• Home

1. General provisions

1.1 The https://crossobags.com website and the Online Store available at https://crossobags.com/shop (hereinafter referred to as the “Site”) are committed to respecting your privacy.
The data collected is used primarily for administration and for the execution of orders in the Online Store.

1.2 The Site is operated by Crosso Beata Gil-Sobocińska (NIP [Tax Identification Number]: 9660511869, REGON [Statistical Number]: 050520456) with its registered office in Białystok, ul.
Danuty Siedzikówny 13, hereinafter referred to as the “Controller”, which is the controller of Users’ personal data within the meaning of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016
on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC.

1.3 The Controller does not seek to identify Users of the Site for purposes other than the processing of orders in the Online Store.
In addition, the Controller shall take all precautions required by law to ensure that data, especially personal data, is adequately protected against disclosure, unauthorized access and misuse.

2. Collection, use and processing of personal data

2.1 In connection with data processing, each User has a number of rights.
Each User has the right of access to data, the right of rectification, erasure or restriction of processing, the right to object, the right to lodge a complaint with the supervisory authority, and others.

2.2 The Controller has the right to make the User’s personal data available to entities authorized under applicable law, including law enforcement agencies.

2.3 The Site may contain links to third-party services, including social media plug-ins (Facebook), maps (Google Maps) and videos (YouTube).
The use of these applications may result in the transfer of information about Users to external entities.

2.4 Some of the content on the Site uses
social media plug‑ins (Facebook, Instagram).
Using these features, the User can share particular content with friends from given social networks or recommend such content to them.

2.5 Additional personal data is also collected in places where the User has granted their consent to such collection by filling out a form (contact, comments).
The above data is only used to perform the given function.

2.6 To measure the effectiveness of ads through affiliate platforms, the Site uses conversion tracking (a tool through which the Controller learns what happened after a User interacted with an ad).
This is data collected mostly using cookies and similar technologies that are used to evaluate the effectiveness of a given advertising campaign.

2.7 The personal data collected by the Controller during the purchase in the Online Store is processed only for the purpose of processing the order and is always available for your inspection on the following website: https://Crossobags.com/my-account/.

2.8 Contact with the person supervising the processing of personal data by the Controller is possible by e-mail at the following address: [email protected].


3.1 When a visitor leaves a comment on the Site, we collect the data visible in the comment form, as well as the visitor’s IP address and their browser fingerprint as an aid in detecting spam.

3.2 An anonymized string based on your e‑mail address (so‑called hash) may be sent to Gravatar to check if you are using it.
The privacy policy of the Gravatar service is available here: https://automattic.com/privacy/. When you approve a comment, your profile picture is publicly visible in the context of your comment.

4. Media

4.1 If you are a registered User of the Site and upload images to the Site, you should avoid uploading images with EXIF location tags,
as visitors can download and read the full location data from the images on the site.

5. Cookies

5.1 If you leave a comment on our site, you can choose to have your name, e‑mail address and website address saved in cookies so that when you post another comment, the appropriate fields are automatically filled with the above information.
These cookies expire after a year.

5.2 If you have an account and log in to this site, we will create a temporary cookie to verify whether your browser accepts cookies.
This cookie does not contain any personal data and will be discarded when you close your browser.

5.3 When you log in, we additionally create some cookies needed to save your login information and selected screen options.
Login cookies expire after two days and screen options expire after one year.
If you check the “Remember me” option, your login will expire after two weeks.
If you log out of your account, your login cookies will be deleted.

5.4 If you modify or publish an article, an additional cookie will be stored in your browser.
This cookie does not contain any personal data, it simply indicates the ID of the article you just edited.
It expires after one day.

6. Embedded content from other sites

6.1 Articles on this site may contain embedded content (e.g. videos, images, articles, etc.).
Embedded content from other sites behaves in the same way as it would if the User visited the site in question directly.

6.2 These sites may collect information about you, use cookies, attach additional third-party tracking systems, and monitor your interactions with embedded material, including tracking your interactions with embedded material if you have an account and are logged into that site.

7. Analysis of statistics

7.1 Google Analytics uses “cookies”, i.e. text files placed on your device, to enable the Controller to analyze the source of traffic and the way visitors use the Site.

7.2 Google collects the data obtained by placing cookies on Users’ devices on its servers and uses this data to compile reports and to provide other services related to traffic and use of the Internet.

7.3 Google may also transfer this data to third parties if it is required to do so by law or if such third parties process such information on behalf of Google.
This data is never combined with the provided data referred to in Part III and is only material for statistical analysis and system error correction mechanisms.

7.4 The data is processed for 12 months following the last activity, after which the cookie is deleted.

8. Cookies from partners’ servers

The Site uses scripts and software components provided by and located on the servers of its business partners.
Such cookies may contain data necessary for the partner to perform the service provided to the Site or may contain data other than that listed in the privacy policy.
The Site selects its business partners very carefully, but is not responsible for their cookie policy.
Therefore, we recommend that you verify each of our partners on your own and make an independent decision about whether you want to accept their cookies.
The Site uses scripts from the following partners:

(a) Google Inc.
headquartered in Mountain View (CA, USA),

(b) Facebook Inc.
headquartered in Menlo Park (CA, USA).

