PRIVACY POLICY

This Privacy Policy describes the principles of processing information about you, including personal data and cookies.

  1. General Information This policy applies to the website www.beautyspaceglasgow.com. The service operator and the data controller are: Anna Makowska Obajtek, Anna Makowska Obajtek 804 Shettleston Road, Glasgow, G32 7DP, United Kingdom, GB. Operator’s email contact address: makowskaganna@gmail.com. The operator is the administrator of your personal data regarding the data voluntarily provided on the website. The service uses personal data for the following purposes:
  • Running classified ads system
  • Presenting user profiles to other users
  • Handling inquiries through forms
  • Fulfilling ordered services
  • Presenting offers or information The service collects information about users and their behavior in the following ways:
  • By voluntarily entered data in forms, which are then entered into the Operator’s systems.
  • By storing cookie files (“cookies”) on end devices.
  1. Selected Data Protection Methods Used by the Operator Places of logging in and entering personal data are protected in the transmission layer (SSL certificate). Thus, personal data and login data entered on the website are encrypted on the user’s computer and can only be read on the target server. Personal data stored in the database is encrypted in such a way that only the Operator with the key can read it. This ensures that data is protected in case of theft of the database from the server. The service uses two-factor authentication, which is an additional form of login protection. The Operator periodically changes its administrative passwords. To protect data, the Operator regularly creates backups. Regular software updates are an essential part of data protection, including updates to software components used by the Operator to process personal data.
  2. Hosting The service is hosted on the operator’s servers: cyberFolks.pl. The hosting company keeps server logs to ensure technical reliability. The following may be subject to logging:
  • Resources specified by the URL identifier (requested resource addresses – pages, files)
  • Time of request arrival
  • Time of sending the response
  • Client station name – identification performed by the HTTP protocol
  • Error information occurring during HTTP transaction execution
  • URL address of the previously visited page by the user (referer link) – in case the transition to the Service occurred through a link
  • User’s browser information
  • IP address
  • Diagnostic information related to the process of independently ordering services via registrars on the website
  • Information related to handling email addressed to the Operator and sent by the Operator.
  1. Your Rights and Additional Information on Data Use In some situations, the Administrator has the right to transfer your personal data to other recipients if it is necessary to perform a contract concluded with you or to fulfill obligations incumbent on the Administrator. This applies to such recipient groups as:
  • Hosting company on the basis of entrustment
  • Payment operators
  • Authorized employees and associates who use data to achieve the website’s objectives
  • Companies providing marketing services on behalf of the Administrator Your personal data processed by the Administrator will not be retained longer than necessary to perform actions related to them specified by separate regulations (e.g., accounting regulations). Regarding marketing data, they will not be processed for more than 3 years. You have the right to request from the Administrator:
  • Access to your personal data
  • Their correction
  • Deletion
  • Restriction of processing
  • and data portability. You have the right to object to the processing specified in point 3.2 concerning the processing of personal data for the purposes of the Administrator’s legitimate interests, including profiling, provided that the right to object cannot be exercised if there are important legitimate grounds for processing, overriding your interests, rights, and freedoms, in particular the establishment, investigation, or defense of legal claims. You have the right to lodge a complaint with the President of the Personal Data Protection Office, Stawki 2, 00-193 Warsaw, against the actions of the Administrator. Providing personal data is voluntary but necessary to use the Service. Actions may be taken against you involving automated decision-making, including profiling, to provide services under a concluded contract and for direct marketing conducted by the Administrator. Personal data is not transferred to third countries within the meaning of personal data protection regulations. This means that we do not transfer them outside the European Union territory.
  1. Information in Forms The service collects information voluntarily provided by the user, including personal data if provided. The service may store information about connection parameters (time stamp, IP address). In some cases, the service may store information facilitating the connection of data in the form with the user’s email address filling out the form. In this case, the user’s email address appears inside the page URL containing the form. The data provided in the form is processed for the purpose resulting from the function of a specific form, e.g., to complete the service request process or business contact, registration of services, etc. Each time, the context and description of the form clearly inform about its purpose.
  2. Administrator’s Logs Information about user behavior on the website may be subject to logging. This data is used to administer the service.
  3. Essential Marketing Techniques The Operator uses remarketing techniques to tailor advertising messages to user behavior on the site, which may give the illusion that user’s personal data is used for tracking, but in practice, no personal data is transferred from the Operator to advertising operators. The technological condition for such actions is the enabled support of cookie files. The Operator uses the Facebook pixel. This technology informs Facebook (Facebook Inc. based in the USA) that a particular person registered with it uses the Service. In this case, it relies on data for which it is the administrator, and the Operator does not provide any additional personal data to Facebook. The service is based on the use of cookies on the user’s end device. The Operator uses a solution that examines user behavior by creating heat maps and recording behavior on the website. This information is anonymized before it is sent to the service operator so that they do not know which specific individual the information concerns. In particular, passwords entered and other personal data are not recorded. The Operator uses a solution to automate the operation of the Service for users, e.g., sending an email to the user after visiting a specific subpage if they have agreed to receive commercial correspondence from the Operator.
  4. Information About Cookie Files The service uses cookies. Cookies are computer data, especially text files, that are stored on the end device of the Service User and are intended for using the Service’s websites. Cookies usually contain the name of the website they come from, the time they are stored on the end device, and a unique number. The entity placing cookie files on the end device of the Service User and accessing them is the Service operator. Cookies are used for the following purposes:
  • maintaining the user’s session (after logging in), thanks to which the user does not have to enter the login and password on each page of the Service again;
  • achieving the purposes specified above in the section “Essential marketing techniques”; Two basic types of cookies are used within the Service: “session” cookies and “persistent” cookies. “Session” cookies are temporary files that are stored on the user’s end device until logging out, leaving the website, or turning off the software (web browser). “Persistent” cookies are stored on the user’s end device for the time specified in the cookie parameters or until they are deleted by the User. Web browsing software (web browser) usually allows cookies to be stored on the user’s end device by default. Service Users can change their cookie settings. The web browser allows you to delete cookies. It is also possible to automatically block cookies. Detailed information on this subject is provided in the help or documentation of the web browser. Limiting the use of cookies may affect some functionalities available on the Service’s websites. Cookie files placed on the end device of the Service User may also be used by entities cooperating with the Service operator, in particular, this concerns companies such as Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).
  1. Managing Cookies – How to Express and Withdraw Consent in Practice? If the user does not want to receive cookies, they can change their browser settings. Please note that disabling cookies necessary for authentication processes, security, maintaining user preferences may hinder, and in extreme cases, prevent the use of www sites. To manage cookie settings, select the web browser you are using from the list below and follow the instructions:
  • Edge
  • Internet Explorer
  • Chrome
  • Safari
  • Firefox
  • Opera Mobile devices:
  • Android
  • Safari (iOS)
  • Windows Phone