Privacy policy regarding data processing by the online store

Using the online store constitutes acceptance of the following terms of the "Privacy Policy", in accordance with the provisions of the GDPR (General Data Protection Regulation), which entered into force on May 25, 2018 and are applicable throughout European Union.

I. General information

  1. This policy applies to the online store operating at the following URL:,
  2. The owner of the online store and the Administrator of personal data is the company: PHU "AUTO-EURO TEILE" Łukasz Konopka, Zalesie 52, 08-500 Ryki, NIP: 5060043599, REGON: 060201884,
  3. The person responsible within the meaning of the General Data Protection Regulation and other national data protection laws of the member states as well as other data protection regulations is the owner of the company,
  4. Contact e-mail address of the online store Administrator and Data Administrator:,
  5. Contact telephone number of the Website Administrator and Data Administrator: +49 176 75897461,
  6. The administration of your personal data takes place mainly in the online store in relation to data provided voluntarily when submitting inquiries,
  7. The online store performs the functions of obtaining information about users and their behavior in the following way:
    1. By voluntarily entering data in forms that are entered into the Administrator's systems,
    2. By saving cookies on end devices (so-called "cookies").
  8. As a matter of principle, we only collect and use personal data of our users insofar as this is necessary to provide a functional website and our content and services. The collection and use of personal data of our users takes place regularly only with the consent of the user. An exception applies in those cases in which prior consent cannot be obtained for practical reasons and the processing of the data is permitted by law.
  9. Personal data is only collected if you voluntarily provide it to us as part of your order. We use the data you provide without your consent only to fulfill and process your order. Once the contract has been fully processed and the purchase price has been paid in full, your data will be blocked for further use and deleted after the tax and commercial retention period has expired, unless you have expressly consented to further use of your data.
  10. Legal basis for the processing of personal data:
    1. Insofar as we obtain the consent of the data subject for the processing of personal data, Article 6 (1) (a) of the EU General Data Protection Regulation (DSGVO) serves as the legal basis. When processing personal data that is required to fulfill a contract to which the data subject is a party, Article 6 (1) (b) DSGVO serves as the legal basis. This also applies to processing operations that are necessary to carry out pre-contractual measures. Insofar as the processing of personal data is necessary to fulfill a legal obligation to which our company is subject, Article 6 (1) (c) DSGVO serves as the legal basis. In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6 (1) (d) DSGVO serves as the legal basis. If processing is necessary to safeguard a legitimate interest of our company or a third party and if the interests, fundamental rights and freedoms of the person concerned do not outweigh the first-mentioned interest, Article 6 (1) (f) DSGVO serves as the legal basis for processing.
  11. Data deletion and storage duration:
    1. The personal data of the person concerned will be deleted or blocked as soon as the purpose of storage no longer applies. Storage can also take place if this has been provided for by the European or national legislator in Union regulations, laws or other provisions to which the person responsible is subject. The data will also be blocked or deleted if a storage period prescribed by the standards mentioned expires, unless there is a need for further storage of the data for the conclusion or fulfillment of a contract.
  12. This "Privacy Policy" was published on September 8, 2023.

II. Purposes of personal data processing

  1. Fulfillment of product orders - To order a product, the Customer must provide his/her personal data in one of the order steps: Name, Surname, Address, Postal code, City, Telephone number, E-mail. Optional data is provided: Date of birth and company data: NIP, company name. These data are required so that the online store staff can accept your order for delivery.
  2. Handling inquiries via the contact form - To obtain information regarding orders, the customer uses the contact form, providing his/her contact details in the form fields: Name and surname, E-mail address, Telephone number. The form is available in the "Contact" tab in the online store.
  3. Adding an opinion about a product - The customer voluntarily provides his/her personal data: E-mail address, name and surname for the purpose of submitting an opinion about the product. This is an option for people who have already purchased this product in our store
  4. Subscription to the Newsletter - To obtain information about promotions and new products on offer, the Customer voluntarily signs up for the newsletter subscription when creating a customer account (by checking the "Subscribe to Newsletter" checkbox and by directly selecting the window with the "Subscribe to Newsletter" field available in the footer). online store.
  5. The owner of the online store with the address provided his contact and location details in the "Contact" tab, i.e.: Company headquarters address, Telephone numbers, E-mail address, Location on the map, Contact form. This data was made available for the purpose of submitting inquiries about products by our potential customers and finding our location. Therefore, we do not use databases of e-mail addresses and telephone numbers for any form of personal data processing other than contact with the customer.

