Privacy policy

§ 1
Privacy policy

  1. The present privacy policy determines rules of:
    • storage and access to information on User’s devices by using Cookies, which task is to realize services perceived electronically
    • storage of personal details
    • using newsletter service
    • using visual monitoring (CCTV) [No direct English content provided, this is a placeholder based on Polish content]
    • distribution of image [No direct English content provided, this is a placeholder based on Polish content]

§ 2

    The terms used in the Privacy Policy mean:
  1. Administrator – means the Seller and owner of the website Rest Lords Limited liability company with its registered office in Olsztyn (10-274) at Tarasa Szewczenki 7 Street, local 11, NIP PL 7393926470. Email:, tel. 89 888 12 22.
  2. Personal data administrator – Administrator determining the purposes and methods of processing personal data.
  3. Cookies – IT data, in particular small text files, saved and stored on devices through which the User uses websites.
  4. Administrator’s Cookies – Cookies placed by the Administrator, related to the provision of electronic services by the Administrator via the website.
  5. External Cookies – Cookies placed by the Administrator’s partners via the website.
  6. Copyright – the Act of February 4, 1994 on copyright and related rights (consolidated text: Journal of Laws of 2022, item 2509).
  7. Telecommunications Law – Act of July 16, 2004 (consolidated text: Journal of Laws of 2024, item 34, as amended).
  8. GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation data) OJ L 2016 No. 119, page 1, as amended.
  9. Website –
  10. Device – an electronic device through which the User gains access to the Website.
  11. Act on the provision of electronic services – Act of July 18, 2002 (consolidated text: Journal of Laws of 2020, item 344).
  12. User – an entity to which, in accordance with the Regulations and legal provisions, services may be provided electronically or with which an Agreement for the provision of electronic services may be concluded.

§ 3

  1. Cookies used by Administrator are safe for User’s device. Especially in this way impossible is transferring viruses, unwanted software or malware to Users’ Devices. Those files enable identifying software used by User and individually adjust The Website to every User. Cookies usually have name of internet domain, from which they come from, time of their storage on device and assigned value.
  2. Administrator uses two types of Cookies:
    • sessional Cookies: they are stored on User’s Device and remain there till the end of browser session. Saved information are permanently deleted from Device’s memory then. Session cookies mechanism doesn’t allow on downloading any personal details and sensitive information from User’s Device.
    • permanent cookies: are stored on User’s Device and remain there till the moment of deleting them. Ending browser session or turning off Device doesn’t cause deleting them from User’s Device. Permanent Cookies mechanism doesn’t allow on downloading any personal details and sensitive information from User’s Device.
  3. The administrator uses the following cookies on the website:
    • Domain: CookieYes | Cookies name: CookieLawInfoConsent, cookielawinfo-checkbox-functional, cookielawinfo-checkbox-performance, cookielawinfo-checkbox-analytics, cookielawinfo-checkbox-advertisement, cookielawinfo-checkbox-others, viewed_cookie_policy, VISITOR_PRIVACY_METADATA| Duration: from 6 months to 1 year (dependant on cookies)
    • Domain: YouTube | Cookies name: YSC, VISITOR_INFO1_LIVE, yt-remote-device-id, yt.innertube::requests, yt.innertube::nextId, yt-remote-connected-devices, CONSENT | Duration: from session end to 2 years (dependant on cookies)
    • Domain: Google DoubleClick | Cookies name: IDE, test_cookie | Duration: from 15 minutes to 1 year and 24 days (dependant on cookies)
    • Domain: Google Analytics | Cookies name: _ga_*, _ga | Duration: 1 year and 24 days
    • Domain: Google | Cookies name: __Secure-1PAPISID, __Secure-3PAPISID, __Secure-1PSID, __Secure-3PSID, __Secure-1PSIDCC, __Secure-3PSIDCC, __Secure-1PSIDTS, __Secure-3PSIDTS, ADS_VISITOR_ID, AEC, APISID, SAPISID, ar_debug, DV, HSID, SSID, SID, SAPISID, NID, SEARCH_SAMESITE, SIDCC, SOCS | Duration: from session to 2 years (dependant on cookies)
    • Domain: Meta | Cookies name: _fbp, c_user, date, fr, sb, xs | Duration: from 3 months to 2 years (dependant on cookies)
    • Domain: | Cookies name: twk_idm_key, TawkConnectionTime, twk_uuid*, | Duration: from session end to 6 months (dependant on cookies)
    • Domain: | Cookies name: PHPSESSID | Duration: until session ends
    • Domain: Google Tag Manager | Cookies name: _gcl_au | Duration: 3 months
  4. Administrator uses Own Cookies to:
    • Configurate website: recognizing device of website User, suitable website displaying, adjusting to his individual needs; font size, web page appearance.
    • Realization of processes necessary for full functionality of websites: adjusting content of web pages to User’s preferences and optimization of websites use. Those files enable to recognize basic parameters of User’s Device and display web page adjusted to its individual needs.
    • Analyses, researches and preview of viewership: making anonymous statistics, which are helping to understand, how Users use the website, what enables improving its structure and content.
    • Providing safety and reliability of web page.
  5. Service administrator uses Outside Cookies in following purposes:
    • collecting general and anonymous statistics mediated by analytic tools Google Adwords and Google Analytics.
    • using interactive functions to popularize web page via Meta services.
    • using interactive functions to popularize web page via YouTube services.
    • enabling the chat to work properly.
  6. User can manually and any time change Cookies settings, determining conditions of storage and gaining access via Cookies to User’s Device. Change of settings, referred in previous sentence, can be done in internet browser settings or via service configuration. Settings can be changed in such way, to block automatic Cookies support in browser settings or inform about each insertion on User’s device. Detailed information about possibility and ways how Cookies support works are available in software settings (internet browser).
  7. User can delete cookies at any time using available functions in internet browser that he is using.
  8. Restricting the use of Cookies may affect some functionalities available on the Website.

