Personal data provided to us by the Consumer in connection with the registration and use of the Online Store, located under the Internet domain www.kanunature.eu (hereinafter referred to as the Store) are processed by Manatura sp. z o.o. sp.k. with its registered office in Koszalin with the address at Modrzejewska Street 71A,74-728 Koszalin, Poland, registered in the National Court Register kept by the District Court in Koszalin, IX Commercial Division of the National Court Register, under the number 0000822719, UE VAT-ID: PL4990680928, REGON Number 385263818, who is the administrator of personal data (hereinafter referred to as ADO) within the meaning Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC – hereinafter referred to as GDPR.
The personal data entrusted to the Store are stored and secured in accordance with the principles set out in applicable law:
Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC,
Act of 10/05/2018 on the protection of personal data
Act of July 18, 2002 on the provision of electronic services (Journal of Laws of 2017, item 1219),
Personal data processed by ADO, in particular name, surname, billing address, delivery address, e-mail address, telephone number, are processed for the purpose necessary to establish, shape the content, change, terminate and properly implement services provided electronically and implement submitted orders by the Consumer, as well as for the possible consideration of complaints submitted by the Consumer and the return of benefits in the event of withdrawal from the contract (return of goods) – the legal basis for the processing of data collected in this way is art. 6(1)(b) GDPR.
The personal data entrusted to the Store may be made available to entities with whom ADO has a personal data entrustment agreement only for the purpose and to the extent necessary to achieve the purpose indicated when collecting data.
If the User decides to make a payment by Przelewy24, he is redirected to the website of the entity authorizing the transaction, PayPro SA (PayPro) – the entity providing the Service to Users, with its registered office in 60-327 Poznań, at Kanclerska 15 Street, entered into the Register of Entrepreneurs of the National Court Register kept by the District Court for Poznań Nowe Miasto and Wilda, 8th Commercial Division of the National Court Register under KRS number 0000347935, NIP number 7792369887, with share capital of PLN 5,476,300.00, fully paid up http://www. .przelewy24.pl. The store does not have access to credit card data and does not store data from these credit cards. If you choose the payment method Przelewy24.pl, the data necessary to make the payment are transferred to the Payment Authorization Centre. The store does not have access to and does not store the data necessary to log in to the bank selected for payment.
Personal data will be processed until the order is completed. This period may be extended by the time for which ADO is obliged to process data under the law.
Providing personal data is voluntary, however, failure to provide data may prevent us from providing services electronically and making purchases by the Consumer in the Store.
The consumer has the right to request the administrator to access his personal data, rectify it, delete or limit it, and has the right to transfer data. The customer also has the right to lodge a complaint to the President of the Office for Personal Data Protection in the event of processing personal data by ADO that is inconsistent with the law.
Personal data provided by the Consumer can be edited independently (in the “My Account” tab). The consumer may request ADO to delete the entire Customer’s account by sending an appropriate request to the e-mail address: email@example.com from the e-mail address currently registered in the Store https://yesha.eu.
ADO does not intend to transfer personal data to third countries and does not implement automated decision-making, including profiling.
The Store maintains a list of newsletters [newsletter is an (electronic) newsletter published periodically by the Store, in which, among others, information on the offer of own products and about promotions, competitions, events related to the functioning of the Store and other marketing activities of the Store]. By subscribing voluntarily to the newsletter list, the user agrees to receive marketing information. The store does not resell or share the e-mail address with third parties. However, the store may entrust the processing of e-mail addresses to third parties, conduct its own marketing activities based on o third-party systems. The e-mail addresses provided in this case are used only for the needs of the Store. The user’s e-mail address is subject to the same protection as other personal data. The user has the right to unsubscribe from the newsletter at any time – this process can be done by clicking the link in the e-mail. The legal basis for the processing of data collected in this way is art. 6(1)(a) and (f). The administrator has a legitimate interest in implementing direct marketing of own products.
Manatura Sp. z o. o. sp.k. ensures the security of personal data thanks to appropriate technical and organizational measures aimed at preventing unlawful data processing and their accidental loss, destruction and damage. In addition, it takes special care that personal data is:
- correct and processed in a lawful manner,
- obtained only for specific purposes and not further processed in a manner incompatible with these purposes,
- adequate, appropriate and not excessive,
- accurate and up to date,
- not kept longer than necessary.
Data transfer security
The store has an SSL certificate. The SSL certificate is a tool that ensures the protection of the website, as well as a guarantee of confidentiality of data sent electronically. The SSL certificate is a type of security consisting in encoding data before they are sent from the User’s browser and decoding after safely reaching the Store’s server. Information sent from the server to the client is also encoded and decoded after reaching the destination.
After connecting to a secure website, the Customer is informed about it in the following way:
in Internet Explorer, a padlock is displayed on the right side of the status bar. By clicking on it, the Customer will see the certificate of authenticity (digital signature) of the page.
in Firefox and Opera, the padlock shows up in the navigation bar. By clicking on it, the Customer can view the certificate of authenticity of a given page.
For security, the Customer should remember about:
establishing a login and a difficult, 8-character, alphanumeric password to the Customer’s account that prevent them from being easily guessed by third parties. In particular, it is recommended to use a string of characters and numbers as well as uppercase and lowercase letters in the password;
logging out of the website https://yesha.eu. after the end of the session (finished purchases). Just turning off the browser window is not equivalent to logging out of https://yesha.eu. Logging out of the https://yesha.eu website will take place after clicking the “Log out” button, which is located in the “my account” tab;
keeping the login and password to the Customer’s account secret, including in particular not to provide data (login, password) to any third parties;
use of anti-virus programs, including regular scanning of disks for viruses;
using the website and the Store https://yesha.eu. only through trusted computers on which only verified software is installed. Using other people’s computers carries the risk of intercepting your login, password or other data you provide.
Shop policy towards the IP address
The customer using the Store is anonymous until he decides otherwise. The Customer’s IP address is processed by the Store only for statistical purposes. It is not made available to third parties. At the same time, the Store reserves the right to transfer the Customer’s IP address to law enforcement authorities in the event of detection of actions aimed at destroying the data contained in the Store or otherwise that may affect the proper functioning of the Store.
Due to the continuous development and progress of technology, the rules set out in this document may change. The Store informs about the change of these rules in advance, no later than 7 days before their introduction, by posting the new content of this document on the website.