III. Selected data protection methods used by the Administrator

  1. The places of logging in and entering personal data are protected in the transmission layer (SSL certificate). Thanks to this, personal data and login details entered in the store are encrypted on the user's computer and can only be read on the target server,
  2. Personal data stored in the database are encrypted in such a way that only the Administrator who has the key can read them. Thanks to this, the data is protected in the event of the database being stolen from the server,
  3. User passwords are stored in hashed form. The hash function works in one direction - it is impossible to reverse its operation, which is currently the modern standard for storing user passwords,
  4. The online store administrator periodically changes his administrative passwords to improve the quality of security,
  5. In order to protect data, the Administrator regularly makes backup copies,
  6. An important element of data protection is the regular updating of all software used by the Administrator to process personal data, which in particular means regular updates of programming components.

IV. Transfer of personal data

  1. In the case of parcel shipments and forwarding deliveries, we pass on your name, address, telephone number and email address to our contractually bound shipping service providers and - if necessary, processors - so that they can process the delivery and communicate with you to announce and coordinate the delivery.
  2. The legal basis for the associated data processing results from Art. 6 Para. 1 a) DSGVO, if you have given us your express consent. Insofar as data processing is necessary to fulfill the contractually agreed delivery of goods, the legal basis is: Art. 6 Paragraph 1 b) DSGVO. In addition, the legal basis for the associated data processing is Art. 6 Paragraph 1 f) DSGVO (balancing of interests, based on our interest in enabling you to have a smooth delivery at the best possible times for you).
  3. We delete all of the aforementioned data at the latest after the statutory warranty period has expired, unless applicable law obliges or entitles us to further storage of the data.
  4. To process payments, we pass on your payment data to the commissioned credit institution or to the payment service selected in the order process.

V. Payment processing via the provider PayPal

  1. When paying via PayPal, credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" via PayPal, we pass on your payment data to PayPal (Europe) as part of the payment processing. PayPal reserves the right to carry out a credit check for the payment methods credit card via PayPal, direct debit via PayPal or - if offered - "purchase on account" via PayPal. PayPal uses the result of the credit check with regard to the statistical probability of default for the purpose of deciding whether to provide the respective payment method. The credit report can contain probability values (so-called score values). As far as score values are included in the result of the credit report, they are based on a scientifically recognized mathematical-statistical procedure. Address data is included in the calculation of the score values. For more information on data protection, including the credit agencies used, please refer to PayPal's privacy policy.

VI. Provision of the website and creation of log files

  1. Legal basis for data processing:
    1. The legal basis for the temporary storage of the data and the log files is Art. 6 Para. 1 lit.f DSGVO. .
  2. Purpose of data processing:
    1. The temporary storage of the IP address by the system is necessary to enable the website to be delivered to the user's computer. To do this, the user's IP address must be saved for the duration of the session.
    2. The storage in log files takes place in order to ensure the functionality of the website. In addition, we use the data to optimize the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context. Our legitimate interest in data processing according to Art. 6 Para. 1 lit.f GDPR also lies in these purposes.
  3. Duration of storage:
    1. The data will be deleted as soon as they are no longer required to achieve the purpose for which they were collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.
    2. If the data is stored in log files, this is the case after seven days at the latest. Any further storage is possible. In this case, the users' IP addresses are deleted or alienated so that they can no longer be assigned to the accessing client.
  4. Opposition and removal option
    1. The collection of the data for the provision of the website and the storage of the data in log files is essential for the operation of the website. There is consequently no possibility of objection on the part of the user.

VII. Hosting

  1. The online store called is hosted (technically maintained) on the server of the hosting company:,
  2. Registration details of the hosting company: H88 S.A. with its registered office in Poznań, Franklina Roosevelta 22, 60-829 Poznań, entered into the National Court Register by the District Court Poznań - Nowe Miasto and Wilda in Poznań, 8th Commercial Division of the National Court Register under KRS number 0000612359, REGON 364261632, NIP 7822622168, share capital PLN 210,000.00 fully paid.
  3. At you can learn more about hosting and check the privacy policy of the hosting company,,
  4. The hosting company:
    1. uses data loss protection measures (e.g. disk arrays, regular backups),
    2. applies adequate measures to protect processing sites in the event of fire (e.g. special fire extinguishing systems),
    3. applies adequate measures to protect processing systems in the event of a sudden power failure (e.g. double power supply paths, generators, UPS voltage maintenance systems),
    4. uses measures to physically protect access to data processing places (e.g. access control, monitoring),
    5. applies measures to ensure appropriate environmental conditions for servers as elements of the data processing system (e.g. control of environmental conditions, specialized - air conditioning systems),
    6. uses organizational solutions to ensure the highest possible level of protection and confidentiality (training, internal regulations, password policies, etc.),
    7. appointed a Data Protection Inspector.
  5. To ensure technical reliability, the hosting company keeps logs at the server level. The following may be saved:
    1. resources identified by the URL identifier (addresses of requested resources - pages, files),
    2. query arrival time,
    3. time of sending the response,
    4. name of the client station - identification carried out via the HTTP protocol,
    5. information about errors that occurred during the HTTP transaction,
    6. URL address of the page previously visited by the user (referrer link) - if the page was accessed via a link,
    7. information about the user's browser,
    8. IP address information,
    9. diagnostic information related to the process of self-ordering services via recorders in the online store,
    10. information related to the handling of e-mail addressed to the Hosting Administrator and sent by the Hosting Administrator.

