The following Privacy Policy defines the principles of storing and accessing data on the Devices of Users utilising this Service for the purpose of providing electronic services by the Administrator, as well as the principles of collecting and processing personal data of Users that were submitted by them personally and voluntarily through the tools available within the Service.

§1 Definitions

  • Service – the “turismo-wheels.com” website https://turismo-wheels.com.
  • External Service – the websites of partners, service providers, or customers cooperating with the Administrator
  • The administrator of the Website / Data – the Administrator of the Website and the Data Administrator (hereinafter referred to as the Administrator) is “Turismo Sp. z o.o.”, operating at the following address: Legnicka 57D, B/C, with an assigned tax identification number (NIP): 8943152934, with assigned KRS number: 0000836343, providing services electronically via the Website
  • User – an individual person for whom the Administrator provides services electronically through the Website.
  • Device – an electronic device with software, through which the User gains access to the Website.
  • Cookies – text data collected in the form of files placed on the User’s Device.
  • RODO (GDPR) – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free transfer of such data and repealing Directive 95/46/EC (General Data Protection Regulation)
  • Personal data – means information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of the natural person
  • Processing – means any operation or set of operations that is performed using personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction
  • Restriction of processing – means the designation of stored personal data in order to restrict its future processing
  • Profiling – means any form of automated processing of personal data which involves the use of this data to evaluate certain personal attributes of an individual, in particular, to analyse or anticipate characteristics relating to that individual’s performance, economic situation, health, personal preferences, interests, reliability, behaviour, location or movement between locations
  • Consent – consent of the data subject means a freely given, specific, informed, and unambiguous indication of the will by which the data subject, either by a statement or by a clear affirmative action, gives his or her consent to the processing of personal data relating to that person
  • Personal data breach – means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or unauthorized access to personal data transmitted, stored, or otherwise processed
  • Pseudonymisation – means the processing of personal data in such a way that they can no longer be attributed to a specific data subject, without using additional information, provided that such additional information is kept separately and is covered by technical and organizational measures which make it impossible to attribute it to an identified or identifiable natural person
  • Anonymisation – Data anonymization is an irreversible process of data operation that destroys/overwrites “personal data” making it impossible to identify, or link a record to, a specific user or individual.

§2 Data Protection Inspector

Pursuant to Article 37 RODO, the Administrator has not appointed a Data Protection Officer.

In matters concerning data processing, including personal data, please contact the Administrator directly.

§3 Types of Cookies

  • Internal cookies – files placed and read from User’s Device by the IT system of the Service
  • External Cookies – files placed and read from User’s Device by IT systems of external Services. Scripts of External Services which may place Cookies on User’s Device have been intentionally placed in the Service through scripts and services made available and installed in the Service
  • Session Cookies – files placed and read from the User Device by the Website during one session of a given Device. At the end of the session the files are deleted from the User Device.
  • Persistent cookies – files placed and read from the User’s Device by the Website until they are manually deleted. Cookies are not deleted automatically after the end of a session of the Device unless the configuration of the User Device is set to delete cookies after the end of the session of the Device.

§4 Data storage security

  • Mechanisms for storing and reading Cookies – The mechanisms for storing, reading, and exchanging data between Cookies stored on the User’s Device and the Website are implemented through built-in mechanisms of Internet browsers and do not allow the collection of other data from the User’s Device or from other websites visited by the User, including personal data or confidential information. Transfer of viruses, Trojan horses, and other worms to the User Device is also practically impossible.
  • Internal cookies – Cookies used by the Administrator are secure on the User’s Device and do not contain scripts, content, or information that may be harmful to the security of personal data or the security of that Device.
  • External cookies – the Administrator makes every possible effort to verify and select service partners in the context of User safety. The Administrator selects well-known, established partners with global social trust profiles with whom to cooperate. However, the Administrator does not have full control over the content of cookies from external partners. To the extent of the law, the Administrator shall not be held liable for the security of cookies, their content, and their use by the scripts installed in the service which originate from external services. The list of partners can be found further on in the Privacy Policy.
  • Cookie control
  • The User may, at any time, independently change the settings for the storage, deletion, and access to data stored by cookies from a given website
  • Information on how to disable cookies in the most popular browsers is available on the website: how to disable cookies or from one of the indicated suppliers:
    • Managing cookies in the Chrome browser
      Managing cookies in the Opera browser
    • Managing cookies in FireFox
    • Managing cookies in the Edge browser
    • Managing cookies in the Safari browser
    • Managing cookies in Internet Explorer 11
    • The User may, at any time, delete any cookies already stored by using the tools of the User’s Device through which the User uses the services of the Website.
  • Threats on the side of the User – The Administrator uses all possible technical measures to ensure the security of data placed by cookies. However, it should be noted that ensuring the security of this data depends on both parties, including the responsibility of the User. The Administrator shall not be held liable for any interception of the data, impersonation of the User’s session or their deletion as a result of the conscious or unconscious activity of the User, viruses, Trojan horses, and other spyware, which may be or was infected with the User’s Device. In order to protect themselves from these threats, Users should take care of their Cyber Security while using the Internet.
  • Storage of personal data – The Administrator ensures that he makes every effort to ensure that the personal data entered voluntarily by the Users is secure, access to it is limited, and carried out in accordance with their purpose and objectives of processing. The Administrator also ensures that they make every effort to protect the data which they hold against loss with appropriate physical and organizational security measures.

