1. Definitions
Controller – Stal Impex sp. z o.o. with its registered office in Krosno, ul. Łukasiewicza 49, 38-400 Krosno, Poland, holding VAT ID (NIP) 684-18-17-582 and REGON 370356606.
Personal Data – any information relating to an identified or identifiable natural person, who can be identified directly or indirectly, in particular by reference to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person (e.g. image, voice recording, contact details, location data, information contained in correspondence, information collected via recording equipment or other technological solutions).
Sensitive Personal Data (so-called “special categories of data”) – a category of personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health, or data concerning a natural person’s sex life or sexual orientation. The processing of such data is generally prohibited and requires special protection due to the high risk to the rights and freedoms of the natural person, including discrimination.
GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
Data Subject – any natural person whose personal data is processed by the Controller.
Recipient – a natural or legal person, public authority, agency or another body to which personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with applicable law shall not be regarded as recipients. The processing of such data by those public authorities shall comply with the data protection rules applicable according to the purposes of the processing. The term “third party” means a natural or legal person, public authority, agency or body other than the data subject, the controller, the processor, and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
Processor – a natural or legal person, public authority, agency or other body which processes personal data on behalf of the Controller.
Processing – an operation or set of operations performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Websites / the Controller’s websites – www.stalimpex.eu; www.krosagro.com; www.schronibunkier.pl and all their language versions (including in other domains), e.g.: ShelterSuper.com; Luftschutzbunkershelter.de; ShelterSecurityProducts.com.
Act – the Act of 10 May 2018 on the protection of personal data, as amended.
Data Erasure – permanent destruction of personal data or such modification of personal data that makes it impossible to identify the data subject.
2. Personal Data Controller
The Controller of your personal data is Stal Impex Sp. z o.o., located at:
38-400 Krosno, ul. Łukasiewicza 49, Poland
Phone: +48 13 43 206 91
E-mail: biuro(at)stalimpex.eu
The Controller conducts its business and uses websites to present its products and services to a wider group of customers in the following categories:
- https://www.stalimpex.eu/ – the company’s core business related to the production of steel pipes and profiles,
- https://krosagro.com/ – an online store selling professional and hobby polytunnels as well as accessories related to these tunnels,
- https://schronibunkier.pl/ – a website promoting civil protection and security solutions such as shelters, filtration systems, armoured doors and windows, and shelter interior equipment – details are available on the website. This website has several equivalents / language versions under different domains, i.e.: ShelterSuper.com; Luftschutzbunkershelter.de; ShelterSecurityProducts.com.
If the Controller decides to launch a new domain for its business activity, it will inform users about it on the websites currently operated by the Controller.
3. Contact with the Personal Data Controller
You may contact the Controller by e-mail at: rodo(at)stalimpex.eu or by traditional mail at the following address:
Stal Impex Sp. z o.o.
38-400 Krosno, ul. Łukasiewicza 49, Poland
4. Processing and Security of Personal Data
In the course of its business, the Controller makes every effort to ensure that personal data collected and processed complies with applicable regulations, in particular the GDPR and the data processing principles set out therein.
We ensure full transparency in situations where personal data is processed, informing you about the purpose and legal basis for processing at the time of data collection. The Controller ensures that collected data is limited to what is necessary to achieve the indicated purpose and is processed only for the period required.
Your personal data may be processed when:
a) you have provided your personal data using any available communication channels, e.g. by sending an inquiry or offer via e-mail, phone, using a form available on the website, or during a meeting at trade fairs;
b) we have received it as part of cooperation during the conclusion or performance of an agreement;
c) we have obtained it from other sources, e.g. from a company cooperating with you which is our business partner.
When processing personal data, the Controller ensures its security and confidentiality and provides data subjects with access to information regarding processing. If, despite the security measures applied, a personal data breach occurs, the Controller will notify you of the incident in accordance with applicable regulations.
The procedures implemented by the Controller ensure that access to your personal data is granted only to authorised persons and only to the extent necessary to perform specific activities, thus ensuring the integrity and confidentiality of the data entrusted to us.
