WHO ARE WE?
Our identification data are as follows:
ETOS S.A. with its registered office in Gdańsk (80-298) at ul. Bysewska 23.
Our business was entered in the Business Register of the National Court Register maintained by the District Court of Gdańsk, 8th Commercial Division of the National Court Register, under KRS number: 0000178415; our tax identification number (NIP) is: 5840303202; our REGON number is: 192975787.
Please use to following methods to contact us:
1) by mail at the address of our registered office: ETOS S.A., ul. Bysewska, 80-298 Gdańsk;
2) by email at the email address: firstname.lastname@example.org;
3) by phone at: 585000829.
Administrators of the personal data are ETOS S.A. with its registered office in Poland, Gdańsk, ul. Bysewska 23(online store) and Amaury Sport Organisation ASO with its registered office in France, 40-42 Quai du Point du Jour (92100), Boulogne-Billancourt (owner of the brand DAKAR), operating as co-administrators
Personal Data Protection Officer
In order to ensure the highest standard of your personal data protection, we have appointed a Personal Data Protection Officer. You can contact the Officer by email at the address: email@example.com.
The Policy specifies, first and foremost, the rules for collecting and processing of your personal data that we obtain both during registration in the Store and during your use of the Store at making purchases without setting up an account or when subscription to a newsletter is set up or when you participate in the Diverse Club Loyalty Programme.
If you have any questions, doubts or remarks concerning our processing of your personal data, please contact us. Your opinion is what we value the most.
THE PLACE OF STORAGE OF YOUR PERSONAL DATA
The personal data that we collect are stored on the territory of the European Economic Area.
THE PERSONS THAT HAVE ACCESS TO YOUR PERSONAL DATA
Only we and the hosting service provider can access your personal data. We never share your personal data with entities that have not signed a contract regarding the processing of personal data with us.
If you consent to the processing of your personal data also for promotional and marketing purposes; or for the purpose of receiving trade information via electronic communications; or for the purpose of measuring satisfaction with a purchase, we may then share your personal data with one of the entities that cooperates with us.
Apart from the cases described above, your personal data will be disclosed to appropriate state authorities or third parties, if such legal duty arises from the generally applicable provisions of the law, and to a selected carrier or intermediary handling packages on our request in order to deliver the ordered goods to you, and to entities servicing electronic or credit card payments in order to enable you to pay for the ordered goods.
We guarantee that if your personal data are processed by entities other than us, we strive to ensure that they provide an appropriate level of personal data protection.
PURPOSES AND EXTENT OF THE PROCESSING OF YOUR PERSONAL DATA
The personal data that you provide us with will be processed for the purpose and to the extent necessary to conclude and perform a contract, for the purpose of direct marketing of our goods and services, in order to enable you to participate in our Diverse Club Loyalty Programme, and for the purpose of measuring satisfaction with a purchase.
To perform a contract we will be processing the following personal data: first and last name, address, email address, phone number, NIP (tax identification number), company name, delivery address, order history, number of loyalty card, gender, and date of birth.
In order to send you trade information and materials in a form of a newsletter, we will be processing the email address and phone number that you have provided.
In order to measure satisfaction with a purchase, we will be processing your phone number.
Provision of your personal data is voluntary, however, lack of consent results in the impossibility of using the Store, the App, and services that we provide via electronic means.
If we plan to further process personal data for the purpose other than the purpose data were collected for, we will inform you about such other purpose and provide all relevant information prior to such further processing.
THE LEGAL BASE FOR THE PROCESSING OF YOUR PERSONAL DATA
The legal base for the processing of your personal data by us is:
1) when data are necessary to perform a contract(s) between you and us as well as to take steps prior to entering into such contracts with you, on your request (Article 6, section 1, point b) of the GDPR);
2) when data are necessary for compliance with the legal obligation imposed on us (Article 6, section 1, point c) of the GDPR);
3) Your consent to the processing of your personal data for promotional and marketing purposes; or for the purpose of receiving trade information via electronic communications; or for the purpose of measuring satisfaction with a purchase (Article 6, section 1, point a) of the GDPR).
We only collect personal data directly from persons that the data directly pertain to (i.e., data subjects). This means that your personal data are processed by us exclusively on the bases enumerated above and have been obtained from you.
We respect your right to the protection of personal data, therefore, we ensure that you have the possibility to manage them. For that purpose, you may contact us at the e-mail address: firstname.lastname@example.org or use your account at diversesystem.com.
