Privacy Policy

Yoredo online store -

1. data of the Personal Data Administrator

We kindly inform you that the administrator of your personal data is the company Medin sp. z o.o. headquartered in Poznań at ul. Limanowskiego 10/10 postal code 60-744, registered in the National Court Register kept by the District Court Poznań Nowe Miasto and Wilda, VIII Economic Department of the National Court Register under the KRS number 0000450951, REGON: 302386566, NIP: 7822559286, share capital: PLN 5,000.00 (hereinafter Medin). Medin can be contacted about data protection at e-mail:

2 Data Protection Officer

Medin does not have a Data Protection Officer – for all data protection issues, please contact us at:

3. purposes and grounds for processing personal data

To provide services in accordance with the scope of our activities, Medin processes your personal data – for various purposes, but always in accordance with the law. Below you will find listed purposes of personal data processing along with legal grounds. The provision of services is understood to include both the supply of services and goods.

The regulation that is the source of the rights and obligations of personal data processors, as well as those whose data is processed, is mainly Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016. on the protection of individuals with regard to the processing of personal data and on the free flow of such data and the repeal of Directive 95/46/EC (commonly referred to as “RODO”) and the Data Protection Act of May 10, 2018.

In order to provide our services, we process such personal data as:

  • Name,
  • ID card series and number,
  • email address,
  • phone number,
  • residential address,
  • company name.

The legal basis for such data processing is Art. 6 paragraph. 1(b) RODO, which allows you to process personal data if it is necessary for the performance of a contract or taking steps to enter into a contract

In order to respond to inquiries submitted by Medin contact addresses, we process such personal data as:

  • Name,
  • email address,
  • phone number,
  • company name.

The legal basis for such data processing is Art. 6 paragraph. 1(b) of the RODO, which allows for the processing of personal data if it is necessary for the performance of a contract or taking steps to enter into a contract.

In order to send email notifications in the form of a newsletter, we process such personal data as:

– Name,

– email address.

The legal basis for such data processing is Art. 6 paragraph. 1(a) of the RODO, which allows personal data to be processed if a person has previously given such consent; second, Art. 6 paragraph. 1(f) of the RODO, which allows the processing of personal data if by doing so the Personal Data Controller pursues its legitimate interest;

In order to comply with tax law obligations, such as keeping accounting records for 5 years, we process personal data such as:

– Name,

– email address,

– residential address,

– tax ID number.

The legal basis for such data processing is Art. 6 paragraph. 1(c) of the RODO, which allows for the processing of personal data if such processing is necessary for the Data Controller to comply with its obligations under the law.

4 Cookies

  1. Medin on its website, as well as others, uses the so-called “Medin “. cookies, which are short text information stored on your computer, phone, tablet, or other device. They can be read by our system, as well as by systems belonging to other entities (e.g. Facebook, Google).
  2. Cookies perform a great many functions on the website, most often useful, which we will try to describe below (if the information is insufficient, please contact us):
  • providing security – cookies are used to authenticate users and prevent unauthorized use of the customer panel. Thus, they serve to protect your personal data from unauthorized access;
  • Influence on the processes and efficiency of the use of the website – cookies are used so that the website works efficiently and so that you can use the functions available on it, which is possible, among other things, by remembering your settings between visits to the site. Thus, they allow you to efficiently navigate the website and individual pages;
  • session status – cookies often store information about how visitors use the website, such as which subpages they view most often. They also make it possible to identify errors displayed on certain subpages. Cookies used to save the so-called. “Session status” therefore helps to improve services and enhance the browsing experience;
  • Maintaining session status – if the customer logs into his/her panel, cookies enable the session to be maintained. This means that you do not have to re-enter your login and password each time you go to another sub-page, which promotes comfort in using the website;
  • creation of statistics – cookies are used to analyze how users use the website (how many open the website, how long they stay on it, which content arouses the most interest, etc.). This allows you to continuously improve the website and customize its performance according to your preferences. We use Google’s tools, such as Google Analytics, to track activity and generate statistics; in addition to reporting site usage statistics, the Google Analytics pixel can also be used, along with some of the cookies described above, to help display more relevant content to you on Google services (such as Google Search) and across the web;
  • Use of social features – it is possible to place a so-called “community ” on the website. social networking pixels, which allow you to like the fanpages you run on that site while using the site, follow company-related events, and access presentation materials related to your business offerings. However, in order for this to be possible, it is necessary to use cookies provided by the aforementioned. operatives.
  1. Importantly, many cookies are anonymized for us – without additional information, we are unable to identify your identity from them.
  2. Your web browser allows the use of cookies on your device by default, so when you visit for the first time, please
    For consent to the use of cookies. However, if you do not wish to use cookies when browsing the website, you can change the settings in your web browser – completely block the automatic handling of cookies or request notification whenever cookies are placed on your device. The settings can be changed at any time.
  3. While respecting the autonomy of everyone using the website, we feel obliged to warn you that disabling or restricting the use of cookies may cause quite serious difficulties in using the website, such as having to log in to every subpage, longer loading times, restrictions on the use of functionality, etc.
  1. Right to withdraw consent
  1. If the processing of personal data is based on consent,
    You may revoke this consent at any time – at your own discretion.
  2. If you would like to withdraw your consent to the processing of personal data, to do so, simply send an email directly to Medin at:
  3. If the processing of your personal data was carried out on the basis of consent, its withdrawal does not make the processing of personal data up to that point illegal. In other words, until you revoke your consent, we have the right to process your personal data, and revoking it does not affect the compatibility of the
    With the right of existing processing.

