Products

Basket
Original cosmetics from manufacturers
Free shipping for order above 120 zł
Categories

Privacy Policy

Last amended: November 06, 2024

Welcome to ISEI!

We are committed to protecting your privacy. This Privacy Policy explains what personal data we process, on which basis, and why, how long we store it, how we protect it, and to whom we may transfer it. In the Privacy Policy, we also inform you about your rights in respect of your personal data.

Before you give us your consent on the processing of your personal data, or provide us with your personal data within any form on our Website, we kindly ask you to read carefully this Privacy Policy, so we can be calm that you completely understand our practices.

  1. Who are we?

We believe that since you chose our Website you are familiar with our focus, and you have also of course got yourself acquainted with our Terms. We will point at it once more for a better understanding of the purposes your personal data is being collected and processed according to this Privacy Policy. So, ISEI is an e-shop, managed by:

ISEI INTERNATIONAL LLC
ul. PUŁAWSKA, no. 77, unit U.5., locality WARSAW, POLAND, postcode 02-595
REGON: 528079978
NIP: 5214061527
Email: info@isei.pl

If you have any questions, comments, or requests regarding this Privacy Policy or data protection, please do not hesitate to contact us by email or post at the address mentioned above.

  1. Glossary

Personal data (or data) is any information relating to you and that alone or in combination with other pieces of information gives the opportunity to the person that collects and processes such information to identify you as an individual. It can be your name, your address, email or IP address.

Processing of the data means any action with your personal data, for example, collection, recording, organization, structuring, storage, use, disclosure by any means and so on.

  1. Legal basis for processing

In general, we process your data based on your consent. You provide your consent by checking the appropriate box when registering your Account, by placing the order, or by publishing a review of the purchased products. In addition, we ask for your consent if we send you marketing newsletters by email. You can revoke your consent at any time and unsubscribe from such marketing newsletters.

However, we may process your personal data not only on the basis of your consent, but also when one of the following applies:
  • processing is necessary to perform a purchase agreement. If you place an order and we accept the order by sending the ordered products, a purchase agreement will be concluded between us. And, in order to successfully fulfill such a purchase agreement, we may process your personal data entered via the order form.
  • processing is necessary for the purposes of the legitimate interests pursued by us on the conditions prescribed by the data protection legislation. We may process your personal data on the basis of legitimate interest so that we can improve our Website, find out if you are satisfied with the purchase, and promote the products more effectively. For example, on the basis of legitimate interest, we may send you marketing newsletters regarding products similar to those you have purchased from us (however, this is only on condition that you do not object to such letters). Our legitimate interest also includes the protection of legal claims, resolution of disputes and keeping internal records. In this case, we may process all categories of personal data listed in Section 4.
  • processing is necessary for compliance with our legal obligations. We must fulfill certain obligations set out in the applicable legislation. On this legal basis, we may process your identification data, billing address, and other details of your orders for invoicing, tax, and warranty purposes.

  1. What data we process, on which basis, and why

If you use the services of our e-shop, we process various types of data about you.

A. Visiting our Website

We do not collect any personal data during simple visits to our Website, with the exception of data transmitted by your browser in order to enable the visit to the Website. These include:
  • IP address;
  • Date and time of the request;
  • Content of the request (specific page);
  • Access status / HTTP status code;
  • Any data quantities transmitted;
  • Website from which the request originates;
  • Browser and operating system.

We delete or anonymize the IP addresses of Website visitors after the end of use. Anonymization means that the IP addresses are modified such that the individual details regarding personal or material circumstances can no longer be associated with an identified or identifiable natural person or may only be associated with such a person with an unreasonable expenditure of time, costs and effort.

Legal basis and purpose. We have a legitimate interest in the effective work of our Website. The temporary storage of your IP address by the system is necessary to enable the Website to be displayed to the users. For this purpose, your IP address must remain stored for the duration of the session.



