Privacy Policy
Sharp Consumer Electronics Poland sp. z o.o.
Last updated: June 2026
1. Introduction
At Sharp Consumer Electronics Poland sp. z o.o. (“we”), we take your privacy seriously. The privacy policy below outlines who we are as a data controller, what data we collect on our websites, how and why we collect it, and describes your rights regarding the management of this data.
As a responsible company, we have implemented a range of technical and organisational measures to ensure the fullest possible protection of all personal data (e.g. first name, surname, address, email address, telephone number) processed by this website, in order to comply with the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (‘GDPR’) and to comply with the data protection regulations of individual countries. However, as there may generally be security gaps in the transmission of data over the internet, complete protection cannot be guaranteed. For this reason, any data subject may provide us with personal data using alternative methods, e.g. by telephone.
2. Name and address of the data controller
The data controller for data processed under the GDPR and other applicable data protection regulations is:
Sharp Consumer Electronics Poland sp. z o.o.
Ostaszewo 57B
87-148 Łysomice
Poland
Website: www.sharpconsumer.pl
As the data controller, we are responsible for how we store and use personal data, as well as ensuring its security. We are also responsible for responding to enquiries regarding the processing of personal data. If you have any questions about how your personal data is processed, please contact us at the address below:
Data Protection Officer
The Data Protection Officer (DPO) is: Paweł Czapnik
Email: iod.pl@sharpconsumer.eu
You may contact the Data Protection Officer directly at any time if you have any questions or suggestions regarding data protection.
3. Collection of personal data and general information
We will collect personal data when you purchase our products or services, complete forms we have provided, make an enquiry or request information about our products or services, or contact us by telephone, email or in person.
Depending on the communication channel used, we collect the following personal data:
Contact details: information that allows us to contact you, e.g. first name, surname, email address, telephone number and addresses associated with your account, order or enquiry.
Personal data in the submissions and notifications you send us: if you provide us with information about products and services via our website, we will collect the personal data you attach, e.g. in scans of purchase documents.
Records of your communications with us: when you contact us by telephone or email, we will make a record of this. We also record telephone calls with our customer service team so that we can implement and conduct appropriate training, ensure we provide you with a high standard of service, and retain evidence.
How you use our website: When a user or an automated system visits our website, the website collects a range of general data and information. This general data is stored in server log files. We may collect the following data: (1) the types and versions of browsers used, (2) the operating system used by the system connecting to our website, (3) the website from which our website is accessed, (4) subpages, (5) date and time of access to the website, (6) Internet Protocol address (IP address), (7) the Internet service provider of the system connecting to our website, and (8) other similar data and information that may be used in the event of attacks on our IT systems.
We do not draw conclusions about the user based on website data. However, the information is required for the following purposes: (1) the correct delivery of content from our website, (2) the optimisation of content on our website, as well as the optimisation of advertising, (3) ensuring the long-term viability of our IT systems and website technology, and (4) to provide law enforcement authorities with the information required to prosecute perpetrators in the event of a cyberattack; therefore, the controller subjects the collected data to anonymous statistical analysis in order to strengthen the protection and security of our company’s data, and to ensure an optimal level of protection for the data we process. Anonymous data from server log files is stored separately from any personal data provided by the data subject.
Data necessary for the conclusion of a contract or for taking steps towards its conclusion (including for the assessment of the risk of cooperation and the credibility of the contracting party): if, as a business partner or potential business partner, you contact us to enter into a contract (in particular as a sole trader or as an employee or representative of a business partner operating under a different legal form), or if we contact you to establish a business relationship. In such cases, we may also obtain data relating to a potential business partner from other sources (indirect data collection).
4. Legal basis for data processing
We limit the collection of personal data to that which is necessary for us to fulfil our legal and business obligations. However, in some cases, the provision of personal data may be required by law (e.g. tax regulations), as part of contract negotiations or performance, or as part of the provision of a service. Failure by the customer/user to provide personal data could result in the contract not being signed or the service not being provided to the data subject; it is therefore considered that the processing of some of the data is in the legitimate interests of both the data subject and us.
