Privacy Policy
1 Definitions
Administrator - SUSHI 2 GO SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ with registered office at ul. Pola Karolińskie 4, 02-401 Warsaw, entered in the National Court Register - Register of Entrepreneurs by the REGON COURT FOR M.ST.WARSAWY IN WARSAW, XIII ECONOMIC DEPARTMENT OF THE NATIONAL REGISTER, under KRS no. 0000743900, NIP no. 5223044327, REGON no. 362978998, share capital PLN 5000.00.
RODO - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC.
Service - the service operated by the Administrator at: http://online.sushi-host.beep.pl and https://sushizushi.pl
User - any natural person visiting the Website or using one or more of the services or functionalities described in the Policy.
2 Data processing
In connection with the User's use of the Website, the Administrator collects data to the extent necessary to provide individual services. The detailed principles and purposes of the processing of personal data collected during the User's use of the Website are described below.
3 Purposes and legal basis of data processing
Personal data of all Users using the Website (including IP address or other identifiers and information collected through cookies), are processed by the Administrator:
- in order to provide services electronically in terms of providing Users with access to content collected on the Website,- in which case the legal basis for the processing is the necessity of the processing for the performance of the contract (Article 6(1)(b) RODO);
- for analytical and statistical purposes, in which case the legal basis for the processing is the Administrator's legitimate interest (Article 6(1)(f) RODO), consisting of conducting analyses of Users' activities, as well as their preferences in order to improve the functionalities used and services provided;
- for the purpose of possibly establishing, pursuing or defending against claims - the legal basis for the processing is the legitimate interest of the Administrator (Article 6(1)(f) RODO) to protect your rights;
The User's activity on the Website, including his/her personal data, are recorded in system logs (a special computer programme used to store a chronological record containing information on events and activities concerning the IT system used to provide services by the Administrator). The information collected in the logs is processed primarily for purposes related to the provision of services. The Administrator also processes them for technical, administrative purposes, for the purposes of ensuring the security of the IT system and the management of this system, as well as for analytical and statistical purposes - in this regard, the legal basis for processing is the Administrator's legitimate interest (Article 6(1)(f) RODO).
4 Marketing
The Administrator processes Users' personal data in order to carry out marketing activities, which may consist of:
- displaying marketing content relevant to the User's interests (behavioural advertising);
- displaying marketing content to you that is not tailored to your preferences (contextual advertising);
In order to carry out marketing activities, the Administrator uses profiling in some cases. This means that, by means of automated data processing, the Administrator assesses selected factors concerning individuals in order to analyse their behaviour or make predictions for the future.
The Administrator processes the Users' personal data for marketing purposes in connection with directing contextual advertising (i.e. advertising that is not tailored to the User's preferences) to the Users. The processing of personal data is then carried out in connection with the Administrator's legitimate interest (Article 6(1)(f) RODO).
The Administrator and its partners process Users' personal data, including personal data collected through cookies (described below), for marketing purposes in connection with the targeting of Users with behavioural advertising (i.e. advertising that is tailored to the User's preferences). The processing of personal data then includes profiling of Users. The use of the personal data collected through this technology for marketing purposes, in particular for the promotion of services and goods of third parties, requires the User's consent. This consent may be withdrawn at any time.
5. files cookies
The Administrator's website uses "cookies". By not changing the browser settings on the Reader's side, you consent to their use. They are short text information stored on the User's computer, phone, tablet or other device. They can be read by the Administrator, as well as by systems belonging to other entities whose services it uses (such as Google). Cookies usually contain the name of the website from which they originate, the length of time they are stored on the end device and a unique number. For more information on cookies, please visit www.allaboutcookies.org.
The cookies used on the site do not store personal data or other information collected from the Reader. The website uses a cookie to identify the browser session, which enables the use of the website features. The use of cookies does not allow the collection of any personal or address information of the Reader or any confidential information from the Reader's computer.
Cookies are used for the following purposes: maintaining the security of the service and preventing fraud, facilitating website performance, recording visits for marketing and statistical purposes, using social features, supporting website personalisation (e.g. storing language settings). Cookies may also be used and placed by partners cooperating with the Administrator - they are then subject to the cookie policies or privacy policies of the entities placing them.
The administrator reserves the right to use the Google Tag Manager tool for marketing purposes. This involves the use of Google cookies, for example Google Ads codes.
The scope and purpose of data collection and how you can contact us and exercise your rights or privacy settings are described in the privacy policies of the individual service providers..
