Privacy Policy

Privacy Policy

DISCLAIMER! IF YOU DO NOT WISH THE COMPANY TO COLLECT AND PROCESS YOUR DATA AT ALL, PLEASE DO NOT USE THE WEBSITE.

For your convenience, the contents of this Policy are listed below:

  1. General Information
  2. Age Restrictions
  3. Questions Regarding This Policy
  4. List of Data the Company Collects About Users and How
  5. Processing of Personal Data and Its Consequences
  6. Grounds for Collecting and Processing User Data
  7. Purpose of Collecting and Using User Data
  8. Term of Personal Data Storage
  9. Transfer of Personal Data
  10. User Rights Regarding Personal Data (Right to Withdraw Previously Granted Consent to Personal Data Processing)
  11. Right to Lodge a Complaint with a Supervisory Authority
  12. Right to Access Information
  13. Right to Receive a Copy of Your Data
  14. Right to Change Information About Yourself
  15. Right to Erasure (Right to Be Forgotten)
  16. Response to Personal Data Request
  17. Cost of Requests
  18. Changes to the Policy
  19. Company Contact Details
  20. Other

1. GENERAL INFORMATION

1.1. This Privacy and Personal Data Protection Policy (hereinafter – the “Policy”) establishes the procedure for the Company’s processing of personal data, the types of personal data collected, the purposes of using such personal data, the Company’s interaction with third parties, security measures for personal data protection, conditions for access to personal data, as well as contact information for the User to access, amend, block, or delete their personal data and to address any questions the User may have regarding personal data protection practices.

1.2. The terminology used in this Policy has the same meaning as in the User Agreement, unless otherwise stated.

1.3. Individual Entrepreneur Shevchuk Anatoliy (hereinafter also the “Company”), understanding the importance of ensuring the confidentiality and integrity of personal data, commits to protecting the personal data of all individuals who have visited the Website, and therefore seeks to protect the confidentiality of personal data (information or a set of information about a natural person who is identified or can be identified), thereby creating and ensuring the most comfortable conditions for the User to use the Website’s functionality.

1.4. The User does not have the right to use the Site’s functionality and the services provided by the Site (hereinafter – the “Services”) if they disagree with the terms of this Policy and must immediately cease using the Site in the event of such disagreement.

1.5. The Company has prepared this Policy considering the latest changes in legislation regulating personal data protection, in particular the Law of Ukraine “On Personal Data Protection” and the principles and rules of the European Union’s General Data Protection Regulation (GDPR) concerning Website Users.

1.6. To update, access, amend, block, or delete your personal data, withdraw consent to personal data processing that you have granted to the Company in accordance with this Policy, or in case of any comments, suggestions, or claims regarding your personal data processed by the Company, please contact the Company via the Website’s technical support department or the authorized person whose contacts are provided in clause 19.3 of the Policy.

1.7. The User acknowledges that in case of their negligent attitude towards the security and protection of their data and information, as well as authorization data (password, login), third parties may gain unauthorized access to the User’s account and data. The Company is not responsible for damages caused by such access.

2. AGE RESTRICTIONS

2.1. By registering and using the Site, the User confirms that they have reached the age of 18, which is the age with which the law associates the acquisition of full legal capacity, including the right to independently conclude transactions.

2.2. By registering and using the Site, the User confirms that they have reached the age of 18, which is the age that allows independent consent to personal data processing.

3. QUESTIONS REGARDING THIS POLICY

3.1. In case of any questions regarding this Policy (some provisions are unclear, some provisions cause concern), the Company encourages the User to contact the Company via the Website’s technical support department or the authorized person whose contacts are provided in clause 19.3 of the Policy for clarification.

3.2. The Company will be grateful for any User feedback regarding this Policy, as all feedback helps improve this Policy and make it clearer and more transparent for all Users.

4. LIST OF DATA THE COMPANY COLLECTS ABOUT USERS AND HOW

4.1. The Company obtains personal data about Users in several ways:

4.1.1. directly from Users;

4.1.2. as a result of Users’ use of the Site and as a result of monitoring Users’ activity on the Site;

4.1.3. from third parties.

4.2. Detailed description of the methods of obtaining information about Users.

4.2.1. The Company collects information that the User independently provides or fills in. For example, when the User registers on the Site and during registration or subsequently fills in information about themselves in their personal account, the Company collects the following data about:

4.2.1.1. the User’s first and last name;

4.2.1.2. the User’s date of birth;

4.2.1.3. the User’s email address (e-mail);

4.2.1.4. the User’s phone number;

4.2.1.5. the User’s communication language;

4.2.1.6. the User’s avatar;

4.2.1.7. the delivery address for the User’s orders.

