PRIVACY POLICY

Dear User,

We are committed to protecting your privacy and want you to feel comfortable while using our services. This is

why we would like to present you with the most important information on principles regarding the processing of

your personal data and cookies used by our Shop. This information was prepared in compliance with the GDPR –

the General Data Protection Regulation.

PERSONAL DATA CONTROLLER

VICEVERSA GROUP SP. Z O.O. with its registered seat at Aleje

Jerozolimskie 155, 02-326 Warszawa, Poland, entered into the National Court Register – register of

entrepreneurs by SĄD REJONOWY DLA M. ST. WARSZAWY W WARSZAWIE, XII WYDZIAŁ GOSPODARCZY

KRAJOWEGO REJESTRU SĄDOWEGO, under KRS no. 0000664833, European Union VAT Identification Number

PL5223084798, REGON no. 366661726, share capital PLN 5000,00.

If you want to contact us in relation to the processing of your personal data, please send an e-mail to:

hello@teyasilk.com.

YOUR RIGHTS

You have the right to:

access your personal data, including the right to receive a copy of your data (Article 15 of the GDPR or – if

applicable – Article 13 (1) (f) of the GDPR),

correct them (Article 16 of the GDPR),

delete them (Article 17 of the GDPR),

limit their processing (Article 18 of the GDPR),

transfer data to another controller (Article 20 of the GDPR).

Furthermore, you have the right to:

object to the processing of your data at any time:

for reasons related to your particular situation – regarding the processing of your personal data in

accordance with Article 6 (1) (f) of the GDPR (i.e. based on the legally justified interests realised by us),

(Article 21 (1) of the GDPR);

if the personal data are processed for direct marketing purposes, within the scope in which the

processing is related to such direct marketing (Article 21 (2) of the GDPR).

Please contact us if you want to exercise your rights. Your objection to our use of cookies (about which you can

read below) can be expressed, in particular, through the appropriate browser settings.

If you think that your data are processed unlawfully, you can submit a complaint to the President of the Personal

Data Protection Office.

PERSONAL DATA AND PRIVACY

You will find detailed information on the processing of your data depending on your activities in the table below.

1. Placing an order at the Shop

What is the purpose?

processing of your order

On what basis?

sales contract (Article 6 (1) (b) of the GDPR) our legal obligation, related to accountancy, to process

your personal data (Article 6 (1) (c) of the GDPR)

For how long?

as long as the contract is in force until our legal obligation related to accounting ceases to

apply

furthermore, your data will be processed until the expiry of the period during which redressing is possible – by you or us

(more information on this subject can be found in the last table of this section)

What happens if you do not provide your data?

you will not be able to place an order

2. Creating an account in the Shop

What for?

performance of the contract for keeping an account in the Shop

On what basis?

contract for the provision of services (Article 6 (1) (b) of the GDPR)

For how long?

until you delete your account or until we delete it at your request

furthermore, your data will be processed until the expiry of the period during which redressing is possible – by you or us

(more information on this subject can be found in the last table of this section)

What happens if you do not provide your data?

you will not be able to register an account and use its features, such as browsing the order history or checking the order

status

3. Contacting us (e.g. making an inquiry)

What for?

processing of your inquiries or submissions

On what basis?

contract or actions taken at your request to conclude it

(Article 6 (1) (b) of the GDPR) – if your inquiry or

notification concerns a contract that we are or may be a

party to

our legitimate interest in processing your data is to

communicate with you (Article 6 (1) (f) of the GDPR) – if

your inquiry or notification is not related to the contract

For how long?

for the duration of the contract binding us or – if the

contract is not concluded – until the expiry of the redress

period – see the last table in this section*

until the expiry of the redress period – see the last table

in this section – or until we accept your objection to the

processing *

furthermore, your data will be processed until the expiry of the period during which redressing is possible – by you or us

(more information on this subject can be found in the last table of this section)

What happens if you do not provide your data?

we will not be able to respond to your inquiry or application

* depending on whichever is applicable in that case and whichever takes place sooner.

4. Browser settings and other similar activity allowing for analytical activities

What for?

analysis of how you use and navigate the Shop, to adapt it to the needs and behaviour of Users

(for more information on that topic, read the “Analytical Activities” and “Cookies” sections of the Privacy Policy)

On what basis?

our legitimate interest consisting in the processing of data for the purposes mentioned above (Article 6 (1) (f) of the

GDPR)

For how long?

until you delete the cookies used for analytical purposes or until their validity expires*

What happens if you do not provide your data?

we will not take your preferences regarding the use of the Shop Website into consideration when developing it further

* depending on whichever is applicable in that case and whichever takes place sooner.