§5 Purposes for which cookies are used

  • To improve and facilitate access to the Website
  • Personalization of the Website for Users
  • Marketing and Remarketing on external websites
  • Ad serving services
  • Keeping statistics (users, number of visits, types of devices, links, etc.)
  • Serving multimedia services
  • Provision of community services

§6 Goals of personal data processing

Personal data voluntarily provided by Users are processed for one of the following purposes:

  • Realization of electronic services:
  • Newsletter service (including sending advertising content with consent)
  • Communication of the Administrator with Users on matters related to the Service and data protection
  • Providing for the legally justified interest of the Administrator

Data about Users collected anonymously and automatically are processed for one of the following purposes:

  • Conducting statistics
  • Remarketing
  • Displaying advertisements adapted to Users’ preferences
  • Ensuring the legitimate interest of the Administrator

§7 Cookies of Third-Party Services

The Administrator on the Website uses JavaScript and web components of partners who may place their own cookies on the User’s Device. Please note that you can decide in your browser’s settings which cookies may be used by particular websites. Below is a list of partners or their services implemented on the Website that may place cookies:

Multimedia services:

  • YouTube

Social / combined services:
(Registration, Login, content sharing, communication, etc.).

  • Twitter
  • Facebook
  • Google+

Newsletter Services:

  • HubSpot

Ad serving services and affiliate networks:

  • Google Adsense

Keeping statistics:

  • Google Analytics
  • HubSpot
  • WordPress Stats (Automattic Inc.)
  • Facebook Analytics for Apps

The services provided by third parties are beyond the control of the Administrator. These entities may change their terms of service, privacy policies, the purpose of data processing, and the use of cookies at any time.

§8 Types of data collected

The Website collects data on Users. Part of the data is collected automatically and anonymously, and part of the data is personal data provided voluntarily by Users when signing up for particular services offered by the Website.

Anonymous data collected automatically:

  • IP address
  • Browser type
  • Screen resolution
  • Approximate location
  • Sub-pages accessed
  • Time spent on a relevant sub-page
  • Operating system type
  • Previous subpage address
  • Referring website address
  • Browser language
  • Internet connection speed
  • Internet Service Provider
  • Demographic information (age, gender)

Data collected during registration:

  • First name / surname / nickname
  • E-mail address
  • Telephone number
  • IP address (collected automatically)

Data collected when subscribing to the Newsletter service:

  • Name / surname / nickname
  • E-mail address
  • IP address (collected automatically)

Data collected when you post a comment:

  • First and last name / nickname
  • E-mail address
  • Web address
  • IP address (collected automatically)

Some data (without identifying details) may be stored in cookies. Some data (without identifying information) may be transmitted to a statistical service provider.

§9 Access to personal data by third parties

In principle, the Administrator is the only recipient of personal data provided by Users. The data collected in the framework of the services provided shall not be transferred or sold to third parties.

Access to the data (usually on the basis of the Contract for Entrustment of Data Processing) may be granted to entities responsible for maintaining the infrastructure and services necessary for running the service, i.e.:

  • Hosting companies, providing hosting or related services for the Administrator
  • Companies through which the Newsletter service is provided

Entrusting personal data processing – Newsletter

The Administrator, in order to provide Newsletter service uses the services of a third-party – HubSpot service. Data entered in the newsletter subscription form is transferred, stored, and processed by this external service service provider.

Please be informed that the indicated partner may modify the indicated privacy policy without the consent of the Administrator.

Entrusting the processing of personal data – Hosting Services, VPS or Dedicated Servers

In order to run the website, the Administrator uses the services of an external provider of hosting, VPS, or Dedicated Servers – THECAMELS SP. Z O.O.. All data collected and processed on the website is stored and processed by the infrastructure of the service provider located in Poland. There is a possibility of access to the data as a result of service work carried out by the personnel of the service provider. The access to these data is regulated by the agreement concluded between the Administrator and the Service Provider.

§10 Method of processing personal data

Personal data is provided voluntarily by Users:

  • Personal data will not be transferred outside the European Union, unless they have been published as a result of an individual action by the User (e.g. entering a comment or an entry), which will make the data available to every person visiting the website.
  • Personal data will not be used for automated decision-making (profiling).
  • Personal data will not be sold to third parties.

