Privacy Policy of www.kavaeurope.eu
1. General Information
This Privacy Policy sets out the rules for the processing and protection of personal data of Users in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR / RODO).
2. Data Controller
The controller of personal data is:
Pacific Elixir sp. z o.o.
Registered office: Warsaw, Poland
KRS: 0000932091
NIP: 5242928576
REGON: 520421791
3. Scope of Processed Personal Data
The Controller may process the following personal data:
– first and last name,
– email address,
– phone number,
– correspondence address,
– company details,
– IP address,
– data contained in cookies,
– other data voluntarily provided by the User.
4. Purposes and Legal Basis of Processing
Personal data is processed for the following purposes:
a) account registration and user verification (Article 6(1)(b) GDPR),
b) performance of contracts and provision of electronic services (Article 6(1)(b) GDPR),
c) communication with the User (Article 6(1)(b) and (f) GDPR),
d) marketing and promotion of the Controller’s products and services (Article 6(1)(a) GDPR),
e) sending newsletters (Article 6(1)(a) GDPR),
f) analytical and statistical purposes (Article 6(1)(f) GDPR),
g) pursuing or defending legal claims (Article 6(1)(f) GDPR).
5. Data Recipients
Personal data may be transferred to entities cooperating with the Controller, such as IT service providers, accounting offices, courier companies, payment operators, and marketing service providers, solely to the extent necessary for the performance of services.
6. Data Transfer Outside the EU
Personal data may be transferred outside the European Economic Area only if an adequate level of protection is ensured, in accordance with GDPR regulations.
7. Data Retention Period
Personal data will be stored for the period necessary to achieve the purposes for which they were collected, and thereafter for the period required by applicable law or until the consent is withdrawn.
8. User Rights
The User has the right to:
– access their personal data,
– rectify their data,
– erase their data (“right to be forgotten”),
– restrict processing,
– data portability,
– object to data processing,
– withdraw consent at any time (without affecting the lawfulness of processing before withdrawal),
– lodge a complaint with the President of the Personal Data Protection Office (UODO).
9. Cookies
The Service uses cookies to ensure proper functioning, improve quality, and conduct statistical analysis. Detailed information is available in the Cookies Policy.
10. Data Security
The Controller applies appropriate technical and organizational measures to ensure the protection of processed personal data, including protection against unauthorized access, loss, destruction, or modification.
11. Changes to the Privacy Policy
The Controller reserves the right to make changes to this Privacy Policy. Users will be informed of any changes in a clear and accessible manner.
12. Contact
If you have any questions regarding this Privacy Policy or personal data processing, please contact us via the CONTACT section on the website.
