Save to shopping list
Create a new shopping list

Polityka prywatności

Privacy Policy

1. Data Controller and Definitions

  1. The Data Controller of the personal data of Customers/Users of the Online Store, also referred to as the Seller, is: Flotman Sp. z o.o., phone: +48509520444, Tax Identification Number (NIP): 6762441088, National Business Registry Number (REGON): 121488982, National Court Register (KRS): 0000386686, Gabrieli Zapolskiej 44, 30-136 Kraków, Poland.
  2. Contact with the Data Controller can be made: at the postal address: Gabrieli Zapolskiej 44, 30-136 Kraków, Poland via email: no-reply@navicompact.com.
  3. User - a natural person accessing the page/pages of the Online Store or using the services or functionalities described in this Privacy and Cookies Policy.
  4. Customer - a natural person with full legal capacity, a natural person who is a Consumer, a legal person, or an organizational unit without legal personality, which the law grants legal capacity, who enters into a Distance Selling Agreement with the Seller.
  5. Online Store - an internet service operated by the Seller, accessible at the electronic addresses (websites): navicompact.com, through which the Customer/User can obtain information about the Goods, Goods with digital elements, Digital Content or Digital Service and its availability, and purchase Goods, Goods with digital elements, Digital Content or commission the provision of a service, including Digital Service.
  6. Newsletter - information, including commercial information within the meaning of the Act of July 18, 2002, on providing services by electronic means (Journal of Laws of 2020, item 344), originating from the Seller sent to the Customer/User electronically; its receipt is voluntary, requires the consent of the Customer/User, and entails entering into an agreement for the provision of digital content.
  7. Account - a collection of data stored in the Online Store and in the Seller's information and communication system regarding a given Customer/User, and the orders placed by them and contracts concluded, using which the Customer/User can place orders and enter into contracts.
  8. GDPR - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).

2. Objectives, Legal Basis, and Duration of Data Processing
 

  1. To implement the Distance Selling Agreement, the Seller processes:


  1. Information about the User's device to ensure the proper functioning of services: the computer's IP address, information contained in cookies or other similar technologies, session data, web browser data, device data, activity data on the Website, including on individual subpages;
  2. Geolocation information, if the User has consented to the service provider's access to geolocation. Geolocation information is used to deliver more tailored product and service offers;
  3. Personal data of Users: first name, last name, registered address, correspondence address, email address, telephone number, tax identification number (NIP), bank account number, or other personal data necessary to complete the purchase, the provision of which is required by the Administrator in the purchasing process.
  4. These pieces of information do not contain data related to the Users' identity, but in combination with other information, they may constitute personal data. Therefore, the Administrator provides them with full protection under the GDPR.
  5. This data is processed in accordance with Article 6(1)(b) of the GDPR, for the purpose of service implementation, i.e., an agreement for the provision of electronic services in accordance with the Terms and Conditions, and in accordance with Article 6(1)(a) of the GDPR, in connection with the consent to the use of specific cookies or other similar technologies, expressed through appropriate web browser settings in accordance with Telecommunications Law, or in connection with consent to geolocation. The data are processed until the Customer/User ceases to use the Online Store.
  6. Data stored by the NaviCompact Application include information required during the creation of an Account in the online store: name and surname, address, email address, account type, IP address, geolocation data obtained based on the IP address, and data necessary for payment processing.
  7. The NaviCompact Application also stores other data added to the NaviCompact system by the user as part of using the service, including:
Categories of Data Subjects Type of Personal Data Processing Activities Form of processing
Employees of the Client, contractors of the Client, individuals employed by the Client under any legal basis, individuals providing services to the Client under any legal basis, who use vehicles belonging to the Client, who use their own vehicles but have given consent to the Client for monitoring and locating their vehicles.
 
 
First and Last Name; Geolocation data (i.e., data related to location); Parameters related to the driving of vehicles used by the above-mentioned persons, including: Pressure on the gas pedal, acceleration and braking; Engine RPM; Speed; ESP/ABS; Number of no-seatbelt alerts and maximum speed without seatbelts; Maximum speed [km/h]; Distance traveled [km]. Parameters available in the vehicle and peripheral devices related to safety and cost-effectiveness of driving.
 
 
 
 
Collecting, recording, organizing, structuring, storing, retrieving, using, recording onto electronic data carriers, erasing or destroying.
 
 
 
The Processing Entity undertakes to process personal data both in paper and electronic form.
 