VIII. Your rights and additional information about how your data is used

  1. In some situations, the Administrator has the right to transfer your personal data to other recipients if it is necessary to perform the contract concluded with you or to fulfill the obligations imposed on the Administrator. This applies to such recipient groups as authorized employees and collaborators who use the data to fulfill orders and check the operation of the online store,
  2. Your personal data are processed by the Administrator no longer than is necessary to perform related activities specified in separate regulations (e.g. on accounting). With regard to marketing data, the data will not be processed for longer than 3 years,
  3. You have the right to request from the Administrator:
    1. access to your personal data,
    2. their corrections,
    3. deletion,
    4. processing restrictions,
    5. and data transfer.
  4. You have the right to object to the processing of your personal data in order to pursue legitimate interests pursued by the Administrator, including profiling, however, the right to object cannot be exercised if there are valid legitimate grounds for processing, interests, rights and freedoms that override you, in particular the establishment, exercise or defense of claims,
  5. You may lodge a complaint against the Administrator's actions to the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw,
  6. Providing personal data is voluntary, but necessary to operate the online store,
  7. Activities involving automated decision-making may be undertaken in relation to you, including profiling, in order to provide services under the concluded contract and for the purpose of conducting direct marketing by the Administrator,
  8. Personal data is not transferred to third countries within the meaning of personal data protection regulations. This means that we do not send them outside the European Union.

IX. Information in forms

  1. The online store collects information provided voluntarily by the user, including personal data, if provided,
  2. This online store may save information about connection parameters (time stamp, IP address),
  3. This online store, in some cases, may save information that makes it easier to link the data in the form with the e-mail address of the user completing the form. In this case, the user's e-mail address appears inside the URL of the page containing the form,
  4. The data provided in the form is processed for the purpose resulting from the function of a specific form, e.g. to process a service request or a sales contact, customer registration, etc. Each time, the context and description of the form clearly inform what it is used for.

X. Description and scope of data processing

  1. Every time our website is called up, our system automatically collects data and information from the computer system of the calling computer. The following data is collected:
    1. Information about the browser type and the version used
    2. The user's operating system
    3. The user's Internet service provider
    4. The user's IP address
    5. Date and time of access
    6. Websites from which the user's system accessed our website
    7. Websites that are accessed by the user's system via our website
  2. The log files contain IP addresses or other data that enable assignment to a user. This could be the case, for example, if the link to the website from which the user came to the website or the link to the website to which the user switched contains personal data.
  3. The data is also stored in the log files of our system. This does not affect the user's IP addresses or other data that enable the data to be assigned to a user. This data is not stored together with other personal data of the user.

XI. Online store Administrator logs and hosting Administrator logs

  1. Information about user behavior on this website may be subject to logging in to the back-end of the online store and the hosting back-end, i.e. the place where it is physically maintained. This data is used to administer it.

XII. Important marketing techniques

  1. The hosting administrator uses statistical analysis of store traffic via Google Analytics (Google Inc. based in the USA). The hosting administrator does not transfer personal data to the Administrator of this service, only anonymized information. The service is based on the use of cookies on the user's end device. In terms of information about user preferences collected by the Google advertising network, the user can view and edit information resulting from cookies using the Google Ads tool.
  2. The hosting administrator uses remarketing techniques that allow advertising messages to be tailored to the user's behavior on the store, which may give the illusion that the user's personal data are used to track him, but in practice, no personal data is transferred from the hosting administrator to the advertising administrators. The technological condition for such activities is that cookies are enabled.
  3. The hosting administrator uses a solution that examines user behavior by creating heat maps and recording behavior on the store. This information is anonymized before it is sent to the Service Administrator so that he does not know which natural person it concerns. In particular, entered passwords and other personal data are not recorded.

