PRIVACY AND COOKIES POLICY EZEBRA www.ezebra.co.uk

Your privacy is important to us. It is our interest to respect your privacy and your right to deal with the information about you.

This Privacy Policy helps you to understand how we use your personal information, who we share it with and the rights that you have.

We change the terms of this Privacy Policy from time to time and you should check it regularly. The last updated date is shown at the end of this document. If we make any material changes, we will take steps to bring it to your attention.

The legal rules about dealing with personal data are strictly followed by us.

I. General information

1. The Controller of personal data is - EZEBRA.PL sp z o.o., Wilhelma Hessa 7, 20-270 Lublin, Wilhelma Hessa 7, 20-270 Lublin, Poland, KRS: 0001031957, Vat number: 7123275732, Email: info@ezebra.co.uk.
2. We are committed to complying with the GDPR (the Regulation No. 2016/679 of the European Parliament and of the Council (EU) of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC) and the Data Protection Act 2018, once enacted.
3. The Controller reserves the right to change this Privacy Policy. Any amendments or new terms will be made available via our Website www.ezebra.co.uk.

II. Personal information

1. Under the EU's General Data Protection Regulation ("GDPR"): Personal Data is defined as "any information relating to an identified or identifiable natural person ('data subject'); by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person".
2. The Controller collects information provided voluntarily by the Online Shop Customers. However, the provision of marked personal data is a condition for placing an order.
3. The Controller shall make an extra effort in order to protect privacy and information about the Online Shop Customers provided to him. The Controller shall exercise due diligence when selecting and applying appropriate technical measures, including those of programming and organizational nature, in order to protect the processed data, and in particular he shall protect the data from unauthorized access, disclosure, loss and destruction, unauthorized modification, and also from their processing with the breach of the applicable provisions of law.
4. Personal data will be processed in accordance with the principles of art. 5 GDPR. Personal data will be:
a) processed lawfully, fairly and in a transparent manner in relation to the data subject (‘lawfulness, fairness and transparency’);
b) collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; (‘purpose limitation’);
c) adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (‘data minimisation’);
d) accurate and, where necessary, kept up to date (‘accuracy’);
e) kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; (‘storage limitation’);
f) processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures (‘integrity and confidentiality’).

III. Legal basis

1. The basis for the processing of the Customer's Personal Data is primarily the necessity to perform the contract to which he is a party or the need to take action at his request prior to its conclusion (article 6 par 1 (b) of GDPR).
2. After expressing separate consent, pursuant to article. 6 par. 1 (a) GDPR data may also be processed for the purpose of sending commercial information by electronic means for direct marketing purposes.
3. If the Customer has subscribed for the newsletter, The Controller shall send, to the electronic mail address provided by the Customer, messages with information about products and services available in the Online Shop, and also information about organized competitions, promotions (article 6 par. 1 (a) GDPR).
4. Personal data may also be processed in an automated way in the form of profiling, provided that the user consents to it. The consequence of profiling will be the assignment of a profile to a given person in order to take decisions regarding him or to analyze or predict his preferences, behaviors and attitudes. (article 6 par. 1 (a) GDPR).
5. In other purposes, the Customer's Personal Data may be processed on the basis of:
a) applicable law when processing is necessary to fulfill the legal obligation of the Controller e.g. when based on tax regulations or accounting one, The Controller settles concluded sales contracts (article 6 (1) (c) of the GDPR);
b) indispensable for purposes other than those mentioned above resulting from legitimate interests pursued by the Controller or by a third party, in particular to determine, assert or defend claims, market and statistical analyses (article 6 (1) (f) GDPR).

IV. The personal data we collect and use

1. We ensure that the collection and use of your personal data is lawful. Therefore, for the purposes listed below, we only use your personal data if one of the following conditions apply:
a) You have given us your consent.
b) We need your personal data for the performance of a contract you enter into with us, such as when you purchase a product through the website.
c) We need to comply with legal obligations.
d) We need to protect your vital interests.
e) Your data is necessary for the public interest.
f) We have a legitimate interest in processing the personal data.
2. We may collect and process your data when you visit our site and when you use our site to make a purchase.
3. When you visit and use our website, you consent to our obtaining and processing the following information about you:
a) Location data and online identifiers, including details of your visit to our site and the resources you access.
b) Information about your computer, including your IP address, operating system, and browser.
c) Cookies, and other information about your general internet usage.
d) This information is used for system administration and to ensure your experience is fully optimised. It is statistical, aggregated information and does not identify any specific individual. We may provide reports making use of this information to our advertisers.
4. In providing us with information through our website, you also consent to our processing this data and using it for the purposes specified by you. This may include:
a) Information you provide by filling in forms on our site www.ezebra.co.uk including information you provide when registering an account with us, subscribing to any of our services, contacting us.
b) When you write to us, we may retain a copy of your correspondence and contact details.
5. When you make a purchase through our site, we must necessarily obtain and process the following data in order to fulfil your order with us:
a) Your name, address, billing information, and contact details.
b) A record of your transactions with us and your purchase history.

V. Duration of Storage; Retention Periods

1. We store your data as long as it is necessary to provide our online offer and the services connected with it or as long as we have a legitimate interest in continued storage. In all other cases, we delete your personal data with the exception of such data that we are required to retain for the purpose of contractual or statutory (e.g., taxation or commercial law), retention periods (e.g., invoices). At this point, contractual retention periods may also result from contracts with third parties (e.g., those holding copyrights or IP rights). Data that is only retained because it is subject to a retention period is restricted from processing until the period expires and will then be deleted.
2. Where processing of the Customer’s personal data is based on the Customer’s consent, the Customer may revoke the consent at any time, without prejudice to the processing of personal data prior to the revocation of consent.

