The privacy policy describes the principles of processing information about you by us, including personal data and cookies.

1. General Information

  1. This policy applies to the website www, operating at the url:
  2. The operator of the service and the administrator of personal data is: Prima S.A. Piston Ring Factory, 17 Liściasta Street, 91-357 Łódź.
  3. Email address of the operator:
  4. Operator is the Administrator of your personal data with regard to the data provided voluntarily on the Service.
  5. The service uses personal data for the following purposes:
    • Managing a newsletter
    • Conducting online chat conversations
    • Operating a classified ads system
    • Presenting user profiles to other users
    • Displaying user advertisements
    • Handling inquiries through a form
    • Preparing, packaging, and shipping goods
    • Fulfilling ordered services
    • Presenting offers or information
  6. The service performs functions of gathering information about users and their behaviour in the following way:
    1. Through voluntarily provided data entered into forms, which are then input into the Operator’s systems.
    2. By saving cookie files on end devices (so-called “cookies”).

2.Selected methods of data protection used by the Operator

  1. Login and data entry areas are protected in the transmission layer (SSL certificate). As a result, personal data and login information entered on the website are encrypted on the user’s computer and can only be read on the destination server.
  2. Personal data stored in the database is encrypted in such a way that only the Operator possessing the key can read it. This ensures that the data is protected in case of a database breach from the server.
  3. User text: User passwords are stored in hashed form. The hashing function works in a one-way direction – it is not possible to reverse its operation, which is currently the modern standard for storing user passwords.
  4. Two-factor authentication is applied on the platform, providing an additional layer of protection for logging into the service.
  5. The operator periodically changes their administrative passwords.
  6. In order to protect data, the Operator regularly performs backups.
  7. An important aspect of data protection is the regular updating of all software used by the Data Controller for processing personal data. This includes regular updates of programming components in particular.

3. Hosting

  1. The service is hosted (technically maintained) on the operator’s servers: another company.
  2. The hosting company, to ensure technical reliability, keeps server logs. The following may be subject to logging:
    • Resources specified by the URL identifier (addresses of requested resources – pages, files),
    • arrival time of the request,
    • response time,
    • client station name – identification performed by the HTTP protocol,
    • information about errors that occurred during the HTTP transaction,
    • URL address of the previously visited page by the user (referer link) – in case the entry to the Service was made through a reference,
    • user’s browser information,
    • IP address information,
    • diagnostic information related to the process of ordering services independently through registrars on the website,
    • information related to handling email directed to the Operator and sent by the Operator.

4. Your rights and additional information on data usage.

  1. In some situations, the Administrator has the right to transfer your personal data to other recipients if it is necessary to fulfill the agreement concluded with you or to fulfill the obligations incumbent on the Administrator. This applies to the following groups of recipients:
    • hosting company on the basis of entrustment
    • couriers
    • law firms and debt collectors
    • public authorities
    • comment system operators
    • online chat solution operators
    • authorized employees and associates who use data to achieve the purpose of the website’s operation
    • companies providing marketing services on behalf of the Administrator
  2. Your personal data processed by the Administrator will not be retained for longer than necessary to perform activities related to them as defined by separate regulations (e.g. accounting). In relation to marketing data, the data will not be processed for longer than 3 years.
  3. You have the right to request from the Administrator:
    • access to personal data concerning you,
    • their rectification,
    • erasure,
    • restriction of processing,
    • and data portability.
  4. You have the right to object to the processing specified in point 3.2 regarding the processing of personal data for the purposes of performing the legitimate interests pursued by the Controller, including profiling. However, the right to object cannot be exercised if there are compelling legitimate grounds for processing that override your interests, rights, and freedoms, particularly for the establishment, exercise, or defense of legal claims.
  5. The Administrator’s actions may be appealed to the President of the Office for Personal Data Protection, Stawki Street 2, 00-193 Warsaw.
  6. Providing personal data is voluntary but necessary for the Service to be provided.
  7. Actions involving automated decision-making, including profiling, may be taken with regard to you in order to provide services under the concluded agreement and for the purpose of conducting direct marketing by the Administrator.
  8. Personal data is not transferred from third countries within the meaning of personal data protection regulations. This means that we do not transmit them outside the European Union.