Below we describe:
- The purposes for which we collect your personal data;
- The categories of personal data we process for this purpose;
- The legal basis allowing us to process your personal data;
- How long we will retain your personal data.
| Purpose of processing | Categories of data processed | Legal basis for processing | Data retention period |
| Providing you with services, commencing and carrying out cooperation | Personal data that you have provided to us when purchasing a product or initiating contact, e.g. to commence a business relationship. | Actions taken to conclude or perform a contract. | For the duration of the contract and the limitation period for any claims. |
| Compliance with applicable legal provisions. | Within the timeframes set out in legislation, e.g. tax legislation. | ||
| Delivering products and ordered parts to you | Contact details and transaction data provided in the order placed by email. | Performance of the contract between us, delivery of the products and parts ordered, compliance with applicable legal provisions. | For the duration of the contract and the limitation period for any claims. |
| Responding to your queries or complaints | Depending on how they were submitted: data disclosed in the email in which the enquiry or complaint was made, data provided during a telephone conversation via the helpline. | The controller’s legitimate interest (business purposes – customer service). | Until the query/complaint has been resolved. |
| Performance of concluded contracts and obligations arising from legal provisions. | For the duration of the limitation period for any claims. | ||
| In the case of the helpline, consent to the recording of the call and data disclosed during it. | In relation to the helpline – in accordance with the controller’s internal regulations. | ||
| Investigation of fraud cases and debt recovery | Contact details of contracting parties / service recipients, data relating to completed purchases. | The controller’s legitimate interest (business purposes – customer service). Performance of concluded contracts and obligations arising from legal provisions (retention of accounting records). | During the limitation period for any claims. |
| Maintaining and improving the quality of our products and services | All personal data that we collect. | The controller’s legitimate interest (business purposes – quality management). | For the duration of the limitation period for any claims. |
| Direct marketing | Contact details. | The user’s consent to receive specific content electronically. Provision of services related to the operation and management of the newsletter service. | Until consent is withdrawn. |
| Conducting promotional campaigns on the SHARP website | Data necessary to register the user for the promotion via a dedicated registration form. | Conducting a promotional campaign (legitimate interest of the controller). | For the duration of the promotional campaign and the pursuit of any claims. |
| Implementation of promotional agreements and terms and conditions, and related legal provisions. | For the period required by tax law and the settlement of the promotional campaign. | ||
| Consent to the processing of additional data. | Until consent is withdrawn. |
Before you provide your personal data, you may contact our Data Protection Officer, who will explain whether the provision of personal data is required by law and the contract, whether there is an obligation to provide personal data, and what the consequences of not providing it are.
Information on the processing of data from indirect sources. When entering into contracts with business partners (as part of our risk assessment process), we also process data that you have not provided to us directly, but which we have obtained from other sources:
| Purpose of processing | Categories of data processed | Legal basis for processing | Data retention period |
| Assessment of a potential business partner (credit rating) | First name and surname, registered name of the business, name and code of the business form, business address/delivery address, contact details (email address, telephone number, website address), registration numbers, information on tax status, dates relating to business operations, information on representatives and authorised agents, information on legal events concerning the potential contractor, e.g.: bankruptcy, restructuring proceedings, state aid, warnings regarding the company, decisions of competent authorities, information on debts, the company’s financial situation. | The controller’s legitimate interest (business purposes – assessing the credibility of a potential business partner). Taking steps to conclude a contract. | During the term of the contract and the limitation period for any claims. |
Source of the above-mentioned category of personal data: we obtain your personal data from publicly available public and commercial registers, from your companies’ websites, and from external information service providers supplying customer credit ratings. The data obtained in this way does not include any special categories of personal data..
As a result of processing the above-mentioned categories of data, no decisions are made based solely on automated processing that would produce legal effects. We do not profile potential business partners.
Other information concerning the processing of data obtained from the above-mentioned sources (including, among other things, further disclosure of data and the rights of data subjects) is provided below.
5. Your consent
In some of the cases indicated above, the legal basis for our processing of your personal data may be your consent. You may withdraw your consent at any time. Withdrawing your consent will not result in any consequences for you. If you withdraw your consent, the processing of data carried out prior to its withdrawal will not become unlawful.
You may withdraw your consent by contacting the member of staff who dealt with you when you gave your consent, or the Data Protection Officer, whose contact details are provided in section 2. Any request regarding the exercise of your rights will be dealt with within the required timeframe.
6. How we share your data
We share your personal data with the following parties:
- Our staff: Your personal data will be accessible to our staff, but only where necessary for the performance of their duties.
- Companies within the same group: To provide you with services.
- Sharp partners: To respond to your enquiries about products and services not supplied directly by Sharp.
- Delivery companies: To deliver the products you have ordered from us.
- Credit reference agencies: To verify your identity and obtain information about unpaid or late payments and other activities that may affect your credit rating.
- External service providers and advisers: To support our operations, for example, in relation to IT or other administrative services required to operate this website; to analyse the data we hold, process payments, communicate with our customers, and provide us with legal and financial advice.
- Government and regulators: Where required by law, or to assist them with their investigations and initiatives.
- Regulatory bodies: where we are required to disclose or make available your personal data to comply with legal obligations or requirements.