By default, your web browser allows the use of cookies
on your device. The Administrator informs you that you can change the settings in your Internet browser - completely block the automatic handling of cookies or request to be notified each time cookies are placed on your device.
If using Google Chrome, instructions can be found here - https://support.google.com/chrome/answer/95647?hl=en
If using Mozilla Firefox, instructions can be found here - https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer
If using Safari, instructions can be found here - https://support.apple.com/kb/ph21411?locale=pl_PL
If using Microsoft Edge, instructions can be found here -. https://docs.microsoft.com/en-us/microsoft-edge/devtools-guide/debugger/cookies
If Internet Explorer is used, the Administrator suggests changing the tool to one of the above, and furthermore instructions can be found here -. https://support.microsoft.com/en-us/help/17442/windows-internet-explorer-delete-manage-cookies
The Administrator feels obliged to warn you that disabling or restricting the use of cookies may cause difficulties in using the website
and limit its functionality.
6 Processing of User Data.
- Within the EEA:
Within the Service, User data is processed by entities cooperating with the Administrator, which, pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons in relation to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC, are obliged to comply with high privacy standards analogous to those contained in the Policy.
In the case of the Upmenu tool provided by TASTYSOFT SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, based in Łódź, Poland, the data collected is used to process the order and to identify the person, and more information about the tool's privacy standards is available at https://www.upmenu.com/pl/polityka-prywatnosci.
- Beyond the EEA:
In view of the fact that some of the entities cooperating with the Controller are located outside the European Union and are therefore considered so-called third countries under the provisions of the RODO. The Controller ensures that, in accordance, it selects cooperating entities that provide an adequate level of security for the processing of personal data.
For Google Inc. (Headquarters address: 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)-. The data collected prevents the identification of a specific person, and more information on the tool's privacy standards is available at the link www.google.com/intl/pl/policies/privacy/partners/. In addition, using the following link: https://tools.google.com/dlpage/gaoptout It is possible to switch off the activity measured by Google Analytics .
For Facebook Inc. (Headquarters address: Facebook Inc., 1601 S. California Ave. Palo Alto, CA 94304, USA) - As a general rule, the data collected prevents the identification of a specific person, and more information on the privacy standards of the tool is available under the link https://www.facebook.com/about/privacy and https://help.instagram.com/2000935033561463
Thus, the above companies guarantee compliance with data protection standards analogous to the Ordinance, and the Administrator's use of their technology in processing personal data is lawful.
- Period of processing of personal data
The period of data processing by the Administrator depends on the type of service provided and the purpose of the processing. As a general rule, the data are processed for the duration of the service provided or the execution of the order, until the withdrawal of the consent given or until an effective objection to the data processing is made in cases where the legal basis of the data processing is the legitimate interest of the Administrator.
The processing period may be extended if the processing is necessary for the establishment, assertion or defence of possible claims, and thereafter only if and to the extent required by law. After the expiry of the processing period, the data shall be irreversibly deleted or anonymised.
- User rights
The user is entitled to:
- access to the content of the data and to request the rectification of the data,
- deletion of data,
- limitation of processing,
- the right to data portability,
- The right to object to the processing,
- the right to lodge a complaint to the supervisory authority - the President of the Office for Personal Data Protection ul. Stawki 2, 00-193 Warsaw
To the extent that your data are processed on the basis of your consent, you may withdraw it at any time by contacting the Administrator.
The User has the right to object to the processing of data for marketing purposes if the processing is carried out in connection with the legitimate interest of the Controller, as well as - for reasons related to the User's particular situation - in other cases where the legal basis for the processing is the legitimate interest of the Controller (e.g. in connection with the performance of analytical and statistical purposes).
7 Data recipients
In connection with the provision of services, personal data will be disclosed to external parties,
including in particular suppliers responsible for the operation of IT systems, marketing agencies (for marketing services) and entities affiliated with the Administrator.
If the User's consent is obtained, his or her data may also be made available to other entities for their own purposes, including marketing purposes.
The Administrator reserves the right to disclose selected information concerning the User to the competent authorities or to third parties who make a request for such information on the basis of an appropriate legal basis and in accordance with the provisions of the applicable law.
8 Contact
Contact with the Administrator is possible at the e-mail address kontakt@sushizushi.pl or in writing to the Administrator's registered office address.
9. Changes to the Privacy Policy
The Policy is kept under review and updated as necessary. The current version of the Policy has been adopted and is effective from 02.10.2020.