Free shipping From 200 zł
pl en de ru uk
Log In | Register
LaravelShop

Your cart is empty

About Us — Our Team — Gallery Services Portfolio Why Us FAQ Shop Contact
Log In Register

Privacy Policy

LaravelShop Privacy Policy

Last updated: January 1, 2025

This Privacy Policy sets out the rules for the processing and protection of personal data of Customers of the LaravelShop online store, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR) and the Polish Act of 10 May 2018 on Personal Data Protection.

1. Data Controller

The controller of personal data is LaravelShop Sp. z o.o. with its registered office in Warsaw, ul. Marszałkowska 25/12, 00-639 Warsaw, Tax ID (NIP): 5252678901. For data protection inquiries, contact: rodo@shop.mx-hosting.pl.

2. What Data Do We Collect?

Depending on how you use the Store, we process the following data:

Data CategoryScopePurpose
Registration dataFirst name, last name, email address, passwordCreating and managing the user account
Order dataDelivery address, phone number, Tax ID (optional)Order fulfillment and invoice generation
Payment dataPayment method, transaction IDPayment processing (card data handled by the Przelewy24 operator)
Technical dataIP address, browser type, operating systemSecurity assurance and analytics
Marketing dataEmail address (with consent)Sending newsletters and promotional offers

3. Legal Basis for Processing

  • Art. 6(1)(b) GDPR — performance of a contract (order fulfillment, account management)
  • Art. 6(1)(c) GDPR — legal obligation (tax and accounting regulations)
  • Art. 6(1)(f) GDPR — legitimate interest of the controller (direct marketing, analytics, pursuing claims)
  • Art. 6(1)(a) GDPR — consent (newsletter, marketing and analytical cookies)

4. Data Retention Period

  • Order-related data — 5 years from the end of the tax year in which the transaction was made (tax obligation)
  • User account data — until the account is deleted by the user
  • Marketing data — until consent is withdrawn
  • Server logs — 12 months

5. Data Recipients

Personal data may be shared with the following categories of recipients:

  • Payment operators: Przelewy24 (PayPro S.A.)
  • Courier companies: InPost Sp. z o.o., DPD Polska Sp. z o.o., DHL Express (Poland) Sp. z o.o.
  • Hosting service provider
  • Email service provider (SMTP)
  • Google LLC (Google Analytics) — only with user consent

6. Cookies

The Store uses cookies for the following purposes:

  • Necessary — ensuring proper website operation, shopping cart and user session management. No consent required.
  • Analytical — analyzing website traffic using Google Analytics. Requires user consent.
  • Marketing — displaying personalized advertisements (Google Ads, Facebook Pixel). Requires user consent.

Users can manage cookie consents through the cookie panel available in the page footer. Browser settings also allow blocking or deleting cookies.

7. User Rights

Under the GDPR, every user has the following rights:

  1. Right of access — obtaining information about processed data
  2. Right to rectification — correcting inaccurate data
  3. Right to erasure — requesting deletion of data ("right to be forgotten")
  4. Right to restriction of processing
  5. Right to data portability — receiving data in CSV/JSON format
  6. Right to object — to processing for marketing purposes
  7. Right to withdraw consent — at any time, without affecting the lawfulness of processing carried out prior to withdrawal

To exercise any of the above rights, please contact us at: rodo@shop.mx-hosting.pl.

8. Complaint to a Supervisory Authority

The user has the right to file a complaint with the President of the Personal Data Protection Office (ul. Stawki 2, 00-193 Warsaw, Poland) if they believe that the processing of personal data violates the provisions of the GDPR.

We use cookies to ensure the best experience on our website. Learn more