PRIVACY POLICY

§1 General provisions

1. This document is an attachment to the Regulations of the Woofchild.com Online Store. By using our services, you entrust us with your information. This Privacy Policy is only intended to help you understand what information and data is collected and for what purpose and what we use it for. This data is very important to us, so please read this document carefully as it defines the rules and methods of processing and protecting personal data. This document also defines the rules for the use of “Cookies”.

2. We hereby declare that we comply with the principles of personal data protection and all legal regulations provided for in the Personal Data Protection Act and Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of natural persons in connection with the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC.

3. The person whose personal data is processed has the right to contact us in order to obtain comprehensive information on how we use his personal data. We always try to inform clearly about the data we collect, how we use it, what purposes it is intended for and to whom we provide it, what we ensure the protection of this data when transferring it to other entities and provide information about institutions that should be contacted in case of doubts. Customer data may be shared with companies such as InPost, UPS, PayPal and Stripe.

4.The Seller uses technical measures such as: physical protection of personal data, hardware measures of IT and telecommunications infrastructure, protection measures within the framework of software tools and databases, and organizational measures ensuring proper protection of personal data being processed, and in particular securing personal data against unauthorized disclosure. third parties, obtaining by an unauthorized person and using them for an unknown purpose, as well as accidental or intentional change, loss, damage or destruction of such data.

5. We have exclusive access to data on the terms set out in the Regulations and in this document. Access to personal data may also be entrusted to other entities with the help of which payments are made, which collect, process and store personal data in accordance with their Regulations, and entities that are responsible for the execution of the order. Access to personal data is granted to the above-mentioned entities to the extent necessary and only to those that will ensure the provision of services.

6. Personal data is processed only for the purposes for which you have given your consent by clicking the appropriate fields of the form on the Website or in any other explicit way. The legal basis for the processing of your personal data is consent to the processing of data or the requirement to provide a service (e.g. ordering a Product) that you ordered from us (pursuant to Article 6 (1) (a) and (b) of the Regulation of the European Parliament and of the Council (EU) 2016/679 of

April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC (General Data Protection Regulation) – GDPR.

§2 Privacy rules

1. We take privacy very seriously. We are characterized by respect for privacy and the fullest possible and guaranteed comfort of using our online store.

2. We value the trust that Users place in us by entrusting us with their personal data in order to complete the order. We always use personal data fairly and in such a way as not to disappoint this trust, only to the extent necessary to perform the order, including its processing.

3. You have the right to obtain clear and complete information on how we use your personal data and for what purposes it is needed. We always clearly inform about the data we collect, how and to whom we transfer it and provide information about entities to contact in case of doubts, questions or comments.

4. In case of any doubts as to the use of the User’s personal data by us, we will immediately take steps to clarify and dispel such doubts, and we answer all related questions in a full and comprehensive manner.

5. We will take all reasonable steps to protect Users’ data against improper and uncontrolled use and to secure them in a comprehensive manner.

6. The administrator of your personal data is Woofchild Maja Ostrowska, ul. Klimczaka 1, 02-797 Warsaw, NIP 8511695674, e-mail: contact@woofchild.com

7. The legal basis for the processing of your personal data is Art. 6 sec. 1 lit. b) GDPR. Providing data is not mandatory, but necessary to take appropriate steps prior to the conclusion of the contract and its implementation. We will transfer your personal data to other recipients entrusted with the processing of personal data on behalf and for our benefit. Your data will be transferred on the basis of art. 6 sec. 1 lit. f) GDPR, where the legitimate interest is the proper performance of contracts / orders. In addition, we will share your personal data with other business partners. We store the collected personal data in the European Economic Area (“EEA”), but they may also be transferred to a country outside this area and processed there. Each operation of transmitting personal data is performed in accordance with applicable law. If data is transferred outside the EEA, we use standard contractual clauses and the privacy shield as safeguards in relation to countries for which the European Commission has not found an adequate level of data protection.

