Last updated: 04.01.2020
On this page you will find all the information about how Sunday In Wonderland processes your personal data and ensures their security.
The administrator of your personal data within the meaning of the provisions on the protection of personal data is Dominika Byś, ul. Ceynowy 29, 84-207 Bojano, Poland.
Personal data and the purposes of their processing
Your personal data collected by the website https://sundayinwonderland.com are stored in order to deliver you with services provided by this website. By using this site, you agree to collection of your personal data in the ways listed below.
All the purposes, legal bases and the period of processing your personal data can be found below, depending on the purpose of their collection.
The provisions of the GDPR being in force in Europe grant you the following potential rights related to the processing of your personal data:
- the right to access personal data,
- the right to rectify personal data,
- the right to delete personal data,
- the right to limit the processing of personal data,
- the right to object to the processing of personal data,
- the right to transfer data,
- the right to lodge a complaint with a supervisory authority,
- the right to cancel consent to the processing of personal data if you have given such consent.
The rules related to the implementation of the indicated rights are described in detail in art. 16 – 21 GDPR. However, these rights are not absolute and you will not be entitled to them in every situation. However, in the following descriptions of individual purposes of data processing, I will show you what rights you have in situations related to these purposes.
After all, you always have one right – if you consider that I have violated the provisions on the protection of personal data when processing your personal data, you have the opportunity to lodge a complaint with the relevant supervisory authority.
Also, you can always contact me with a request to provide you with information about what data about you I have and for what purposes I process it. All you have to do is send an email to email@example.com.
Recipients of personal data
Your personal data may also be processed by my subcontractors. Most often these are entities whose services I use while processing your personal data, and which allow me to provide services for you.
- Bluehost, a company belonging to the Endurance International Group, Inc. – to store personal data on the server, including the mailbox server
- WordPress – to process personal data by the website, including to post comments
- Google Ireland Limited – to use Google services, including e-mail based on Google servers
- UAB “MailerLite” – to use the Mailerlite system in which your personal data is processed, if you subscribe to the newsletter
- persons who can potentially access your personal data when providing services related to technical support for the website
- subcontractors who can participate in the provision of legal services to you and respond to your emails
All entities entrusted with the processing of personal data guarantee the application of appropriate measures for the protection and security of personal data required by law.
Due to the use of Google and Bluehost services, your data may be transferred to the United States of America (USA) in connection with their storage on American servers.
The purposes of processing personal data
If you want to subscribe to my newsletter, you must provide me your name and email address via the appropriate subscription form. Providing this data is voluntary, but necessary to subscribe to the newsletter.
The data you provide when you sign up for the newsletter are used to send you the newsletter. The legal basis for processing this data is your consent (art.6 par.1 let.a RODO), expressed when subscribing to the newsletter.
The data will be processed for the duration of the newsletter, unless you opt out of receiving it. Opting out of receiving the newsletter, however, does not delete your data from the database. The data you provide will still be stored in the mailing system to defend against any claims related to sending the newsletter, in particular for the purposes of demonstrating your consent to receive the newsletter, as referred to in art. 6 clause 1. let. f GDPR.
You can, however, correct your data saved in the newsletter database at any time. You also have the right to transfer data referred to in art. 20 GDPR.
If you contact me via e-mail, you obviously give me your e-mail address as the sender’s address. Also remember that you can provide me with your other personal data in the message. Providing all these data is voluntary, but necessary to make contact.
In this case, your data is processed in order to contact you, and the basis for their processing is art. 6 clause 1 let. a GDPR, i.e. your consent resulting from voluntary initiation of contact. The legal basis for data processing in this case is the justified purpose in the form of archiving correspondence for the purposes of demonstrating its course in the future (Article 6 clause 1 let. f of the GDPR).
The content of correspondence may be archived for an indefinite period. You have the right to request the history of your correspondence with me (if it has been archived). You can also request its removal, unless its archiving is justified by my overriding interest, e.g. defense against potential claims on your part.