9. Security and Privacy Policy of the Site’s Partners

We take great care in selecting our business partners and equal care in verifying links to other websites that are posted on the Site.
However, we are not responsible for the privacy standards or policies of the owners, operators, or administrators of these sites.
Therefore, we recommend that you verify each of our partners on your own and make an independent decision on whether you want to entrust your personal data with them.
Google: https://www.google.pl/intl/pl/policies Facebook: https://www.facebook.com/about/privacy/cookies Gravatar: https://automattic.com/privacy/

10. Data storage

10.1 If you leave a comment, its content and metadata will be stored indefinitely.
This allows us to identify and approve subsequent comments automatically, without sending them for moderation each time.

10.2 In the case of Users who have registered on our website (if any), we also store personal data entered in their profiles.
Each User can review, correct or delete their personal data at any time (except for the user name, which cannot be changed).
Site administrators can also view and modify this data.

11. Right to data

11.1 If you have a User account, you have posted comments on this site, or have signed up for the Newsletter, you may request a file created by exporting all the personal data we hold about you, including all information provided by you.
You may also request that we delete all of your personal data in our possession.
This does not apply to any data that we are required to retain for administrative, legal or security reasons.

12. Data transfer

12.1 Guest comments may be checked by an automated spam detection service.

12.2 If you subscribe to the Newsletter and agree to receive it, we ask only for your name and e‑mail address to which we will send notifications about new posts or commercial information. You can cancel them at any time by clicking the “unsubscribe” link in the footer of each newsletter.
The e‑mail address is transmitted and processed only for the purpose of sending the newsletter.

13. Your personal data

13.1 Cookies are IT data, in particular text files, that are stored on the Site’s end device.

13.2 The Site uses two main types of cookies: session cookies and persistent cookies.
Session cookies are temporary files that are stored on the Customer’s end device until the Customer logs out, leaves the website or turns off the software (web browser).
Persistent cookies are stored on the Customer’s end device for the time specified in the parameters of the cookies or until they are deleted by the Customer.
In many cases, the web browsing software (web browser) allows the storage of cookies by default.

13.3 In the event that you do not agree to the placement of cookies on your device, you can block their placement by configuring your web browser accordingly.
Please refer to your browser’s help files for information on how to do this.
Unfortunately, if you block cookies from the Site, we cannot guarantee that it will work properly.

13.4 The information system used by the Site automatically collects data related to the device you use to connect to the Site in logs.
This data is collected for statistical purposes only and concerns: the type of device, operating system, type of web browser, screen resolution, color depth, IP, Internet Service Provider or the address of access to the Site, and is only used in the process of optimizing the Site to ensure the greatest possible convenience of use.

13.5 This data is never combined with the provided data referred to above and is only material for statistical analysis and system error correction mechanisms.
The Site uses hosting provided by dhosting.pl Sp.
z o.o. Al.
Jerozolimskie 98, 00-807 Warsaw, KRS [National Court Register] no. 0000336780, NIP [Tax Identification Number] 7010198361, REGON [Statistical Number] 141998822. This company does not have direct access to personal data and does not process it in any way.
13.6 Data is stored for 24 months following the last activity.

14. Transfer of your personal data

14.1 In specific situations where applicable law requires the Controller to provide the collected data to state authorities, the Controller will provide such data.

14.2 With the exception of the above‑mentioned situations, your personal data, to the extent permitted by law on the basis of separate entrustment agreements, will be transferred to specific entities exclusively and in connection with the need to fulfill a contractual or legal obligation of the Controller.
The categories of entities to which the data may be transferred include: advertising agencies, banks, accounting offices, IT service providers, courier companies, logistics companies, payment institutions, carriers.

14.3 In the event of such a transfer, the Controller shall enter with those entities into appropriate entrustment agreements, guaranteeing the highest standard of protection and maintaining the confidentiality and security of the personal data, as well as its use only for the purpose of fulfilling the Controller’s contractual or legal obligation.

15. Changes to the Site Privacy Policy

15.1 The Controller reserves the right to change the privacy policy if required by applicable law, a change in technological conditions of Site operation or if the change will introduce a standard higher than the minimum required by law.

15.2 The Controller shall notify the User of such a change by e-mail (to the e-mail address provided during registration).

15.3 The current text of the privacy policy will always be available at https://crossobags.com/privacy-and-gdpr-policy/.

16. Your rights

16.1 In accordance with applicable laws, in relation to your personal data, you have the right to:

(a) deny or restrict the processing of your personal data;

(b) object to the processing of your personal data;

(c) access your personal data;

(d) rectify or erase your personal data;

(e) transfer your personal data;

(f) withdraw consent to the processing of your personal data;

g) lodge a complaint with the supervisory authority – the President of the Personal Data Protection Office.

16.2 These rights are unalienable and may not be restricted.
We are always happy to help and provide necessary information, and some of the rights listed above can be exercised by the User on their own.

17. Contact

17.1 The Controller contacts you using the e-mail address you provided, and only in special situations do we use the phone number you provided.

17.2 If you have any questions or concerns about this privacy policy and the security of your personal data, we encourage you to contact us by e‑mail ([email protected])

17.3 If you wish to update or delete your personal data and you are unable or unwilling to do so yourself, please contact us by e‑mail ([email protected]).

17.4 You may also correspond with us in reference to the above matters at:

Crosso Beata Gil-Sobocińska

Białystok ul.
Danuty Siedzikówny 13

NIP: 9660511869
REGON: 050520456

    Your Cart
    Your cart is emptyReturn to Shop
      Apply Coupon