- Police and law enforcement agencies: To assist with investigations and prevent crime.
We disclose personal data only to the parties listed above. We may share statistical information and analytical data with other third parties, but we will endeavour to ensure that this is aggregated information from which no individual can be identified before we disclose it.
7. Changes in ownership and control
We may transfer or assign any data described in this privacy policy to third parties as a result of a sale, merger, consolidation, change of control, transfer of assets or reorganisation of our business.
If we are involved in a merger, acquisition or sale of assets, we will always process your data in a manner that respects your rights and freedoms, subject to any confidentiality agreements between the parties.
8. Transfer of personal data
We sometimes transfer personal data to third parties, such as suppliers of CRM software for sales or service purposes, suppliers of marketing automation software, and agencies (e.g. marketing and recruitment agencies) based in the US outside the EU and the European Economic Area (‘EEA’).
To ensure the security of your personal data, we will only transfer it to the US outside the EU and the EEA if this is in accordance with the GDPR. This requires that one of the following conditions is met:
- The European Commission has determined that the country in question ensures an adequate level of protection for your personal data;
- the data transfer is subject to a legally binding and enforceable obligation on the part of the recipient to protect personal data;
- the transfer is based on binding corporate rules; or
- the transfer is based on a derogation from the restrictions under the GDPR regarding the transfer of personal data outside the EU.
9. Cookies
Our websites use ‘cookies’. Cookies are text files that are stored on your computer system via your web browser.
Many websites and servers use cookies. These contain a so-called cookie ID, which is a unique identifier for the cookie. The identifier consists of a series of characters, on the basis of which websites and servers can be assigned to the specific web browser on which the cookie was stored. This enables the websites and servers visited to distinguish the user’s specific browser from other web browsers containing different cookies. By using the unique cookie identifier, a specific web browser can be recognised and identified.
By using cookies, we can provide users of our website with better-tailored services and content, which would not be possible without cookie settings. Find out more about our Cookie Policy.
10. Profiling
Profiling involves the automatic analysis of personal data (e.g. analysis of online behaviour, such as visiting pages, clicking on links, downloading content), with the aim of recognising and predicting the behaviour of our website users.
We do not currently use profiling on our website. If we start using profiling, we will notify you.
11. Registration and enquiry forms on the website
Users may also provide personal data by submitting a general enquiry (e.g. an enquiry about a sale or a service) via a form. In such cases, the personal data provided is automatically sent by email to the recipient on our side. This personal data is provided voluntarily and stored for the purpose of contacting the data subject to respond to their enquiry. Furthermore, via the forms, you may sometimes consent to other forms of communication, e.g. marketing communications. This consent may be given via a double opt-in mechanism (see section 12 below).
This data may also be shared with companies within the Sharp Group and partners in order to respond to an enquiry if it relates to a business area other than the one the user selected when submitting the enquiry. It may also be shared with third parties, such as CRM systems for sales and service purposes, or marketing automation platforms; however, in this case, we remain the data controller.
12. Sales and marketing communications
As a user of the Sharp website, you may also provide personal data to sign up for specific sales and marketing programmes, for example to express an interest in a product or service, subscribe to a newsletter, register for events, or consent to a customer satisfaction survey. We regularly inform our users, customers and business partners about products and services through sales and marketing communications. Users may consent to receiving such messages via various channels, and may also opt out of them when the opportunity arises. Informing existing customers about services (e.g. information regarding invoices/contracts) is considered a legitimate interest of the controller and data subjects; therefore, such communication forms part of the provision of the service. A data subject may receive marketing communications only if (1) they have a valid email address, telephone number, or postal address, and (2) they register to receive marketing communications.
When registering to receive marketing communications, we retain the IP address of the computer system assigned by the internet service provider (ISP) that the data subject is using at the time of registration; we also retain the date and time of registration. The collection of this data is necessary to identify any (potential) misuse of the data subject’s email address at a later date, and the purpose is to protect the controller’s legal rights.
Unless otherwise stated in the consent form, personal data collected during registration for marketing purposes may only be used to send specific messages and to provide the requested commercial information. In some cases, we use external platforms to process this data, such as marketing automation providers and CRM systems for sales. All external providers have signed GDPR-compliant data protection agreements with Sharp Consumer Electronics Poland sp. z o.o., which allows us to exercise control over their processing. The data subject may withdraw their consent to the use of the marketing communication programme and to the storage of their data at any time. Every message we send contains a link allowing you to withdraw your consent (in the case of electronic communications); you may also withdraw your consent by contacting the Data Protection Officer, whose contact details are provided in section 2.