4.2.2. The Company also collects data and information that the User provides when contacting the Website’s technical support department, through communication channels with the Site to resolve any issues that may arise during the use of the Site’s functionality.

4.3. The Company collects information when the User uses the Site, by monitoring the User’s behavior on the Site.

4.4. When the User uses the Site’s functionality, the Company collects and processes the following data and personal information:

4.4.1. about the User’s location. When the User creates an account and/or uses the Website’s functionality, the Company collects information about their location using various technologies, including GPS and the User’s IP address. The Company analyzes where the User spends the most time geographically.

4.4.2. about the User’s device. When the User creates an account and/or uses the Site, the Company collects information about the device from which the User created the account and/or accesses the Site, including data on the device model, data on the operating system version embedded in the device, information about the device’s language, the screen format on the device, and the unique device identifier. The Company also collects information about the device’s memory capacity, applications installed on the device, browser type, information about the connection of other devices to the device, time zone, and device charge level, information about the device’s connection to wireless or mobile networks.

4.4.3. about the User’s activity on the Site. When the User uses the Site, the Company collects information about how much time the User spent on the Site, the time and date of the last visit to the Site, data about Users who verified the User, a list of Users with whom the User interacted, including exchanging files, verifying, and corresponding. The Company also collects information about which pages and functions on the Site the User used most frequently, and which advertisements the User viewed.

4.5. Information obtained through Cookies. When the User visits the Website, the Company uses Cookies on this Site.

4.6. The Company also collects other information that the User posts, distributes, and creates on the Site.

4.7. The Company collects information about the User’s activities. In particular, the Company collects information for analytical purposes (including to provide the User with analytics) regarding offers for the sale of goods/services, the effectiveness of transactions for the sale of goods and/or services, regarding advertising campaigns and their effectiveness, in order to provide the User with opportunities and tools to improve activities and develop new services. The Company also collects, stores, and analyzes all data related to the sale, deposit, and withdrawal of funds recognized as legal tender by at least one country in the world, and electronic money.

4.8. The Company may receive information about the User from third parties, for example, certain information about the User may be obtained from third-party organizations with whom the Company integrates its services or who provide the Company with certain analytical services, or from advertisers with whom the Company cooperates.

4.9. The Company does not process data related to racial, national origin, political views, religious and other beliefs, or membership in public organizations. Information that characterizes the physiological characteristics of Users, based on which their identity can be established, is also not processed. Please note! As of a certain date, not all User data specified in this Policy is necessarily processed. The User has the right to find out the exhaustive list of data that the Company possesses about them as of the current date, by exercising their right to access information about the User.

5. PROCESSING OF PERSONAL DATA AND ITS CONSEQUENCES

5.1. When using the Internet, safety should always be kept in mind, and using the Company’s Site is no exception. Please note that in the event of account deletion, certain User data will remain in the Company’s system in an anonymized form, meaning they will be stored in a way that prevents User identification. This is necessary so that the Company can check whether such a User has registered before, and exclusively to prevent fraud when a User who violated the Company’s Site usage rules and whose account was deleted attempts to re-register on the Site. By retaining such data, the Company relies on its legitimate interest.

6. GROUNDS FOR COLLECTING AND PROCESSING USER DATA

6.1. The Company collects and processes User data based on the following grounds:

6.1.1. Conclusion of a contract between the User and the Company. By registering and using the Site, the User accepts the terms of the offer posted on the Site, which confirms the conclusion of the service agreement;

6.1.2. Actual use of the Site’s functional capabilities by the User without prior registration (including, but not limited to: viewing product offers, placing an order without registration, writing comments and requests, etc.).

6.1.3. Legitimate interest of the Company and the legitimate interest of a third party. The Company uses legitimate interest to process User data, for example, when the Company processes User data to eliminate defects in the Site’s operation and ensure smooth operation, improve and enhance the Site’s operation, develop and create new functions and services, ensure the security of Site Users and the safe operation of the Site, and transfer certain information upon the request of intellectual property owners who claim that a specific User has posted illegal content;

6.1.4. The Company may process User data if required by legislation that applies to the Company’s activities. For example, the Company may provide data about Users upon the request of judicial authorities, authorized law enforcement agencies, or when collection and identification are required by financial monitoring and anti-money laundering regulations, or other applicable legislation.