5. Information in forms

  1. The service collects voluntarily provided information from the user, including personal data if provided.
  2. The service may store connection parameter information (timestamp, IP address)..
  3. The service, in some cases, may store information that facilitates linking data in the form with the email address of the user filling out the form. In such cases, the user’s email address appears within the URL of the page containing the form.
  4. The data provided in the form is processed for the purpose resulting from the specific form, e.g. to carry out the process of handling a service request or commercial contact, registering services, etc. Each time, the context and description of the form clearly indicate its purpose.

6. Administrator’s Log.

  1. Information about user behavior on the website may be logged. This data is used for the purpose of administering the service.

7. Important marketing techniques

  1. The operator uses statistical analysis of website traffic through Google Analytics (Google Inc., based in the USA). The operator does not transfer any personal data to the operator of this service, only anonymized information. The service is based on the use of cookies on the user’s end device. In terms of user preference information collected by the Google advertising network, users can view and edit cookie-based information using the tool:
  2. The operator uses remarketing techniques, allowing for tailored advertising messages based on the user’s behavior on the website, which may give the illusion that the user’s personal data is being used for tracking. However, in practice, no personal data is transferred from the operator to the advertising operators. The technological condition for such actions is the enabled support for cookie files.
  3. The operator uses the Facebook pixel. This technology allows the Facebook service (Facebook Inc., based in the USA) to know that a registered person is using the service. In this case, it is based on data for which the operator is the administrator. The operator does not provide any additional personal data to the Facebook service. The service is based on the use of cookies on the user’s end device.
  4. The operator employs a solution that examines user behavior by creating heatmaps and recording interactions on the website. These pieces of information are anonymized before being sent to the service operator, so they do not know which individual they pertain to. In particular, passwords and other personal data are not subject to recording.
  5. The operator applies a solution automating the functioning of the Service in relation to users, e.g. being able to send an email to the user after visiting a specific subpage, provided that they have given their consent to receive commercial correspondence from the operator.

8. Information about cookies

  1. The service uses cookies.
  2. Cookies (known as “biscuits”) are computer data, particularly text files, which are stored on the end user’s device and are intended for use of the service’s website pages. Cookies typically contain the website name they originate from, the duration of their storage on the end user’s device, and a unique number.
  3. The party placing cookies on the end user’s device of the Service and accessing them is the operator of the Service.
  4. Cookies are used for the following purposes:
    1. maintaining user session on the Service (after logging in), so that the user does not have to re-enter their login and password on each subpage of the Service;
    2. achieving the objectives specified above in the “Significant marketing techniques” section;
  5. Two fundamental types of cookies are used within the Service: “session cookies” and “persistent cookies”. Session cookies are temporary files stored on the User’s end device until logging out, leaving the website, or closing the internet browser software. Persistent cookies are stored on the User’s end device for a specific period as defined in the cookie parameters or until deleted by the User.
  6. Web browsing software (web browser) typically allows for the storage of cookies on the end user’s device by default. Service users can modify these settings. The web browser enables the removal of cookies. It is also possible to automatically block cookies. Detailed information on this topic can be found in the browser’s help or documentation.
  7. Restrictions on the use of cookie files may affect certain functionalities available on the website pages of the Service.
  8. Cookies placed on the end user’s device by the Service may also be used by entities cooperating with the Service operator, in particular by companies: Google (Google Inc. based in the USA), Facebook (Facebook Inc. based in the USA), Twitter (Twitter Inc. based in the USA).

9. Managing cookie files – how to express and withdraw consent in practice?

  1. If a user does not wish to receive cookie files, they can change their browser settings. Please note that disabling the necessary cookie files for authentication processes, security, and user preference maintenance may make it more difficult, and in extreme cases, may prevent the use of websites.
  2. To manage cookie settings, choose from the list below the internet browser you are using and follow the instructions: