Privacy Policy

The responsible party for data processing is:

Action Gear Brands Sp. z o.o.
Niciarniana 2/6
Lodz, 92-208
Email: kontakt@movino.com

We appreciate your interest in our online shop. Protecting your privacy is very important to us. Below, we provide detailed information on how we handle your data.

1. Access Data and Hosting

You can visit our website without providing any personal information. Each time a webpage is accessed, the web server automatically stores what is known as a server log file, which contains information such as the requested file name, your IP address, the date and time of access, the amount of data transmitted, and the requesting provider (access data), and logs the access. This access data is analyzed exclusively to ensure smooth operation of the site and improve our offerings. This serves to protect our legitimate interests in a correct presentation of our offer in accordance with Art. 6 (1) (f) GDPR. All access data is deleted no later than fourteen days after the end of your visit to our site.

1.1 Hosting

Our service providers perform services for hosting and presenting the website as part of a data processing arrangement on our behalf. Unless otherwise described in this privacy policy, all access data and any data collected via forms provided on this website are processed on their servers. For inquiries regarding our service providers and the basis of our collaboration with them, please contact us using the details provided in this privacy policy.

1.2 Content Delivery Network

To ensure faster loading times, we use a Content Delivery Network (CDN) for some of our offerings. This service delivers content, such as large media files, via regionally distributed servers of external CDN service providers. Access data is processed on the servers of these service providers. Our providers operate as data processors on our behalf. Some providers are located and/or use servers in countries outside the EU and the EEA. For these countries, no adequacy decision has been made by the European Commission. Our collaboration with them is based on standard data protection clauses of the European Commission. For inquiries regarding our service providers and the basis of our collaboration with them, please contact us using the details provided in this privacy policy.

2. Data Processing for Contract Processing and Contact

2.1 Data Processing for Contract Execution

For the purpose of contract processing (including inquiries regarding and handling of potential warranty and performance claims, as well as any statutory update obligations) in accordance with Art. 6 (1) (b) GDPR, we collect personal data if you voluntarily provide it to us when placing an order. Required fields are marked as such since we need this information to process the contract, and we cannot send orders without it. The specific data collected is evident from the respective entry forms.

Further information on the processing of your data, particularly regarding its transfer to our service providers for order, payment, and shipping processing, can be found in the following sections of this privacy policy. After the contract has been fully processed, your data will be restricted from further processing and deleted once the tax and commercial retention periods have expired in accordance with Art. 6 (1) (c) GDPR, unless you have explicitly consented to further use of your data in accordance with Art. 6 (1) (a) GDPR or we reserve the right to use data beyond this, as permitted by law, about which we inform you in this statement.

Inventory Management System
To process orders and contracts, we use inventory management systems provided by external service providers. Our service providers act as data processors on our behalf. For inquiries regarding our service providers and the basis of our collaboration with them, please contact us using the details provided in this privacy policy.

2.2 Customer Account

If you have provided your consent in accordance with Art. 6 (1) (a) GDPR by choosing to open a customer account, we will use your data for this purpose, as well as to store your data for future orders on our website. You can delete your customer account at any time by contacting us at the contact details provided in this privacy policy or using a designated function in the customer account. After deleting your account, your data will be erased unless you have explicitly consented to further use of your data in accordance with Art. 6 (1) (a) GDPR or we reserve the right to use data beyond this, as permitted by law, about which we inform you in this statement.

2.3 Contact

As part of customer communication, we collect personal data to handle your inquiries in accordance with Art. 6 (1) (b) GDPR, if you voluntarily provide this information when contacting us (e.g., via a contact form or email). Required fields are marked as such, as we need this information to process your inquiry. The specific data collected is evident from the input forms used. After your inquiry is fully processed, your data will be deleted unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) GDPR or we reserve the right to further use data as permitted by law, about which we inform you in this statement.

3. Data Processing for Delivery Processing

To fulfill the contract in accordance with Art. 6 (1) (b) GDPR, we forward your data to the shipping provider tasked with delivery, as necessary for the delivery of the ordered goods.

4. Data Processing for Payment Processing

For payment processing in our online store, we work with the following partners: technical service providers, credit institutions, and payment service providers.

4.1 Data Processing for Transaction Processing

Depending on the payment method selected, we share the necessary data for transaction processing with either our technical service providers, who act as data processors on our behalf, or the credit institutions and payment service providers involved in the transaction. This serves to fulfill the contract in accordance with Art. 6 (1) (b) GDPR. In some cases, payment service providers collect the required data directly on their websites or through technical integrations during the order process. Please refer to the privacy policy of the respective payment service provider.