B. Purchasing the products

The most common information you provide to us is information obtained through the form for ordering products on our Website. In order to process your order, we need the following data:
  • identification data, which include first name and surname;
  • contact details, which include email address, delivery address, billing address, and telephone number;
  • financial information, which includes bank account or payment card details;
  • order information, specifically the products purchased.

Legal basis and purpose. This data is necessary for the conclusion and performance of a purchase agreement between us, and we process it in order to successfully deliver the ordered products to you. The email address and telephone number are used to send an order confirmation, confirmation of receipt of payment, and electronic invoice, as well as to keep you informed about the status of your order and any other communication regarding the order.

C. Registering an Account

If you wish to use the benefits of a personal Account, you must register on our Website. In the Account, you can view the history of your completed orders, products purchased and unfinished orders, manage the sending of the newsletter and your wishlist, in which you can save your favorite products. If you do not wish to register the Account to make a purchase, you can make a purchase without registration.

In order to register, run and maintain your Account, we may process the following data:
  • identification data, which include first name and surname;
  • contact details, which include email address, delivery address, billing address, and telephone number;
  • demographic data, which include gender, date of birth and preferred language;
  • login details, which are your login name and password. We do not have access to the actual password;
  • other information, specifically purchase history, your favorite products, wishlist, brand preference.

Please note, that in addition to manual registration, we allow you to sign-in via Facebook or Google account. In such case, we will obtain your email address from the respective provider.

Legal basis and purpose. We obtain your consent for this processing, which is indicated by your affirmative actions, such as filling these data in our application form and registering an Account. We process these data for creating your Account and for its maintenance, namely for user identification when using the Website. In addition, we may use your email address to remind you that you have products in your shopping cart etc. Please note, that you are entitled to cancel your registration (delete your Account) at any time.

D. Contacting our support
You can contact our support by email to get in touch with us and submit questions, suggestions, requests or compliments. For this purpose, you shall provide personal data such as name, email, the topic of your request, and your message to our support. You can also attach screenshots to clarify your request. Please note, that we collect and process these data and all other communications between us. Alternatively, you can contact us by phone.
Legal basis and purpose. Contacting our support or providing us with any feedback constitutes your consent. We use these data for communication with you, analysis, and improvement of our Website and the services provided by our customer support.

E. Publishing reviews

On our Website we allow you to create content such as reviews and evaluations of purchased products. You do not need an Account to create such content. Please note, that this content may include the first name and surname you entered in the form. So, we urge you not to share personal information that you do not wish to be publicly available publicly through the content.

Legal basis and purpose. The publication of reviews is voluntary and therefore constitutes your consent for processing. If you decide to write a review of the products you have purchased, we will process your personal data in order to process and display that review.

F. Email newsletters

We may use your email address to send you newsletters with some necessary or promotional information about our Website such as legal notices, order updates, promotions, suggestions on the products similar to those you have purchased from us, etc. Please note, that you are able to unsubscribe from such communications (excluding legal notices and order updates) at any time; a relevant link can be found in each newsletter. If you have the Account, you can also unsubscribe in your Account.

In addition, in the case of unavailable goods that you are interested in, we offer you the option of setting up availability monitoring. When the product is re-stocked, we will inform you by a message sent to the email address you provided, which we will process for this purpose.

Legal basis and purpose. We have legitimate interest in the effective provision of the services, as well as sending you Website-related letters with some necessary or promotional information.

G. Cookies

When you visit our Website, we may automatically collect information about your IP address, device model, browser type and version, operation system, session durations, location, language, and time zone. We also monitor your movements on the Website, i.e., what pages you visit, and which links you click on, so that we can customise the displayed content and offer you products and content that you will appreciate. We collect this information by using cookies and other similar technologies, that serve to make our Website more user-friendly, effective, and secure. You can read more in our Cookies policy here.

