PRIVACY POLICY Troffee

1. General information
This policy applies to the Website operating at the url address: http://troffee.eu/
The website operator and personal data administrator is: Troffee Europe BV Klompenmakerstraat 111 3194DD Hoogvliet Netherlands
The operator’s e-mail contact address is office@troffee.eu
The Operator is the Administrator of your personal data in relation to the data provided voluntarily on the Website.
The website uses personal data for the following purposes:
Newsletter service
Query handling by the form
Handling goods orders – preparation, packaging, shipping
Implementation of ordered services
Support for relevant accounting documents
Debt collection
Presentation of the offer or information
The Administrator’s implementation of personal data legally binding on him in accordance with art. 6 clause 1 lit. c) GDPR to the extent that specific provisions provide for it (e.g. accounting).
The website gathers information about users and their behavior in the following ways:
Through data voluntarily entered in forms that are entered into the Operator’s systems.
By saving cookie files in end devices (so-called “cookies”).
2. Selected methods of data protection used by the Operator
The places of logging in and entering personal data are protected in the transmission layer (SSL certificate). Thanks to this, personal data and login data entered on the website are encrypted on the user’s computer and can be read only on the target server.
User passwords are stored in a hash form. The hash function works in one direction – it is not possible to reverse its operation, which is now a modern standard in the field of storing user passwords.
The operator periodically changes its administrative passwords.
To protect data, the Operator regularly makes backup copies.
An important element of data protection is the regular update of all software used by the Operator to process personal data, which in particular means regular updates of programming components.
3. Hosting
The website is hosted (technically maintained) on the operator’s server: home.pl

4. Your rights and additional information on how to use the data
In some situations, the Administrator has the right to transfer your personal data to other recipients, if it is necessary to perform the contract concluded with you or to fulfill the obligations incumbent on the Administrator. This applies to such groups of recipients:
persons authorized by us, employees and associates who must have access to personal data in order to perform their duties,
hosting company,
mailing companies,
companies that support SMS messages,
companies with which the Administrator cooperates in the field of own marketing,
couriers,
insurers,
law firms and debt collectors,
banks,
payment operators,
public authorities.
Your personal data processed by the Administrator no longer than necessary to perform the related activities specified in separate regulations (e.g. on accounting). With regard to marketing data, the data will not be processed for more than 3 years.
You have the right to request from the Administrator:
access to personal data concerning you,
correcting them,
remove,
processing restrictions,
and data transfer.
You have the right to object to the processing indicated in point 3.3 c) to the processing of personal data for the purpose of exercising legally justified interests pursued by the Administrator, including profiling, however, the right to object cannot be exercised if there are valid legitimate grounds for the processing of interests, rights and freedoms overriding you, in particular the determination, exercise or defense of claims.
The Administrator’s actions may be appealed to the President of the Office for Personal Data Protection, ul. Stawki 2, 00-193 Warsaw.
Providing personal data is voluntary, but necessary to operate the Website.
In relation to you, actions may be taken involving automated decision making, including profiling to provide services under the concluded contract and for direct marketing by the Administrator.
Personal data is not transferred from third countries within the meaning of the provisions on the protection of personal data. This means that we do not send them outside the European Union.
5. Information on forms
The website collects information provided voluntarily by the user, including personal data, if they are provided.
The website may save information about connection parameters (time, IP address).
In some cases, the website may save information that makes it easier to link data in the form to the email address of the user completing the form. In this case, the user’s email address appears inside the url of the page containing the form.
The data provided in the form are processed for the purpose resulting from the function of a specific form, e.g. to process the service request or business contact, service registration, etc. Each time the context and description of the form clearly indicates what it is used for.
6. Administrator logs
Information on user behavior on the website may be subject to login. These data are used to administer the site.

7. Important marketing techniques
The operator uses statistical analysis of website traffic through Google Analytics (Google Inc. with its registered office in the USA). The operator does not transfer personal data to the operator of this service, but only anonymized information. The service is based on the use of cookies on the user’s end device. In terms of information about user preferences collected by the Google advertising network, the user can view and edit information derived from cookies using the tool: https://www.google.com/ads/preferences/
The operator uses remarketing techniques that allow adverts to be adapted to the user’s behavior on the site, which may give the illusion that the user’s personal data is used to track him, but in practice no personal data from the operator to the advertising operators is transferred. The technological condition for such activities is cookies enabled.
The operator uses uses a Facebook pixel. This technology means that Facebook (Facebook Inc. with its registered office in the USA) knows that a given person registered in it uses the Website. In this case, it is based on data for which it is the administrator, the Operator does not provide any additional personal data to Facebook. The service is based on the use of cookies on the user’s end device.
The operator uses a solution that tests users’ behavior by creating heat maps and recording behavior on the website. This information is anonymized before it is sent to the service operator so that he does not know what natural person it concerns. In particular, the entered passwords and other personal data are not recorded.
The Operator applies a solution that automates the operation of the Website in relation to users, e.g. that can send an email to the user after visiting a specific subpage, provided that he has agreed to receive commercial correspondence from the Operator.
The operator may use profiling as defined in the provisions on the protection of personal data