8. Your personal data related to the conclusion and implementation of the contract for the implementation of contracts will be processed for the period of their implementation, as well as for a period not longer than provided for by law, including the provisions of the Civil Code and the Accounting Act, i.e. not longer than 10 years from the end of the calendar year in which the last contract was performed.

9. Your personal data processed in order to conclude and perform future contracts will be processed until the objection is raised.

10. You have the right to: access your personal data and receive a copy of the personal data being processed, rectify your incorrect data; tasks

deletion of data (the right to be forgotten) in the event of the circumstances provided for in art. 17 GDPR; requests to limit data processing in the cases specified in art. 18 GDPR, to object to data processing in the cases specified in art. 21 GDPR, to transfer the provided data, processed in an automated manner.

11. If you believe that your personal data is being processed unlawfully, you can lodge a complaint with the supervisory authority (Office for Personal Data Protection, ul. Stawki 2, Warsaw). If you need additional information related to the protection of personal data or want to exercise your rights, please contact us by letter to the correspondence address.

12. We make every effort to protect against unauthorized access, unauthorized modification, disclosure and destruction of information in our possession. Especially:

a) We control methods of collecting, storing and processing information, including physical security measures, to protect against unauthorized access to the system.

b) We only grant access to personal data to employees, contractors and representatives who must have access to them. In addition, under the contract, they are obliged to maintain strict confidentiality, to enable us to control and check how they fulfill the entrusted obligations, and in the event of failure to fulfill these obligations, they may suffer consequences.

13. We will comply with all applicable data protection laws and regulations and we will cooperate with data protection authorities and law enforcement agencies authorized to do so. In the absence of data protection regulations, we will act in accordance with generally accepted data protection principles, principles of social coexistence and established customs.

14. The exact method of personal data protection is included in the personal data protection policy (ODO: security policy, personal data protection regulations, IT system management manual). For security reasons, due to the procedures described in it, it is available only to inspection authorities state.

15. If you have any questions regarding the handling of personal data, please contact us via the page from which the user has been redirected to this Privacy Policy. The contact request will be immediately forwarded to the appropriate person appointed for this.

16. You always have the right to notify us if:

a) does not want to receive information or messages from us in any form;

b) would like to receive a copy of their personal data that we have;

c) correct, update or delete your personal data in our records;

d) he wants to report violations, improper use or processing of his data personal.

17. To help us answer or comment on the information provided, please provide us name and surname and further details.

§3 The scope and purpose of collecting personal data

1. We process the necessary personal data for the purpose of providing services and for accounting purposes, and only for such purposes as:

a) to place an order,

b) in order to conclude a contract, complain and withdraw from the contract,

c) issuing a VAT invoice or other receipt.

d) monitoring traffic on our websites;

e) collecting anonymous statistics to determine how users use ours

Web page;

f) determining the number of anonymous users of our websites

g) controlling how often the selected content is shown to users and what content most often;

h) controlling how often users choose a given service or from which service level

contact occurs most often;

i) researching subscriptions to newsletters and contact options;

j) using the system of personalized recommendations for e-commerce;

k) use of the tool for communication, both by e-mail and the subsequent

telephone;

l) integration with the community portal;

m) possible online payments.

2. We collect, process and store the following user data:

a) name and surname,

b) address of residence,

c) delivery address (if different from home address),

d) tax identification number (NIP),

e) e-mail address (e-mail),

f) telephone number (mobile, landline),

g) information about the web browser used,

h) other personal data provided voluntarily to us.

3. Providing the above-mentioned data is completely voluntary but also necessary for the full implementation of services.

4. Purpose of collecting and processing or using data by us:

a) direct marketing, archival purposes of advertising campaigns;

b) fulfillment of obligations imposed by law by collecting information about

undesirable effects;

5. We may transfer your personal information to servers located outside your country of residence user or related entities, third parties based in other countries, including countries from the EEA (European Economic Area, EEA – free trade zone and common market, covering the countries of the European Union and the European Free Trade Association EFTA) ) to process personal data by such entities on our behalf in accordance with the provisions of this Privacy Policy and applicable laws, customs and regulations regarding data protection.