 
 
 
  1. The Administrator commits to undertake all measures required under Article 32 of the GDPR, i.e., considering the state of technical knowledge, the cost of implementation, and the nature, scope, and purposes of processing, as well as the risk of violation of the rights or freedoms of natural persons with varying likelihood and severity, the Administrator implements appropriate technical and organizational measures to ensure a level of security appropriate to that risk.

Początek formularza
3. Marketing Activities of the Administrator

  1. Marketing Activities of the Administrator

On the website of the Online Store, the Data Administrator may post marketing information about their products or services. The display of this content is carried out by the Data Administrator in accordance with Article 6(1)(f) of the GDPR, i.e., according to the legally justified interest of the Data Administrator consisting of publishing content related to the services provided and promotional actions in which the Data Administrator is involved. At the same time, this activity does not violate the rights and freedoms of Customers/Users, as Customers/Users expect to receive content of similar nature, even anticipate it, or it is their direct goal of visiting the website/pages of the Online Store.



4. Recipients of User Data

  1. The Data Administrator discloses Users' personal data to processing entities under the agreements concluded for the entrustment of personal data processing for the purpose of providing services on behalf of the Data Administrator, e.g., hosting and managing the Website, IT services, marketing and PR services.
  2. The Data Administrator also discloses Users' personal data to the following recipients:
    • Public administration bodies,
    • Courts,
    • Prosecutor's offices,
    • Couriers,
    • Postal operators,
    • Accountants/accounting offices,
    • Tax advisors,
    • Lawyers,
    • Marketing tool suppliers,
    • Newsletter distribution tool suppliers,
    • Platform suppliers.
  3. Users' data may be transferred to a third country (the United States of America) due to the use of Google services. These data may be stored in whole or in part on American servers. Google applies standard contractual clauses issued by the European Commission. Detailed information is available in the Google Privacy Policy: Google Privacy Frameworks

 
6.Rights of Data Subjects

  1. Every person whose data is concerned has the right to:
    1. Access (Article 15 of GDPR) - Obtain from the Data Administrator confirmation as to whether their personal data is being processed. If data about the person is being processed, they are entitled to access it and obtain the following information: about the purposes of processing, the categories of personal data, the recipients or categories of recipients to whom the data has been or will be disclosed, the period of data storage or the criteria for determining that period, the right to request rectification, deletion or restriction of processing of personal data and to object to such processing;
    2. Receive a copy of the data (Article 15(3) of GDPR) - Obtain a copy of the data being processed, where the first copy is free of charge, and the Data Administrator may impose a reasonable fee for subsequent copies, resulting from administrative costs;
    3. Rectification (Article 16 of GDPR) - Request rectification of their personal data that is incorrect or completion of incomplete data;
    4. Erasure of data (Article 17 of GDPR) - Request the deletion of their personal data if the Data Administrator no longer has a legal basis for processing them or the data are no longer necessary for the purposes of processing;
    5. Restriction of processing (Article 18 of GDPR) - Request restriction of processing of personal data when:
      1. The data subject contests the accuracy of the personal data – for a period allowing the Data Administrator to verify the accuracy of these data,
      2. The processing is unlawful and the data subject opposes their deletion, requesting instead the restriction of their use,
      3. The Data Administrator no longer needs the data, but they are required by the data subject for the establishment, exercise or defense of legal claims,
      4. The data subject has objected to processing – pending the verification whether the legitimate grounds of the Administrator override those of the data subject;
    6. Data portability (Article 20 of GDPR) - Receive in a structured, commonly used and machine-readable format personal data about them which they have provided to the Data Administrator, and request the transmission of those data to another Administrator, if the data are processed based on the consent of the data subject or a contract with them and if the data are processed in an automated manner;
    7. Object (Article 21 of GDPR) - Object to the processing of their personal data for the legally justified purposes of the administrator, for reasons related to their particular situation, including profiling. In such a case, the Data Administrator assesses whether there are important legally justified grounds for processing, overriding the interests, rights and freedoms of the data subjects, or grounds for the establishment, exercise or defense of legal claims. If, according to the assessment, the interests of the data subject are more important than the interests of the administrator, the Data Administrator is obliged to cease processing data for these purposes;
    8. Withdraw consent at any time without giving a reason, but the processing of personal data carried out before the withdrawal of consent remains lawful. Withdrawal of consent will result in the Data Administrator ceasing to process personal data for the purpose for which the consent was expressed.
  2. To exercise the aforementioned rights, the data subject should contact the Data Administrator using the provided contact details and inform them of which right and to what extent they wish to exercise.

