most frequently, which web browsers are used, whether the structure of the pages does not contain errors, etc.

    2. The logs collected by the operator are stored for an indefinite period as supporting material for the proper management of the website. The information contained therein will not be disclosed to any entities other than the operator or entities related to the operator personally, by capital or contract. Based on the information contained in these files, statistics can be created to help manage the website. Summaries containing such statistics do not include any identifying characteristics of individuals visiting the website.
  5. About Us
    As one of the leading companies in the FMCG sector in Poland, we work with known all over the world retail chains and smaller local shops. We will help you to reach thousands of products of the most popular and the most recognizable brands, we expand our offer every day – currently, it includes almost 4500 items.