Logo oprint.one
European Union flag, link to the projects page

1. Introduction

This Privacy Policy sets forth the principles for the processing of personal data collected through the online store oprint.one ("Online Store").

2. Data Controller

The Online Store is owned and operated by OPINION STREFA DRUKU Spółka z ograniczoną odpowiedzialnością, based in Gliwice (44-109), ul. Leonarda da Vinci 12, entered into National Court Register by the District Court in Gliwice, 10th Commercial Division of the National Court Register under KRS number 0000159728, with a share capital of PLN 78,000, NIP: 6312379751, REGON: 278069217, hereinafter referred to as OPINION STREFA DRUKU.

3. GDPR Compliance

Personal data collected by OPINION STREFA DRUKU via the Online Store are processed in accordance with Regulation (EU) 2016/679 (GDPR).

4. Privacy Commitment

OPINION STREFA DRUKU is committed to safeguarding the privacy of customers visiting the Online Store.

§1 Types of Data Processed, Purposes, and Legal Basis

- Data are collected from individual business owners and representatives of legal entities (collectively: Customers). - Data are collected in cases of: a) Account registration: to create and manage an account. Basis: Art. 6(1)(b) GDPR. b) Order placement: to fulfill sales contracts. Basis: Art. 6(1)(b) GDPR. c) Newsletter subscription: email marketing. Basis: Art. 6(1)(a) GDPR. d) Contact form: to respond to inquiries. Basis: Art. 6(1)(b) GDPR. e) Product inquiry: information request. Basis: Art. 6(1)(b) GDPR. -The required data may include: email address, full name, address, phone number, company name, and tax ID. - Additional data: IP address, browser type, session logs. - The legal basis for analytics and fraud protection: Art. 6(1)(f) GDPR. - Providing data is voluntary but required to use certain services.

§2 Data Sharing and Retention

- Data may be shared with: a) Processors (hosting, marketing, accounting services) under contract with OPINION STREFA DRUKU. b) Controllers (e.g., banks, payment providers) who determine their own processing purposes. - Service providers are based in Poland or EEA countries. - Data retention periods: a) Consent-based: until withdrawn + limitation period (6 years standard, 3 years for recurring claims). b) Contract-based: for contract duration + limitation period. - Shipping partners receive personal data for delivery. - Statistical and analytical purposes include navigation data. - Newsletter subscribers receive promotional communications. - Data may be disclosed to public authorities upon lawful request.

§3 Cookies and IP Addresses

- The Online Store uses session and persistent cookies for personalization and analytics. - First-party cookies: a) Authentication and session management. b) Anonymous usage statistics. - Third-party cookies include: a) Instagram – promotion. b) HubSpot – cookie banner, analytics. c) Microsoft Clarity – session recordings and heatmaps. d) Meta/Facebook – remarketing. e) Google Analytics – traffic analysis. - Cookies collect data like: anonymized IP, device info, visited pages, timestamps. - Legal basis: user consent (Art. 6(1)(a)) or legitimate interest (Art. 6(1)(f)). - IP addresses may be used for technical, analytical, and security purposes. - The use of cookies is secure. Users may configure their browser settings to limit or block cookies if desired.. - The store is not responsible for external site privacy policies.

§4 Rights of Data Subjects

Customers have the following rights under GDPR: 1. Withdraw consent at any time (Art. 7(3)). 2. Object to processing for legitimate interest purposes (Art. 21). 3. Erasure ('right to be forgotten') (Art. 17), under certain conditions. 4. Restriction of processing (Art. 18), e.g., during dispute resolution. 5. Access to personal data and processing information (Art. 15). 6. Rectification of inaccurate or incomplete data (Art. 16). 7. Data portability (Art. 20), in machine-readable format. Requests shall be fulfilled within one month, extendable to three months in complex cases. Complaints may be submitted to the President of the Personal Data Protection Office.

§5 Password Security

- SSL encryption is used during login and data transmission. - Lost passwords can be reset via a secure email process; passwords are stored in encrypted form. - The company will never request login credentials by email.

§6 Policy Changes

- Customers will be informed of any updates to the Privacy Policy at least 7 days in advance. - Contact for inquiries: info@oprint.one - Last updated: May 13, 2025.