The Controller takes special care to protect the interests of the data subjects whose data is processed by the Controller. The Controller collects and processes personal data:
'Controller' - WITTCHEN S.A., based in Palmiry, Gdańska 60, 05-152, Czosnów
'Personal data' - information about a natural person identified or identifiable by one or more specific factors determining the physical, physiological, genetic, mental, economic, cultural or social identity.
'Information clause' - means any information provided in the case of data collection by the Controller under Article 13 or 14 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC
'Customer' - i) a natural person, including a consumer (i.e. performing a legal transaction not directly related to his business or professional activity), who has legal capacity and / or is at least 13 years of age, and if this person fails to complete 18 years of age, the consent of its legal representative or legal guardian is required, as well as ii) a legal person and an organizational unit that is not a legal person, the specific provisions of which grant legal capacity, which uses or intends to use the Website, including the Online Store and / or in the cases described in the regulations of the Online Store.
'GDPR' - Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free flow of such data and repealing Directive 95/46 / EC.
'Processor' - means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the Controller.
'Profiling' - means any form of automated processing of Personal Data. Profiling enables an individual, specific and customised offer to be attributed to a given Customer.
'Processing' - means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
'Pseudonymisation' - means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject.
'Online Shop' - means the Controller’s online shop under the address www.wittchen.com which facilitates the electronic sale of WITTCHEN brand products.
'Consent' - of the data subject means any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
In connection with the user's use of the Online Shop, the Controller collects data to the extent necessary to provide individual services offered, as well as information about the user's activity in the Online Shop. The detailed rules and purposes of processing Personal Data collected while using the Online Shop by the user are described below.
All personal data is processed in compliance with Polish and EU laws, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation).
The Controller collects and processes personal data when:
In order to contact the Controller to exercise your rights to personal data protection and obtain information in connection with the processing of personal data by WITTCHEN, please send your request:
Please be informed that when the WITTCHEN website under the address www.wittchen.com is displayed in available browsers, information is exchanged between your mobile device, computer or similar device, and WITTCHEN's servers. All information obtained in connection with displaying the website is used to ensure efficient functioning of IT processes on WITTCHEN's website or other processes in your browser. When the website www.wittchen.com is being displayed, your browser may send the following information: your IP address, time when the website was accessed and left, name and URL of the file being displayed, page or application from which the website was accessed. This data is sent to ensure security and stability as well as convenient and uninterrupted use of the Website. The above data is processed according to Article 6(1)(f) GDPR – for the above purposes.
The above data is stored only during your visit in the WITTCHEN Online Shop, and when you close the website they are automatically erased, unless you have purchased one or more products in the Online Shop. If you have purchased one or more products, your data may be stored for one year, for the duration of the contract, for the time resulting from tax and accounting laws, and for the time necessary for WITTCHEN to pursue any claims (in accordance with applicable law).
If you use our search engine to find stationary shops of the WITTCHEN brand (available at: https://www.wittchen.com/en-US/our-stores), your browser, based on Consent to disclose your geolocation data, can process such data in order to find the closest shop in your area. This type of data is not stored by WITTCHEN in any way and is automatically erased when the website is closed.
Each time, your Personal Data is Processed for a strictly defined purpose, according to a specific legal basis. Presented below is a description of selected operations related to the Processing of Personal Data:
|Purpose of data processing||Legal basis for processing and data storage period||Scope of data processing|
|Conclusion, performance and processing of contracts (e.g. purchase and sale contracts), or taking action at the request of the data subject before concluding a contract.||
Article 6(1)(b) GDPR (performance of a contract)
The data is stored for a period necessary for the performance, termination or expiry of an otherwise concluded contract.
The data in a bill or an invoice for the purchases made will be stored until the expiry of the tax liability or until the period of limitation for possible claims has expired or until the end of the warranty period.
|Maximum scope: given name and surname; e-mail address; contact phone number; delivery address (street, house number, apartment number, postal code, city/town, country), address of residence/business/headquarters (if different from the delivery address). For service recipients or customers who are not consumers, the Controller may also process data such as company name and tax identification number (NIP) of a service recipient or customer. This is the maxim scope. If a product is collected in person, it is not necessary to provide a delivery address.|
|Conclusion and performance of an Agreement for the Provision of Services (Account in the online shop)||
Article 6(1)(b) GDPR (for the purposes of the legitimate interests pursued by the controller)
If an account is deleted, the personal data will be stored until the period of limitation for possible claims has expired.