If you have any questions regarding our payment processing partners and the basis of our collaboration with them, please contact us using the details provided in this privacy policy.

4.2 Data Processing for Fraud Prevention and Optimization of Our Payment Processes

In some cases, we share additional data with our service providers, which they use, along with the required payment data, as data processors for fraud prevention and optimization of our payment processes (e.g., invoicing, handling disputed payments, and supporting accounting). This processing serves our legitimate interest in fraud prevention and efficient payment management, in accordance with Art. 6 (1) (f) GDPR.

4.3 Identity and Credit Check When Selecting Klarna Payment Services

Klarna Pay Now (Direct Debit)

If you choose payment services from Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden (hereafter “Klarna”), we forward your data to Klarna in the context of payment and contract processing in accordance with Art. 6 (1) (b) GDPR. The transfer of this data enables Klarna to issue an invoice for the selected billing option and perform an identity and credit check. Please note that we can only offer the respective Klarna payment option if the credit check results permit it. For further details on Klarna's privacy practices and the credit reference agencies used, please refer to Klarna's privacy policy.

5. Email Marketing

5.1 Newsletter

If you subscribe to our newsletter, we use the necessary data or the data you provided separately to send you our email newsletter regularly, based on your consent in accordance with Art. 6 (1) (a) GDPR. You can unsubscribe from the newsletter at any time by either sending a message to the contact information provided below or using the unsubscribe link in the newsletter. After unsubscribing, we delete your email address from the mailing list unless you have expressly consented to further use of your data in accordance with Art. 6 (1) (a) GDPR or we reserve the right to further use data as permitted by law, about which we inform you in this statement.

6. Cookies and Other Technologies

General Information
To make your visit to our website more appealing and to enable the use of certain features, we utilize various technologies, including cookies, on different pages. Cookies are small text files that are automatically saved on your device. Some of the cookies we use are deleted at the end of the browser session, i.e., when you close your browser (session cookies). Other cookies remain on your device and allow us to recognize your browser the next time you visit (persistent cookies).

Privacy Protection on Devices
When using our online services, we apply essential technologies to provide the expressly requested telemedia service. Storing information on your device or accessing information already stored on your device does not require consent in such cases.

For non-essential functions, however, storing information on your device or accessing information already stored on your device requires your consent. Please note that some parts of the website may not be fully accessible if you do not provide consent. Any consent you provide remains in place until you change or reset the respective settings on your device.

Subsequent Data Processing through Cookies and Other Technologies
We use technologies essential for specific functions on our website (e.g., shopping cart functionality). These technologies collect and process data, such as IP address, time of visit, device and browser information, and details of your website usage (e.g., shopping cart content). This serves our legitimate interest in presenting our offerings in an optimized manner in accordance with Art. 6 (1) (f) GDPR.

Additionally, we use technologies to fulfill legal obligations (e.g., to document consent for processing your personal data), as well as for web analytics and online marketing. Further details on this, including the legal basis for data processing, are provided in the subsequent sections of this privacy policy.

Cookie settings for your browser can be found at the following links:

• Microsoft Edge™ / Safari™ / Chrome™ / Firefox™ / Opera™

If you have consented to the use of these technologies under Art. 6 (1) (a) GDPR, you can withdraw your consent at any time by contacting us through the information provided in this privacy policy.

7. Use of Cookies and Other Technologies
If you have provided consent according to Art. 6 (1) (a) GDPR, we use the following cookies and other third-party technologies on our website. Once the purpose of use has ended, and the respective technology is no longer in use, the data collected in connection with it will be deleted. You can revoke your consent at any time with future effect. Further information on withdrawal options is available in the section “Cookies and Other Technologies.” For more information, including the basis of our collaboration with each provider, refer to each technology section below. If you have questions regarding the providers and the basis of our collaboration, please contact us using the details provided in this privacy policy.

7.1 Use of Adobe Services

We use the following technologies from Adobe Systems, Software Ireland Limited, Ireland, 4–6 Riverwalk, Citywest Business Campus, Dublin 24, Ireland ("Adobe"). Information automatically collected by Adobe technologies about your use of our website is usually transmitted to a server of Adobe, Inc., 345 Park Avenue, San Jose, CA 95110-2704, USA, where it is stored. There is no adequacy decision by the European Commission for the USA. Our cooperation relies on the European Commission's standard data protection clauses. If your IP address is collected through Adobe technologies, it will be truncated or fully replaced by a generic IP address before storage on Adobe’s servers.

Adobe Fonts
To ensure consistent display of content on our website, data (IP address, time of visit, device and browser information) is collected through the "Adobe Fonts" script code, transmitted to Adobe, and subsequently processed by Adobe. We do not influence this subsequent data processing. Data processing is based on an agreement between joint controllers according to Art. 26 GDPR.