XIII. Information about cookies

  1. Our online store uses cookies,
  2. Cookies (so-called "cookies") are IT data, in particular text files, which are stored on the website User's end device and are intended for using subpages and plug-ins of this website. Cookies usually contain the name of the online store they come from, their storage time on the end device and a unique number,
  3. The entity that places cookies on the end device of the User of this website and obtains access to them is the Administrator of the online store,
  4. Cookies are used for the following purposes:
    1. maintaining the online store user's session (after logging in), thanks to which the user does not have to re-enter the login and password on each subpage,
    2. achieving the objectives set out in the "Important Marketing Techniques" section above.
  5. This online store uses two basic types of cookies: "session cookies" and "persistent cookies". "Session" cookies are temporary files that are stored on the User's end device until logging out, leaving the online store or turning off the software (web browser). "Permanent" cookies are stored on the User's end device for the time specified in the cookie parameters or until they are deleted by the User,
  6. Software for browsing websites (web browser) usually allows cookies to be stored on the User's end device by default. Website users can change settings in this regard. The web browser allows you to delete cookies. It is also possible to automatically block cookies. Detailed information on this subject can be found in the help or documentation of your web browser,
  7. Restrictions on the use of cookies may affect some functionalities available on websites,
  8. Cookies placed on the end device of the User of this website may also be used by entities cooperating with the Website Administrator, in particular the following companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA).

XIV. Managing cookies - how to express and withdraw consent in practice?

  1. If you do not want to receive cookies, you can change your browser settings. We reserve that disabling the use of cookies necessary for authentication processes, security, maintaining user preferences may make it difficult, and in extreme cases may prevent the use of websites,
  2. To manage cookie settings, select the web browser you use from the list below and follow the instructions contained in the browsers' technical documentation:
    1. Edge
    2. Internet Explorer
    3. Chrome
    4. Safari
    5. Firefox
    6. Opera

You have the right to accept or reject this Privacy Policy. By accessing this website and starting to use it, you agree to these terms of the "Privacy Policy".

XV. Legal basis and revocation

  1. Legal basis:
    1. The legal basis for the processing of personal data using cookies is Article 6 (1) (f) DSGVO.
    2. We use all other tools, especially those for marketing purposes, on the basis of your consent in accordance with Art. 6 Para. 1 S. 1 lit. . Data processing using these tools only takes place if we have received your prior consent.
  2. Obtaining your consent:
    1. The data processing is necessary in order to provide you with the legally required consent management and to comply with our documentation obligations. The legal basis for using the consent management tool is Article 6 Paragraph 1 Sentence 1 Letter f GDPR, based on our interest in fulfilling the legal requirements for cookie consent management.

XVI. Withdraw your consent or change your selection

  1. You can revoke your consent for certain tools at any time. There you can also change the selection of the tools you want to consent to use, as well as additional information on the cookies and the respective storage period.

XVII. Rights of the data subject

  1. You are always entitled to the rights of the data subject formulated in Art. 15 - 21, Art. 77 DSGVO:
    1. Right to withdraw your consent;
    2. Right to object to the processing of your personal data (Art. 21 DSGVO);
    3. Right to information about your personal data processed by us (Art. 15 DSGVO);
    4. Right to correction of your incorrectly stored personal data (Art. 16 DSGVO);
    5. Right to erasure of your personal data (Art. 17 DSGVO);
    6. Right to restrict the processing of your personal data (Art. 18 DSGVO);
    7. Right to data portability of your personal data (Art. 20 DSGVO);
    8. Right to lodge a complaint with a supervisory authority (Art. 77 DSGVO).
  2. In order to assert your rights described here, you can contact the above contact details at any time. This also applies if you would like to receive copies of guarantees to prove an adequate level of data protection. If the respective legal requirements are met, we will comply with your data protection request.
  3. Your inquiries about the assertion of data protection rights and our answers to them will be stored for documentation purposes for a period of up to three years and in individual cases for the assertion, exercise or swearing in of legal claims. The legal basis is Art. 6 Para. 1 S. 1 lit.f DSGVO, based on our interest in defending against any civil law claims under Art. 82 DSGVO, avoiding fines under Art. 83 DSGVO and fulfilling our accountability under Art. 5 para. 2 DSGVO .

XVIII. Data security

  1. We use suitable technical and organizational security measures to protect your data against accidental or deliberate manipulation, partial or complete loss, destruction or against unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.

XIX. Changes to the Privacy Policy

The online store reserves the right to change the content of the above "Privacy Policy" without notifying the website users. If you do not agree with the above content and believe that your privacy has been violated in some way, please contact our Administrator.

Contact to the administrator: mobile phone +49 176 75897461 , e-mail: