General Information
- This policy applies to the website www.hottie-hot.com.
- The operator of the website and the data controller is: Martyna Dziewulska Invest 1251, Kościeszów 6 A/2, 03-180 Warsaw.
- The operator’s contact email address is hottiehotbeach@gmail.com.
- The operator is the data controller for your personal data provided voluntarily on the website.
- The website uses personal data for the following purposes:
- Managing newsletters
- Managing the comment system
- Conducting online chat conversations
- Handling inquiries through forms
- Preparing, packaging, and shipping goods
- Fulfilling ordered services
- Presenting offers or information
- The website collects information about users and their behavior in the following ways:
-
- Through voluntarily provided data in forms that are entered into the operator’s systems.
- By storing cookies on end devices (so-called “cookies”).
Selected Data Protection Methods Implemented by the Operator
- Login and personal data entry areas are protected by a secure transmission layer (SSL certificate). This encrypts the personal data and login information entered on the website and can only be read on the target server.
- Personal data stored in the database is encrypted in such a way that only the operator possessing the key can read it. This ensures data protection in case of a database breach.
- User passwords are stored in hashed form. The hashing function works one-way, meaning it cannot be reversed, which is the current standard for storing user passwords.
- The website employs two-factor authentication as an additional form of protection for logging into the service.
- The operator periodically changes their administrative passwords.
- Regular backups are performed by the operator to protect the data.
- Regular software updates, including the components used for processing personal data, are an important part of data protection measures implemented by the operator.
Hosting
- The website is hosted (technically maintained) on the operator’s server: cyber folks..
Your Rights and Additional Information on Data Usage
- In certain situations, the data controller has the right to transfer your personal data to other recipients if necessary to fulfill the agreement with you or to fulfill obligations imposed on the data controller. This applies to the following groups of recipients:
- Hosting company on the basis of data processing agreement
- Couriers
- Postal operators
- Insurers
- Banks
- Payment operators
- Comment system operators
- Online chat solution operators
- Authorized employees and collaborators who use the data to achieve the purpose of the website
- Marketing service providers acting on behalf of the data controller
- Your personal data processed by the data controller will not be stored longer than necessary for activities specified by separate regulations (e.g., accounting). Regarding marketing data, it will not be processed for longer than 3 years.
- You have the right to request from the data controller:
- Access to your personal data
- Rectification of your personal data
- Erasure of your personal data
- Restriction of processing of your personal data
- Data portability
- You have the right to object to the processing referred to in point 3.3 c), related to the processing of personal data for the purposes of legitimate interests pursued by the data controller, including profiling. However, the right to object cannot be exercised if there are compelling legitimate grounds for processing, overriding your interests, rights, and freedoms, especially for establishing, pursuing, or defending legal claims.
- You have the right to lodge a complaint with the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw, regarding the actions of the data controller.
- Providing personal data is voluntary but necessary to use the service.
- Automated decision-making, including profiling, may be used to provide services under the concluded agreement and for direct marketing by the data controller.
- Personal data is not transferred to third countries as defined in the regulations on personal data protection. This means that they are not transferred outside the European Union territory.
Information in Forms
- The website collects information voluntarily provided by the user, including personal data, if provided.
- The website may store information about connection parameters (timestamp, IP address).
- In some cases, the website may store information that facilitates the association of data in the form with the user’s email address completing the form. In such cases, the user’s email address appears within the URL of the page containing the form.
- The data provided in the form is processed for the purpose specified by the specific form, such as processing service requests or business contacts, service registrations, etc. Each form’s context and description clearly inform the user of its purpose.
Administrator’s Logs
- Information about user behavior on the website may be logged. This data is used for website administration purposes.
Important Marketing Techniques
- The operator uses statistical analysis of website traffic through Google Analytics (Google Inc. based in the USA). The operator does not provide personal data to the service operator but only anonymized information. The service relies on the use of cookies on the user’s end device. Regarding user preference information collected by the Google advertising network, the user can view and edit the information derived from cookies using this tool: https://www.google.com/ads/preferences/
- The operator uses remarketing techniques, which allow for customizing advertising messages based on the user’s behavior on the website. This may create the illusion that the user’s personal data is being used for tracking, but in practice, no personal data is transferred from the operator to advertising operators. The technological condition for such activities is the enabled support for cookies.
- The operator uses Facebook pixel technology. This technology enables Facebook (Facebook Inc. based in the USA) to know that a registered user of Facebook is using the website. In this case, it is based on data for which the operator is the data controller, and no additional personal data is provided to Facebook by the operator. The service relies on the use of cookies on the user’s end device.
- The operator uses a solution for analyzing user behavior by creating heatmaps and recording behavior on the website. This information is anonymized before being transmitted to the service operator, so the operator does not know which specific individual it relates to. In particular, passwords and other personal data are not recorded.
- The operator uses an automated solution for the functioning of the website in relation to users, such as sending an email to the user after visiting a specific subpage, provided the user has consented to receiving commercial correspondence from the operator.
Cookie Information
- The website uses cookies.
- Cookies (also known as “cookies”) are computer data, specifically text files that are stored on the user’s end device of the website and intended for using the website’s web pages. Cookies typically contain the name of the website they originate from, the duration of their storage on the end device, and a unique number.
- The operator of the website is the entity that places cookies on the user’s end device of the website and has access to them.
- Cookies are used for the following purposes:
- Maintaining the user’s session on the website (after logging in), so the user doesn’t have to re-enter their login and password on each page of the website.
- Achieving the goals specified in the “Important Marketing Techniques” section above.
- The website uses two main types of cookies: “session cookies” and “persistent cookies.” Session cookies are temporary files that are stored on the user’s end device until they log out, leave the website, or close the web browser. Persistent cookies are stored on the user’s end device for a specified period of time defined in the cookie parameters or until the user deletes them.
- Web browsing software (web browser) usually allows cookies to be stored on the user’s end device by default. Users of the website can change their settings in this regard. The web browser allows for the deletion of cookies, and it’s also possible to automatically block cookies. Detailed information on this topic can be found in the web browser’s help or documentation.
- Limitations on the use of cookies may affect some functionalities available on the website’s web pages.
- Cookies placed on the user’s end device of the website may also be used by entities cooperating with the website operator, particularly companies such as Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), and Twitter (Twitter Inc. based in the USA).
Managing cookies – how to express and withdraw consent in practice:
-
- If a user doesn’t want to receive cookies, they can change their browser settings. Please note that disabling cookies necessary for authentication processes, security, and maintaining user preferences may make it difficult or, in extreme cases, impossible to use the website.
- To manage cookie settings, select your web browser from the list below and follow the instructions:
- Edge
- Internet Explorer
- Chrome
- Safari
- Firefox
- Opera
- Mobile devices:
- Android
- Safari (iOS)
- Windows Phone