7.2 Use of Google Services

We use the following technologies from Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland ("Google"). Information collected automatically by Google technologies about your use of our website is typically transmitted to a server of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and stored there. There is no adequacy decision by the European Commission for the USA. Our collaboration relies on the European Commission’s standard data protection clauses. If your IP address is collected via Google technologies, it will be shortened before being stored on Google's servers by activating IP anonymization. Only in exceptional cases will the full IP address be transmitted to a Google server and shortened there. Unless otherwise specified, data processing is based on an agreement between joint controllers according to Art. 26 GDPR. Further information on data processing by Google is available in Google’s privacy policy.

Google Analytics
For website analysis, Google Analytics automatically collects and stores data (IP address, visit time, device, and browser information as well as information on website usage) from which usage profiles are created using pseudonyms. Cookies may be used for this purpose. Your IP address is not merged with other Google data. Data processing is based on an order processing agreement with Google.

Google Ads
For advertising purposes in Google search results and on third-party websites, a Google Remarketing cookie is set upon visiting our website, which enables interest-based advertising by collecting and processing data (IP address, visit time, device, and browser information, and website usage). Additional data processing only takes place if you have activated "personalized advertising" in your Google account. If you are logged in to Google during the visit, Google will use your data along with Google Analytics data to create cross-device remarketing audience lists.

For website analysis and event tracking, we use Google Ads Conversion Tracking to measure subsequent usage behavior when accessing our website through a Google Ads ad. Cookies may be used, and data (IP address, visit time, device and browser information, and your use of the website based on specified events such as page visits or newsletter sign-ups) may be collected, from which pseudonymous usage profiles are created.

The website also uses enhanced conversions, which improves conversion accuracy and allows you to measure conversions more effectively. Conversion data is sent to Google after being encrypted with the unidirectional SHA256 encryption algorithm. To use enhanced conversions, your email address is captured and encrypted in your conversion tracking tags.

Google Maps
To visually display geographical information, data (especially IP address and location data) related to your use of Maps functions is collected by Google Maps, transmitted to Google, and then processed. We have no control over this data processing.

Google reCAPTCHA
To protect our web forms from misuse and spam by automated software (bots), Google reCAPTCHA collects data (IP address, visit time, browser information, and website usage data) and analyzes your use of the website using JavaScript and cookies. No reading or storage of personal data from the form input fields occurs.

YouTube Video Plugin
To embed third-party content, the YouTube Video Plugin in extended privacy mode collects data (IP address, visit time, device, and browser information) only if you play a video. This data is transmitted to Google and subsequently processed by Google.

7.3 Use of Facebook Services
Use of Facebook Pixel
We use Facebook Pixel within the framework of the technologies outlined below by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland (“Facebook (by Meta)” or “Meta Platforms Ireland”). Facebook Pixel automatically collects and stores data (such as IP address, time of visit, device and browser information, and information about your use of our website based on specific events defined by us, like page visits or newsletter sign-ups) to create user profiles using pseudonyms. Upon visiting our website, Facebook Pixel automatically sets a cookie that enables recognition of your browser on other websites through a pseudonymous cookie ID. Facebook (by Meta) combines this information with other data from your Facebook account to compile reports on website activity and provide other services related to website usage, especially personalized and group-based advertising.

The information collected automatically by Facebook (by Meta) technologies about your use of our website is generally transmitted to a server of Meta Platforms, Inc., 1 Hacker Way, Menlo Park, California 94025, USA, and stored there. The European Commission has not issued an adequacy decision for the USA. When the transfer of data to the USA falls under our responsibility, our cooperation is based on the European Commission’s standard contractual clauses. For more detailed information on data processing by Facebook, please refer to Facebook's (by Meta) privacy policies.

Facebook Analytics
Using Facebook Business Tools, we generate statistics on visitor activity on our website from data collected by Facebook Pixel. Data processing is based on a data processing agreement by Facebook (by Meta). Our analysis serves to optimize the presentation and marketing of our website.

Facebook Ads (Ads Manager)
We advertise this website on Facebook (by Meta) and other platforms via Facebook Ads. We set the parameters for each ad campaign, but Facebook (by Meta) is responsible for the specific implementation, including deciding where ads are shown to individual users. Unless otherwise stated for individual technologies, data processing is based on joint controllership under Article 26 GDPR. This joint responsibility covers data collection and transmission to Meta Platforms Ireland; Meta Platforms Ireland processes data independently afterward.

