PRIVACY POLICY OF THE WEBSITE – ritual-ltd.com
The protection of Users’ privacy is particularly important to BOMADEX SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ. For this reason, Users of the website www.ritual-ltd.com are guaranteed high standards of privacy protection. BOMADEX SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, as the Data Controller, ensures the security of the data provided by Users.
The Controller’s objective is to properly inform Users of their rights and obligations related to the processing of personal data, especially in light of the provisions on personal data protection set out in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (hereinafter: “GDPR”). Therefore, to protect the privacy of Users of the Website, the Controller provides this document to inform about the legal grounds for processing personal data submitted by Users in connection with their use of the website www.ritual-ltd.com (hereinafter the “Website”), the methods of collecting, processing, and securing personal data, and the rights of Users.
A User is any natural person whose data is processed and who uses the website www.ritual-ltd.com or the electronic services available through the Website.
The Controller of the personal data provided by the User via the Website www.ritual-ltd.com is BOMADEX SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, Sienna 1, 41-902 Bytom, NIP 6263017001 (hereinafter the “Controller”).
USER CONSENT
Using the Website www.ritual-ltd.com by the User means that the User accepts that the Controller collects and uses personal data in accordance with this Privacy Policy.
Personal data of the Website User is processed by the Controller based on the User’s consent, and in certain cases described in this document, under the Controller’s legitimate interest. The User has the right to withdraw consent at any time. Withdrawal of consent does not affect the lawfulness of processing performed before the withdrawal.
If the Privacy Policy is amended and the User continues using the Website, such continued use shall be deemed acceptance of the updated Privacy Policy.
PERSONAL DATA PROCESSED BY THE CONTROLLER
Method of data collection
The Controller obtains personal data directly from the User via the Website, through communication features and tools available on the Website and the messages sent using these tools. Providing personal data is voluntary.
Types of processed personal data
The Controller collects the following personal data of the User:
- First and last name
- Email address
- Phone number
- Message content
- Message subject
PURPOSES OF PERSONAL DATA PROCESSING
The way the Controller processes User data depends on how the User uses the Website and its available features. The Controller processes the User’s personal data for the following purposes:
Communication with the User
The Controller uses the User’s data to communicate in a personalized manner. Messages may concern offered products or services, data security, network updates, reminders, as well as suggested offers from the Controller or partners. Communication also includes customer support—assisting Users, resolving technical issues, and responding to complaints.
Presenting commercial offers electronically
The purpose of using personal data provided via Website communication tools is to conduct marketing communication, particularly to present commercial offers electronically.
Presenting commercial offers via phone
The Controller may use the User’s personal data to present commercial offers by phone as part of direct marketing.
Sending newsletter information
If the User signs up for the newsletter, the Controller uses their personal data to send information via email about new products, services, promotions, and events of the Controller or its partners.
Enabling Users to submit comments or reviews
The Controller uses the User’s data to allow them to comment on/rate the activities, services, or products of the Controller or related entities.
Additional processing purposes under GDPR
The Controller may also process personal data for the following purposes:
- To conclude and perform a contract between the User and the Controller, and maintain customer service (Art. 6(1)(b) GDPR).
- To perform financial settlements with Users who are customers and pursue any claims under the Controller’s legitimate interests (Art. 6(1)(f) GDPR), as well as to meet tax obligations (Art. 6(1)(c) GDPR).
- To conduct marketing activities under the Controller’s legitimate interest (Art. 6(1)(f) GDPR), and in accordance with the User’s marketing consent. Consent can be withdrawn at any time.
- To comply with the Controller’s legal obligations towards the User under GDPR (Art. 6(1)(c) GDPR).
DISCLOSURE OF PERSONAL DATA
The User’s personal data is not shared with third parties.
USER RIGHTS
At every stage of processing, the User has the right to access their data, verify its correctness, request correction, object to processing, request deletion, restriction of processing, or data portability.
To exercise these rights, the User may contact the Controller at:
BOMADEX SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, Sienna 1, 41-902 Bytom, bomadex.biuro@gmail.com
Right to lodge a complaint
The User whose data is processed has the right to lodge a complaint with the supervisory authority for data protection (President of the Personal Data Protection Office).
COOKIES
The Controller informs that while using the Website, short text files called “cookies” are stored on the User’s device. Cookies contain information such as: the User’s IP address, website name, storage duration, parameters, statistics, and a unique identifier.
Cookies are used for:
- Maintaining technical correctness and session continuity;
- Optimizing the display and operation of the Website;
- Ensuring secure use of the Website;
- Collecting visit statistics;
- Displaying advertising content tailored to User preferences.
Types of cookies used:
- Session cookies – automatically deleted after logging out or closing the browser
- Persistent cookies – stored until their expiration or deletion. Installed only with User consent.
Users may change cookie settings in their browsers at any time. Restricting cookies may negatively impact the Website’s performance.
Cookies may be used by advertisers or business partners cooperating with the Controller.
Cookies may be considered personal data only when combined with other data identifying the User.
Only the Controller has access to cookies processed by the Website server.
If the User does not agree to storing cookies, they may change browser settings accordingly.
OTHER IMPORTANT INFORMATION
Data security
The Controller implements appropriate measures to protect personal data from access by unauthorized persons. Systems and procedures are monitored regularly, and data is stored in restricted-access computer systems.
Data retention
The retention period depends on the processing purpose. Data is stored for the duration of the Controller’s business activity. After this period, data may be kept only for the purpose of pursuing claims until their final resolution.
Changes to the Privacy Policy
This Policy may be updated. The date of the last update will be shown at the end of the document. The Controller recommends that Users regularly review the Privacy Policy.
Contact information
To obtain any information regarding this Privacy Policy, the User may contact the Controller:
BOMADEX SPÓŁKA Z OGRANICZONĄ ODPOWIEDZIALNOŚCIĄ, Sienna 1, 41-902 Bytom, bomadex.biuro@gmail.com
or by mail: Sienna 1, 41-902 Bytom.