|Maximum scope: given name and surname; e-mail address; contact phone number; delivery address (street, house number, apartment number, postal code, city/town, country), address of residence/business/headquarters (if different from the delivery address). For Service Recipients or Customers who are not consumers, the Controller may also process data such as company name and tax identification number (NIP) of a Service Recipient or Customer. This is the maxim scope. If a product is collected in person, it is not necessary to provide a delivery address.|
Article 6(1)(a) GDPR (consent)
The data is processed until the data subject has withdrawn consent.
|Name, e-mail address|
|Customer's opinion on a concluded sales agreement||Article 6(1)(a) GDPR||Name, e-mail address|
|Book-keeping or accounting||Article 6(1)(c) GDPR in connection with Article 74(2) of the Accounting Act, complete text of 30 January 2018 (Journal of Laws of 2018, item 395). The data is stored for the period required by law obligating the Controller to store accounting books (5 years from the beginning of the year following the financial year which the data concerns).||Given name and surname; address of residence/business/headquarters (if different from the delivery address), company name and tax identification number (NIP) of a Service Recipient or Customer.|
|Establishing, pursuing and / or defending claims by or against the Controller||Data is stored for the duration of a legitimate interest pursued by the Controller, but not longer than for the limitation period of claims in respect of the data subject in connection with the Controller's business activity.||Given name and surname; contact phone number; e-mail address; delivery address (street, house number, apartment number, postal code, city/town, country), address of residence/business/headquarters (if different from the delivery address). For Service Recipients or Customers who are not consumers, the Controller may also process data such as company name and tax identification number (NIP) of a Service Recipient or Customer.|
|Other: The Controller may process any other data in connection with other legal acts and other specifically defined legitimate purposes, but each time the data subject will be informed of such purposes in information clauses.|
Depending on the purpose and legal basis, we store your data for the following period of time:
We process Your data no longer is necessary to achieve a specific purpose or for a time prescribed by the applicable law. The Controller regularly verifies all databases and data media and erases unnecessary data, or such data is erased automatically.
During your visit in WITTCHEN's official stationary shops (for a list of the shops, visit: (https://www.wittchen.com/en-US/our-stores) and at the Controller office, we process your data (image), which is recorded by means by video surveillance. The above data is obtained directly from you during your visit in WITTCHEN's stationary shops or during a business meeting with the Company's partners as well as job candidates (and in all other situation when an individual is present on the premises of WITTCHEN). The recorded data is processed in order to keep individuals safe and protect property, and to keep secret any confidential and business information on the premises. Your personal data will be processed for no longer than 90 days or until the end of proceedings in which the data serves as evidence in court, enforcement, mediation and other cases (in accordance with the law). The data recipients are our employees, associates and other authorised entities (public authorities and entities working with the Company under separate contracts). For details on the processing of data by means of video surveillance, see the Information Clauses available at WITTCHEN's official shops and at the reception area in the Controller's office.
The Controller ensures technical solutions for contacting it by using electronic form. Personal data of all persons using the electronic contact form (including among others: name, last name, phone number and e-mail address ) that are enabled in our website are processed by the Controller to identify, send and handle an inquiry sent by the user through the provided form–the legal basis for processing is the legitimate interest of the Controller.
Provision of data marked as mandatory is required by Controller to accept and handle a User inquiry. Failure to provide such information makes it impossible to handle an inquiry. Provision of other types of data is voluntary. The User may however provide these to facilitate contact with the Controller or the handling of his/her inquiry.
The Controller processes personal data of Users to perform marketing activities. These may involve the sending of e-mail messages about interesting offers or contents, which in some cases may include commercial information (newsletter service). This newsletter service is provided by the Controller to the people who provided their e-mail address for this purpose.
Personal data of persons (including e-mail address) are processed by the Controller:
Provision of the aforementioned data is required by Controller to provide the marketing and newsletter service. Failure to provide such information makes it impossible for us to send Users marketing communications and/or provide the newsletter service.
These provisions also apply to individuals who have concluded a cooperation agreement with WITTCHEN, contact the company to enter into a partnership relationship or are in the process of negotiating a contract between the parties. The scope of the processed data depends on the individual case and nature of the contract. Data collected for the purposes of such contracts includes: given name, surname, position, address of residence, e-mail address, correspondence address, date and place of birth, citizenship, ID card number and series, specimen signature, KRS number, tax ID (NIP), statistical number (REGON) and payment data. The legal basis for data processing is Article 6(1)(b)and/or (f) GDPR. At WITTCHEN, this type of contracts can be accessed by departments which process and negotiate such contracts as well as by the legal and accounting departments and other departments with a legitimate interest, including other parties working with WITTCHEN (service providers and subcontractors), but they perform their activities only in the scope provided for in data processing agreements.
WITTCHEN organises many contests to promote the WITTCHEN brand. For contest details, see the respective contest's terms and conditions on WITTCHEN's website, and visit Facebook and Instagram. Unless the contest terms and conditions stipulate otherwise and if you have not given consent to data processing for another purpose not related to a contest, your data will only be used for the contest.
