00:00:00AM

High Springs, Florida, USA

N 29°49’7 W 82°36’31

InstagramFACEBOOKYOUTUBELINKEDINTIKTOK
Halcyon Text

Info

Privacy policy

PRIVACY POLICY OF THE WEBSITE HALCYON.NET


TABLE OF CONTENTS:

1. GENERAL PROVISIONS

2. BASIS FOR DATA PROCESSING

3. PURPOSE, BASIS, AND DURATION OF DATA PROCESSING ON THE WEBSITE

4. DATA RECIPIENTS ON THE WEBSITE

5. PROFILING ON THE WEBSITE

6. RIGHTS OF THE DATA SUBJECT

7. COOKIES ON THE WEBSITE AND ANALYTICS

8. FINAL PROVISIONS

1. GENERAL PROVISIONS

1. This privacy policy of the Website is informational in nature, which means that it does not impose obligations on the Users of the Website. The privacy policy primarily outlines the principles regarding the processing of personal data by the Administrator on the Website, including the basis, purposes, and duration of personal data processing, as well as the rights of individuals whose data is processed. It also provides information on the use of cookies and analytical tools on the Website.

2. All words, expressions, and acronyms used in this privacy policy and starting with a capital letter (e.g., Service Provider, Website, Electronic Service) should be understood in accordance with their definitions provided in the Terms and Conditions of the Website, available on the Website's pages.

3. The administrator of personal data collected through the Website is the company: Halcyon Dive Systems, 24587 NW 178th Place High Springs, FL 32643


The company, hereinafter referred to as the "Administrator," is also the Service Provider of the Website.
4. Additionally, depending on the actions taken by a given User on the Website (e.g., when they submit an inquiry via the Inquiry Form to one of HALCYON's partner locations), other entities belonging to the HALCYON group or otherwise associated with HALCYON (e.g., other entities involved in the sale of HALCYON Products) may also become administrators of personal data. In such cases, separate rules for personal data processing (e.g., a different privacy policy or an informational clause on data processing) may apply, which are provided to Users, for example, in response to their inquiry, and in any case, in accordance with the requirements of local legislation. In the absence of such separate rules, the relevant provisions of this privacy policy regarding the processing of personal data of Website Users by the Administrator shall apply.
5. Personal data on the Website is processed by the Administrator in accordance with applicable laws, in particular with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) – hereinafter referred to as "GDPR" or the "GDPR Regulation." The official text of the GDPR Regulation can be found at: http://eur-lex.europa.eu/legal-content/PL/TXT/?uri=CELEX%3A32016R0679.
6. The use of the Website is voluntary. Similarly, providing personal data by the User of the Website is voluntary, with two exceptions:
(1) Entering into agreements with the Administrator – Failure to provide personal data in cases and to the extent indicated on the Website and in the Terms and Conditions of the Website and this privacy policy, which are necessary to conclude and perform an agreement with the Administrator (e.g., an agreement for the use of an Electronic Service), will result in the inability to conclude such an agreement. Providing personal data in such cases is a contractual requirement, and if the individual wishes to enter into an agreement with the Administrator, they are required to provide the necessary data. The scope of data required to conclude an agreement is always indicated in advance on the Website and in the Terms and Conditions of the Website.
(2) Statutory obligations of the Administrator – Providing personal data is a statutory requirement arising from universally applicable legal provisions that impose an obligation on the Administrator to process personal data (e.g., data processing for accounting purposes), and failure to provide such data will prevent the Administrator from fulfilling these obligations.
7. The Administrator takes special care to protect the interests of individuals whose personal data it processes, and in particular, is responsible for and ensures that the data it collects is:
(1) processed lawfully;
(2) collected for specified, lawful purposes and not further processed in a manner incompatible with those purposes;
(3) factually correct and adequate in relation to the purposes for which it is processed;
(4) stored in a form that permits the identification of the individuals to whom it pertains, no longer than is necessary to achieve the purpose of processing; and
(5) processed in a manner that ensures appropriate security of personal data, including protection against unauthorized or unlawful processing and accidental loss, destruction, or damage, using appropriate technical or organizational measures.
8. Taking into account the nature, scope, context, and purposes of processing, as well as the risk of violating the rights or freedoms of natural persons with varying likelihood and severity, the Administrator implements appropriate technical and organizational measures to ensure that processing is carried out in accordance with the GDPR Regulation and to be able to demonstrate this. These measures are reviewed and updated as necessary. The Administrator applies technical measures to prevent unauthorized persons from obtaining and modifying personal data transmitted electronically.

2) BASIS FOR DATA PROCESSING

The Administrator is authorized to process personal data in cases where – and to the extent that – at least one of the following conditions is met:
(1) The data subject has given consent to the processing of their personal data for one or more specific purposes;
(2) The processing is necessary for the performance of a contract to which the data subject is a party, or to take steps at the request of the data subject prior to entering into a contract;
(3) The processing is necessary for compliance with a legal obligation to which the Administrator is subject; or
(4) The processing is necessary for the purposes of legitimate interests pursued by the Administrator or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject that require the protection of personal data, particularly if the data subject is a child.