7. PURPOSE OF COLLECTING AND USING USER DATA

7.1. The Company collects and processes personal data about Users for the following purposes:

7.1.1. directly for the operation of the Site and for providing the relevant Services to Users;

7.1.2. eliminating defects in the Site’s operation and ensuring smooth operation;

7.1.3. improving and enhancing the Site’s operation, and developing and creating new functions and services;

7.1.4. ensuring the security of Users and the safe operation of the Site;

7.1.5. performing profiling of the User and making automated decisions based on it (including fully automated decisions);

7.1.6. performing profiling of the User and using the User’s profile for the purpose of displaying targeted advertising;

7.1.7. for advertising and marketing campaigns;

7.1.8. for fulfilling legal requirements and demands of third parties (including applications, complaints, lawsuits from intellectual property rights holders);

7.1.9. for monitoring Users’ compliance with the Site usage rules;

7.1.10. for the possibility of establishing direct communication with the User.

8. TERM OF PERSONAL DATA STORAGE

8.1. The Company stores Users’ personal data only as long as they are needed for the purposes specified in this Policy. The latter also applies to any other third party performing certain actions on behalf of the Company. If the Company no longer needs certain User data and they do not need to be stored in accordance with legal requirements, the data will be deleted or stored in a way that User identification is impossible.

9. TRANSFER OF PERSONAL DATA

9.1. Regardless of the method and grounds of receipt, the Company may transfer User data to:

9.1.1. Third-party processors, i.e., persons through whom the Company collects, stores, analyzes, structures, and otherwise retains and processes information;

9.1.2. Third parties with whom the Company integrates, i.e., combines certain products and services;

9.1.3. Third-party advertisers, in which case the information is provided in a summarized and aggregated form and makes it impossible to identify a specific person;

9.1.4. its subsidiaries and affiliated companies if available;

9.1.5. Other Users who receive certain information about Users through the information displayed in the User’s profile (e.g., information on when the User last used the Site’s functionality);

9.1.6. Third parties in case of a legal basis (e.g., disclosure of certain contact information about a User who disseminated unlawful content, at the request of the copyright holder of such content);

9.1.7. Third parties in the event of mergers and acquisitions with the Company;

9.1.8. Government agencies and judicial authorities in case of a legal basis and a corresponding request.

9.2. In certain cases, to demonstrate the effectiveness of the Website’s operation and increase the Site’s reputation, the Company may disclose the Site’s operating statistics to Users, without disclosing personal data and information that constitutes a commercial secret.

9.3. The Site contains links to other web resources to which this Policy does not apply.

9.4. The Company reserves the right, in accordance with the requirements of the current legislation of Ukraine, to exchange received information with state authorities for the purpose of: preventing fraud on the Site; resolving disputes and clarifying circumstances that are/may become the cause of violation of current legislation, as well as in case the Company detects illegal actions of Site Users and/or receives claims, complaints, or appeals from third parties.

10. USER RIGHTS REGARDING PERSONAL DATA (RIGHT TO WITHDRAW PREVIOUSLY GRANTED CONSENT TO PERSONAL DATA PROCESSING)

10.1. The User has the right to withdraw consent to personal data processing by contacting the Site’s technical support department, after which the Site Administrator will delete all personal data about such a User from the User’s Personal Account.

10.2. By withdrawing consent to data processing, the User will still be able to use the Site, but certain functionality may be unavailable.

10.3. If the User does not wish the Company to process their personal data for any purpose, the User can freely contact the Website Administrator and send a request to the Company to delete their personal data. The deletion of personal data is carried out within 3 (three) days after the Company receives such a request. The User is notified of the complete deletion of data from the Website by the Site’s technical support department upon the presence of a corresponding request (appeal) from the User.

10.4. Please note that in the event of account deletion, certain User data remains in the Company’s system in an anonymized form, meaning they will be stored in a way that prevents User identification. This is necessary so that the Company can check whether such a User has registered before and exclusively to prevent fraud when a User who violated the Site usage rules and whose account was deleted attempts to re-register. When retaining such data, the Company will rely on its legitimate interest.

11. RIGHT TO LODGE A COMPLAINT WITH A SUPERVISORY AUTHORITY

11.1. If the User believes that the Company is violating their personal data rights, the User has the right to lodge a complaint with the authorized body.

12. RIGHT TO ACCESS INFORMATION

12.1. The User has the right to access the data that the Company collects about them. To exercise this right, the User must contact the Website’s technical support department.

12.2. The Company may offer the User to undergo additional verification or authentication procedures to ensure that the information is provided to the rightful User.

12.3. The Company fulfills such requests free of charge, but misuse by the User may lead to the Company refusing to fulfill the request or asking for a certain fee from such a User.

13. RIGHT TO RECEIVE A COPY OF YOUR DATA

13.1. The User has the right to download a copy of all data that the Company collects about them based on the granted consent and based on the agreement that exists between the User and the Company. To exercise this right, the User must contact the Website’s administration. The Company may carry out additional verification or authentication procedures of the User to ensure that the data is provided to the rightful User.