5. When you agree to receive marketing content from us (e.g. information on special

offers)

What for?

sending of marketing information, especially special offers

On what basis?

Your consent to our marketing activities (Article 6 (1)(a) of the GPDR)

For how long?

until you withdraw your consent – remember, you can withdraw your consent at any time. Data processing until you

withdraw your consent is compliant with the law.

furthermore, your data will be processed until the expiry of the period during which redressing is possible – by you or us

(more information on this subject can be found in the last table of this section)

What happens if you do not provide your data?

you will not be able to receive our marketing materials, including the information on our special offers

6. Newsletter subscription

What for?

sending of the newsletter

On what basis?

contract for the provision of newsletter services (Article 6 (1) (b) of the GDPR)

For how long?

until you unsubscribe from our newsletter

furthermore, your data will be processed until the expiry of the period during which redressing is possible – by you or us

(more information on this subject can be found in the last table of this section)

What happens if you do not provide your data?

you will not be able to receive information concerning the Shop and our services

7. Taking action or refraining from taking action which may result in claims related to the

Shop or our services

What for?

determination, investigation or defence of claims related to the concluded contract or services provided

On what basis?

our legitimate interest consisting in the processing of data for the purpose indicated above (Article 6 (1) (f) of the GDPR)

For how long?

until the redress period expires or until we accept your objection to the processing *

What happens if you do not provide your data?

no possibility to determine, assert or defend claims

* depending on whichever is applicable in that case and whichever takes place sooner.

ANALYTICAL ACTIVITIES

As part of the Shop operations, we conduct analytical activities aimed at increasing its intuitiveness and

accessibility – this takes place if your browser settings allow such activities. As part of the analysis, we will take

the way you navigate the Shop into consideration, for example, how much time you spend on a given webpage,

or which places of the Shop you click on. That way, we can customise the layout and appearance of the Shop

and the content we post on it to suit the needs of Users.

DATA SAFETY

While processing your personal data, we use organisational and technical measures which comply with the

relevant provisions of law, including encrypting the connection with the use of an SSL certificate.

COOKIES

Our Shop, like most Internet websites, uses the so-called cookies. These cookies:

are stored in the memory of your device (computer, mobile phone, etc.);

do not introduce any changes in the settings of your device.

On this Shop, cookies are used for the following purposes:

collecting statistical data

collecting marketing data

To learn how to manage cookies and disable them in your browser, you can use your browser’s help files. You

can get more information about this topic by pressing F1 while using the browser. Additionally, you can find

relevant information on the following subpages, depending on the browser you use:

Firefox

Chrome

Safari

Internet Explorer / Microsoft Edge

Below you will find information about the features of the cookie files we process and their period of validity.

cookie file name cookie validity period cookie file function

cookie_teya session duration analytics

By using the appropriate options of your browser, you can, at any time:

delete cookies,

block the use of cookies in the future.

In these cases we will no longer process them.

More information on cookies is available on Wikipedia.

EXTERNAL SERVICES / DATA RECIPIENTS

We use the services of external entities which support us in running our business. We entrust them with the

processing of your data – these entities process data only when instructed by us in writing.

Below, you will find a list of recipients of your data:

ACTIVITY DATA RECEIVERS DATA TRANSMISSION OUTSIDE THE

EUROPEAN UNION

using the Shop with settings

allowing for conducting marketing

activities

entity providing marketing

services does not take place

placing an order in the Shop entity ensuring the delivery of

the goods

yes – the USA, the United Kingdom,

Switzerland, Canada, Israel **

subscription to the newsletter or

consent to receive marketing

messages

entity providing newsletter or

marketing messaging services

yes – the USA, the United Kingdom,

Switzerland, Canada, Israel **

In addition:

competent public authorities within the scope in which we are obliged to make data available to them.

TRANSFER OF PERSONAL DATA TO COUNTRIES OUTSIDE THE EUROPEAN UNION

** For the above reasons, your personal data may also be processed by entities outside the European Union. An

adequate level of protection of data processing, including through the use of appropriate security measures, is

ensured by:

the standard data protection clauses adopted by the Commission, referred to in Article 46 (2) (c) of the

GDPR

Commission Implementing Decision of 28.6.2021 pursuant to Regulation (EU) 2016/679 of the European

Parliament and of the Council on the adequate protection of personal data by the United Kingdom

Commission Decision No 2000/518/EC on the adequate protection of personal data in Switzerland

Commission Decision No 2002/2/EC on the adequate protection of personal data provided by the Canadian

Personal Information Protection and Electronic Documents Act

Commission Decision No 2011/61/EU on the adequate protection of personal data by the State of Israel with

regard to automated processing of personal data