### Privacy Policy
This Privacy Policy applies to the website operating under the URL: cultribestuff.com
#### 1. General Information
The website is operated by and the data controller is:
Marek Nasulicz
Gułów 45, Wiązów
Poland
Contact email: info@cultribestuff.com
The Operator is the Administrator of your personal data in relation to data provided voluntarily on the website.
The website uses personal data for the following purposes:
– Running the newsletter
– Managing the comment system
– Displaying user profiles to other users
– Handling inquiries via the form
– Preparation, packaging, shipping of goods
– Execution of ordered services
– Debt collection
– Presentation of offers or information
The website collects information about users and their behavior in the following ways:
– Through data voluntarily entered in forms, which are entered into the Operator’s systems.
– By saving cookies on end devices (so-called “cookies”).
#### 2. Selected Data Protection Methods Used by the Operator
– The places of logging in and entering personal data are protected in the transmission layer (SSL certificate). Thanks to this, personal and login data entered on the website are encrypted on the user’s computer and can only be read on the target server.
– User passwords are stored in a hashed form. The hashing function is one-way – it is not possible to reverse its operation, which is a modern standard for storing user passwords.
– The Operator periodically changes its administrative passwords.
– To protect data, the Operator regularly makes backup copies.
#### 3. Hosting
The website is hosted (technically maintained) on the servers of the operator: Domenomania.pl
The hosting company, to ensure technical reliability, logs activities at the server level. This may include:
– Resources specified by URL identifiers (addresses of requested resources – pages, files),
– The time of the request,
– The time the response is sent,
– The client station name – identification performed by the HTTP protocol,
– Information about errors that occurred during the execution of HTTP transactions,
– The URL address of the page previously visited by the user (referer link) – if the website was accessed via a link,
– Information about the user’s browser,
– Information about the IP address,
– Diagnostic information related to the self-ordering of services through recorders on the site,
– Information related to the handling of email sent to and from the Operator.
#### 4. Your Rights and Additional Information on How Data is Used
In certain situations, the Administrator has the right to transfer your personal data to other recipients if this is necessary to perform the contract concluded with you or to fulfill the Administrator’s obligations. This applies to the following groups of recipients:
– Hosting company on an entrustment basis
– Couriers
– Insurers
– Law firms and debt collectors
– Banks
– Payment operators
– Online chat solution operators
– Companies providing marketing services to the Administrator
Your personal data is processed by the Administrator no longer than necessary to perform related activities specified in separate regulations (e.g., accounting regulations). For marketing data, it is not processed longer than 3 years.
You have the right to request from the Administrator:
– Access to your personal data,
– Rectification of data,
– Deletion of data,
– Restriction of data processing,
– Data portability.
You have the right to object to the processing of your data as specified in section 3.2 in relation to the processing of personal data for the purpose of performing legitimate interests pursued by the Administrator, including profiling, however, the right to object cannot be exercised if there are valid, legitimate grounds for processing, overriding your interests, rights, and freedoms, in particular establishing, pursuing, or defending claims.
You have the right to lodge a complaint regarding the Administrator’s actions to the President of the Personal Data Protection Office, ul. Stawki 2, 00-193 Warsaw.
Providing personal data is voluntary, but necessary to operate the website.
You may be subject to actions involving automated decision-making, including profiling, to provide services under the concluded contract and for direct marketing by the Administrator.
Personal data is transferred to third countries within the meaning of data protection regulations. This means that we transfer them outside the European Union.
#### 5. Information in Forms
The website collects information provided voluntarily by the user, including personal data, if provided.
The website may save information about connection parameters (time, IP address).
The website, in some cases, may save information facilitating the linking of data in the form with the user’s email address filling out the form. In such a case, the user’s email address appears inside the URL address of the page containing the form.
Data provided in the form is processed for the purpose resulting from the function of a specific form, e.g., to process a service request or business contact, registration of services, etc. Each time, the context and description of the form clearly indicate what it is for.
#### 6. Administrator Logs
User behavior information on the website may be subject to logging. This data is used to administer the website.
#### 7. Important Marketing Techniques
The Operator uses statistical analysis of website traffic through Google Analytics (Google Inc., based in the USA). The Operator does not provide personal data to the operator of this service, only anonymized information. The service is based on the use of cookies in the user’s end device. In terms of information about user preferences collected by the Google advertising network, the user can view and edit information derived from cookies using the tool: [Google Ads Preferences](https://www.google.com/ads/preferences/)
The Operator uses remarketing techniques that allow for matching advertising messages to the user’s behavior on the site, which may give the impression that the user’s personal data is being used to track them, but in practice, no personal data is transferred from the Operator to the advertising operators. The technological condition for such activities is the enabled support of cookies.
The Operator uses Facebook Pixel. This technology makes Facebook (Facebook Inc., based in the USA) aware that a registered user is using the website. It is based on data for which Facebook itself is the administrator; the Operator does not provide any additional personal data to Facebook. The service is based on the use of cookies in the user’s end device.
The Operator uses TikTok and Pinterest analytics tools. These technologies allow us to track the effectiveness of our advertising campaigns on the TikTok and Pinterest platforms. The service is based on the use of cookies in the user’s end device.
The Operator uses solutions that analyze user behavior by creating heat maps and recording behavior on the site. This information is anonymized before it is sent to the service operator, so they do not know which physical person it concerns. In particular, passwords and other personal data are not recorded.
The Operator uses solutions that automate the operation of the website in relation to users, e.g., which can send an email to the user after visiting a specific subpage, provided the user has consented to receive commercial correspondence from the Operator.
#### 8. Information about Cookies
The website uses cookies.
Cookies are IT data, in particular text files, which are stored on the User’s end device and are intended for using the website pages. Cookies typically contain the name of the website from which they originate, the time they are stored on the end device, and a unique number.
The entity placing cookies on the User’s end device and accessing them is the website operator.
Cookies are used for the following purposes:
Maintaining the session of the website user (after logging in), so that the user does not have to re-enter the login and password on each subpage of the website;
Achieving the objectives set out above in the “Important Marketing Techniques” section.
Within the website, two basic types of cookies are used: “session” cookies and “persistent” cookies. Session cookies are temporary files stored on the User’s end device until logging out, leaving the website, or turning off the software (web browser). Persistent cookies are stored on the User’s end device for the time specified in the cookie parameters or until they are deleted by the User.
The software used for browsing websites (web browser) usually allows cookies to be stored on the User’s end device by default. Users of the website can change the settings in this regard. The web browser allows the deletion of cookies. It is also possible to automatically block cookies. Detailed information on this subject can be found in the help or documentation of the web browser.
Restrictions on the use of cookies may affect some of the functionalities available on the website.
Cookies placed on the User’s end device may also be used by cooperating entities with the website operator, in particular, this applies to companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).
9. Managing Cookies – How to Express and Withdraw Consent in Practice
If the user does not want to receive cookies, they can change the browser settings. We reserve that disabling cookies necessary for authentication processes, security, maintaining user preferences may make it difficult, and in extreme cases may prevent the use of websites.
To manage cookie settings, select the web browser you use from the list below and follow the instructions:
Edge
Internet Explorer
Chrome
Safari
Firefox
Opera
mobile devices:
Android
Safari (iOS)
Windows Phone