Learn about KRL gaming art warranty terms – 2 years of protection for desks, chairs, and accessories. Check the rules for repair, replacement, and warranty claims. | KRL gaming art

Privacy Policy

Privacy Policy

§I. General provisions
  • This Privacy Policy is for informational purposes – it describes how we process the personal data of users and Customers of the KRL gaming art online store (hereinafter: the “Store”), including the legal basis, purposes, and scope of data processing, as well as the rights of data subjects.
  • The controller of personal data is KRL Group Sp. z o.o., with its registered office in Oława, ul. 3 Maja 22B, 55-200 Oława, entered in the National Court Register under no. 0001144098, NIP 9121947973, REGON 540411038, share capital PLN 6,000.00, e-mail: contact@gamingart.eu, tel. +48 531 579 768 (hereinafter: the “Controller”, “we”).
  • We process data in accordance with Regulation (EU) 2016/679 (GDPR) and applicable national regulations. The text of the GDPR is available on the website
  • Using the Store is voluntary. Providing personal data is voluntary, but it may be necessary for: concluding/performing a contract, account management, payments, delivery, handling complaints/returns, fulfilling tax/accounting obligations, and marketing communication (if you give consent). Failure to provide the required data may make it impossible to perform these activities.
  • We apply appropriate technical and organizational measures to ensure data security (including transmission encryption – HTTPS, access control, backups, and data minimization).
§2. Contact details
  • You can contact the Controller at: contact@gamingart.eu, tel. +48 531 579 768, address: ul. 3 Maja 22B, 55-200 Oława.
§3. Scope of data and sources
  • We process in particular: first and last name, e-mail address, phone number, delivery and/or billing address, invoicing data (VAT number, company name), order details, payment information (e.g. part of the account number/transaction ID – without full card details), correspondence with us, marketing preferences (consents), technical data (IP address, cookie identifiers, server logs, data on activity in the Store).
  • We obtain data from you (forms, account, e-mail/phone), as well as – where necessary – from entities handling payments and deliveries (e.g. transaction/delivery confirmations) and from publicly available registers (e.g. KRS/CEIDG – for the purpose of verifying company data).
§4. Purposes, legal bases and retention periods
  • Conclusion and performance of the sales contract / account and order management
    1. Legal basis: Article 6(1)(b) GDPR (necessity for the performance of a contract).
    2. Period: for the duration of the contract performance and thereafter until the expiry of limitation periods for claims (generally up to 6 years).
  • Handling complaints, withdrawals and warranties
    1. Legal basis: Article 6(1)(b) GDPR (contract) and point (c) (legal obligation, including under consumer protection law).
    2. Period: until completion of the procedure plus the limitation periods for claims.
  • Settlements, accounting and tax obligations
    1. Legal basis: Article 6(1)(c) GDPR (legal obligations, including accounting law – generally 5 years counted from the end of the year to which the documents relate).
  • Communication (inquiries, support)
    1. Legal basis: Article 6(1)(f) GDPR (our legitimate interest – handling correspondence and pursuing claims).
    2. Period: until the response is provided and its provision can be demonstrated; in the event of a dispute – until the limitation period expires.
  • Direct marketing (e.g. newsletter, e-mail/SMS, remarketing)
    1. Legal basis: Article 6(1)(f) GDPR (our legitimate interest – marketing of our own services) and – for communication via e-mail/telephone – additional consent required under Article 10 of the Act on Electronic Services / Article 172 of the Telecommunications Law.
    2. Period: until an objection to direct marketing is raised or consent is withdrawn (to the extent that consent is required).
  • Analysis, statistics, service security (logs, analytics, fraud prevention)
    1. Legal basis: Article 6(1)(f) GDPR (ensuring the operation and security of the Store, business analytics).
    2. Period: up to 26 months (a typical period in analytics tools) or longer if required for security or claims-related reasons.
  • Establishment, pursuit or defence of claims
    1. Legal basis: Article 6(1)(f) GDPR.
    2. Period: until the relevant limitation periods for claims expire.
§5. Data recipients and transfers outside the EEA
  • We transfer data only when it is necessary to achieve the purposes set out in section IV, including:
    1. Carriers/logistics: DPD, RABEN (delivery details).