Legal basis and purpose. We have a legitimate interest in analysing user behavior on our pages and improving our Website. We want to customise the content and recommend products you are interested in. For this reason, we use the data we collect to personalise the content and offers on our Website. Moreover, Information about your behaviour on the website is important, among other things, for any prevention of attacks on our Website. Please note, that all your data automatically collected via cookies is further processed in a manner that does not allow your identification.

  1. Third-party processing

General statement. In order to provide high-quality services, we cooperate with third-party service providers. We have carefully selected them with regard to compliance with the legal requirements for data protection and data security and concluded processor agreements with them, which comply with the requirements of GDPR. In all cases when we transfer your personal data to other persons, we are confident that your personal data is protected and used only for the purposes specified in this Privacy Policy. We achieve such safety by using only certified services and products, signing agreements on personal data protection, as well as taking technical measures to ensure the data is protected when stored and used, and also while being processed and transferred.

Contractors. We have contractors in other countries, including those outside the European Economic Area. Your personal data may be accessed by our contractors in Ukraine. Such staff may be engaged in, among other things, the processing of your order and the provision of support services. The transfer of your personal data to recipients in other countries is secured by the Standard data protection clauses adopted by the European Commission and compliant with the EU data protection laws (the recipient signed up to a contract imposing the required obligations on it).

Third-party service providers. We transfer your personal data to our third-party service providers only if it is necessary within the performance of a purchase agreement, e.g., to ensure payment or transport, as part of the performance of the purchase agreement, on the basis of legitimate interest, or if you have given your consent to the transfer in advance.

Please note, that we may transfer your personal data to the following categories of companies:
  • carriers, delivery companies, order packers, and warehouses, for the purpose of delivering the products you have ordered;
  • suppliers of the products in connection with a complaint related to the products ordered by you;
  • partners who distribute commercial communications, who are bound by a duty of confidentiality and may not use your personal data for any other purpose. Please note, that we use Mailchimp as an email marketing (newsletter) provider, so you can find more information at https://mailchimp.com/gdpr/;
  • operators of analytics and/or marketing tools who help us personalize offers and content. Please note, that we use Google Analytics, Hotjar and Meta Pixel in this regard. For more information, see our Cookies policy here ; and
  • social networks, if you communicate with us through them.

For Legal Purposes. You also have to be aware of the fact that we may disclose your personal data in order to comply with the law, applicable regulations, and government requests, or to detect, prevent, or otherwise address illegal or suspected illegal activities, security or technical issues. In other words, we may disclose information necessary for the investigation or legal process on official request or the official bodies acting within their powers.

  1. How long we store your data

Your personal data will be stored by us for as long as we need it for the purposes for which the personal data are processed. Generally, we store your personal data as long as your Account (or our contractual relationship) is active. If reasonably necessary or required to meet legal or regulatory requirements, resolve disputes, or enforce our Terms, we may also keep hold of some of your information even after you have closed your Account or it is no longer needed for our contractual relationship.

For example, where you have made a purchase with us, we will keep a record of your purchase for the period necessary for invoicing, tax, and warranty purposes. We may also keep a record of correspondence with you (for example if you have made a complaint about a product) for as long as is necessary to resolve disputes or protect us from a legal claim. In addition, we may keep your contact information necessary for sending of direct marketing communications, for as long as you do not unsubscribe from receiving the same from us. Where we no longer have a need to store your personal data, we will delete it.

  1. How we protect your data

We have taken the best possible technical and organizational measures to ensure the information is processed in a manner that ensures appropriate security of information, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage. However, we would like to point out that online data transmission can entail security vulnerabilities. Seamless protection of data against access by third parties is not possible.

Technical measures. While communicating with the website, we use Hypertext Transfer Protocol Secure (HTTPS) to keep your data secured and communication encrypted. Any payment transactions will be processed and encrypted by PayU payment system and przelewy24 payment system, and we are not party to your personal credit card or bank details. Technically the data we collect are stored in secure places such as the XServer virtual servers’ platform with servers located in Ukraine, USA, Netherlands, and Bulgaria.

