Privacy Policy

I. What is a privacy policy?

The Privacy Policy is a set of rules aimed at informing our clients about all aspects of the process regarding the acquisition, processing and safeguarding of their personal data. We also explain the principles and purposes of data acquisition. These processes are carried out on the basis of applicable laws and regulations, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC and the Act of 10 May 2018 on the protection of personal data.

II. Definitions

Administrator – Renomed Sp. z o.o. based in Poznań.

Personal data – all information about a natural person identified or identifiable by one or more specific factors determining physical, physiological, genetic, psychological, economic, cultural or social identity, including device IP, location data, Internet identifier and information collected through cookies and other similar technology.

RODO – Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC.

Law – the Law of May 10, 2018 on the protection of personal data.

Online store – Renomed online store operated by the Administrator at the address renomed.eu

User – any natural person visiting the Online Store and using one or more of the services or functionalities described in the Policy.

III. Personal data controller

The administrator of the personal data is Renomed Sp. z o.o. based in Poznań with the address ul. Jawornicka 34, 60-161 Poznań, entered in the register of entrepreneurs of the District Court Poznań Nowe Miasto and Wilda VIII Economic Department under the KRS number: 0000391008, REGON: 301803329, NIP: 779-23-96-720, share capital: PLN 1,200,000.00.

IV. Purposes and grounds for processing personal data

In accordance with the scope of its activities, the Administrator processes your personal data in connection with the following categories of activities:

1. browsing the Online Store

Data of all users of the online store (including IP address or other identifiers and information collected through cookies or other similar technologies), and who are not registered Users (i.e. persons who do not have a profile in the online store) are processed by the Administrator for one or more of the following purposes:

– Provision of services by electronic means in the scope of providing Users with access to content posted in the online store, providing contact forms – legal basis for processing – the necessity of processing for the performance of the contract (Article 6(1)(b) RODO),
– handling purchases made without registration in the online store – legal basis for processing – the necessity of processing for the performance of the contract (Article 6(1)(b) RODO),
– Complaint handling – legal basis for processing – the necessity of processing for the performance of the contract (Article 6(1)(b) of the DPA),
– possible establishment, investigation or defense of claims – legal basis for processing – legitimate interest of the Administrator (Article 6(1)(f) RODO), which is to protect your rights,

The User’s activity in the Online Store, including his/her personal data, is recorded in system logs (a dedicated computer system created to store a chronological record containing information about events and activities concerning the computer system used to provide services by the Administrator). The information collected in the logs is processed in connection with the provision of services by the Administrator. The Administrator also processes them for technical purposes, which in particular means that the data may be temporarily stored and processed in order to ensure the security and proper functioning of IT systems, e.g. in connection with making security copies, testing changes in IT systems, detecting irregularities or protecting against abuse and attacks.

2. online store registration

Users registering in the online store by creating a customer account are asked to provide the data necessary for the creation and operation of the account. In order to facilitate the placing of orders, the User may provide additional data and consent to its processing. Additional data can be changed or deleted at any time. Providing data marked as mandatory (e-mail address and password) is required to create and operate an account, and failure to provide such data will result in the inability to create an account. Personal data provided to the administrator is processed for one or more of the following purposes:

– Provision of services related to the maintenance and operation of an account in the Online Store – legal basis for processing – the necessity of processing for the performance of the contract (Article 6(1)(b) RODO),

– possible establishment, investigation or defense of claims – legal basis for processing – legitimate interest of the Administrator (Article 6(1)(f) RODO), which is to protect your rights,

3. placing an order

a) Placing an order (an offer to purchase goods) by the User in the online store involves the processing of his/her personal data. Provision of data marked as mandatory is voluntary, however, it is necessary for the purpose of processing and delivery of the goods ordered by him, and their failure to do so results in the impossibility of placing an order. Provision of other data is optional and does not affect the execution of the order.

(b) Personal data is processed provided as part of placing an order in the online store is processed for one or more of the following purposes:

– execution of a submitted order – legal basis for processing: in the scope of obligatory data – the necessity of processing to perform the contract (art. 6 sec. 1 lit. b RODO), in the scope of data provided optionally – consent (art. 6 sec. 1 lit. a RODO);
– fulfillment of statutory obligations incumbent on the Administrator, resulting in particular from tax and accounting regulations – legal basis for processing – legal obligation (art. 6 sec. 1 lit. c RODO);
– possible establishment and investigation of claims or defense against them – legal basis for processing – legitimate interest of the Administrator (art. 6 sec. 1 lit. f RODO), which consists in protection of its rights.