5. requirement to provide personal information

  1. The provision of any personal data is voluntary and at your discretion. However, in some cases, the provision of certain personal data is necessary to meet your expectations in the use of services provided by Medin.
  2. In order to contact you, it is necessary to provide data,
    about which – without this we are not able to implement the contract.

6 Automated decision-making and profiling

Kindly be informed that we do not perform automated decision-making, including based on profiling.

7 Recipients of personal data

  1. Like most entrepreneurs, we use the help of other entities in our business, which sometimes involves the transfer of personal data, e.g. to our legal advisors, accounting offices, entities cooperating in the execution of the contract, etc.
  2. In addition to this, it may happen, for example, that we will have to transfer your personal data to other entities, whether public or private, based on a relevant law or decision of a competent authority. Therefore, it is extremely difficult for us to predict who might come forward with a request for personal data. Nevertheless, for our part, we assure you that we analyze each request for personal data very carefully and very thoroughly, so as not to inadvertently provide information to an unauthorized person.

8. transfer of personal data to third countries

We kindly inform you that your personal data is not transferred outside the European Economic Area.

9 Period of processing of personal data

  1. In accordance with applicable laws, we do not process your personal data “indefinitely”, but for the time needed to achieve the stated purpose. After this period, your personal data will be irreversibly deleted or destroyed.
  2. Regarding specific processing periods for personal data, we kindly inform you that we process personal data for a period of time:
  • the duration of the contract – with respect to personal data processed for the purpose of entering into and performing the contract;
  • 3 years or 10 years + 1 year – for personal data processed
    for the purpose of establishing, asserting or defending claims (the length of the period depends on whether both parties are entrepreneurs or not);
  • 6 months – for personal data that was collected at the initial inquiry about the product, while the contract was not concluded immediately;
  • Until the consent is withdrawn or the purpose of the processing is achieved, but for no longer than 5 years – for personal data processed on the basis of consent;
  • until an effective objection is lodged or the purpose of the processing is achieved, but for no longer than 5 years – with regard to personal data processed on the basis of the legitimate interest of the Personal Data Controller or for marketing purposes;
  • Until obsolete or no longer useful, but for no longer than 3 years – for personal data processed primarily for analytical purposes, use of cookies and website administration.
  • We count periods in years from the end of the year in which we began processing personal data to streamline the process of deleting or destroying personal data. Counting the time limit separately for each event would involve
    with significant organizational and technical difficulties, as well as a significant financial outlay, so establishing a single date for the deletion or destruction of personal data allows us to manage the process more efficiently. Of course, if you exercise your right to forget, such situations are handled on a case-by-case basis.
  • The extra year associated with the processing of personal data collected for contract performance is dictated by the fact that, hypothetically, you may file a claim moments before the expiration of the statute of limitations, the demand may be served with a significant delay, or you may misstate the statute of limitations for your claim.

10. rights of data subjects

  1. We kindly inform you that you have the right to:
  • Access to their personal data;
  • rectification of personal data;
  • deletion of personal data;
  • limitation of personal data processing;
  • Object to the processing of personal data;
  • portability of personal data.
  1. We respect your rights under data protection laws and strive to facilitate the exercise of these rights to the greatest extent possible.
  2. We point out that the listed powers are not absolute,
    and therefore in certain situations we may lawfully refuse to comply with them. However, if we refuse to grant a request, it is only after careful analysis and only in a situation where denial of the request is necessary.
  3. Regarding the right to object, we explain that you have the right to object at any time to the processing of personal data on the basis of legitimate interests of the Personal Data Controller (these are listed in Section III) in connection with your particular situation. However, you must keep in mind that, according to the regulations, we may refuse to consider an objection if we show that:
  • there are legitimate grounds for processing that override your interests, rights and freedoms, or
  • there are grounds for the establishment, investigation or defense of claims.
  1. In addition, you may object to the processing of your personal data for marketing purposes at any time. In such a situation, upon receipt of an objection, we will cease processing for this purpose.
  2. You may exercise your rights by:
  • sending an email directly to Medin Sp. z o.o. by email: or in writing to the company’s address Poznań 60-744, ul. Limanowskiego 10/10.

11. right to file a complaint

If you believe that your personal data is being processed in violation of the
with the applicable law, please contact us immediately. At the same time, we inform you that you may file a complaint with the President of the Office for Personal Data Protection.

12 Final provisions

  1. To the extent not covered by this Privacy Policy, the data protection regulations shall apply.
  2. You will be notified by email of any changes made to this Privacy Policy.
  3. This Privacy Policy is effective as of 01/01/2023 .