VI. Recipients of personal data

1. Recipients of the Customer's personal data may by entities performing the order at the Seller's request and handling it, such as: shipment companies, accounting companies, suppliers of the goods, assembly services, providers of IT solutions, payment processing companies, banks, companies providing marketing services, telecommunication providers, law offices, authorised state authorities.
2. We do not allow third-party suppliers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.
3. In order to process your personal data for the purposes set out in this Privacy Policy, we may transfer your personal data to third parties that are based outside of the EEA or the UK. For any personal data transfers to the EEA, we will continue to follow all regulatory and legal requirements set out EU-UK Trade and Cooperation Agreement, and any subsequent arrangements that are agreed.
4. Whenever we transfer your personal data out of the EEA, we attach a similar degree of protection to it (as it would receive in the EEA) by ensuring at least one of the following safeguards is implemented:
5. We will only transfer your personal data to countries, territories or sectors within a country that have been deemed to provide an adequate level of protection for personal data by the European Commission.
6. The transfer is subject to a legally binding and enforceable commitment on the recipient to protection the personal data (e.g. through the use of European Commission approved standard contractual clauses).
7. The transfer is made subject to binding corporate rules.
8. The transfer is based on a derogation from restrictions on transferring personal data outside of the EEA (such as where you give your consent, the transfer is necessary for the performance of contract with you, or the transfer is necessary for the establishment, exercise or defence of legal claims).

VII. Your rights on personal data concerning you

Right of access:
You have the right to access the data that we hold about you. Should you wish to receive details that we hold about you please contact us using the contact details below.
info@ezebra.co.uk.

Right to be forgotten:
You have the right to request that we delete all the data that we hold about you. On request we will delete all your data within 30 days.

Right to object:
You have the right to prohibit the use of your data for certain purposes.

Right to rectification:
You have the right to have incorrect data we hold about you corrected and incomplete data completed.

Right of portability:
You have the right to request personal data we hold about you in a format that you are able to move, copy or transfer it to another IT environment, e.g. in csv format.
If you would like a copy of the personal data we hold about you, please email us at info@ezebra.co.uk.

There are several situations when you can have us delete your personal data, this includes (but is not limited to):
a) we no longer need to keep your personal data;
b) you have successfully made a general objection;
c) you have withdrawn your consent to us using your personal data (and we do not have any other grounds to use it);
d) we have unlawfully processed your personal data.
We’d like the chance to resolve any complaints you have; however you also have the right to complain to the UK data protection regulator (the "ICO") about how we have used your personal data. Their website is https://ico.org.uk/.

COOKIES

1. We use cookies on our website.
2. When viewing the Online Service websites “cookie” files are used, which are small text files recorded in the Customer’s target device in connection with using the Online Service. They are used in order to improve the experience with the Online Service websites.
3. The “cookie” files used by the Controller are safe for the Customer’s devices. In particular, it is not possible for viruses or other unwanted or malicious software to enter the Customer’s devices in that way. Those files allow to identify the software used by the Customer and to adjust the Online Service to each Customer individually. “Cookie” files sometimes contain information about the domain name of their origin, how long they are kept in the device and the ascribed value.
4. Due to the purpose of collecting cookies, we distinguish the following Cookies:
a) necessary Cookies: necessary for the proper functioning of the service - files processed on the basis of the legitimate interest of the controller (Article 6(1)(f) of the GDPR);
b) statistics Cookies: they allow us to study website traffic, learn about our users' preferences, analyse their behaviour on the site and enable interactions with external networks and platforms - files processed based on the user's voluntary consent (Article 6(1)(a) of the GDPR);
c) marketing Cookies: they allow us to tailor the advertising and content displayed to our users' preferences and to conduct personalized marketing campaigns - files processed based on the user's voluntary consent (Article 6(1)(a) of the GDPR).
5. “Cookie” files may be used by advertisement networks, in particular by the Google network, in order to display advertisements adjusted to the way the Customer uses the Online Service. To that end, the information may be retained about the Customer’s navigation path or the time spent on the given website.
6. As regards the information about the Customer’s preferences collected by the advertising network Google, the Customer may view and edit the information related to cookie files by means of the following tool: https://www.google.com/ads/preferences/.
7. The Customer may, by himself and at any time, change the “cookie” files settings, specifying the conditions of their storing and of their access to the Customer’s device. The settings referred to in the previous sentence may be changed by the Customer through the web browser settings or through configuration of the service. Those settings may be changed in particular so as to block automatic support for “cookie” files in the web browser settings or to inform each time they are introduced to the Customer’s device. Detailed information about the possibilities and ways of supporting cookie files is available in the software (web browser) settings.
8. To learn how to manage cookies, including how to disable them in your browser, you can use the help section of your browser. You can learn more about this by pressing the F1 key while in your browser. In addition, you will find appropriate tips on the following pages, depending on the browser you are using:
Firefox
Chrome
Safari
Internet Explorer / Microsoft Edge
9. The Customer may remove “cookie” files at any time, using the functions available in the web browser he uses.
10. Limitation of the “cookie” files application may affect some functionalities available on the Online Service website.
11. We use the services of: Google Maps, Google Analytics, Meta (Facebook), Google Ads, PayPal, Google reCAPTCHA, IdoAccounts, IdoSell, IAI S.A., Google.

pixel