§ 4

  1. To use this service required are computer with Internet access, any internet browser, active and properly configured e-mail.
  2. Newsletter is free service, which consists of informing Users about bargains, contests, events, newnesses via periodic sending e-mails.
  3. Newsletter subscription consists of writing User’s e-mail address to form shared by Administrator on web page. Newsletter subscription by User constitutes User’s agreement on receiving free newsletter.
  4. User has right to resign from newsletter service at any time. Subscription can be cancelled by clicking on link “Resignation”, which is at the bottom of each e-mail.
  5. Deleting User’s e-mail address from newsletter address database is instant and is signalled with an announcement confirming the operation.
  6. By subscribing to the newsletter, the Customer consents to the Administrator sending advertisements and commercial information via the newsletter within the meaning of Art. 10 section 2 of the Act on the provision of electronic services to the User’s e-mail account.
  7. The Administrator reserves the right to delete an account whose user has violated the provisions of this § or the law in force in the Republic of Poland or takes actions that interfere with the uninterrupted use of the service by other users or provides illegal content.

§ 5
Processing of personal data

  1. The Personal Data Administrator processes personal data of customers, potential customers, website visitors, newsletter service subscribers in accordance with the provisions of the GDPR, ensuring proper data protection and the implementation of the rights of data subjects. Pursuant to Art. 13 section 1 and 2 GDPR:
  2. Personal data are processed only for the purposes for which they are collected by the Personal Data Administrator, including:
    • preparation, conclusion and execution of the contract;
    • advertising and marketing activities for products and services,
    • proper functioning of the website and social media accounts;
    • ensuring the safety of employees and property protection, as well as maintaining the secrecy of information the disclosure of which could expose the Personal Data Administrator to harm;
    • investigation and defense against claims.
  3. The legal basis for the processing of personal data depending on the processing context is:
    • consent to data processing referred to in Art. 6 section 1 letter a GDPR expressed in the manner and on the principles specified in Art. 7 section 1 GDPR, described in detail in the Regulations;
    • taking action at the request of the data subject before concluding the contract and its performance;
    • fulfillment of legal obligations imposed on the Personal Data Administrator under generally applicable law;
    • legally justified interests pursued by the Personal Data Administrator.
  4. Personal data will not be made available to entities other than those authorized by law. The recipients of personal data may be entities processing data at the request of and on behalf of the Personal Data Administrator, including entities providing desktop publishing services, IT system support, web server hosting, and legal advice.
  5. In connection with the publication of data on social media run by separate administrators (including Meta and YouTube administrators), these entities may act as joint controllers who independently determine the principles of data processing. These rules are available at:
  6. The data subject has the following rights under the GDPR:
    • the right to access personal data, including the right to obtain a copy of this data;
    • the right to request rectification (correction) of personal data;
    • the right to request the deletion of personal data if:
      • the data is no longer necessary for the purposes for which it was collected or otherwise processed,
      • the data subject has objected to the processing of personal data,
      • the data subject has withdrawn consent to the processing of personal data, which is the basis for data processing and there is no other legal basis for data processing,
      • personal data is processed unlawfully,
      • personal data must be deleted in order to fulfill the obligation arising from legal provisions;
    • the right to request restriction of the processing of personal data if:
      • the data subject disputes the accuracy of the personal data,
      • the processing of the data is unlawful and the data subject objects to the deletion of the data and requests their restriction instead,