6. We store your personal data for no longer than they are needed for the appropriate quality of service and depending on the mode and purpose of obtaining them, we store them for the duration and after its completion for the purposes of:

a) fulfillment of obligations resulting from legal regulations, tax and accounting regulations;

b) the prevention of abuse or crime;

c) statistical and archiving.

d) Marketing activities – for the duration of the contract, separate consent for processing

of such data – until the end of activities related to the handling of transactions, brought by

You object to such processing or withdraw your consent.

e) Sales-related and promotional activities – e.g. contests, promotional campaigns – for the duration of i

settlement of such shares.

f) Operating activities – until the obligations imposed by the

The GDPR Regulation and the relevant national regulations, in order to demonstrate reliability in

processing of personal data

g) pursuing any claims related to the contract;

7. Bearing in mind the fact that in many countries to which this personal data is transferred, the same level of legal protection of personal data as in the user’s country does not apply. The user’s personal data stored in another country may be accessed in accordance with the law in force there, for example: courts, authorities responsible for law enforcement and national security, in accordance with the laws in force in that country. Subject to lawful requests for disclosure of data, we undertake to require entities that process personal data outside the user’s country to take measures to protect data in an adequate manner to the regulation of their national law.

§4 “Cookies” policy

1. We automatically collect information contained in cookies in order to collect User’s data. A cookie file is a small piece of text that is sent to the User’s browser and which the browser sends back at the next visits to the website. They are mainly used to maintain a session, e.g. by generating and sending back a temporary identifier after logging in. We use “session” cookies stored on the User’s end device until logging out, turning off the website or turning off the web browser, and “permanent” cookies stored on the User’s end device for the time specified in the parameters of cookies or until their removal by the User.

2. Cookies adjust and optimize the website and its offer for the needs of Users through such activities as creating statistics of page views and ensuring security. Cookies are also necessary to maintain the session after leaving the website.

3. The administrator processes the data contained in cookies each time the website is visited by visitors for the following purposes:

a) optimizing the use of the website;

b) identification of the Recipients as currently logged in;

c) adaptation, graphics, selection options and any other content of the website to the individual preferences of the Service Recipient;

d) remembering automatically and manually completed data from Order Forms or login details provided by the visitor;

e) collecting and analyzing anonymous statistics showing how to use the website in the administration panel and google analytics

f) creating remarketing lists based on information about preferences, behavior, way of using the interests of the Website and collecting demographic data, and then sharing these lists in AdWords, AdSense, Facebook Ads.

g) Google Adsense cookies are used to serve you with relevant advertisements. Adsense Cookies do not contain personal data. If you would like to learn more about

Google AdSense cookies and how to control it, please go to http://www.google.co.uk/policies/privacy/ads/

h) creating data segments based on demographic information, interests, preferences in the selection of viewed products / services.

i) the use of demographic and interest data in Analytics reports.

j) due to the need to prevent the performance of certain functions on our trading platforms by internet robots, we use the Google reCAPTCHA mechanism to sporadically test whether user behavior is behavioral robots. In this case, we may disclose your IP address to Google LLC.

4. The user at any time using his web browser can completely block and delete the collection of cookies.

5. Blocking by the User the possibility of collecting cookies on his device may make it difficult or impossible to use some of the website functionalities to which the User is fully entitled, but in such a situation he must be aware of the functional limitations.

6. RECAPTCHA V2

page6image62900864

Cookies name Type of Cookies  Purpose of saving cookies Cookie validity period
CONSENT Permanent For the occasional testing whether the users’ behavior does not bear the hallmarks of robotic behavior. 2 years (since last update)
NID Permanent For the sporadic testing whether the users’ behavior does not bear the hallmarks of robotic behavior. 2 years (since last update)

