Privacy policy

General Provisions

This Privacy Policy sets out the rules for the processing and protection of personal data of users of the online store MJS Michał Sygacz, available at mjs-food4u.pl. We care about the privacy of users and the security of the processing of their data in accordance with applicable laws, including the GDPR. This Policy describes the principles of collecting and using users’ data collected directly from them or through cookies and similar technologies.

Data Controller

The controller of personal data is MJS Michał Sygacz, with its registered office at: ul. Osiedlowa 3A, 43-360 Bystra, NIP: 9372345906, REGON: 072731207. If you have any questions regarding the processing of personal data, you can contact us at the following e-mail address: msygacz@mjs-food4u.pl.

Scope of Collected Data

  1. During a visit to the Website, data related to user activity is collected automatically, such as time spent on the site, searched phrases, number of viewed subpages, date, and source of the visit. The user may provide their data in order to register an account in the online store.
  2. The registration form requires providing identification and contact data necessary for using the account and completing purchases. Additional data may also be provided, but it is not mandatory. The user’s account will record their orders, favorite products, payment history, complaints, etc.
  3. In the case of purchases without account registration, the user provides the data necessary to purchase, pay for, and receive the order.
  4. The Website allows contacting the Data Controller and providing them with identification and contact data, as well as data related to the content of the message.
  5. With the user’s consent, their contact and/or analytical data may be collected for marketing purposes.

Source of Data

  1. We collect data directly from users.
  2. A user may provide data of another person authorized to receive their order—in such a case, the user is the source of the recipient’s data.

Data may be processed for the following purposes:

  • analysis of web traffic, ensuring security within the Website, and adjusting content to users’ needs, based on the legitimate interest of the Controller (Article 6(1)(f) of the GDPR);
  • responding to submitted inquiries, providing requested offers, and conducting correspondence to handle the matter, based on the user’s consent and the legitimate interest of the Controller, which is fulfilling users’ requests (Article 6(1)(a) and (f) of the GDPR);
  • creating and using an account in the online store, based on the contract for the provision of electronic services concluded with the user as the service recipient (Article 6(1)(b) of the GDPR);
  • making purchases in the online store, based on a distance sales contract (Article 6(1)(b) of the GDPR);
  • handling complaints, based on the legitimate interest of the seller (Article 6(1)(f) of the GDPR);
  • promotion of goods and services or providing offers, based on the user’s consent (Article 6(1)(a) of the GDPR).

Right to Withdraw Consent

If consent is the legal basis for data processing, it can be withdrawn at any time using the contact details available on the Website. Withdrawal of consent does not affect the lawfulness of processing carried out prior to its withdrawal.

Obligation or Voluntariness of Providing Data

  1. Providing data is voluntary but necessary. Failure to provide data will result in the inability to:

    a) fulfill an order;
    b) create an account in the online store;
    c) process a complaint;
    d) receive an offer or requested marketing materials;
    e) receive a response to a submitted inquiry.
  2. Providing data necessary for the statistical analysis of Website users is voluntary.

    Rights arising from the GDPR in the scope of processed data Every user of the Service has the right to:
    a) request access to their data from the Controller and to receive a copy of it (Article 15 of the GDPR);
    b) request the Controller to rectify or correct data (Article 16 of the GDPR) – with respect to rectification, when the user notices that the data is incorrect or incomplete;
    request the Controller to delete data (Article 17 of the GDPR);
    c) request the Controller to restrict processing (Article 18 of the GDPR) – e.g., when the user notices that the data is incorrect – they may request restriction of the processing of their data for a period allowing us to verify its accuracy;
    d) lodge a complaint regarding the processing of personal data by the Controller with the President of the Personal Data Protection Office (uodo.gov.pl).

Recipients of personal data


The recipients of personal data may only be entities that are entitled to receive them under the provisions of law (e.g. the Police or the court, in connection with ongoing proceedings). In addition, the data may be made available to couriers, postal operators, hosting providers, mail servers. We can provide detailed data at your request by email.

Data Retention Period

Personal data will be stored:

  • in the case of creating an online account – for the duration of its use, and after its closure, the Controller will store billing data for 5 years following the year in which the tax obligation related to the order arose;
  • data related to settlements – for 5 years following the year in which the tax obligation related to the order arose;
  • until consent is withdrawn or until the matter is resolved, and thereafter until the expiration of the limitation period for claims of the parties related to its execution;
  • in the case of complaints – until the expiration of the limitation period for any related claims. Data collected via cookies and similar technologies related to web traffic analysis may be stored until the cookie expires. Some cookies never expire; therefore, the data retention period will be equivalent to the time necessary for the Controller to achieve the purposes related to data collection, such as ensuring security and analyzing historical traffic data on the website.

Transfer of Data to a Third Country or International Organization

Your data will not be transferred to third countries or international organizations.

Use of Cookies and Similar Technologies

The Website allows the collection of information about the user through cookies and similar technologies, the use of which usually involves installing this tool on the user’s device (computer, smartphone, etc.). This information is used to remember the user’s decisions (e.g. font selection, contrast, policy acceptance), to maintain the user’s session (e.g. after logging in), to remember the password (with consent), and to collect information about the user’s device and visit for the purpose of ensuring security, as well as analyzing visits and customizing content.

Information obtained through cookies and similar technologies is not combined with other user data and is not used by the Controller to identify users of the Website.

The user has the ability to set the browser to block certain types of cookies and other technologies, for example by allowing only those necessary for the correct display of the website. By default, most browsers allow all cookies, but the user can change these settings at any time and may also delete already installed cookies. Each browser allows such actions through one of the options available in its settings or preferences.

The user can also browse the website in so-called incognito mode, which blocks the possibility of collecting data about their visit.

Moreover, the Controller may use cookies and similar technologies for marketing and analytics purposes, but only with the user’s voluntary and explicit consent, which is requested via appropriate technical solutions available on the Website. The user may change cookie settings at any time.

This Policy is effective as of 1 March 2025.
The user will be informed about any changes to the Policy by its re-publication on the Website and by an appropriate notification.

© 2025 MJS food4u. Built using WordPress and Mesmerize Theme.