Personal Data Protection at BrandLine Group sp. z o.o. 

 

Who is the Personal Data Controller? 

 

The Controller of your personal data is BrandLine Group sp. z o.o. with its registered office in Poznań, at ul. Adama Kręglewskiego 1, 61-248 Poznań, Poland; entered in the Register of Entrepreneurs of the National Court Register kept by the District Court Poznań – Nowe Miasto and Wilda in Poznań, 8th Economic Division of the National Court Register, at KRS No.: 0000552768, Tax Identification No. (NIP): 7822579840, Business Reg. No. (REGON): 361233546 (hereinafter BrandLine or ADO).   

Contact information for the Personal Data Controller: daneosobowe@brandlinegroup.com

Contact information for the Data Protection Officer: iod@brandlinegroup.com 

 

Each time before starting to process personal data, BrandLine Group sp. z o.o. identifies the purpose and legal basis for the processing, and determines the data retention period. When bound by a contract, we process personal data for the purpose of its execution or conclusion and will retain this data for at least 6 years after its termination to comply with tax law requirements. We may also process your data to comply with legal obligations under Polish or European laws. For example, in the event of a workplace accident on our premises, we are required to process the personal data of those involved in accordance with health and safety regulations, retaining the data for the period mandated by law. We may also process your personal data for our legitimate interests. For example, we will retain your name, surname, and e-mail address when you contact us to inquire about our offer. If none of the above legal grounds apply, we will seek your consent to process your data, such as for marketing purposes. Your data will be processed until you withdraw your consent or the purpose of processing ends (e.g. upon completion of a marketing activity). We will always make every effort to ensure you are informed about the purpose of processing your personal data, the legal basis for such processing, the data retention period, and all other information required by the General Data Protection Regulation (GDPR) as part of our information obligations. If you do not find the answer to your questions in this information, please contact us at the provided e-mail address: iod@brandlinegroup.com. Our Data Protection Officer (DPO) will be pleased to provide you with detailed information and address any concerns you may have. 

 

 

For what matters can the Personal Data Controller be contacted? 

 

The Data Protection Officer has been appointed at BrandLine Group in accordance with Article 37 of Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation), hereinafter referred to as the Regulation or GDPR. The Data Protection Officer ensures the accuracy of personal data processing within the organisation where they have been appointed. As part of their duties, the Data Protection Officer also serves as the point of contact for all reports related to potential irregularities in data processing. You can contact the DPO if, for example, you believe a data protection breach has occurred. The Data Protection Officer is also the designated entity to whom requests for exercising your rights should be directed. 

These rights, subject to the limitations outlined in the GDPR, specifically concern: 

  1. the right of access to personal data, 
  2. the right to rectify inaccurate personal data, 
  3. the right to have personal data erased (“right to be forgotten”), 
  4. the right to restrict data processing, 
  5. the right to portability of personal data, 
  6. the right to object to further data processing, 
  7. the right to object to automated decision-making, including profiling, 
  8. the right to report a personal data protection breach to the supervisory authority (www.uodo.gov.pl , ul. Stawki 2, 00-193 Warsaw, Poland). 

 

How will your request be processed? 

The request may be submitted through employees and consultants of BrandLine Group sp. z o.o. or directly to ADO. We will process it promptly. If verifying the feasibility of your request takes longer than one month, you will be informed of the extended response deadline in a separate letter. Such an extension may be necessary due to the complexity of the request or the number of requests received. If the request is unclear or does not allow for your unambiguous identification, ADO will ask for additional information within one month of receipt. If the request is submitted electronically, further correspondence will also be conducted electronically whenever possible. In other cases, you will be notified of the decision in writing via registered letter with acknowledgement of receipt. The processing of your request is free of charge. However, if the request is manifestly unfounded or excessively repetitive, the Personal Data Controller may: 

  • impose an appropriate fee, considering reasonable administrative costs of processing the request, communicating, or carrying out the requested actions, or 
  • refuse to process the request. 

 

What are the principles of personal data processing? 

In the interest of security, respect, and compliance with your rights, your personal data at BrandLine Group sp. z o.o. are: 

  • processed lawfully, fairly, and transparently, 
  • collected for specific, explicit, and legitimate purposes, and not further processed in ways incompatible with those purposes, 
  • adequate, relevant, and limited to what is necessary for its intended purposes, in line with the principle of data minimisation, 
  • accurate and updated as needed, 
  • retained in a form that permits identification of the data subject for no longer than necessary for the purposes for which it is processed, 
  • processed in a way that ensures appropriate security of personal data: protection against unauthorised or unlawful processing and accidental loss, destruction or damage using appropriate technical and organisational measures. 

 

How can you contact the Data Protection Officer? 

Electronically to the e-mail address: iod@brandlinegroup.com or in writing to the address: Data Protection Officer, ul. Adama Kręglewskiego 1, 61-248 Poznań, Poland.  

 

 

Will your personal data be shared with third parties? 

  • As part of the processing activities, your personal data may be shared with our trusted partners. BrandLine Group sp. z o.o. carefully selects its cooperation partners to ensure that an appropriate standard of data security is maintained. The recipients of your personal data may include, but are not limited to, the following: 
  • IT service providers and suppliers of IT systems, 
  • postal operators, 
  • carriers, 
  • logistics operators,  
  • payment processing companies,  
  • warehousing service providers, 
  • providers of marketing services, 
  • entities responsible for distributing goods, 
  • providers of server colocation services, 
  • law firms, 
  • providers of advisory and auditing services,  
  • service and maintenance companies (involved in handling customer claims),  
  • authorised entities upon documented request, 
  • insofar as this is regulated by law.   

 

Do we transfer data outside the European Economic Area? 

Your personal data will be transferred outside the European Economic Area in connection with BrandLine’s operation of the company’s brand websites (online shops). The scope of personal data processed by the Controller on individual websites may vary depending on the features or functionalities of each website the user accesses. Detailed information on the processing of personal data for each website is provided in the Privacy Policy section on the respective websites and at the bottom of brandlinegroup.com, in accordance with our information obligations.  

  

Social media plug-ins have also been integrated into the online shop websites. The purpose, scope, and further processing and use of data by service providers are outlined in the privacy policies of the individual social media platforms, to which the information in the websites’ privacy policies refers. 

 

Do we use data profiling?  

The Controller uses automated decision-making systems, including profiling tools; however, please note that these will not have legal consequences for you or significantly affect your circumstances. 

Profiling of personal data by the Controller involves processing data (including through automated means) to evaluate specific information, particularly to analyse or predict the personal preferences of individuals using our websites. 

Information obtained through automated decision-making, including profiling, will be used solely to tailor our marketing efforts to better align with the needs and preferences of users. 

 

Do we use cookies?  

This website, along with the websites of the online shops operated by BrandLine (lionelo.pl, overmax.pl, zeegma.pl) use cookies to ensure their proper functionality. BrandLine informs users about the cookies it uses on its brand websites during their first visit. This information is also included in the privacy policies of each individual website. For more information, please refer to the Cookie Policy at brandlinegroup.com 

 

 

If you do not find the answers to your questions in this information, please contact us at the following e-mail address: daneosobowe@brandlinegroup.com or by post: ul. Adama Kręglewskiego 1, 61-248 Poznań, Poland.