7. GOOGLE ADWORDS

Cookies name Type of Cookies Purpose of saving cookies Cookie validity period
PREF Permanent It helps to personalize ads in your services (e.g. in a search engine) – especially when the user is not logged in to his Google account. 2 years (since last update)
id Permanent Used for advertising purposes outside of Google pages from the doubleclick.net domain 2 years (since last update)
drt_, FLC, NID Permanent Ad server cookie .googleads.g.doubleclick.net. Collects information about the user’s actions after clicking on a Google Adwords ad and returns information about conversions. 12 hours (since last update)

8. GOOGLE ANALYTICS

Cookies name Type of Cookies Purpose of saving cookies Cookie validity period
_UTMA Permanent Used to distinguish between users and sessions. The cookie is updated and each time the data is sent to Google Analytics. 2 years (since last update)
_UTMB Permanent It is responsible for storing information about a given visit 30 min (since last update)
_UMTC Session The _utmc cookie cooperates with _utmb and its task is to determine whether to start tracking a new visit or whether the collected data should be included in the old one. It only contains information about the unique identifier of the site and expires when the browser window is closed. Until the end of the session
_UMTZ Permanent It contains information about the sources of visits. Thanks to it, it is possible to count visits from search engines and data from marketing campaigns  6 months (since last update)
_UMTV Permanent Stores the session ID. It is necessary to store information about being logged in to the website. 2 years (since last update)

9. YOUTUBE

Cookies name Type of Cookies Purpose of saving cookies Cookie validity period
PREF Permanent This cookie is used by Google to store preferences and user information relevant to the operation of Google Maps. 10 years (since last update)
Visitor_info1_Live Permanent This cookie is used by Youtube to store user preferences on video content pages. 8 months (since last update)
Use_Hitbox Permanent This cookie is used by Youtube to store user preferences on video content pages. Until the end of the session

10. GOOGLE MAPS

Cookies name Type of Cookies Purpose of saving cookies Cookie validity period
PREF Permanent This cookie is used by Google to store preferences and user information relevant to the operation of Google Maps. 2 years (since last update)

11. FACEBOOK

Cookies name Type of Cookies Purpose of saving cookies Cookie validity period
datr Permanent This cookie is set when the web browser accesses facebook.com. The file makes it possible to recognize suspicious login attempts, thus ensuring greater security for users. For example, it is used to indicate failed login attempts or to create multiple accounts for sending spam. 2 years (since last update)

12. A user who does not want to use “cookies” for the purpose described above may at any time delete them manually. To read the detailed instructions on how to proceed, visit the website of the manufacturer of the web browser currently used by the User.

13. More information on Cookies is available in the help menu of each web browser. Examples of web browsers that support the aforementioned “Cookies”:

a) Internet Explorer cookie settings

b) Chrome cookie settings

c) Firefox cookie settings

d) Opera cookie settings

e) Safari cookie settings

f) Android cookies

g) Cookies in Blackberry

h) Cookies in iOS (Safari)

i) Cookies in Windows Phone

§5 Rights and obligations

 1. We have selected or all information regarding personal data to public authorities or third parties who submit such a request for information on the basis of applicable provisions of Polish law.

2. The User has the right to access their personal data, which they provide, the User may correct and supplement this data at any time, and also have the right to demand that they be removed from their databases or ceased to be processed, without giving any reason. In order to exercise their rights, the User may at any time send an appropriate message to the e-mail address or in another way that will deliver / transmit such a request.

3. The processing of personal data of natural persons who are our clients is based on:

a) legitimate interest as a data controller (e.g. in the field of database creation, analytical and profiling activities, including activities regarding the analysis of product use, direct marketing of own products, securing documentation for the purposes of

defense against possible claims or for the purpose of pursuing claims)

b) consent (including, in particular, consent to e-mail marketing or telemarketing)

c) performance of the concluded contract

d) obligations arising from the law (e.g. tax law or accounting regulations).

4. The processing of personal data of natural persons who are potential clients is based on:

the law and, in cases specified by law, also the statutory obligation to transfer

a) legitimate interest of the data controller (e.g. in the field of creating a database, direct marketing of own products)

b) consent (including, in particular, consent to e-mail marketing or telemarketing)

5. The User’s request to delete personal data or to stop processing it by it may result in the complete impossibility of providing services by or seriously

limitation.