7.President of the Personal Data Protection Office
The data subject has the right to lodge a complaint with the supervisory authority, which in Poland is the President of the Personal Data Protection Office, located in Warsaw, ul. Stawki 2.
They can be contacted in the following ways:

  1. by mail: ul. Stawki 2, 00-193 Warsaw, Poland;
  2. through the electronic submission box available on the website: https://www.uodo.gov.pl/pl/p/kontakt;
  3. Helpline: 606-950-0000.

8. Data Protection Officer

  1. In every case, the data subject can also contact the Data Protection Officer of the Administrator directly via email or in writing at the Administrator's address, provided in section 1 point 2 of this Privacy and Cookies Policy.

9.Changes to the Privacy Policy

  1. The privacy and cookies policy may be supplemented or updated according to the current needs of the Administrator in order to provide current and reliable information to Customers/Users.

10. Cookies
1.         The online store performs the function of acquiring information about customers, users, and their behavior in the following ways:
1.         through voluntarily entered information in forms for purposes arising from the function of a specific form;
2.         by saving cookies (so-called "cookies") in end-user devices;
3.         by collecting web server logs by the online store's hosting operator (necessary for the proper functioning of the service).
2.         Cookies are computer data, especially text files, that are stored in the end-user device of the Customer/User and are intended for use with the online store's website. Cookies usually contain the name of the website they come from, the storage duration on the end device, and a unique number.

  1. The online store uses cookies only after the customer/user of the store has given prior consent in this regard. Consent for the online store to use all cookies is given by clicking the "I AGREE, I WANT TO GO TO THE SITE" button when the message about the use of cookies by the online store is displayed, or by closing this message.
  2. If the customer/user of the online store does not consent to the use of cookies by the online store, they can use the option "I do not consent," also available in the message about the use of cookies by the online store, or make changes in the settings of the web browser currently in use (this may, however, cause the online store's website to malfunction).
  3. To manage cookie settings, select from the list of web browsers/systems and follow the instructions: Internet Explorer, Chrome, Safari, Firefox, Opera, Android, Safari (iOS), Windows Phone.
  4. The legal basis for processing personal data obtained from cookies is the legally justified interests of the Data Administrator, consisting of ensuring high-quality services and the security of services.
  5. Within the online store, two main types of cookies are used: "session" (session cookies) and "persistent" (persistent cookies). "Session" cookies are temporary files stored in the User's end device until logging out, leaving the online store, or turning off the software (web browser). "Persistent" cookies are stored in the Customer/User's end device for the duration specified in the cookies' parameters or until they are deleted by the Customer/User.





