At polandtrade.it (“we”, “our”, “us”), your privacy is very important to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://polandtrade.it (the “Site”) in compliance with UK data protection laws, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

By using the Site, you consent to the data practices described in this policy.

1. Information We Collect

We may collect and process the following types of personal data:

a. Personal Information You Provide:

  • Full name
  • Billing and shipping address
  • Email address
  • Telephone number
  • Payment information (processed securely via PCI-compliant third-party gateways)
  • Order history and preferences
  • Customer service communications

b. Information Collected Automatically:

  • IP address and location data
  • Browser type and version
  • Device characteristics
  • Pages visited and interaction data
  • Referring website/application
  • Cookies and tracking data (see Section 5)

2. Lawful Basis for Processing

Under UK GDPR, we process your data based on:

  • Contractual necessity (to fulfill your orders)
  • Legitimate interests (website improvement, fraud prevention)
  • Legal compliance
  • Consent (where required for marketing)

3. How We Use Your Information

We use your personal data to:

  • Process and fulfill your purchases
  • Provide customer support
  • Send order confirmations and shipping notifications
  • Improve our website and services
  • Prevent fraud and enhance security
  • With consent, send marketing communications
  • Comply with legal obligations

4. Data Security Measures

We implement appropriate technical and organisational measures including:

  • SSL/TLS encryption
  • Regular security assessments
  • Restricted access to personal data
  • Secure payment processing (we do not store payment card details)
  • Staff data protection training

5. Cookies and Similar Technologies

We use cookies and similar technologies for:

  • Essential website functionality
  • Performance monitoring
  • Personalised user experience
  • Marketing (with consent)

You can manage preferences via our Cookie Banner or browser settings.

6. Data Sharing and Transfers

We may share data with:

  • Processors: Payment providers (Stripe, PayPal), shipping carriers, IT service providers
  • Analytics Providers: Google Analytics (anonymised where possible)
  • Legal Requirements: When required by UK law enforcement or regulatory bodies

For international transfers outside the UK, we implement appropriate safeguards as required by UK data protection law.

7. Your Data Protection Rights

Under UK GDPR, you have the right to:

  • Access your personal data
  • Request rectification of inaccurate data
  • Request erasure (“right to be forgotten”)
  • Restrict processing
  • Data portability
  • Object to processing
  • Withdraw consent (where applicable)
  • Lodge a complaint with the ICO (Information Commissioner’s Office)

To exercise these rights, contact us at [email protected]. We respond within one month.

8. Data Retention

We retain personal data only as long as necessary for:

  • Order processing and warranty periods
  • Legal/regulatory requirements
  • Business purposes

Typical retention periods:

  • Customer account data: 6 years after last activity
  • Order information: 6 years for tax purposes
  • Marketing consent: Until withdrawal

9. Children’s Data

We do not knowingly collect data from children under 13 without parental consent. If we become aware of such collection, we will take steps to delete the information.

10. Changes to This Policy

We may update this policy periodically. Material changes will be:

  • Posted on our website
  • Communicated to users where appropriate

11. Contact Information

For data protection enquiries or to exercise your rights:
Email: [email protected]