4 Contact form

a) The Administrator’s Online Store offers the possibility of contacting the Administrator using an electronic contact form. Using the form requires providing personal data necessary to contact the User and respond to the inquiry. The User may also provide other data to facilitate contact or handling of the inquiry. Provision of data marked as mandatory is required in order to accept and handle the inquiry, and failure to provide such data will result in the inability to use the form. Provision of non-required data is voluntary.

b) Personal data provided to the Administrator in the contact form are processed for one or more of the following purposes:
– identification of the sender and handling of his/her inquiry sent through the form provided – legal basis for processing – the necessity of processing for the performance of the service contract (Article 6(1)(b) RODO);

5. cookies in the online store

The Administrator uses so-called “cookies” to provide the User with services provided electronically and to improve the quality of these services. Accordingly, the Administrator and other entities providing services to the Administrator use cookies, storing information or accessing information already stored in the User’s telecommunications end device (computer, phone, tablet, etc.). Cookies used for this purpose include:

– cookies with data entered by the User (session ID) for the duration of the session (user input cookies);
– authentication cookies used for services that require authentication for the duration of the session (authentication cookies);
– Security cookies, such as those used to detect authentication abuse (user centric security cookies);
– multimedia player session cookies (e.g. flash player cookies), for the duration of the session (multimedia player session cookies);
– Persistent cookies used to personalize the user interface for the duration of the session or slightly longer (user interface customization cookies),
– cookies used to remember the contents of your shopping cart for the duration of your session (shopping cart cookies);

V. How long do we keep your data?

(1) In accordance with applicable laws, we process your personal data for the time it takes to achieve the stated purpose.

(2) When we do not need to perform operations on your personal data other than storing them (for example, when we store the contents of an order for the purpose of defending against claims), we additionally secure them until permanent deletion or destruction – this involves encrypting personal data or a set of personal data in such a way that it cannot be read without an additional key, and therefore such information becomes completely useless to an unauthorized person.

(3) Due to the Administrator’s statutory obligations under tax and accounting regulations in particular – the legal basis for processing – legal obligation (Article 6(1)(c) of the DPA), we keep your personal data in the form of an order and a copy of the invoice for 5 full years.

VI. What rights do you have related to your data?

(1) Data users have the following rights:

The right to information about the processing of personal data – on this basis, the person making such a request, the Administrator provides information about the processing of personal data, including, in particular, the purposes and legal grounds for processing, the scope of the data held, the entities to which the personal data are disclosed and the planned date for their deletion,

The right to obtain a copy of the data – on this basis the Administrator provides a copy of the processed data, concerning the person making the request,

The right to update data – on this basis, the Administrator removes any inconsistencies or errors regarding the processed personal data, and completes or updates it if it is incomplete or has changed,

The right to erasure of data (the so-called “right to be forgotten”) – on this basis, you can request the erasure of data whose processing is no longer necessary to carry out any of the purposes for which they were collected,

The right to restrict processing – on this basis, the Administrator shall cease performing operations on personal data, except for operations consented to by the data subject and their storage, in accordance with the established rules, or until the reasons for restricting processing cease to exist (e.g., a decision of a supervisory authority authorizing further processing is issued);

The right to data portability – on this basis, to the extent that the data are processed in connection with a contract concluded or consent given, the Administrator shall release the data provided by the data subject in a computer-readable format. It is also possible to request that the data be sent to another entity – provided, however, that there are technical capabilities in this regard both on the part of the Administrator and that other entity;

Right to object to processing for marketing purposes – the data subject may object at any time to the processing of personal data for marketing purposes, without having to justify such objection. The controller informs that it does not carry out marketing activities, hence the right to object to the processing of marketing data is formal and results from the obligation to provide information.

VII. Right to withdraw consent

(1) If the Administrator processes your personal data on the basis of your consent, you may withdraw this consent at any time.

(2) If you wish to withdraw your consent to the processing of your personal data, you may do so as follows:

– send an email directly to the Administrator at:

(3) If the Administrator processes your personal data on the basis of your consent, revoking it does not make the processing of your personal data until then illegal. Until you revoke your consent, the Administrator has the right to process your personal data and revoking your consent does not affect the legality of previous processing.

VIII. The right to file a complaint

If you believe that your personal data is being processed in violation of applicable law, you may file a complaint with the President of the Office for Personal Data Protection.

IX. Transfer of personal data to Third Countries and International Organizations

Your personal data is neither transferred to Third Countries, i.e. outside the European Economic Area (EEA), nor outside international organizations.

X. Transfer of personal data to other entities

Recipients of your personal data may be, in particular, entities directly or indirectly related to the Administrator, especially in an organizational or personal way, as well as external service providers (e.g. courier and forwarding companies, IT service providers), courier and forwarding companies, accountants, auditors and auditors, lawyers, tax administration bodies, state services and courts. The Administrator, in connection with cooperation with courier and forwarding companies (Poczta Polska, TNT, InPost), may entrust the processing of your personal data to the above-mentioned entities for the purpose of processing your orders. In each case, these entities will be obliged to maintain the confidentiality of your personal data and to process them in accordance with data protection regulations.

XI. Profiling

Your personal data is not subject to profiling as one form of automated personal data processing.

XII. Changes to the Privacy Policy

(1) To the extent not covered by this Privacy Policy, the provisions of the Law and the Regulations shall apply.
(2) This privacy policy is effective as of May 25, 2018.

XIII. Questions and contact

(1) If you have any questions about the privacy policy, please contact the Administrator in writing, by postal mail writing to: Renomed Sp. z o.o., 34 Jawornicka St., 60-161 Poznań or by e-mail to: sales@renomed.eu.