13. Tracking and analytics
Marketing tracking
Our marketing communications sometimes contain so-called tracking pixels. A tracking pixel is a tiny graphic embedded in an email, placed on a landing page, etc., which is sent in HTML format to enable the recording and analysis of a log file. This allows for the statistical analysis of successful and unsuccessful online marketing campaigns. Based on the tracking pixels inserted, the administrator can see whether and when a marketing message relating to specific content has been viewed or downloaded by the data subject and can use this information to present users with more specific/relevant content during their next visit. You can withdraw your consent to the above by using the consent management link included in every email.
Google Analytics
We use Google Analytics to track, report on and optimise the performance of our website (e.g. number of visitors, where visitors come from, which pages they visited). Tracking is carried out at an aggregate level, not on an individual basis.
The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.
We use Google Analytics with the anonymisation feature (the “_gat._anonymizeIp” function). This means that Google truncates the user’s IP address and ensures that the user remains anonymous when accessing our website from a Member State of the European Union or another country party to the Agreement on the European Economic Area.
When a user visits our website via a Google search, Google Analytics places a cookie on the user’s computer or device. This enables Google to track what happens after the user clicks on a link and visits our website. In the case of paid digital advertising, we pay Google based on the number of clicks or impressions, which enables accurate reporting and invoicing and helps prevent fraudulent or invalid clicks. Google collects user data such as IP address, access information and location. Each time you visit our website, this data is transferred to Google in the United States. This data may be stored by Google in the United States or may be passed on to third parties.
14. Your rights regarding data processing
Under the GDPR, you have the following rights regarding the management of your data:
- Right to information – this means you can ask us whether we are processing your data.
Right of access – this means you can check what data we are processing. This allows you to receive a copy of your personal data held by us and verify whether we are processing it lawfully.
Right to rectification – this means you can have any incomplete or incorrect data we hold supplemented or corrected. - Right to erasure – means the right to have your data deleted from our databases/systems where: further processing is no longer justified, you withdraw your consent, we are storing your personal data unlawfully, or we are required to delete your data under applicable EU legislation. You have the right to request the erasure of your personal data after exercising your right to object to processing.
- Right to restriction of processing – means the ability to restrict or suspend the processing of personal data.
Right to data portability – means the ability to transfer your data to another provider. - Right to object – means the ability to prevent the processing of your personal data in a specific manner, or to withdraw your consent.
- Right to lodge a complaint – means the ability to lodge a complaint with a supervisory authority responsible for personal data protection.
To exercise the rights described above, please write to us at: iod.pl@sharpconsumer.eu
As a user of our websites, you may also take other steps to limit the amount of personal data we are able to process.
Withholding or withdrawing consent:
- When we collect personal data via forms, we include fields for you to opt in (double opt-in) so that you can let us know whether you wish to receive marketing communications from us. If you do not give your consent, we will contact you solely in connection with the services we provide to you.
- Most marketing messages, particularly electronic ones, offer the option to unsubscribe from receiving future marketing messages.
Disabling or removing web tracking:
- Visit our website using an incognito browser window.
- Do not allow cookies to be set by adjusting your browser settings:
o Cookie settings in Internet Explorer
o Cookie settings in Firefox
o Cookie settings in Chrome
o Cookie settings in Safari (web and iOS)
- Do not consent to data collection by Google Analytics
Download and install the browser extension: https://tools.google.com/dlpage/gaoptout It will inform Google Analytics (via JavaScript) that Google Analytics cannot collect specific data.
Further information: https://www.google.com/intl/en/policies/privacy/ http://www.google.com/analytics/terms/us.html https://www.google.com/analytics/
Our aim is always to assist you whenever you wish to exercise your rights, but in certain cases we may have legal grounds to refuse your request.
We will process every request as quickly as possible – we will inform you of the actions taken in this regard no later than one month after receiving it. If necessary, this period may be extended by a further two months due to the complexity and volume of requests. If the processing period is extended, we will inform you of this within one month of receiving your request and provide the reason for the delay.
If we decide to reject your request, we will inform you of the reasons for the rejection.
Lodging complaints with supervisory authorities: if you disagree with the decision we have made in response to a request relating to your rights, or if you believe we have breached data protection regulations, you may lodge a complaint with a data protection supervisory authority in the EU. You can contact the supervisory authority for Poland using the contact details provided on this page: https://uodo.gov.pl/.
15. Updates to this policy
From time to time, we may update this privacy policy to reflect changes in how we process personal data (e.g. if we implement new systems or processes involving new ways of using personal data), or to clarify the information contained in this notice. Any changes we make will comply with applicable data protection laws.
We recommend that you check this policy from time to time to see if any updates have been made. We will notify you directly of any changes to this policy or the way we use your personal data where we are legally required to do so.