Privacy Policy - Stampstamp

1. Introduction

This Privacy Policy sets out the rules for collecting, processing, and using personal data obtained from users of the StampStamp service (hereinafter: "Service").

The administrator of personal data collected through the Service is 3DOLO based in Wrocław, EU VAT: PL8993023067, REGON: 541518146 (hereinafter: "Administrator").

2. Scope of Data Collected

The Administrator collects the following personal data:

Data provided during registration: first name, last name, email address, password (stored in encrypted form);
Data provided when creating and managing a store: store name, address, logo, contact information;
Data related to the use of loyalty programs and loyalty cards;
Information about the devices used to access the Service;
Location data (with the User’s consent);
Information collected via cookies and similar technologies.

3. Purposes of Data Processing

Personal data is processed for the following purposes:

Providing services offered within the Service;
Executing loyalty programs and handling loyalty cards;
Communicating with Users regarding the Service;
Sending commercial and marketing information (with the User’s prior consent);
Analyzing and improving the quality of services provided;
Fulfilling legal obligations imposed on the Administrator;
Pursuing or defending against potential claims.

4. Legal Grounds for Data Processing

The processing of Users’ personal data is based on:

User’s consent (Art. 6(1)(a) GDPR);
Necessity to perform a contract to which the User is a party (Art. 6(1)(b) GDPR);
Legal obligation imposed on the Administrator (Art. 6(1)(c) GDPR);
Legitimate interest pursued by the Administrator (Art. 6(1)(f) GDPR).

5. Data Recipients

Users’ personal data may be transferred to the following categories of recipients:

Entities providing services to the Administrator (e.g., IT service providers, electronic payment service providers, accounting and legal service providers);
Entities cooperating with the Administrator in the implementation of loyalty programs;
Entities authorized under the law (e.g., state authorities).

The Administrator may transfer personal data to third countries (outside the European Economic Area) only if an adequate level of protection is ensured, in accordance with GDPR requirements.

6. Data Retention Period

Personal data will be stored for a period:

Necessary to fulfill the purposes for which it was collected;
Required by law;
Until the expiration of any potential claims;
Until the User withdraws consent (in the case of data processed based on consent).

7. User Rights

The User has the following rights:

The right to access their data;
The right to rectify their data;
The right to delete their data;
The right to restrict data processing;
The right to data portability;
The right to object to processing;
The right to withdraw consent (without affecting the lawfulness of processing carried out based on consent before its withdrawal);
The right to lodge a complaint with a supervisory authority (President of the Personal Data Protection Office).

8. Cookie Information

The Service uses cookies and similar technologies in order to:

Ensure proper functioning of the Service;
Customize the Service to Users' preferences;
Analyze traffic on the Service's pages;
Ensure the security of using the Service.

The User can manage cookie settings in their web browser independently.

9. Data Security

The Administrator uses appropriate technical and organizational measures to ensure the security of Users' personal data, including protection against unauthorized or unlawful processing, accidental loss, destruction, or damage.

10. Changes to the Privacy Policy

The Administrator reserves the right to amend this Privacy Policy. Users will be informed of any changes by posting information on the Service's website.

11. Contact

For matters related to personal data protection, you can contact the Administrator via email at contact@stampstampapp.com or in writing to the Administrator’s registered office address.