6. We pay particular attention to profiling and indicate that:

a) for profiling purposes, we usually process data that was previously subject to ssl encryption;

b) we use typical data for this: e-mail address and IP address or cookies

c) we profile to analyze or forecast personal preferences and interests of people

using our Services or products or services and adjusting the content

on our Websites or products to these preferences

d) we profile for marketing purposes, i.e. adjusting the marketing offer to the above-mentioned

preferences.

7. We undertake to act in accordance with applicable law and the principles of coexistence

social.

8. Information on out-of-court settlement of consumer disputes. Entity authorized in

the meaning of the Act on out-of-court settlement of consumer disputes is the Financial Ombudsman whose website address is as follows: www.rf.gov.pl.

§6 Basic safety rules

1. Each user should take care of their own data security and the security of their devices that access the Internet. Such a device should absolutely have an antivirus program with an up-to-date, regularly updated database of definitions, types and types of viruses, a secure version of the web browser it uses and a firewall enabled. The user should check that the operating system and the programs installed on it have the latest and compatible updates, because the attacks use errors found in the installed software.

2. Access data to services offered on the Internet are – eg logins, passwords, PINs, electronic certificates, etc. – should be secured in a place inaccessible to others and impossible to break in from the Internet. They should not be disclosed or stored on the device in a form that allows unauthorized access and reading by unauthorized persons.

3. Caution when opening strange attachments or clicking links in e-mail messages that we did not expect, eg from unknown senders or from the spam folder.

4. It is recommended to run anti-phishing filters in the web browser, i.e. tools that check whether the displayed website is authentic and is not intended for phishing, eg by impersonating a person or institution.

5. Files should be downloaded only from trusted places, websites and websites. We do not recommend installing software from unverified sources, especially from unknown publishers with unverified reviews. This also applies to mobile devices, e.g. smartphones, tablets.

6. When using a home Wi-Fi wireless network, set a password that is safe and difficult to break, it should not be any pattern or string that is easy to guess (e.g. street name, host name, date of birth, etc.) . It is also recommended to use the highest possible standards of encryption of Wi-Fi wireless networks, which can be run on your equipment, eg WPA2.

§7 Use of Social Media plugins

1. Plug-ins, so-called plug-ins of social networks facebook.com, Twitter and others, can be found on our pages. The related services are provided respectively by the companies Facebook Inc. and Twitter Inc.

2. Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA Facebook. To view Facebook plugins go to: https://developers.facebook.com/docs/plugins

3. Twitter is operated by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. To view Twitter plugins go to: https://dev.twitter.com/web/tweet-button

4. The plug-in only informs its provider about which of our websites you have accessed and at what time. If, while viewing our website or staying on it, the user is logged in to his account, e.g. on Facebook or Twitter, the provider is able to combine your interests, information preferences, and other data obtained, for example, by clicking the Like button or leaving comment, or enter the profile name in the searched ones. Such information will also be transmitted directly to the provider via the browser.

5. More detailed information on the collection and use of data by Facebook or Twitter and on the protection of privacy can be found on the following pages:

a) Data protection / privacy advice issued by Facebook: http://www.facebook.com/policy.php

b) Data protection / privacy advice issued by Twitter: https://twitter.com/privacy

6. To avoid registering a visit to the selected user account via Facebook or Twitter on our website, you must log out of your account before starting

browsing our websites.

Woofchild

QUICK DELIVERY

We ship our products to customers all over the world.

Shipments in Poland are carried out by InPost (parcel lockers or delivery by courier) and UPS. The customer selects the delivery method at the end stage of ordering the product. It is the customers choice which delivery method is chosen.

Deliveries outside Poland are made by UPS. Prices for individual destinations are visible when selecting the country of delivery and are updated on an ongoing basis according to the carrier shipping rates (UPS). For shipments outside the EU – the customer is responsible for paying all local duties and taxes, and to complete all related activities.