Google-play App-store

Privacy Policy

Privacy Policy

§ 1 General Provisions

  1. The data controller is Stories company. You can contact Stories via email at: [email address not provided]
  2. Based on Article 37 of GDPR, the company “Stories” has not appointed a Data Protection Officer.
  3. The Privacy Policy is an integral part of the Terms of Service. By using our services, you entrust us with your information. This document serves only as a help in understanding what information and data are collected, for what purpose, and how they are used. This data is very important to us, so we ask you to carefully read this document as it defines the rules and methods of processing and protecting personal data. This document also defines the rules for using “Cookies”.
  4. We inform you that we comply with the principles of personal data protection and all legal regulations provided for in the Personal Data Protection Act and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
  5. At the request of the person whose personal data is being processed, we provide comprehensive information on how we use their personal data. We always try to clearly inform about the data we collect, how we use it, what purposes it serves, to whom we transfer it, what protection we provide for this data when transferring it to other entities, and we provide information about the institutions to contact in case of doubts.

§ 2 Privacy Principles

  1. We respect your privacy. We want to guarantee you the convenience of using our services.
  2. We value the trust you place in us by entrusting us with your personal data for the purpose of providing services. We always use personal data in a fair manner and in a way that does not betray your trust, only to the extent necessary to provide services.
  3. As a User, you have the right to obtain full and clear information about how we use your personal data and for what purposes they are necessary. We always clearly inform about the data we collect, how and to whom we make it available, and provide information about the entities to contact in case of doubts.
  4. If you have any doubts about our use of your personal data, we will promptly take action to clarify and resolve such doubts. We comprehensively answer all related questions.
  5. We will take all reasonable actions to protect your data from improper and uncontrolled use.
  6. The legal basis for processing your personal data is:
    1. Article 6(1)(a) – the data subject has given consent to the processing of their personal data for one or more specific purposes
    2. Article 6(1)(b) – processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract
    3. Article 6(1)(c) – processing is necessary for compliance with a legal obligation to which the controller is subject
    4. Article 6(1)(d) – processing is necessary in order to protect the vital interests of the data subject or of another natural person
    5. Article 6(1)(e) – processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
    6. Article 6(1)(f) – processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party
  7. Your personal data related to the conclusion and implementation of the contract will be processed for the period of its implementation, as well as for a period not longer than provided for by law, including the provisions of the Civil Code and the Accounting Act, i.e. not longer than 10 years, counting from the end of the calendar year in which the last contract was executed.
  8. Your personal data processed for the purpose of concluding and performing future contracts will be processed until you object.
  9. You have the right to: access your personal data and receive a copy of the personal data being processed, rectify your incorrect data; request deletion of data (right to be forgotten) in the event of circumstances provided for in Art. 17 of GDPR; request restriction of data processing in cases indicated in Art. 18 of GDPR, object to data processing in cases indicated in Art. 21 of GDPR, transfer the provided data processed in an automated manner.
  10. If you believe that your personal data is being processed unlawfully, you can file a complaint with the supervisory authority (Personal Data Protection Office, ul. Stawki 2, Warsaw). If you need additional information related to the protection of personal data or want to exercise your rights, please contact us by mail at the correspondence address.
  11. We comply with all applicable data protection laws and regulations and will cooperate with data protection authorities and authorized law enforcement agencies. In the absence of data protection regulations, we will act in accordance with generally accepted data protection principles, principles of social coexistence, and established customs.
  12. If you have any questions, please contact us through the page from which you were redirected to this Privacy Policy. The request for contact will be immediately forwarded to the appropriate appointed person.
  13. To facilitate our response or address the provided information, please provide your first and last name.

§ 3 Scope and Purpose of Collecting Personal Data

  1. We process necessary personal data for the purpose of providing services and for accounting purposes only.
  2. We collect, process, and store the following user data:
    1. first and last name,
    2. residential address,
    3. delivery address (if different from the residential address),
    4. tax identification number (NIP),
    5. email address,
    6. phone number (mobile, landline),
    7. information about the used web browser,
    8. other personal data voluntarily provided to us.
  3. Providing the above data is completely voluntary but also necessary for the full implementation of services.
  4. We may transfer personal data to servers located outside your country of residence or to affiliated entities, third parties based in other countries, including countries from the EEA (European Economic Area, EEA – free trade zone and Common Market, including European Union countries and the European Free Trade Association EFTA) for the purpose of processing personal data by such entities on our behalf in accordance with the provisions of this Privacy Policy and applicable laws, customs, and data protection regulations.
  5. Access to your data may be held by entities providing services necessary for the operation of the website, i.e.:
    1. Hosting companies providing hosting or related services for the Administrator
    2. Companies through which the Newsletter service is provided
    3. IT service and support companies performing maintenance or responsible for maintaining IT infrastructure
    4. Companies intermediating in online payments for goods or services offered within the Service (in the case of making a purchase transaction in the Service)
    5. Companies intermediating in mobile payments for goods or services offered within the Service (in the case of making a purchase transaction in the Service)
    6. Companies responsible for keeping the Administrator’s accounting (in the case of making a purchase transaction in the Service)
    7. Companies responsible for delivering physical products to the User (postal / courier services in the case of making a purchase transaction in the Service)