The processing of personal data by the Administrator always requires the existence of at least one of the bases indicated in point 2.1 of this privacy policy. The specific bases for processing the personal data of Website Users by the Administrator are indicated in the following section of the privacy policy, in relation to the specific purpose of processing personal data by the Administrator.

table

3) PURPOSE, BASIS, AND PERIOD OF DATA PROCESSING IN THE ONLINE SERVICE

Each time, the purpose, basis, and period, as well as the recipients of personal data processed by the Administrator, result from the actions taken by a given User in the Online Service.

The Administrator may process personal data in the Online Service for the following purposes, on the following bases, and for the following periods:

RECIPIENTS OF DATA IN THE ONLINE SERVICE

For the proper functioning of the Online Service, including the proper provision of Electronic Services by the Administrator, it is necessary for the Administrator to use the services of external entities (such as software providers). The Administrator uses only the services of such processors who provide sufficient guarantees of implementing appropriate technical and organizational measures to ensure that the processing complies with the requirements of the GDPR and protects the rights of the data subjects.

Personal data may be transferred by the Administrator to a third country, provided that the Administrator ensures that, in such a case, the transfer will be made to a country that ensures an adequate level of protection – in accordance with the GDPR. In the case of other countries, the transfer will be based on standard data protection clauses. The Administrator ensures that the data subject has the ability to obtain a copy of their data. The Administrator transfers collected personal data only when and to the extent necessary to achieve the specific purpose of data processing in accordance with this privacy policy.

The transfer of data by the Administrator does not occur in every case and not to all recipients or categories of recipients indicated in the privacy policy – the Administrator transfers data only when it is necessary to achieve the specific purpose of personal data processing and only to the extent necessary to achieve it.

Personal data of Online Service Users may be transferred to the following recipients or categories of recipients:

a) Entities within the HALCYON group – The Administrator shares the collected personal data of the User with selected entities within the HALCYON group, i.e., entities affiliated with or dependent on it, either financially or personally, only when and to the extent necessary to achieve the specific purpose of data processing in accordance with this privacy policy.

b) Other entities economically associated with the HALCYON brand (e.g., distributors operating HALCYON Product sales points) – In the case of a User who submits an inquiry about Products at a selected HALCYON sales point via the Online Service, the Administrator shares the collected personal data of the User with the selected sales point only when and to the extent necessary to fulfill the User's request to establish contact with that entity.

c) Service providers supplying the Administrator with technical, IT, and organizational solutions that enable the Administrator to conduct business activities, including the Online Service and the Electronic Services provided through it (in particular, providers of computer software for operating the Online Service, email and hosting providers, and software providers for business management and technical support for the Administrator) – The Administrator shares the collected personal data of the User with the selected provider acting on its behalf only when and to the extent necessary to achieve the specific purpose of data processing in accordance with this privacy policy.

d) Providers of accounting, legal, and advisory services supporting the Administrator with accounting, legal, or advisory assistance (in particular, an accounting office, law firm, or debt collection company) – The Administrator shares the collected personal data of the User with the selected provider acting on its behalf only when and to the extent necessary to achieve the specific purpose of data processing in accordance with this privacy policy.


PROFILING IN THE ONLINE SERVICE

1. The GDPR imposes an obligation on the Administrator to inform about automated decision-making, including profiling, as referred to in Article 22(1) and (4) of the GDPR, and – at least in such cases – to provide significant information about the principles of such decision-making, as well as the significance and anticipated consequences of such processing for the data subject. Bearing this in mind, the Administrator provides information in this section of the privacy policy regarding possible profiling.

2. The Administrator may use profiling in the Online Service for direct marketing purposes, but decisions made based on it by the Administrator do not concern the conclusion or refusal to conclude a specific agreement with the Administrator (e.g., an agreement for the use of an Electronic Service) or the ability to use the Online Service. The result of using profiling in the Online Service may include, for example, reminders about unfinished actions on the Service, sending discounts, or offering a product or service that may match the interests or preferences of a given person, or proposing better conditions compared to the standard offer of the Online Service. Despite profiling, the individual freely decides whether they wish to take advantage of, for example, the offer or discount received in this way.

3. Profiling in the Online Service involves the automatic analysis of provided information or the prediction of a person’s behavior on the Online Service website, e.g., by analyzing past purchase history, viewed pages, or other actions taken on the Online Service. A condition for such profiling is that the Administrator possesses the personal data of the individual to subsequently send, for example, a discount code or offer.

4. The data subject has the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them.

6) RIGHTS OF THE DATA SUBJECT

1. Right of access, rectification, restriction, erasure, or portability – The data subject has the right to request from the Administrator access to their personal data, rectification, erasure ("right to be forgotten"), or restriction of processing, and has the right to object to processing, as well as the right to data portability. Detailed conditions for exercising the aforementioned rights are specified in Articles 15-21 of the GDPR.

