privacy policy

1. General provisions:
1.1. Company Musicpharse Production Jacek Żur Plac Sejmu Sląskiego 2 room 304; 40-032 NIP: 954-104-57-63 acts as an administrator in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (hereinafter "GDPR") in the field of protection of natural persons as well as in in connection with the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC, with regard to personal data of Users who are natural persons.

2. Data processing and its scope:
Data processing is understood as operations and activities performed with regard to Users' data, in particular their storage and analysis for the purposes of the Website's services.
2.1. Account creation / registration - Account registration may require the User to provide the following data: name, surname, mailing address, e-mail address, date of birth, telephone number, login, bank account number.
2.2. Concluding transactions - the Administrator, as part of the services provided by the Store, may process Users' personal data in order to conclude a Sales contract, send messages and communicate with each other.
2.3. Customer service - the Administrator may process the personal data of Users contacting the Store's customer service department. The data may be necessary for communication and may be supplemented with personal data from the User Account.
2.4. Contact form - the Store enables mutual contact and may collect Users' personal data as part of it. The form is made available to enable communication regarding Sales in the Store, inquiries for an offer and activities aimed at concluding a transaction on the Website. The administrator can analyze and block messages inconsistent with the purpose of the form, in particular if they are spam or contain prohibited content.
2.5. Data processing by the website - when it is necessary to provide services to the User or constitutes a legitimate interest of the Administrator or third parties, the Administrator is entitled to process such data as: User's IP address, location, time of access to the Store, URL address

the page previously visited by the User (referrer link), parameters of the User's software and hardware, identification number of the mobile device and other data on devices and systems. The processing of the above information takes place when using the website. Store. 

3. Purpose of data processing:
Users' personal data are processed by the Administrator in order to enable Users to use the Store, including in particular the following activities:
- setting up and managing an Account or User Accounts,
- enabling full use of the Store, including making transactions,
- providing support for the Account and User's transactions, including solving technical problems,
- monitoring the activity of all and specific Users, including searched keywords, placed Goods and traffic management in the Store,
- contacting Users, including for purposes related to the provision of services, User service, permitted marketing activities, through available communication channels, in particular e-mail and telephone,
- ensuring the security of the services provided by electronic means, including the enforcement of the Regulations and the prevention of fraud and abuse,
- conducting research and analyzes of the Website, among others, in terms of the functioning of the platform, improving the operation of available services or estimating the main interests and needs of visitors,
- implementation of sales contracts concluded in the Store,
- handling of Users' complaints,
- handling Users' requests, in particular through the contact form,
- performance of obligations resulting from legal regulations, including tax or accounting regulations,
- providing payment services, making commission payments for transactions on the Website, debt collection,
- conducting court, arbitration and mediation proceedings,
- statistical,
- accountants,
- archiving,
- ensuring accountability.

4. Data sharing
4.1. The Administrator, after obtaining the User's prior consent, may share Users' personal data with other websites operated by the Administrator.
4.2. In the event of restructuring, sale / transfer of property in part or in full to a new owner, Users' personal data may be transferred to the new owner in order to ensure the continuation of the Store's services.
4.3. The administrator does not transfer personal data to third parties, except for:
- the need to disclose information about the User to public authorities, in the fight against fraud and abuse, proceedings related to violation of the law and combating violations of the Regulations.
- cooperating entities providing, inter alia, such services as, for example: data storage, hosting and logistics operators, including courier companies. In this case, these entities are not authorized to use the data on their own behalf and only for the needs of the Administrator and the Store. 4.4. The administrator may provide third parties with data in an anonymised form, which do not identify specific Users, and serve to improve the displayed content on the Website, adjust advertisements and reach Users outside the Store.
4.5 The Seller, after obtaining the Buyer's data from the Administrator, is obliged to fulfill all obligations to the Buyer resulting from this regulation and other legal provisions, including ensuring that they exercise their rights under the Regulation.

5. Users' rights
5.1. Each User has the right to:
- access to their personal data - the User may request the Administrator to provide a catalog of personal data processed about himself,
- objection to data profiling - the User may request the Administrator to disable profiling (personalization) of the Store's offer and related marketing activities,
- rectification, deletion or limitation of processing, data transfer, lodging a complaint to the supervisory body and the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal

In the event of using the right to access your personal data, rectify it, delete it, limit processing, object to its processing, request data transfer 

or not to be subject to a decision based solely on automated data processing - without undue delay, no later than within one month of receiving the request, information will be provided about the actions taken in connection with the User's request. The implementation of the data transfer request is free of charge, however, in accordance with the provisions of the GDPR, the Administrator may charge a reasonable fee for providing the data subject or refuse to exercise the right in the event of: 

- request another copy of the personal data subject to processing,
- manifestly unjustified demands,
- excessive demands, in particular because of their persistent nature.

The amount of the charged fee, referred to above, will be determined individually, will be reasonable and its amount will take into account the administrative costs of providing information, communication or taking the requested actions that the Administrator had to bear. 

5.2. Providing data by the User is a contractual requirement. If the User does not provide the required personal data, the selected functionalities of the Store may not be available to the User (e.g. the possibility of registration, placing orders, contacting other Users).
5.3. The User may contact the person supervising the processing of personal data by the Administrator by e-mail at the following e-mail address:

6. Data security:
The data administrator takes care of the security of the shared data. These data are particularly protected and secured against unauthorized access. Communication between the Store and Users is secured by the SSL encryption protocol on pages containing personal data.

7. Others
7.1 The Administrator undertakes to store the entrusted personal data of Users until they withdraw their consent or raise an objection. After the consent is revoked, for a period of time corresponding to the period of limitation of claims that may be raised by the data controller and which may be raised against the data controller.