§ 4 Cookies

  1. We use cookies or similar technologies (hereinafter collectively referred to as “cookies”) which should be understood as IT data, in particular text files, intended for use on the website and stored on end devices of Users browsing the pages. Information collected using cookies allows to adapt services and content to individual needs and preferences of users, as well as serve to develop general statistics on the use of websites by users. Data collected using cookies is collected only for the purpose of performing specific functions for Users and is encrypted in a way that prevents access to them by unauthorized persons.
  2. On our website, we use the following cookies:
    1. Internal Cookies – files placed and read from the User’s Device by the Service’s IT system
    2. External Cookies – files placed and read from the User’s Device by IT systems of external Services. Scripts of external Services that can place Cookies on Users’ Devices have been consciously placed in the Service through scripts and services made available and installed in the Service
    3. Session Cookies – files placed and read from the User’s Device by the Service during one session of a given Device. After the end of the session, the files are deleted from the User’s Device.
    4. Persistent Cookies – files placed and read from the User’s Device by the Service until they are manually deleted. The files are not automatically deleted after the end of the Device session unless the User’s Device configuration is set to delete Cookie files after the end of the Device session.
  3. Within our website, the following types of cookies are used due to the necessity to provide services:
    1. necessary cookies enabling the use of services available within the website, in particular authentication cookies used for services requiring authentication;
    2. security cookies, in particular used to detect authentication abuses;
    3. performance cookies enabling the collection of information on how to use websites;
    4. functional cookies enabling “remembering” the settings selected by the user and personalizing the user interface;
    5. advertising cookies enabling the delivery of advertising content tailored to users’ interests.
  4. Web browsing software (web browser) usually by default allows the storage of cookies on the end device. The User browsing the website can independently and at any time change the settings for cookies, specifying the conditions for their storage and access by cookies to their device. Changes to the settings referred to in the previous sentence can be made by the Customer using the web browser settings. These settings can be changed in particular in such a way as to block the automatic handling of cookies in the web browser settings or inform about their each placement of cookies on the User’s device. Detailed information about the possibility and ways of handling cookies are available in the software settings (web browser).
  5. Using the website without changing the settings for cookies means consent to the storing of cookies. The customer can always withdraw consent by changing the settings for cookies. Information on how to configure cookie settings in sample web browsers can be found here:

§ 5 Social Media Plugins

    1. Social media plugins, so-called plug-ins, may be present on our website.
      1. Facebook is operated by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA Facebook. To see Facebook plugins, go to: https://developers.facebook.com/docs/plugins
      2. Twitter is operated by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA. To see Twitter plugins, go to: https://dev.twitter.com/web/tweet-button
      3.  
  2. The plugin only transmits to its provider information about which of our websites you accessed and when. If, while viewing our website or staying on it, the user is logged into their account on, for example, Facebook or Twitter, the provider is able to link your interests, information preferences, and other data obtained, for example, by clicking the Like button or leaving a comment, or entering the profile name in the searched. Such information will also be transmitted by the browser directly to the provider.
  3. To avoid recording a visit to a selected user account by the Plug-in on our website, you must log out of your account before starting to browse our website.

§ 6 Rights and Obligations

  1. We have the right, and in cases specified by law also the statutory obligation, to transfer selected or all information regarding personal data to public authorities or third parties who submit such a request for information based on applicable Polish law.
  2. The user has the right to:
    1. access personal data
      The User has the right to obtain access to their personal data, exercised upon request submitted to the Administrator
    2. rectify personal data
      The User has the right to request from the Administrator immediate rectification of personal data that is incorrect and/or completion of incomplete personal data, exercised upon request submitted to the Administrator
    3. delete personal data
      The User has the right to request from the Administrator immediate deletion of personal data, exercised upon request submitted to the Administrator. In the case of user accounts, data deletion consists of anonymizing data enabling User identification. The Administrator reserves the right to suspend the execution of the data deletion request in order to protect the legally justified interest of the Administrator (e.g., when the User has violated the Terms of Service or the data was obtained as a result of conducted correspondence). In the case of the Newsletter service, the User has the possibility to independently delete their personal data using the link placed in each sent e-mail message.
    4. restrict the processing of personal data
      The User has the right to restrict the processing of personal data in cases indicated in Art. 18 of GDPR, including questioning the correctness of personal data, exercised upon request submitted to the Administrator
    5. transfer personal data
      The User has the right to obtain from the Administrator personal data concerning the User in a structured, commonly used and machine-readable format, exercised upon request submitted to the Administrator
    6. object to the processing of personal data
      The User has the right to object to the processing of their personal data in cases specified in Art. 21 of GDPR, exercised upon request submitted to the Administrator
    7. file a complaint
      The User has the right to file a complaint to the supervisory authority dealing with personal data protection.