5. Processing of Personal Data in Business and Commercial Relations, Contact, Recruitment, Marketing, CCTV and GPS
The principles regarding the processing of personal data related to business and commercial relations, established contact, recruitment, marketing, video surveillance (CCTV) and GPS are described in our information clauses, which are available on our main website at:
https://sheltersecurityproducts.com/gdpr-information-obligation/
Additionally, the information clauses for our personal data processing activities include, among others, the following information:
- the Controller’s name and identification and contact details,
- purposes, legal bases and data retention periods,
- recipients of data,
- information on whether personal data is transferred to a third country or an international organisation,
- information on whether automated decision-making is used,
- information on transfers to third countries,
- information on the rights related to the processing of personal data by Stal Impex Sp. z o.o.
6. Cookies
Cookies are IT data stored on the end device of the user and dedicated to using the website. They contain the name of the website from which they originate, a unique number and the storage time on the device.
Our websites automatically collect only data contained in cookies.
Our Cookie Categories
6.1 Necessary (Technical) Cookies
Purpose: to ensure basic and correct operation of the website. Without them, the website simply does not work.
Examples: remembering the user session (e.g. whether the user is logged in), remembering the contents of the shopping cart in an online store, storing information about whether the user accepted or rejected cookies.
6.2 Analytical (Statistical) Cookies
Purpose: collecting data on how users use the website to measure its performance and improve its content.
Examples: Google Analytics cookies (…), which count visits, time spent on the website and analyse which pages are the most popular.
6.3 Marketing (Advertising) Cookies
Purpose: tracking user activity across different websites and applications to display personalised advertisements, i.e. retargeting.
Examples: Google Ads / DoubleClick cookies used to optimise advertising campaigns and track conversions (e.g. purchase or contact after clicking an ad).
6.4 Functional Cookies (Improving Website Performance)
Purpose: remembering user choices (e.g. preferred language, font size) or enabling interaction with external services.
Examples: cookies maintaining sessions for embedded Google Maps, or cookies enabling proper display of YouTube videos.
Cookie Consent
During the first visit to our websites, information about the use of cookies is displayed together with a request for consent to use cookies.
You can always change cookie settings in your browser or delete cookies entirely. Browsers manage cookie settings in different ways. The help menu of your browser contains explanations on how to change cookie settings.
You can also manage cookie settings by installing dedicated add-ons that allow you to control cookies.
Disabling or limiting cookies may cause difficulties in using our website, as well as many other websites that use cookies.
Detailed information on changing cookie settings and deleting cookies in the most popular browsers is available in the browser help section and on the following pages (just click the relevant link):
– in the Chrome browser,
– in the Firefox browser,
– in the Internet Explorer browser,
– in the Opera browser,
– in the Safari browser,
– in the Microsoft Edge browser.
Server Logs
Using websites involves sending requests to the server on which the website is stored. Each request sent to the server is recorded in the server logs.
Logs include, among others, your IP address, server date and time, information about the web browser and operating system you use.
Logs are recorded and stored on the server. Data recorded in server logs is not associated with specific persons using the website and is not used by us to identify you.
Server logs are only auxiliary material used for website administration, and their content is not disclosed to anyone except persons authorised to administer the server.
7. Social Media Cookies
Stal Impex Sp. z o.o. and our partners (mainly for www.schronibunkier.pl), i.e. social networks such as Facebook, LinkedIn, Twitter, Google, YouTube, TikTok, use various solutions and tools for analytical and marketing purposes.
Social media plugins are used on our websites (Facebook, Google+, Twitter, YouTube, LinkedIn, TikTok). Plugins allow the User to share content published on the website in a selected social media platform.
Using social media plugins on the website causes the relevant social media service to receive information about your use of our website and may associate it with the user profile created on that social media platform.
Detailed information about data processing can be found at the following links:
Facebook: https://www.facebook.com/policy.php
Google: https://privacy.google.com/take-control.html?categories_activeEl=sign-in
Twitter: https://twitter.com/en/privacy
YouTube: https://policies.google.com/privacy?hl=pl
LinkedIn: https://www.linkedin.com/legal/privacy-policy
TikTok: https://www.tiktok.com/safety/pl-pl/privacy-and-security-on-tiktok/
8. Rights of Data Subjects
The rights of data subjects are described in our information clauses for specific personal data processing activities. The clauses are available on our website and you can check the details here:
https://sheltersecurityproducts.com/gdpr-information-obligation/