If you want to add a comment on my blog, you must complete the form and provide your email address and name. Providing data is voluntary, but necessary to add a comment. The comment system is operated by WordPress, used to manage content on the blog.
The data provided when adding a comment are used to publish a comment on the blog, and the legal basis for their processing is your consent (Article 6 clause 1 let. a of the GDPR) resulting from the addition of a comment.
The data will be processed for the duration of comments on the blog, unless you request removal of the comment in advance, which will delete your data from the database.
Cookies and other tracking technologies
Cookies are small text information that is stored on your end device (on your smartphone, tablet or computer). They can be read by my ICT system (own cookies) or third party systems (third party cookies).
Some of the cookies I use are deleted as soon as the web browser session ends, so immediately after it closes. Other cookies are saved by your end device and allow my website to recognize your browser the next time you visit the site (these are so-called persistent cookies).
Consent to cookies
The first time you visit my site, you’ll be notified about cookies. In your browser settings you can also change cookie settings or delete them completely.
I use my own cookies to ensure that the website and its forms work properly.
Third party cookies
Google Analytics: This tool is provided by Google LLC, 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. I use it as part of my legitimate interest, which is to create statistics and analyze them to optimize my blog.
Google Analytics automatically collects information about your activities on my blog. The information collected in this way is usually transmitted to servers in the United States and stored there.
If you do not want the information collected by cookies about your use of my website to be processed by Google, you can install the plugin located here: https://tools.google.com/dlpage/gaoptout.
If you are interested in details related to data processing within Google Analytics, I encourage you to read the explanations written by Google itself: https://support.google.com/analytics/answer/6004245.
Social tools: On my blog I use plugins and other social tools shared by social networking sites such as Facebook, Instagram, Google, Youtube.
By browsing my site containing such a plugin, your browser will establish a direct connection to the servers of the administrators of these social networks (service providers). The content of the plugin is transmitted by the given service provider directly to your browser and integrated with the website. Thanks to this integration, the service providers receive information that your browser has viewed my website, even if you do not have a profile on the given social media or are not currently logged in to it. This information (along with your IP address) is sent by your browser directly to the server of the given service provider (some servers are located in the USA) and stored there.
If you are currently logged in to any of the integrated social networking sites, then the respective service provider will be able to assign your visit to my website to your profile in the given social networking site.
If you use a given plugin, e.g. by clicking the “Like” or “Share” buttons, this information will also be sent to the service provider and integrated with your profile on the given social network.
- Facebook – https://www.facebook.com/legal/FB_Work_Privacy,
- Instagram – https://help.instagram.com/519522125107875?helpref=page_content,
- Google – https://policies.google.com/privacy?hl=pl.
If you play video, Google receives information about it, even if you are not logged in to the site. This information (together with your IP address) is transmitted by your browser directly to the Google server (which may be located in the USA).
Affiliate links: Most of the ads on my site (text links, banners) direct you through the unique URL of the affiliate network to the online store.
After clicking on such a link, cookies are saved on your computer, and usually disappear after 30-90 days. Thanks to these cookies, if you make purchases in the store during the period of validity of these cookies, my affiliate partners will know that you were directed to the store from my site. Thanks to this I can receive a salary.
After redirecting to the store, its administrator is responsible for protecting your data. Neither me nor anyone from the affiliate network has access to your personal data that you provide on the store’s website for the purchase purposes (name, surname, address, telephone number or payment details).
Advertising: I use Ezoic to perform ads on my website. This action gives me the revenue needed to run my blog.
Every time you browse my site, queries are sent to the server where it is stored. Each such query is saved in server logs.
They include Your IP address, server date and time, information about your web browser and your operating system. Logs are saved and stored on the server.
Data saved in server logs are not used to identify specific people because they are not associated in this way.
Server logs are only auxiliary material used to administer the site, and their content is not disclosed to anyone except those authorized to administer the server.