Anonymous data (without personal data) collected automatically:

  • Anonymous data (without personal data) will be transferred outside the European Union.
  • Anonymous data (without personal data) will not be used for automated decision making (profiling).
  • Anonymous data (without personal data) will not be sold to third parties.

§11 Legal basis of personal data processing

The Website collects and processes Users’ data on the basis of:

  • Regulation (EU) 2016/679 of the European Parliament and of the EU Council of 27 April 2016 on the protection of individual persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation)
  • Article 6(1)(a) – the data subject has given consent to the processing of his/her personal data for one or more specified purposes
  • Article 6(1)(b) – processing is required for the performance of a contract to which the data subject is a party or in order to take steps at the request of the data subject prior to entering into a contract
  • Article 6(1)(f) – processing is required for the purposes of legitimate interests pursued by the controller or by a third party
  • Act of 10 May 2018 on personal data protection (Journal of Laws 2018 item 1000)
  • Act of 16 July 2004. Telecommunications Law (Journal of Laws 2004 no. 171 item 1800)
  • Act of 4 February 1994 on Copyright and Related Rights (Journal of Laws 1994 No. 24 item 83)

§12 Period for processing personal data

Personal data provided voluntarily by Users:

As a rule, the indicated personal data are stored only for the period of providing the Service within the Service by the Administrator. They are deleted or anonymised within up to 30 days of the termination of service provision (e.g. deletion of a registered user account, unsubscribing from the Newsletter list, etc.).

The exception is a situation that requires securing legitimate purposes for further processing of such data by the Administrator. In such a situation the Administrator will store the indicated data from the time of the User’s request to remove them, no longer than 3 years in the case of violation or suspected violation of the regulations of the service by the User

Anonymous data (without personal data) collected automatically:

Anonymous statistical data, not constituting personal data, are stored by the Administrator for the purpose of keeping service statistics for an indefinite period of time.

§13 Users’ rights related to personal data processing

The Website collects and processes Users’ data on the basis of:

  • Right of access to personal data

Users have the right to obtain access to their personal data, exercised upon request submitted to the Administrator

  • Right to rectify personal data

Users have the right to demand from the Administrator immediate rectification of their personal data which may be incorrect and/or to complete incomplete personal data, carried out upon request submitted to the Administrator

  • The right to delete personal data

The Users have the right to demand immediate removal of their personal data, carried out upon request submitted to the Administrator. In the case of user accounts, data removal consists in anonymisation of data allowing for identification of the User. The Administrator reserves the right to withhold the execution of the request for data removal in order to protect the Administrator’s legitimate interest (e.g. when the User committed a breach of Terms of Use or the data were collected as a result of conducted correspondence).

In the case of the Newsletter service, the User has the possibility to delete his/her personal data on his/her own using the link included in each e-mail message sent.

  • Right to limit the processing of personal data

The Users have the right to limit the processing of personal data in cases indicated in Article 18 RODO (GDPR), among others, by questioning the correctness of personal data, exercised upon request submitted to the Administrator

  • Right to personal data portability

Users have the right to obtain from the Administrator, personal data concerning the User in a structured, commonly used and machine-readable format carried out upon request submitted to the Administrator

  • Right to object to the processing of personal data

Users have the right to object to the processing of their personal data in the cases set out in Article 21 of the RODO (GDPR), exercised upon request made to the Administrator

  • Right to lodge a complaint

Users have the right to lodge a complaint with the supervisory authority dealing with personal data protection.

§14 Contact to the Administrator

The Administrator can be contacted in one of the following ways

  • Postal address – Turismo Sp. z o.o., Legnicka 57D, B/C
  • E-mail address – bok@turismo-wheels.com
  • Telephone call – +48 797 844 428
  • Contact form – available at: /

§15 Service Requirements

  • Restricting the storage and access to cookies on the User’s Device may result in some functions of the Website not working correctly.
  • The Administrator shall not be held liable for malfunctions of the Website in the event that a User restricts in any way the ability to save and read Cookie files.

§16 External links

In the Service – articles, posts, entries, or comments of Users, there may be links to external websites, with which the Owner of the Service does not cooperate. These links and the sites or files referred to therein may be dangerous to your Device or pose a threat to the security of your data. The Administrator shall not be held liable for the content located outside the Service.

§17 Changes in the Privacy Policy

  • The Administrator reserves the right to amend this Privacy Policy at will and without informing the Users as regards the use and processing of anonymous data or the use of cookies.
  • The Administrator reserves the right to amend this Privacy Policy at any time with regard to the processing of Personal Data, of which it shall inform the Users who have user accounts or who are subscribed to the newsletter service, via e-mail within 7 days of the change. Continued use of the services shall mean that the User has read and accepted the amendments to the Privacy Policy. In the event that the User does not agree with the introduced changes, they shall be obliged to delete their account from the Service or unsubscribe from the Newsletter service.
  • Any changes to the Privacy Policy will be published on this subpage of the Website.
  • The introduced changes shall enter into force upon their publication.