    2. Payment operators (when you choose a given method): PayPro S.A. (Przelewy24), PayU S.A., PayPal (Europe) S.à r.l. et Cie, S.C.A. – to the extent necessary to process payments.
    3. Hosting/IT provider, accounting office, law firms/debt collection agencies – to the extent necessary to provide services to us.
    4. Providers of analytics/marketing tools (e.g. Google Analytics, Meta/Facebook – Pixel) – within the scope of online identifiers/cookies.
  • Data may be transferred outside the EEA (e.g. to the USA) in connection with the use of technological service providers. In such cases, we apply mechanisms provided for by the GDPR (e.g. standard contractual clauses and – where required – additional measures ensuring an adequate level of protection). The GDPR text and transfer mechanisms are governed by EU law.
§6. Rights of data subjects
  • You are entitled to: the right of access to data, rectification, erasure (“right to be forgotten”), restriction of processing, data portability, objection to processing (including direct marketing), as well as the right to withdraw consent at any time (without affecting the lawfulness of processing prior to withdrawal). The basis and scope of these rights result from Articles 15–21 of the GDPR.
  • You have the right to lodge a complaint with the President of the Personal Data Protection Office (UODO) – ul. Stanisława Moniuszki 1A, 00-014 Warsaw, Poland, tel. +48 22 531 03 00; details available on the UODO website.
  • To exercise your rights, contact us by e-mail (contact@gamingart.eu) or by post (the Administrator’s address from section I.2). For requests concerning data obtained via external tools (e.g. Google/Meta), you may also use the mechanisms provided by those providers.
§7. Cookies, logs and analytics
  • The Store uses cookies and similar technologies (local storage, pixel) for:
    1. operation of the service and maintaining sessions (login, cart, saving preferences),
    2. analytics and statistics,
    3. marketing (remarketing, measurement of campaign effectiveness).
  • You can change cookie settings in your browser (blocking/limiting, deleting) – disabling some cookies may limit Store functions (e.g. cart/order).
  • Google Analytics – used to analyze statistics (aggregated and anonymized data, including traffic sources, events, approximate geolocation, online identifiers). You can opt out of Google Analytics by installing the browser add-on (“Google Analytics Opt-out Browser Add-on”).
  • Meta (Facebook) Pixel – used for remarketing and measuring the effectiveness of ads on Meta platforms; the scope includes online identifiers and events related to activity in the Store.
  • The lifespan of individual cookies depends on their function (session cookies until the browser is closed; persistent cookies – usually from 1 to 24 months). Exact durations may vary depending on tool and browser settings.
  • Server logs (e.g. IP address, timestamp, browser/system information) are processed to ensure security, diagnose technical issues and for statistical purposes – for the period necessary to achieve these purposes.
§8. Marketing communication (consents)
  • Sending newsletters/commercial messages by e-mail and using terminal telecommunications devices for direct marketing purposes (e.g. SMS/phone) requires your prior consent. You may withdraw your consent at any time – without affecting the lawfulness of processing carried out before withdrawal.
  • You can withdraw consent and object to direct marketing via the message itself (unsubscribe link) or by contacting us (section II).
§9. Automated decision-making and profiling
  • We may use marketing profiling (e.g. abandoned cart reminders, recommendations, discount codes). We do not make decisions based solely on automated processing that would produce legal effects concerning you or similarly significantly affect you (Article 22 GDPR).
  • You may always object to profiling for direct marketing purposes (section VI.1).
§10. Children
  • The Store and services are not directed to persons under 16 years of age; if you are under 16, we require the consent of a parent or legal guardian to use the services (Article 8 GDPR).
§11. Payment methods and information about providers
  • Detailed information about available payment methods and payment operators (including providers’ identification data) can be found in the “Payment methods” section. Choosing a given method means that the necessary data will be transferred to the relevant operator to process the payment.
§12. Changes to the Privacy Policy
  • We may update this Policy, inter alia, in the event of changes in law, technology, or the scope of processing.
  • We will inform you about significant changes via a notice in the Store (and, if you have an account or have given marketing consent, also by e-mail). The new version applies from the date indicated at the beginning.