You are entitled to the following:
1) the right to obtain confirmation from the Controller of whether they process your personal data and if so, gain access to these data and obtain the following information:
a) on the purposes, extent, and manner of processing of your personal data;
b) since when your data have been processed;
c) the source of your data;
d) the recipients or categories of recipients that data are shared with;
2) the right to correct your personal data, if they are incorrect;
3) to add to your personal data, if they are incomplete;
4) to delete your personal data, if:
a) the Controller has already achieved the purpose that personal data were collected for and they are no longer necessary for that purpose;
b) you revoke your consent to the processing of your personal data for a specific purpose;
c) you object to the processing of your personal data for direct marketing purposes, including profiling, to the extent that the processing is connected with direct marketing or you object to the processing and there are no overriding legal bases for us to process your personal data;
d) the processing of your personal data has not been compliant with the law;
e) your personal data must be deleted to fulfil the legal obligation imposed by the EU law or the law of a Member State that we are subject to;
5) to limit the processing of your personal data, if:
a) you believe that we process them improperly – for the period of verification whether you are right;
b) it is determined that our processing of your personal data is in breach of the law, however, you object to the deletion of your data and demand that the processing was limited instead;
c) we no longer need your personal data to be processed but you need them to establish, assert or secure a claim;
d) you object to the processing, as a result of which we will limit the processing of your personal data until we establish if we have no legal bases that override your bases;
6) to transfer your personal data, at which you will receive the data that you have provided us with in a structured, standardised, and machine-readable form, if the processing takes place based on your consent or is necessary to perform a contract that we have entered into with you or to take steps prior to entering into such a contract, on your request;
7) to object to the processing of your personal data on the basis of our legitimate interest, including profiling;
8) to object to the processing of your personal data for direct marketing, including profiling, if we process your personal data for direct marketing;
9) to complain to a supervisory body, if you believe that our processing of your personal data is in breach of the provisions of the GDPR.
REVOCATION OF CONSENT
We ensure that you have the possibility to revoke your consent to our processing of your personal data. If you no longer wish to use your Store account, you merely need to delete it by yourself in the tab Account/Your profile in the Store or inform us by mail at the address: ETOS S.A. with its registered office in Gdańsk (80-298) at ul. Bysewska 23; or email at: email@example.com
If you do not want your personal data to be processed for promotional and marketing purposes; or for the purpose of receiving trade information via electronic communications; or for the purpose of measuring satisfaction with a purchase, you may revoke your consent as described above.
You may resign from a subscription to a newsletter by clicking on the link provided in the newsletter.
You may resign from participation in Diverse Club any time by sending a relevant statement to the e-mail address: firstname.lastname@example.org
PROTECTION OF YOUR PERSONAL DATA BY THE CONTROLLER
We protect your personal data during purchasing in the Store in compliance with the applicable provisions of the law and applying the highest standards of data safety and protection.
We ensure the safety of personal data due to the use of appropriate technical and organisational measures that we have implemented, which are intended to prevent unlawful processing and accidental loss or damage of data. We adopt any and all possible measures to ensure that personal data are:
1) correct and processed lawfully;
2) collected exclusively for the specified purposes and not processed further inconsistently with these purposes;
3) adequate, appropriate, and not excessive;
4) accurate and up-to-date;
5) not stored for longer than necessary;
6) processed in accordance with the rights that data subjects enjoy, including the right to restrict sharing;
7) kept safe;
8) not transferred without due protection.
Personal data filing systems are secured against access by third parties. Your personal data may only be processed by parties that we have authorised, and which are trained in terms of protection of personal data, and obliged to keep your personal data secret.
Personal data are stored exclusively for the period necessary to perform a contract, the period of subscription to the newsletter or for the period of maintaining an account in the Store as well as for the period in which parties might pursue claims against each other, if such claims arise from a sales contact, or for the period when we are obliged to store accounting documentation in accordance with the provisions of the law.
CHANGES TO YOUR PERSONAL DATA
If your personal data change, please update them single-handedly in your user account, if you have one, or inform us about it by mail or email at: email@example.com.
Having your very up-to-date personal data is necessary for us to ensure best possible quality of services and the highest possible level of protection of your personal data.
We would like to inform you that we make use of cookie files (cookies).
Cookies are information sent by the server, which is saved on your device (e.g. on PC hard drive or phone)
We use internal cookies to:
1) ensure proper functioning of the Store and the App;
2) produce statistics;
3) customise the Store to you preferences;
We may place both persistent and temporary files on your device.
Temporary files are typically removed when the browser is closed; however, persistent files remain on your device after the browser is closed.
Temporary files serve to identify the User as a logged in User.
Persistent files are ones that perform certain functions not only during a session but also throughout the entire period when they are stored on your computer. Persistent files serve to: collect information on the manner of using the Store and the App, including data on which subsites are visited by the User and possible errors; verify the effectiveness of advertisements in the Store and the App; improve the operation of the Store and the App by way of registering errors; test various design variants of the Store and the App; remember User settings concerning preferences; and show Clients that they are logged in the Store and the App.
You may remove the cookies that the Store saved on your device any time following the instructions from the producer of your browser.
You may also block access of cookies to your device by configuring your browser appropriately. This may, however, hinder the proper functioning of the Store.
We use a server that automatically saves the following information in server logs for the purpose of analysis of the functioning of the IT system: information about the device that you use when connecting with the Store, i.e., type of device and browser that you use; the IP of your computer, entry date and time, textual description of events, and qualification of events.
Only people authorised to administer the IT system may access the files with logs. Files with logs may serve to produce statistics on the traffic in the Store and errors, and do not allow to identify you.