Skip to main content
Open search engine
Search
Close search engine Clear Search
Products in the cart: 0. See details

Your cart is empty
Wishlist
English / €
Open search engine
Search
Close search engine Clear Search
Wishlist
Products in the cart: 0. See details

Your cart is empty
English / €

Privacy Policy

This Privacy Policy describes the rules for processing your information, including personal data and cookies.

1. General Information


This policy applies to the website operating at the URL: brickbox.pl and complies with the current legal basis: EU Regulation 2016/679 (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR)).

The operator of the website and the Data Controller is:
3DM Group Spółka z Ograniczoną Odpowiedzialnością
Płochocińska 19, 03-191 Warsaw
NIP (Tax ID): 5252839383
REGON (Business Registry Number): 387291010
Registered in the National Court Register under number: 863777.
Contact email address: office@brickbox.pl

The Operator is the Controller of your personal data provided voluntarily on the Website.
The purpose of processing the Buyer's data provided in connection with purchases in the Store is order fulfillment.
The legal basis for processing personal data is:

A sales contract or actions taken at the Buyer's request prior to its conclusion (Art. 6(1)(b) GDPR),

The Seller's legal obligation related to accounting (Art. 6(1)(c) GDPR),

The Seller's legitimate interest in processing data to establish, pursue, or defend potential claims (Art. 6(1)(f) GDPR).

The Website uses personal data for the following purposes:

-Sale of goods

-Newsletter management

-Comment system management

-Internet forum management

-Online chat communication

-Handling inquiries via forms

-Order fulfillment

-Debt collection

-Presentation of offers or information

The Website collects information about users and their behavior as follows:

-Through voluntarily provided data entered into the Operator's systems via forms,

By saving cookies on users' devices.

2. Selected Data Protection Methods Used by the Operator
Login and data entry areas are protected by SSL encryption. This ensures that personal data and login credentials entered on the site are encrypted on the user's device and can only be read on the target server.
Personal data stored in databases are encrypted so that only the Operator with the key can access them. This protects data in case of database theft.
The Operator periodically changes administrative passwords.
Regular backups are made to protect data.
Regular updates of all software components used by the Operator for processing personal data are performed to ensure security.

3. Hosting
The website is hosted on servers operated by dhosting.pl.

4. Your Rights and Additional Information on Data Usage
In some cases, the Administrator may share your personal data with other recipients when necessary to perform the contract or fulfill legal obligations. These recipients include:

-Hosting company under a processing agreement

-Legal offices and debt collectors

-Payment operators

-Authorized employees and collaborators for website operation

-Marketing service providers for the Administrator

Your personal data will be processed no longer than necessary to perform relevant activities (e.g., accounting). Marketing data will not be processed longer than 3 years.

You have the right to request from the Administrator:

-Access to your personal data

-Correction of your data

-Deletion of your data

-Restriction of processing

-Data portability

You also have the right to object to the processing based on the legitimate interests of the Administrator (including profiling), except where there are overriding legitimate grounds to process data, such as claims or defenses.

You may file a complaint with the President of the Personal Data Protection Office at ul. Stawki 2, 00-193 Warsaw.

Providing personal data is voluntary but necessary to use the Website.
Automated decision-making and profiling may occur for service delivery and direct marketing purposes.
Personal data is not transferred outside the European Union.

5. Information in Forms
The Website collects voluntarily provided user information, including personal data if given.
The Website may save connection parameters (timestamp, IP address).
Sometimes the Website may save information linking form data to the user's email address visible in the URL of the form page.
Data in forms are processed for the function of the specific form, e.g., service requests, commercial contact, registration.

6. Administrator Logs
User activity on the website may be logged for administration purposes.

7. Important Marketing Techniques
The Operator uses Google Analytics (Google Inc., USA) for traffic analysis. No personal data is shared with Google; only anonymized data is collected through cookies.
Users can view and edit Google advertising preferences at https://www.google.com/ads/preferences/.
The Operator uses remarketing to tailor ads based on user behavior on the site but does not share personal data with advertising operators. Cookies must be enabled for this.
The Operator uses Facebook Pixel (Facebook Inc., USA), which informs Facebook when a registered user visits the Website based on Facebook data. No additional personal data is sent by the Operator.
The Operator uses tools that record user behavior anonymously (heatmaps, session recordings) without capturing passwords or personal data.
Automated actions may be used, e.g., sending emails after visiting a specific page, with user consent.

8. Information About Cookies
The Website uses cookies, which are text files stored on the user's device for website functionality. Cookies usually contain the site name, storage time, and a unique ID.
Cookies are placed and accessed by the Operator.
Cookies serve to:

-Maintain user sessions after login

-Implement marketing techniques described above

-There are two main types of cookies used:

-Session cookies (temporary, deleted after browser closes)

-Persistent cookies (stored until expiration or deletion by the user)

Browsers usually allow cookies by default, but users can change settings or delete cookies. Disabling cookies essential for authentication or preferences may affect website functionality.
Cookies may also be used by cooperating companies, including Google, Facebook, and Twitter.

9. Managing Cookies — How to Give or Withdraw Consent
If users do not want cookies, they can change browser settings. Disabling essential cookies may prevent using some website features.
To manage cookie settings, follow instructions for your browser:

-Edge

-Internet Explorer

-Chrome

-Safari

-Firefox

-Opera


Mobile devices:

-Android

-Safari (iOS)

-Windows Phone