2. Right to withdraw consent at any time – If the data subject’s data is processed by the Administrator based on consent (under Article 6(1)(a) or Article 9(2)(a) of the GDPR), they have the right to withdraw consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

3. Right to lodge a complaint with a supervisory authority – The data subject whose data is processed by the Administrator has the right to lodge a complaint with a supervisory authority in the manner and procedure specified in the provisions of the GDPR and Polish law, in particular the Act on the Protection of Personal Data. The supervisory authority in Poland is the President of the Personal Data Protection Office.

4. Right to object – The data subject has the right to object at any time – on grounds relating to their particular situation – to the processing of their personal data based on Article 6(1)(e) (public interest or tasks) or (f) (legitimate interests of the administrator), including profiling based on these provisions. In such a case, the Administrator may no longer process the personal data unless they demonstrate compelling legitimate grounds for the processing that override the interests, rights, and freedoms of the data subject or for the establishment, exercise, or defense of legal claims.

5. Right to object to direct marketing – If personal data is processed for direct marketing purposes, the data subject has the right to object at any time to the processing of their personal data for such marketing purposes, including profiling, to the extent that the processing is related to such direct marketing.

6. To exercise the rights referred to in this section of the privacy policy, you can contact the Administrator by sending an appropriate message in writing or by email to the Administrator’s address indicated at the beginning of the privacy policy.

7) COOKIES IN THE ONLINE SERVICE AND ANALYTICS

What Are Cookies?
Cookies are small text files in the form of text information sent by a server and stored on the device of the person visiting the Online Service (e.g., on the hard drive of a computer, laptop, or memory card of a smartphone – depending on the device used by the visitor). Detailed information about cookies and their history can be found, for example, here: https://pl.wikipedia.org/wiki/HTTP_cookie.

Cookie Management Tool
The Administrator may provide a tool on the Online Service website for easy and active management of cookies. This tool is available upon the first visit to the website and, after being closed, remains accessible at the bottom of the page. Active management allows visitors to:Upon starting to use the website, visitors will be asked to choose their cookie settings. These settings can later be changed using the management tool available on the website.

Information About Cookies
Below, the Administrator provides detailed information about the use of cookies on the Online Service website, their types, purposes, and how to manage them using, for example, browser settings and/or the cookie management tool available on the website. The Administrator encourages the use of the cookie management tool available on the website, which allows for easy and active management of cookies while using the site. In the absence of this tool, visitors are encouraged to review the information below regarding cookie management through browser settings.

Types of Cookies Used by the Online Service
Cookies that may be sent by the Online Service website can be categorized based on the following criteria:a) By Purpose:b) By Duration:c) By Origin:

The Administrator ensures that cookies are used in compliance with applicable laws and encourages visitors to actively manage their cookie preferences for a tailored and secure browsing experience.

table

6. Checking Cookies Sent by the Online Service
It is possible to check which cookies are currently being sent by the Online Service website, regardless of the browser being used, by utilizing tools available on websites such as:

7. Browser Settings for Cookies
By default, most web browsers on the market accept the storage of cookies. However, users have the ability to define the conditions for the use of cookies through their browser settings. This means that users can, for example, partially restrict (e.g., temporarily) or completely disable the ability to store cookies. However, in the latter case, this may affect certain functionalities of the Online Service.

8. Browser Settings as Consent for Cookies
Browser settings regarding cookies are significant in terms of consent for the use of cookies by the Online Service. According to regulations, such consent can also be expressed through browser settings. Detailed information on how to change cookie settings and delete them manually in the most popular web browsers can be found in the browser's help section or on the following pages (click the respective link):

9. Use of Google Analytics in the Online Service
The Administrator may use Google Analytics and Universal Analytics services provided by Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) in the Online Service. These services assist the Administrator in maintaining statistics and analyzing traffic on the Online Service. The data collected through these services is processed to generate statistics that help in administering the Online Service and analyzing its traffic. This data is aggregated in nature. By using these services, the Administrator collects information such as the sources and mediums through which visitors access the Online Service, their behavior on the website, details about the devices and browsers used to visit the site, IP addresses, domains, geographic data, demographic data (age, gender), and interests.

10. Blocking Google Analytics Tracking
It is possible for individuals to easily block the sharing of their activity on the Online Service with Google Analytics. To do so, they can, for example, install a browser add-on provided by Google Ireland Ltd., available here: https://tools.google.com/dlpage/gaoptout?hl=pl.

11. Google Advertising and Analytics Services
In connection with the Administrator's potential use of advertising and analytics services provided by Google Ireland Ltd. in the Online Service, the Administrator points out that full information about the data processing principles for visitors to the Online Service (including data stored in cookies) by Google Ireland Ltd. can be found in Google's privacy policy for its services, available at: https://policies.google.com/technologies/partner-sites.

8) FINAL PROVISIONS
The Online Service may contain links to other websites. The Administrator encourages users to review the privacy policies established on those websites after navigating to them. This privacy policy applies only to the Administrator's Online Service.

0