If you register, access to your Account is possible only after entering the password you have chosen. We do not have access to your password because we store it in an encrypted form that is not decryptable, even for us. We recommend that you do not disclose your login details to third parties.

Organizational measures. We require all our employers and contractors to enter into non-disclosure agreements and data processing agreements where it is required by law. If any of your personal data is under the breach, and there are high risks of violation of your rights as data subject, we will inform you and the respective data protection agencies as to the accidents without undue delay. We will do our best to minimize any such risks.

  1. Your rights regarding personal data

Under the data protection laws you have the following rights:
  • Right of access. You have the right to request free information about the processing of your personal data – what data we process about you, for what purpose and for how long, where we collect your data, and to whom we transfer it. As part of the right of access, you can also ask us to send you a structured, machine-readable format of the processed data (a copy of your personal data).
  • Right of rectification. If you find that the processed personal data is incorrect or incomplete, you have the right to request its rectification. We will be happy to correct or supplement your data without undue delay. Please note, that you can also correct some personal data via the "My Account" section of the Website.
  • Right of erasure. In some cases, you have the right to request the erasure of your personal data that we process. For example, if its processing is no longer necessary to achieve the purposes for which it was collected, or if there is no legal basis for the processing anymore. We will erase your personal data without undue delay.
  • Right to restrict processing. In some cases, as prescribed by law, you have the right to request a restriction on the processing of your personal data. For example, if we are not interested in processing your personal data any longer, but you want us to do this for different reasons, for example, to exercise or defend legal claims.
  • Right to object processing. You have the right to object to the processing of personal data that takes place on the basis of our legitimate interest. If it is processing for direct marketing purposes, we will stop processing your personal data without undue delay. However, in other cases, we will do so on the basis of a reassessment of our legitimate interests and your rights and reasons.
  • Right to withdraw your consent. You can withdraw your consent for the processing of your personal data at any time by contacting us. After your request, we will process such request in a timely manner and we will no longer process your personal data unless stated otherwise under applicable laws.
  • Right to data portability. You have the right to obtain the personal data that you have provided to us in a structured, commonly used and machine-readable format. In addition, you have the right to request us to transmit those personal data directly to another controller (where technically feasible).

How to exercise your rights as to your personal data? Any requests to exercise your rights can be directed to us through the contact details provided below. We advise emailing info@isei.pl to ensure action is promptly taken. These requests are free of charge. Please note, that we may ask for further information to identify you and ensure the personal data relates to the individual making the request. We will provide information about the actions taken on your request without undue delay, within one month after receiving the request. This period may be extended by two further months if we consider it necessary, considering the complexity and number of the requests. We will notify you about such an extension and its reasons within one month of the receipt of the request.

Right to lodge a complaint. If you have any concerns about our use of your information, any doubts as to our reply or reaction or absence of such, you have the right to lodge a complaint with a supervisory authority that is empowered to process such complaints in your country.

  1. Children policy

Our Website is not intended for children, and we do not knowingly collect data relating to children. You must be over 18 to register an Account, subscribe to our emails, and/or place an order on the Website. If you are under 18 you need to get your parent’s/guardian’s permission before submission of any personal data to us.

  1. Changes to this Privacy Policy

We may change this Privacy Policy at any time, including for legal, regulatory, or security reasons. If we make changes to this Privacy Policy, we will update the “Last amended” date at the top of this Privacy Policy. We can also notify you of major changes by email. We encourage you to periodically check this page to make sure you agree with the changes. If you do not agree with the updated Privacy Policy, you should immediately stop using the Website. Your continued use of the Website constitutes your acceptance of the updated Privacy Policy.

  1. Our contact information

We will undertake our best effort to make your personal data protected. If you have any questions, comments or requests regarding this Privacy Policy, please contact us at info@isei.pl or to:

Ul. Puławska 77, lok. U.5, WARSAW, post code 02-595, WARSAW, POLAND
REGON: 528079978
NIP: 5214061527


Your ISEI team