WITTCHEN provides full information on new products, promotions or contests via social network sites (Facebook, Instagram, YouTube). Personal data of social media users are processed by the Controller in connection with keeping his profile on a particular website, in particular to promote events organized by the Controller (including contests), services, marketing campaigns and products sold by the Controller.
The Information Clause for the processing of your data in connection with the above-mentioned social networking sites, with detailed information on the protection of your Personal Data, is available on Facebook in the Notes tab.
Information on data processing in social media is available at:
In order to be able to ensure proper functioning of the Online Shop and perform any concluded Sales Agreements, the Controller uses services provided by third parties (e.g. software providers, couriers and payment processors). The Controller only uses services rendered by processors who provide sufficient guarantees to implement technical and organisational measures so that the processing meets the requirements of the GDPR and protects the rights of data subjects.
Personal data may be transferred to the following recipients or categories of recipients:
Your personal data processed by WITTCHEN is not transferred outside the European Economic Area (EEA).
In any case, every Customer has the following rights:
The Controller may use profiling in order to present an optimal and customised offer to its Customers and users being data subjects and if the data subject has given consent to the use of profiling.
Profiling in the Online Shop involves an automated analysis or forecast of an individual's behaviour on the Online Shop website, such as adding a Product to the cart, browsing a specific Product page, or analysing their history of purchases in the Online Shop. For the profiling to take place, the Controller is required to obtain consent from the data subject (e.g. to be able to send them a discount code). The effects of using profiling in the Online Shop may include, for example, granting a discount to a specific person, reminding them about unfinished purchases, suggesting a Product that may correspond to their interests or preferences, proposing better conditions compared to the standard offer of the Online Shop. Even when profiling is used, it is the Customer who will ultimately decide on whether to use from a discount or better conditions, or make a purchase in the Online Shop.
Cookies are small text files installed on the device of the Customer browsing the Online Shop. Cookies collect information that facilitates the use of the website - e.g. by remembering the user's visits in the Online Shop and the activities performed by the user. A detailed description of the cookies used on the website is available in the cookie management tool (link available at the bottom part of the website under "Manage cookies"). Below is a general description of the categories of these tools that we use on the Online Shop.
This tool provides functionalities such as:
In addition, WITTCHEN's website also uses Third-Party Cookies, which are used for collecting statistical data and data for verifying the use of websites by the users, as well as to personalize marketing messages (e.g. by providing tailored advertising based on user activity or retargeting, i.e. providing the Customer with specific advertisements on other websites on the Internet)
Google Analytics. is used for the above purposes. It is a widely available tool for analysing the use of websites and preparing reports on user activity. Google Analytics generates information on the URL, type of browser used by the user, their IP address and operating system used. The tool determines the data on the number of server visits and their length, and collects data on which parts of the website are most often used by users (by analysing their functionality). Having analysed the collected data, it is possible to determine the performance and usefulness of WITTCHEN's websites and their parts, driving the development of new services and functionalities.
For details on Google Analytics, visit: https://developers.google.com/analytics/devguides/collection/gajs/cookie-usage.
By default, your web browser allows files to be stored on your end devices, which enables the processing of data obtained in this way.
Users can change their Cookie settings at any time, specifying the conditions for storage and access to their end devices by Cookies. To change the settings referred to in the previous sentence, the User can use the browser settings or the service configuration. Presented below are links to web browsers (information on how to change browser settings on your end devices):
Consent is not required for the necessary cookies, the use of which is necessary to provide a telecommunications service as part of the Online Shop (data transmission to display content).
In addition to consenting to the installation of cookies via the cookie banner, you should keep the appropriate browser settings, allowing you to store cookies from the Online Shop on your end device.
Withdrawal of consent to the collection of cookies in the Online Shop is possible via the cookie banner. You can return to the banner by clicking on the 'Manage cookies' button which is available on every subpage of the Online Shop.
After the banner is displayed, you can withdraw your consent by clicking the 'Manage cookies' button. Then you should move the slider next to the selected cookie category and press the "Confirmation of my choices" button.
The user may at any time verify the status of his current privacy settings for the browser used using the tools available at the following links:
Changing your browser settings may restrict the use of both essential and optional cookies. Please be advised, however, that this may significantly hinder or prevent the use of the Online Shop.
Please be advised that in order to ensure security of your personal data as well as up-to-date and transparent procedures and policies at WITTCHEN S.A., this document will be regularly reviewed and changed in connection with changes in universally applicable laws and any measures taken to ensure appropriate protection of your Personal Data.
This Policy takes effect as of 25/02/2022.