Using the statistics from Facebook Pixel on visitor activity on our website, we conduct group-based advertising on Facebook (by Meta) through Facebook Custom Audience, defining the characteristics of each target group. Based on the pseudonymous cookie ID set by Facebook Pixel and collected data on your usage behavior on our website, we conduct personalized advertising through Facebook Pixel Remarketing.

Using Facebook Pixel Conversions, we measure your subsequent usage behavior for web analytics and event tracking when you access our website via a Facebook Ads advertisement. Data processing is based on a data processing agreement by Facebook (by Meta).

7.4 Other Providers of Web Analysis and Online Marketing Services
Use of Hotjar for Web Analysis
To analyze our website, Hotjar Ltd., Level 2, St Julian’s Business Centre, 3 Elia Zammit Street, St Julian’s STJ 3155, Malta (“Hotjar”), automatically collects and stores data (such as IP address, time of visit, device, and browser information, and information on how you use our website) to create usage profiles using pseudonyms. Cookies may be used for this purpose. These pseudonymous usage profiles are not combined with personal data about the pseudonym holder without separate and explicit consent. Hotjar acts on our behalf as a data processor.

Use of Vimeo Video Plugin for Third-Party Content
To integrate third-party content, data (such as IP address, time of visit, device, and browser information) are collected via the Vimeo LLC, 555 West 18th Street, New York 10011, USA (“Vimeo”) video plugin and transmitted to Vimeo, where they are subsequently processed. Data processing is based on a joint controller agreement under Article 26 GDPR. Google Analytics is automatically integrated within the Vimeo video plugin. For website analysis, Google Analytics automatically collects and stores data (such as IP address, time of visit, device and browser information, and details about your website usage) to create pseudonymous user profiles. Cookies may be used for this purpose. Google Analytics is provided by Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Information automatically collected by Google on your use of our website is generally transmitted to a server of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA, and stored there. Your IP address is truncated before storage on Google’s servers by enabling IP anonymization. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. We have no control over or access to data processing by Vimeo, including Google Analytics settings or results. The European Commission has not issued an adequacy decision for the USA, and our cooperation with these providers is based on the European Commission’s standard contractual clauses.

8. Social Media
8.1 Social Plugins for Facebook, Instagram, WhatsApp
Our website uses social buttons from social networks, which are integrated as HTML links only so that no connection with the respective provider's servers is established upon visiting our website. By clicking one of these buttons, you are redirected to the social network's page in a new browser window, where you can use, for example, the Like or Share button.

8.2 Our Online Presence on Facebook, Instagram, YouTube, LinkedIn
If you have consented under Article 6 (1) (a) GDPR to the respective social media operator, data about your usage of our online presences on the social media platforms mentioned above will be automatically collected and stored for market research and advertising purposes. This data is used to create usage profiles with pseudonyms to serve ads within and outside the platforms that presumably match your interests. Cookies are typically used for this purpose. For more detailed information on data processing and usage by each social media operator, as well as your privacy rights and options, please see the privacy notices of each provider below. If you need further assistance, please contact us.

Facebook (by Meta) is provided by Meta Platforms Ireland Ltd., 4 Grand Canal Square, Dublin 2, Ireland (“Meta Platforms Ireland”). Information automatically collected by Meta Platforms Ireland about your use of our online presence on Facebook (by Meta) is generally transmitted to a server of Meta Platforms, Inc., 1 Hacker Way, Menlo Park, California 94025, USA, and stored there. The European Commission has not issued an adequacy decision for the USA, and our cooperation is based on the European Commission’s standard contractual clauses. Data processing on Facebook (by Meta) Fanpages occurs under joint controllership per Article 26 GDPR. More information (regarding Insights data) can be found here.

9. Contact Options and Your Rights
9.1 Your Rights
As a data subject, you have the following rights:

• Under Article 15 GDPR, the right to request access to the personal data processed by us to the extent specified there;
• Under Article 16 GDPR, the right to request immediate rectification of incorrect or completion of your personal data stored by us;
• Under Article 17 GDPR, the right to request deletion of your personal data stored by us, unless further processing is required to exercise freedom of expression and information, fulfill a legal obligation, for public interest reasons, or for the establishment, exercise, or defense of legal claims;
• Under Article 18 GDPR, the right to request restriction of processing of your personal data if you contest the data's accuracy; if the processing is unlawful, but you oppose its deletion; if we no longer need the data, but you require it to establish, exercise, or defend legal claims, or if you objected to the processing under Article 21 GDPR;
• Under Article 20 GDPR, the right to receive your personal data provided to us in a structured, commonly used, and machine-readable format or to request its transfer to another controller;
• Under Article 77 GDPR, the right to lodge a complaint with a supervisory authority.