Functional Cookies (Necessary)
navicompact.com
monit_token: 365 days, cookie identifies the store customer.
shop_monit_token: 30 minutes, cookie identifies the store customer.
client: 1 day, cookie identifies the logged-in customer / cart of an unlogged customer.
affiliate: 90 days, cookie stores information about the partner's identifier from which entry to the store occurred.
ordersDocuments: cookie stores information about the document print status.
__idsui: 1095 days, cookie necessary for the functioning of so-called light login on the site.
_idsual: 1095 days, cookie necessary for the functioning of so-called light login on the site.
IAI_SRC: 90 days, cookie stores only the source from which entry to the site occurred.
login: cookie stores information about whether the user is logged in on the site.
CPA: 28 days, cookie contains information about variables for CPA/CPS programs in which the site participates.
IAIRSABTVARIANT: 30 days, cookie variant identifier for A/B testing and IdoSell RS engine configuration.
basket_id: 365 days, cookie user's cart identifier, assigned for the duration of the session.
page_counter: 1 day, cookie page visit counter.
LANGID: 180 days, cookie stores information about the language chosen by the site user.
REGID: 180 days, cookie stores information about the region of the site user.
CURRID: 180 days, cookie stores information about the currency chosen by the site user.
IAIABT: 30 days, cookie stores A/B test identifiers, for testing and improving store functionality.
IAIABTSHOP: 30 days, cookie stores the store identifier participating in the A/B test.
IAIABTVARIANT: 30 days, cookie stores the variant identifier drawn in the ongoing A/B test.
toplayerwidgetcounter[]: cookie stores the number of pop-up message displays.
samedayZipcode: 90 days, cookie stores information about the site user's postal code, necessary for offering courier delivery in the SameDay service.
applePayAvailability: 30 days, cookie stores information about whether the ApplePay payment form is available for the user.
paypalMerchant: 1 day, cookie PayPal account identifier.
toplayerNextShowTime: cookie stores information about the time of the next pop-up message display.
rabateCode_clicked: 1 day, cookie stores information about closing the bar informing about active discount.
freeeshipping_clicked: 1 day, cookie stores information about closing the bar informing about free delivery.
redirection: cookie stores information about closing the pop-up message suggesting a language for the store.
filterHidden: 365 days, cookie after clicking the filter collapse option for goods, saves information about which filter should be collapsed after refreshing the goods list.
toplayerwidgetcounterclosedX: cookie stores information about closing the pop-up message.
cpa_currency: 60 minutes, cookie contains information about the currency for CPA/CPS programs in which the site participates.
basket_products_count: cookie stores information about the number of goods in the basket.
wishes_products_count: cookie stores information about the number of goods on the wishlist.
IAI S.A.
iai_accounts_toplayer: 30 days, cookie ensures the correct display of the pop-up message informing about the IdoAccounts login service (https://www.idosell.com/pl/tysiace-gotowych-do-uzycia-funkcji/logowanie-do-sklepu-z-konta-w-innym-serwisie/).
IdoSell
platform_id: cookie stores information about whether the site is displayed in a mobile application.
paypalAvailability: 1 day, cookie stores information about whether the PayPal payment form is available for the user.
ck_cook: 3 days, cookie stores information about whether the site user has consented to cookies.
IdoAccounts
accounts_terms: 365 days, cookie stores information about whether the user has accepted the consent to use the IdoAccounts service.
Google
NID: 180 days, cookie These cookies (NID, ENID) are used to remember user preferences and other information, such as preferred language, the number of results displayed on the search results page (for example, 10 or 20), and whether the user wants to have Google SafeSearch filter turned on. This file is also necessary to offer Google Pay payment service.
Google reCAPTCHA
_GRECAPTCHA: 1095 days, cookie This cookie is set by Google reCAPTCHA, which protects our site from spam queries in contact forms.
PayPal
ts: cookie This cookie is typically provided by PayPal and supports payment services on the site.
ts_c: 1095 days, cookie This cookie is typically provided by PayPal and is used to prevent fraud.
x-pp-s: cookie This cookie is typically provided by PayPal and supports payment services on the site.
enforce_policy: 365 days, cookie This cookie is typically provided by PayPal and supports payment services on the site.
tsrce: 3 days, cookie This cookie is typically provided by PayPal and supports payment services on the site.
l7_az: 60 minutes, cookie This cookie is necessary for the PayPal login function on the website.
LANG: 1 day, cookie This cookie is typically provided by PayPal and supports payment services on the site.
nsid: cookie Used in the context of transactions on the Website. The cookie is required for secure transactions.
Analytical Cookies
IAI S.A.
__IAI_AC2: 45 days, cookie Conversion tracking identifier (Activity Tracking) for collecting history of sources preceding the order placement, as well as the source thanks to which the order was placed according to the last click attribution model.
Google Maps
SID: 3650 days, cookie Contain digitally signed and encrypted records of Google account ID and last login time. The combination of these cookies (SID, HSID) allows Google to block many types of attacks, such as attempts to steal the contents of forms submitted in Google services.
Advertising Cookies
navicompact.com
RSSID: 180 days, cookie IdoSell RS user identifier, used for displaying tailored product recommendations on the page.
IAIRSUSER: 60 minutes, cookie IdoSell RS user identifier, used for displaying tailored product recommendations on the page.



8.Cookies are used for the following purposes:
 

