Privacy Policy
This Privacy Policy outlines the rules for processing information about you, including personal data and cookies.
This policy applies to the website operating under the URL: www.mandacustom.com.
The website is operated by and the data controller is: Mandacustom Mateusz Oleksiuk, ul. Augustowska 43, 16-320 Bargłów Kościelny, NIP: 8461665546.
Contact email address of the Operator: mandacustom.kontakt@gmail.com
The Operator is the administrator of your personal data with respect to the data you provide voluntarily through the website.
The website processes personal data for the following purposes:
Responding to inquiries submitted via contact forms
Preparing, packing, and shipping orders
Fulfilling ordered services
Displaying offers or information
The website collects information about users and their behavior in the following ways:
Through data voluntarily entered in forms, which are stored in the Operator's system
Through cookies saved on users' end devices
Login areas and places where personal data is entered are secured at the transmission layer (SSL certificate). This ensures that any personal data and login credentials entered on the website are encrypted on the user’s computer and can only be read on the target server.
User passwords are stored in a hashed format. The hashing function is one-way – it cannot be reversed, which is a modern standard for storing user passwords.
The Operator periodically changes administrative passwords.
To protect data, the Operator regularly performs security backups.
A key element of data protection is the regular updating of all software used by the Operator to process personal data, particularly programming components.
The website is hosted (technically maintained) on servers provided by IQ.pl.
To ensure technical reliability, the hosting provider maintains server-level logs. These may include:
Resources specified by a URL (addresses of requested pages or files)
Time of request
Time of response
Name of the client device – identified via HTTP protocol
Information about errors encountered during HTTP transactions
URL of the page previously visited by the user (referrer link) – if the user navigated via a link
Browser information
IP address
Diagnostic information related to the self-service ordering process through forms
Information related to email communication received by or sent from the Operator
In certain situations, the Administrator has the right to transfer your personal data to other recipients if it is necessary to perform a contract with you or to fulfill obligations imposed on the Administrator. This applies to the following groups of recipients:
hosting company (as part of data processing)
couriers
postal operators
payment operators
authorized employees and associates who use the data to fulfill the website’s objectives
Your personal data is processed by the Administrator no longer than necessary to perform activities related to the data, as specified by separate regulations (e.g., accounting laws). For marketing data, processing will not exceed 3 years.
You have the right to request from the Administrator:
access to your personal data,
rectification of the data,
erasure of the data,
restriction of processing,
data portability.
You also have the right to object to processing described in point 3.2 (i.e., for legitimate interests pursued by the Administrator, including profiling). However, the right to object may not apply if there are overriding legitimate grounds for processing – such as establishing, exercising, or defending legal claims.
You may lodge a complaint regarding the Administrator’s actions with the President of the Personal Data Protection Office (ul. Stawki 2, 00-193 Warsaw, Poland).
Providing personal data is voluntary but necessary to use the website.
Automated decision-making, including profiling, may be applied to you in order to provide services under a concluded contract or to carry out direct marketing by the Administrator.
Personal data is transferred to third countries as defined by data protection regulations. This means we may send data outside the European Union.
The website collects information voluntarily provided by the user, including personal data, if such data is provided.
The website may save information about connection parameters (such as time stamps, IP address).
In some cases, the website may store information that helps associate data entered in the form with the email address of the user filling it out. In such cases, the user’s email address may appear in the URL of the page containing the form.
Data provided in forms is processed for purposes related to the specific function of the form — for example, to handle service requests, business inquiries, or to register services, etc. The context and description of each form clearly indicate what it is used for.
Information about user behavior on the website may be subject to logging. These data are used for website administration purposes.
The operator uses statistical analysis of website traffic via Google Analytics (Google Inc., based in the USA). The operator does not provide personal data to the provider of this service, only anonymized information. The service is based on the use of cookies stored on the user’s end device. Regarding information about user preferences collected by the Google advertising network, the user can view and edit the information derived from cookies using the tool: https://www.google.com/ads/preferences/
The operator uses the Facebook Pixel. This technology means that the Facebook service (Facebook Inc., based in the USA) knows that a given registered person is using the Service. In this case, it is based on data for which it is independently the controller; the operator does not provide any additional personal data to Facebook. The service is based on the use of cookies stored on the user’s end device.
The website uses cookies.
Cookies are IT data, in particular text files, which are stored on the end device of the Service User and are intended for use on the Service’s web pages. Cookies typically contain the name of the website they come from, the storage duration on the end device, and a unique number.
The entity placing cookies on the Service User’s end device and accessing them is the Service operator.
Cookies are used for the following purposes:
maintaining the user session on the website (after logging in), so that the user does not have to re-enter their login and password on every subpage;
achieving the purposes described in the section "Important Marketing Techniques" above.
Within the Service, two basic types of cookies are used: "session" cookies and "persistent" cookies.
Session cookies are temporary files that are stored on the user’s end device until logging out, leaving the website, or closing the web browser.
Persistent cookies are stored on the user’s end device for the period specified in the cookie parameters or until they are deleted by the user.
Web browsing software (web browser) usually allows cookies to be stored on the user’s end device by default. Service users can change these settings. The web browser allows users to delete cookies. It is also possible to automatically block cookies. Detailed information can be found in the help section or documentation of the web browser.
Limiting the use of cookies may affect some functionalities available on the Service's websites.
Cookies placed on the user’s end device may also be used by entities cooperating with the Service operator, in particular companies such as: Google (Google Inc., USA), Facebook (Facebook Inc., USA), Twitter (Twitter Inc., USA).
If the user does not wish to receive cookies, they can change the browser settings. Please note that disabling cookies necessary for authentication, security, and user preference maintenance may hinder or, in extreme cases, prevent the use of websites.
To manage cookie settings, select your web browser from the list below and follow the instructions:
Mobile devices:
Polski
English