Privacy policy

PRIVACY POLICY
DI-STAR.EU Sp. z o.o.


I. GENERAL PROVISIONS

This Privacy Policy sets out the rules for the processing of personal data, including their collection via the website: https://distar.tools/pl operated by
DI-STAR.EU sp. z o.o. with its registered office in Tyczyn (36-020), ul. Grunwaldzka 70H, Poland, registered in the Register of Entrepreneurs of the National Court Register under KRS number: 0000823666, NIP 8133834116, REGON 385400630, with share capital of:
PLN 700,000

The following definitions apply:

Administrator: DI-STAR.EU sp. z o.o. with its registered office in Tyczyn (36-020), ul. Grunwaldzka 70H, Poland, registered in the Register of Entrepreneurs of the National Court Register under KRS number: 0000823666, NIP 8133834116, REGON 385400630, with share capital of: PLN 700,000.

Administrator’s Contact Details:
Email: [email protected]
Correspondence address: ul. Grunwaldzka 70H, 36-020 Tyczyn

Website: the website operated by the Administrator at https://distar.tools/pl

User: a natural person using the Website or otherwise providing their personal data to the Administrator via the Internet.

Personal Data: personal data within the meaning of Article 4(1) of the GDPR, i.e., any information relating to an identified or identifiable natural person (data subject). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as name and surname, email address, location data, address details, phone number, or one or more factors specific to the identity of that person.

GDPR: Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC.


II. PROCESSING OF PERSONAL DATA

  1. Personal Data Administrator:

The User's Personal Data Administrator is:
DI-STAR.EU sp. z o.o. with its registered office in Tyczyn (36-020), ul. Grunwaldzka 70H, Poland, registered in the Register of Entrepreneurs of the National Court Register under KRS number: 0000823666, NIP 8133834116, REGON 385400630, share capital: PLN 700,000.

The User may contact the Administrator at any time regarding the processing of their personal data by sending an email to: [email protected] or correspondence to: ul. Grunwaldzka 70H, 36-020 Tyczyn.

The Administrator is not required to appoint a Data Protection Officer.

  1. Personal data is processed in accordance with the GDPR provisions and specific acts containing personal data protection regulations.

Purpose, legal basis, and scope of data processing:

Personal data is collected in connection with the User's use of the Website or other forms of remote communication with the Administrator. In particular: creating an account by the User and using its features, contacting the Administrator (email, phone) regarding a product and/or service inquiry, establishing cooperation, performing cooperation, taking action at the request of the data subject, and filing complaints.

The legal basis for the processing of personal data in the above scope is:

  • Art. 6(1)(b) GDPR - taking action at the request of the data subject prior to entering into cooperation, and then for the purpose of performing cooperation,
  • Art. 6(1)(f) GDPR - the legitimate interest of the Administrator in handling the User's visit to the Website, including the use of the User account features, ensuring security and protection against abuse (detecting unauthorized access attempts), managing cookies, keeping statistics and website traffic analysis,
  • Art. 6(1)(c) GDPR - compliance with a legal obligation incumbent on the Administrator, particularly regarding accounting, tax, and reporting obligations.

Scope of processed User data: name and surname, email address, phone number (User account data), data provided by the User in an email message, data contained in the complaint form, correspondence address.

The Administrator applies the principle of data minimization.

The Administrator does not process sensitive data (Article 9(2) GDPR).

  1. Data processing period:

Personal data is stored for the period necessary to properly perform the Administrator’s legal obligations.

  • Data processed within the User account – stored until the User deletes the account or for 2 years from the last activity on the account.
  • Data processed for cooperation purposes – stored for the duration of cooperation and then until the limitation period for potential claims arising from the agreement, in accordance with applicable law, including the Civil Code.
  • Data processed for accounting purposes (e.g., invoicing, accounting records, taxes) – stored for the period required by law, including 5 years from the end of the tax year in which the tax obligation arose, in accordance with the Accounting Act and the Tax Ordinance.

After the indicated periods, the data is deleted or anonymized unless further storage is required by law or the Administrator's legitimate interest (e.g., pursuing claims).

  1. Recipients of personal data:

Personal data may be disclosed to the following recipients:

  • Logistics, transport, and courier service providers - for the purpose of deliveries and shipment handling,
  • IT, hosting, programming, and service providers - as necessary to ensure proper functioning of IT systems, data storage, maintenance, development, and repair of software used by the Administrator,
  • Entities providing legal, tax, and audit support - for legal, tax advisory, and financial audit purposes,
  • State authorities, if required by law.

In certain cases, if necessary to provide services, personal data may be transferred outside the European Economic Area (EEA). In such cases, the Administrator applies appropriate safeguards in accordance with applicable regulations, including contractual provisions ensuring an adequate level of protection. All data transfers occur only to the extent necessary and in compliance with the GDPR.

  1. Voluntary provision of data:

Providing data is voluntary but necessary to use the Website features or cooperate with DI-STAR.EU Sp. z o.o.

  1. Automated decision-making and profiling:

The Administrator does not make decisions in an automated manner nor uses profiling within the meaning of Article 22 GDPR.

  1. Rights of data subjects:

The User has the right to:

  • Access personal data (Art. 15 GDPR),
  • Rectify personal data (Art. 16 GDPR),
  • Erase personal data (Art. 17 GDPR),
  • Restrict processing (Art. 18 GDPR),
  • Data portability (Art. 20 GDPR),
  • Object to data processing (Art. 21 GDPR).

The above rights may be subject to limitations resulting from generally applicable laws, including the GDPR.

The User has the right to lodge a complaint with a supervisory authority if they believe that the processing of their data violates the provisions of Regulation (EU) 2016/679 (GDPR). The supervisory authority in Poland is:
President of the Personal Data Protection Office (PUODO), Address: ul. Stawki 2, 00-193 Warsaw

To exercise the above rights, please send a statement to the Administrator at: [email protected]


III. FINAL PROVISIONS

This Privacy Policy is informative and defines the rules for processing personal data by the Administrator in connection with the use of the website https://distar.tools/pl

The Administrator reserves the right to make changes to the Privacy Policy if required by law or technological changes.

Users will be informed of any significant changes via the Website or other available communication channels.

For any questions or concerns regarding the Privacy Policy, users may contact the Administrator.

Error during saving!
Data saved successfully!
Product added to cart
Product added to favorites
Product added to comparison