13.2. The Company fulfills such requests free of charge, but misuse by the User may lead to the Company refusing to fulfill the request or asking for a certain fee from such a User.

14. RIGHT TO CHANGE INFORMATION ABOUT YOURSELF

14.1. The User has the right to change data about themselves if the data held by the Company is outdated or inaccurate. The User can change information about themselves in the settings.

15. RIGHT TO ERASURE (RIGHT TO BE FORGOTTEN)

15.1. In accordance with current data protection legislation, including the GDPR and the Law of Ukraine “On Personal Data Protection”, you have the right to request the erasure of your personal data under certain circumstances, for example, when:

15.1.1. personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;

15.1.2. you withdraw your consent on which the processing is based, and there is no other legal ground for the processing;

15.1.3. you object to the processing, and there are no overriding legitimate grounds for the processing;

15.1.4. the personal data have been unlawfully processed;

15.1.5. the personal data have to be erased for compliance with a legal obligation.

15.2. To submit a request for the erasure of your personal data, send an email to “info@west-station.com” from the email address associated with your account. Please include in your email:

15.2.1. a clear statement that you are requesting the erasure of your personal data;

15.2.2. the reason for your request with a reference to the applicable legal basis (e.g., withdrawal of consent, objection to processing);

15.2.3. your account identifier (e.g., “ID: 000000”). We may request additional information to confirm your identity and process your request.

15.3. We will process the request within 30 days of such receipt, in accordance with clauses 16.1, 16.2 of the Policy. If we need additional time, we will inform you of the reason and the duration of the extension. After verifying your request and confirming the absence of legal grounds for retaining your data, we will erase your personal data without undue delay. We will also notify you when the erasure is complete.

15.4. Please note that there are certain circumstances where we may be legally obliged or have a legitimate permission to retain some of your personal data, even if you request its erasure. These exceptions may include:

15.4.1. to comply with a legal obligation;

15.4.2. for the establishment, exercise or defence of legal claims;

15.4.3. for reasons of public interest in the area of public health;

15.4.4. for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes. If we are unable to erase your personal data due to an exception, we will inform you of the reason and the legal basis for retention.

15.5. In some cases, instead of completely erasing your data, we may anonymize them. This means that any personally identifiable information will be removed from your data, making it impossible to link the data back to you. We may retain anonymized data for statistical, research, or other legitimate purposes.

15.6. Even if your account is deleted, we may retain certain anonymous data to prevent fraud and ensure platform integrity. This includes data related to previous violations of terms of use or attempts to create multiple accounts. The retention of such data is based on the legitimate interest in preventing fraudulent activity.

15.7. Please note that this section only applies to the personal data we collect and process directly. If you have transferred your data to third parties through our platform (e.g., by connecting your Facebook account), you will need to contact those third parties directly to request the erasure of your data. We are not responsible for the use of data by third parties.

16. RESPONSE TO PERSONAL DATA REQUEST

16.1. As a general rule, the Company processes and responds to User requests within 30 calendar days from the moment the corresponding request is received. 166.2. In certain cases (e.g., for technical reasons or a large number of requests), this period may be extended by two months, but in any case, the User will be notified of such extension and the reasons for the extension within 30 calendar days following the day the request from the User was received.

17. COST OF REQUESTS

17.1. Responses to requests regarding Users’ personal data are provided by the Company free of charge, without charging any fee for this. However, we note that if the Company has sufficient grounds to believe that the requests are submitted in bad faith, the Company reserves the right to refuse to fulfill such requests. In any case, the Company will respond to the request within 30 calendar days from the moment the corresponding request is received.

18. CHANGES TO THE POLICY

18.1. The Company has the right to make changes to this Policy without prior notice and obtaining additional consent from Website Users. All changes made to the Policy will be available in the form of a new version of the Policy published on the Website.

18.2. The current version of the Policy is available at the link: https://west-station.com/privacy-policy/

18.3. All changes to the Policy come into force from the moment of their publication on the Website.

18.4. By using the Services or the Portal, the User confirms agreement with the new terms of the Policy in the version effective at the time of using the Portal.

19. COMPANY CONTACT DETAILS

19.1. The rights to “west-station.com” belong to the Individual Entrepreneur Shevchuk Anatoliy which is registered in accordance with the legislation of Ukraine. The Company is the controller regarding the personal data of Site Users, i.e., it determines what data to collect about Site Users and for what purpose to use this data.

19.2. In case of questions, the User can always contact the Company via the Website’s technical support department.

19.3. If necessary, the person responsible for the collection, processing, and storage of personal data can be contacted by sending a corresponding request to the email address: info@west-station.com

20. OTHER

20.1. This Policy enters into force from the moment of publication on the Website. The text of this Policy is set out in English.

Shopping Cart