Privacy Policy

The following Privacy Policy defines the rules for storing and accessing data on the Users’ Devices using the Website for the purpose of providing electronic services by the Administrator, as well as the principles for collecting and processing Users’ personal data provided by them personally and voluntarily through the tools available on the Website.

This Privacy Policy is an integral part of the Website Terms of Service, which define the rules, rights, and obligations of Users using the Website.

§1 Definitions

• Website – the website “superstarstools.pl” operating at http://super-stars.pl

• External Service – websites of partners, service providers, or clients cooperating with the Administrator

• Website/Data Administrator – the Administrator of the Website and the Data Administrator (hereinafter Administrator) is the company “Elgra W.E. Kubik sp.j.,” operating at: ul. Kępska 21, 45-129 Opole, NIP: 7540272177, providing services electronically via the Website

• User – a natural person for whom the Administrator provides services electronically via the Website

• Device – an electronic device with software through which the User gains access to the Website

• Cookies – text data collected in the form of files placed on the User’s Device

• GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation)

• Personal Data – information about an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as name, identification number, location data, online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person

• Processing – any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction

• Restriction of Processing – marking of stored personal data with the aim of limiting their future processing

• Profiling – any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements

• Consent – the data subject’s voluntary, specific, informed, and unambiguous indication of will, in the form of a statement or a clear affirmative action, which signifies agreement to the processing of personal data relating to them

• Personal Data Breach – a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data transmitted, stored, or otherwise processed

• Pseudonymization – the processing of personal data in such a way that the data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure non-attribution to an identified or identifiable natural person

• Anonymization – an irreversible process that renders personal data impossible to associate with a specific user or individual by destroying or overwriting the data.

§2 Data Protection Officer

Pursuant to Article 37 of the GDPR, the Administrator has not appointed a Data Protection Officer.

For matters regarding data processing, including personal data, please contact the Administrator directly.

§3 Types of Cookies

• Internal Cookies – files placed and read from the User’s Device by the Website’s teleinformation system

• External Cookies – files placed and read from the User’s Device by teleinformation systems of External Services. Scripts from External Services that may place Cookies on the User’s Device are intentionally placed on the Website through services and scripts implemented on the Website

• Session Cookies – files placed and read from the User’s Device by the Website during a single session. After the session ends, the files are deleted from the User’s Device

• Persistent Cookies – files placed and read from the User’s Device by the Website until they are manually deleted. Files are not automatically removed after the session ends unless the User’s Device is configured to delete cookies after the session ends

§4 Data Storage Security

• Mechanisms for storing and reading Cookies – The mechanisms for storing, reading, and exchanging data between Cookies saved on the User’s Device and the Website are implemented through built-in browser mechanisms and do not allow retrieval of other data from the User’s Device or other websites visited by the User, including personal data or confidential information. It is also virtually impossible to transmit viruses, trojans, and other worms to the User’s Device.

• Internal Cookies – The Cookies used by the Administrator are safe for Users’ Devices and do not contain scripts, content, or information that could threaten the security of personal data or the Device used by the User.

• External Cookies – The Administrator takes all possible measures to verify and select service partners in the context of User safety. The Administrator cooperates with reputable and globally trusted partners. However, the Administrator has no full control over the content of Cookies from external partners. The Administrator is not responsible for the safety of these Cookies, their content, or their use by scripts installed in the service originating from external services, to the extent permitted by law. A list of partners is provided later in this Privacy Policy.

• Cookie control

  • The User may, at any time, independently change the settings regarding saving, deleting, and accessing Cookie data saved by any website.

  • Information on how to disable Cookies in the most popular desktop browsers is available at: “how to disable cookies” or from the following providers:

    • Managing cookies in Chrome

    • Managing cookies in Opera

    • Managing cookies in Firefox

    • Managing cookies in Edge

    • Managing cookies in Safari

    • Managing cookies in Internet Explorer 11

  • The User can delete all previously saved Cookies at any time using the tools of their Device used to access the Website.

• User-side risks – The Administrator uses all possible technical means to ensure the security of data stored in Cookies. However, data security also depends on the User’s actions. The Administrator is not responsible for interception, impersonation of a User session, or deletion of data due to the User’s conscious or unconscious actions, viruses, trojans, or spyware that may have infected the User’s Device. Users should follow safe Internet usage practices to protect themselves from such threats.

• Storage of personal data – The Administrator ensures that every effort is made to keep voluntarily provided personal data secure, accessible only for intended use, and processed in accordance with its purposes. The Administrator also ensures that appropriate physical and organizational security measures are in place to prevent data loss.

• Password storage – The Administrator declares that passwords are stored in encrypted form, using the latest standards and guidelines. Decryption of access passwords entered on the Website is virtually impossible.

§5 Purposes for Using Cookies

Cookies are used for the following purposes:

• Improving and facilitating access to the Website

• Personalizing the Website for Users

• Enabling login to the Website

• Marketing and remarketing on external services

• Advertising services

• Affiliate services

• Generating statistics (user count, visits, device types, connections, etc.)

• Serving multimedia services

• Providing social services

§6 Purposes of Personal Data Processing

Personal data voluntarily provided by Users are processed for one of the following purposes:

• Provision of electronic services:

  • User account registration and maintenance and related functionalities

  • Newsletter services (including sending advertising content with consent)

  • Commenting / liking posts without registering

  • Sharing content from the Website on social media or other sites

• Communication between the Administrator and Users regarding the Website and data protection

• Ensuring the Administrator’s legitimate interest

Anonymously and automatically collected User data is processed for:

• Generating statistics

• Remarketing

• Serving ads tailored to User preferences

• Operating affiliate programs

• Ensuring the Administrator’s legitimate interest

§7 External Service Cookies

The Administrator uses JavaScript scripts and web components from partners who may place their own Cookies on the User’s Device. Please note that browser settings allow you to control which Cookies are allowed per site. The following partners or their services are implemented in the Website and may place Cookies:

• Multimedia services:

  • YouTube

• Social / integrated services (Registration, Login, Content Sharing, Communication, etc.):

  • Twitter

  • Facebook

  • Google+

• Newsletter services:

  • MailChimp

• Statistics:

  • Google Analytics

• Other services:

  • Google Maps

Services provided by third parties are beyond the Administrator’s control. These entities may change their terms of service, privacy policies, data processing purposes, and use of Cookies at any time.