      • The data controller no longer needs the data for the purposes indicated in point 2, but the data subject needs them to establish, defend or pursue claims,
      • the data subject has objected to the processing of data, pending the determination of whether the legitimate grounds of the controller override the grounds for objection;
    • the right to transfer data – if the following conditions are met:
      • data processing takes place on the basis of a contract concluded with the data subject or on the basis of the consent expressed by this person,
      • the processing is carried out in an automated manner;
    • the right to object to data processing if processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject.
  7. If data processing is based on the consent of the data subject, he or she has the right to withdraw this consent at any time. This withdrawal does not affect the compliance of processing carried out before the withdrawal of consent.
  8. The data subject has the right to submit a complaint to the supervisory authority in the manner and on the terms described on the website of the Office for Personal Data Protection at:
  9. Depending on the purpose and legal basis of processing, providing personal data may result from a legal provision or a concluded contract. Refusal to provide personal data may prevent the achievement of one or more of the processing purposes referred to in point 2.
  10. Personal data will be processed by the Personal Data Administrator for the period necessary to achieve the above-mentioned processing purposes, in particular for the period necessary to conclude and perform the contract, and then for the period of defense or pursuit of claims. The video monitoring recording will be processed in accordance with applicable regulations for a period of up to three months. However, in the case of data processing for a legitimate purpose, the data will be processed whenever an objection to processing is raised. Detailed information about the data processing period will be provided to the data subject immediately after receiving it by an authorized employee of the Data Controller. Such information can also be obtained from the Personal Data Protection Representative. This function is performed by Justyna Nowak, e-mail:
  11. The list of entities that process personal data at the request of or on behalf of the Data Controller is available at the headquarters and from the Personal Data Protection Representative.
  12. With respect to personal data, decisions will not be made in an automated manner, but they may be profiled in order to adapt the goods and services offered by the Data Controller.

§ 6
Image usage consent

  1. The Administrator disseminates the image of potential clients and customers in the manner and on the terms specified in the Regulations. The person depicted in the image is obliged to submit the appropriate permit referred to in Art. 81 section 1 Copyright.
  2. The permit is unlimited (including time and territory) and authorizes the Administrator to repeatedly publish and use photos or audiovisual materials in all fields of exploitation known at the time of granting the permit, in which the image is recorded.
  3. The permit authorizes the Administrator to grant, on behalf of the person depicted in the image, further use of the image recorded in photographs or audiovisual materials under the conditions specified in the permit to other entities freely selected by the Administrator (e.g. marketing agencies, IT service providers and those managing profiles on social networking sites – e.g. Facebook, Instagram, YouTube).
  4. The administrator has the exclusive right to decide on the form and time of use of the image – in its entirety or in the form of any fragments.
  5. Distribution of the image in accordance with the declaration of will does not involve the obligation to pay any remuneration or compensation to the person depicted in it or to any third party.
  6. Withdrawal of the permit referred to in point 1 does not affect the legality of the dissemination of the image that was made before its withdrawal.

Questions and comments should be reported directly via:

  • Contact form
  • e-mail:
  • telephone +48 729 086 390
  • Forwarding address:

Rest Lords Sp. z o.o.
st. Tarasa Szewczenki 7 loc.11
10- 274 Olsztyn, Poland

Contact us

Quick contact!

Questions? Doubts? Difficulties choosing a massage chair? Our experts are at your disposal.

Call us


Offer\Promotions Massage Chairs
Showrooms Rest Lords
In comparison:
Compare ×
Show comparison Continue shopping