  1. Creating statistics that help understand how Customers/Users of the Online Store use the web pages, which allows for improving their structure and content;
  2. Maintaining the Customer's/User's session (after logging in), thanks to which the Customer/User does not have to re-enter their login and password on each subpage of the Online Store;
  3. Determining the Customer's/User's profile in order to display them product recommendations and tailored materials in advertising networks, especially the Google network.
  4. Web browser software (internet browser) usually by default allows the storage of cookies in the Customer's/User's end device. Customers/Users can change settings in this regard. The web browser allows the deletion of cookies. It is also possible to automatically block cookies.
  5. Restrictions on the use of cookies may affect some functionalities available on the web pages of the Online Store.
  6. Cookies placed in the Customer's/User's end device may also be used by advertisers and partners cooperating with the Online Store.
  7. Cookies can be used by the Google network to display ads tailored to the way the Customer/User uses the Online Store. For this purpose, they can retain information about the user's navigation path or the time spent on a particular page: Google Partner Sites Policy.
  8. We recommend that Customers/Users read the privacy policies of these companies to learn the rules of using cookies used in statistics: Google Analytics Privacy Policy.
  9. Regarding the information about Customer's/User's preferences collected by the Google advertising network, the Customer/User can view and edit information derived from cookies using the tool: Google Ad Preferences.
  10. The Online Store page includes plugins that may transfer Customers'/Users' data to Administrators such as: Google Maps, PayPal, Google reCAPTCHA, IdoAccounts, IdoSell, IAI S.A., Google.
  11. In order to properly execute the Distance Selling Agreement, the Data Administrator may provide Customer/User data to courier companies. Currently available delivery methods in the Online Store are available at: NaviCompact Delivery Methods.
  12. In order to properly execute the Distance Selling Agreement, the Administrator may provide Customer/User data to online payment systems. Currently available payment methods in the form of prepayment in the Online Store are available at: NaviCompact Payment Methods.
  13. To optimize the functioning of the NaviCompact Application and communication with users and individuals interested in the service, the personal data Administrator uses external services:

Początek formularza

  1. GetResponse - for sending the NaviCompact Newsletter and other email messages to service users. In GetResponse, data such as the user's name, email address, account type, account expiration date, and language are stored.

  2. Google Analytics - for statistical purposes related to the need to optimize the appearance and functionality of the personal data Administrator's pages and offerings. This tool collects demographic and geolocation data of users, as well as information about the equipment they use and their behavior on the NaviCompact page.



11. Newsletter

  1. The Customer may consent to receive commercial information electronically by selecting the appropriate option in the registration form or at a later time in the relevant tab and entering into an agreement for the delivery of digital content. If such consent is given, the Customer/User will receive information (Newsletter) from the Online Store to the email address provided, as well as other commercial information sent by the Seller.
  2. The Customer may at any time opt out of receiving the Newsletter independently, by unchecking the appropriate box on their Account page or by going to the form at https://navicompact.com/pl/newsletter.html, clicking the relevant link found in the content of each Newsletter, or through the Customer Service Office.




12. Account

  1. The Customer/User may not post or deliver to the Seller any content in the Online Store, including opinions and other data that are unlawful.
  2. The Customer/User gains access to the Account after registration.
  3. As part of the registration, the Client/User provides the type of account, first name, last name, company name, tax identification number (NIP), details for issuing a sales document, shipping details, email address, and chooses a password. The Client/User ensures that the data provided in the registration form are true. Registration requires a thorough review of the Terms and Conditions and marking on the registration form that the Client/User has read the Terms and Conditions and fully accepts all its provisions.
  4. At the moment of granting the Customer/User access to the Account, an indefinite duration contract for the provision of electronic services regarding the Account is concluded between the Seller and the Customer. The consumer may withdraw from this agreement under the terms defined in the Terms and Conditions.
  5. Registering an Account on one of the pages of the Online Store simultaneously means registration enabling access to other pages under which the Online Store is available.
  6. The Customer/User may terminate the contract for the provision of electronic services at any time with immediate effect, by informing the Seller via email or in writing to the data Administrator's address provided in section 1 point 2 of this Privacy and Cookies Policy.
  7. The Seller has the right to terminate the contract for the provision of services related to the Account in the event of cessation of provision or transfer of the Online Store service to a third party, violation of the law or the Terms and Conditions by the Customer/User, as well as in the case of the Customer/User's inactivity for a period of 6 months. The termination of the contract occurs with a seven-day notice period. The Seller may stipulate that re-registration of the Account will require the Seller's permission.

 

IdoSell Trusted Reviews
4.92 / 5.00 12 reviews
IdoSell Trusted Reviews
2024-01-30
Obsługa klienta zaskoczyła mnie bardzo pozytywnie
2024-01-26
Polecam
This page uses cookie files to provide its services in accordance to Cookies Usage Policy. You can determine conditions of storing or access to cookie files in your web browser.
I DO NOT AGREE
I AGREE, I WANT TO GO TO THE WEBSITE
pixel