The data you provide to us may be personal data. In that case, the Data Collector of your personal data, including those collected during the use of our online store is Infinity Fund spółka z o.o. spółka komandytowa based in Wrocław, ul. Jana Długosza 42-46. (called: Data Collector) We have appointed the Data Protection Officer. You can contact them via the email: iod@gfcorp.pl We ask for, collect and process your personal data in order to keep your account in our base. It allows you to take advantage of many benefits (e.g. You can place orders without having to fill out forms or check your shopping history) and use services of our online store. Processing of your personal data is necessary for the performance of a contract to which the data subject is a party. You enter into the contract by signing up for our online store and accepting our Terms & Regulations. The Data Collector retains and processes your personal data for as long as you have an account with our online store (while for their greater protection, they may be removed three years after your last activity in the online store) unless the law will oblige us to process this data for a longer period. The Data Collector may need to keep some personal data about a previous customer so that they can deal with any complaints the customer might make about the services provided by the Data Collector, for a period of limitation prescribed by law, in particular, the Polish Civil Code. We may process your data for the purposes of a potential dispute between you and the Data Collector (the legal basis for the processing of your personal data is, in this case, the legitimate interest of the Data Collector). The Data Collector retains and processes your personal data for as long as you have an account with our online store (while for their greater protection, they may be removed three years after your last activity in the online store); in the case of marketing activities - until you raise an objection, unsubscribe from the newsletter or withdraw your consent (to process your personal data), unless the law will oblige us to process this data for a longer period. The Data Collector may need to keep some personal data about a previous customer so that they can deal with any complaints the customer might make about the services provided by the Data Collector, for a period of limitation prescribed by law, in particular, the Polish Civil Code. You have right, at any given time to: - make a complaint to Prezes Urzędu Ochrony Danych Osobowych - have your data transmitted to e.g. other data collectors (unless the basis for their processing is the legitimate interest of the Data Collector); - access your personal data and request to obtain a copy of them - raise an objection to the processing of your personal data when the basis for their processing is the legitimate interest - have inaccurate personal data rectified, restrict the scope of its processing, erasure and to sign out. The Data Collector uses a variety of third-party service providers to help itself provide services related to the online store and application. In order to run and help facilitate our website and application, including communication with our clients (e.g. marketing campaigns, advertising, sending newsletters), we may need to share certain information, including personal information, with the variety of third party service providers, which provide support and operation of our ICT tools and systems (e.g. data storage), as well as companies that carry out shipments, entities servicing payments on our website, and provide ongoing legal services, carry out audits, etc. including, in the framework of the above activities, also companies from our capital group. Your personal data may be exceptionally transferred, stored, and processed outside of the European Economic Area (EEA), but only to the extent necessary to provide services for these entities, especially IT (for example, storing data in the cloud) and supporting the functionality of our online store and application. Transferred data can be processed by our partners, mainly from the United States (USA). To ensure an adequate level of data protection the transferring is based on appropriate legal agreements, which are standard clauses of personal data protection, approved by the European Commission. We try to cooperate only with partners that are included in the Privacy Shield Program. You may request a copy of the security solutions we use for data transfer to countries outside the EEA. In that purpose, you may contact our Data Protection Officer.