Processing manager
- Bioeterica d.o.o.
- Franje Hermana 17i, Zagreb, Republic of Croatia
- OIB: 18266712979
- e-mail: contact@bioeterica.hr
Bioeterica d.o.o. attaches great importance to the protection of personal data, and we process your personal data in accordance with the principles of the European Union Data Protection Regulation 2016/679.
This statement refers to data protection and the use of cookies on the website https://www.bioeterica.hr/
The data protection statement applies from the date of publication, we will inform you about significant changes in this statement on the home page of our website or via e-mail.
We only collect data that is necessary to achieve the purpose of processing, and we protect your data in an appropriate manner against misuse and loss.
Hereby we would like to inform you about:
- what data we collect, for what purpose, what is the legal basis of processing, how long we keep it
- about the use of cookies
- how we protect your data
- to whom we transfer your data and for what purpose
- what are your rights and how can you exercise them
Our services are intended for people over the age of 16, if we determine that we are collecting data from people under the age of 16, we will remove them from our system.
Links on our pages may lead to pages that are not owned and controlled by the Controller, please inform yourself about data protection on such pages.
What data and how do we collect, for what purpose, legal basis, how long do we keep it?
1. When accessing and using the website, we automatically collect: IP address from which you accessed, address of the website from which you came, time and duration of access, which pages on our portal you opened and details about the browser you use, language settings, cookies and trackers.
We use this data for the purpose of:
Website usage analysis, which allows us to improve our website:
- The legal basis of the processing is the legitimate interest of the controller.
- We collect your cookie which enables us to recognize your computer
- You can always limit the setting and processing of cookies
- The data is kept for 26 months, if you delete the cookie we can no longer identify you.
Correct operation and easier use of the site
- The legal basis of the processing is the legitimate interest of the controller.
- We collect your cookie which enables us to recognize your computer
- You can always limit the setting and processing of cookies
- The data is saved until you delete it in your browser or until the cookie expires.
For the purpose of protecting the website and solving problems in the operation of the site:
- The legal basis of the processing is the legitimate interest of the controller.
- We share this data with the provider of IT services hosting and site maintenance
- The data is stored in the server records for no longer than 26 months
2. When sending an inquiry using the web form on the page, we collect directly from you: e-mail address and content of the inquiry.
We use this data:
- For the purpose of providing information and communication related to your inquiry.
- The legal basis of the processing is the legitimate interest of the controller.
- Data is kept for 2 years.
Your inquiry may refer to the provision of services for which we need additional data, in which case we will inform you about data protection related to the necessary processing for the provision of such a service.
3. When sending an inquiry by e-mail, we collect directly from you: e-mail address and the data you enter in the inquiry.
We use this data for the purpose of providing information and communication related to your inquiry
- The legal basis of the processing is the legitimate interest of the controller.
- Data is kept for 2 years.
4. When complaining about our service, we collect directly from you: first and last name, e-mail address, country address and telephone number.
We use this data for the purpose of resolving a written complaint about our service
- The legal basis for processing is a legal obligation (Act on Consumer Protection)
- Data is kept for 2 years.
5. When registering to use our services, we collect your first and last name, e-mail address, phone number, address, ID number directly from you.
Registration is not necessary for shopping, and we use the data:
For a better user experience: quick and easy shopping and payment, access to your archive and order status, and storage of shipping and billing addresses:
- The legal basis of processing is legitimate interests
- The data is kept until your request to close the user account and delete the data, in accordance with legal obligations
6. When shopping, we collect your first and last name, e-mail address, phone number, and delivery address directly from you. If you are a registered user, we pull the data from your user profile.
These data are mandatory and we are unable to provide you with the service if we do not collect them.
We use data:
For the purpose of shopping
- The legal basis of the processing is the contract.
- The data is kept until your request to delete the data, and it is deleted after the expiry of the legal storage period (2 years).
- The legal basis of the processing is the contract.
- The data is kept until your request to delete the data, and it is deleted after the expiry of the legal storage period (2 years).
If you enter data that is not yours for delivery, you are obliged to inform the owner of the data and do so with his consent.
7. When paying online, the payment card owner's data, which are necessary to carry out authorization and payment. This data is collected and processed directly by the online payment service provider, and the data controller does not have access to this data.
We do not process profiling and make automated decisions based on profiles.
8. When signing up to receive notifications (newsletters), we collect your email address directly from you.
We use this data:
For the purpose of providing information and communication related to your inquiry.
- The legal basis of the processing is the consent you give when registering and you can withdraw it at any time.
- We share this data with the service provider MailChimp and the data is located in the USA.
- Data is kept until consent is withdrawn.
Use of cookies and tracking technologies
On our websites, we use cookies and tracking technologies to enable the correct operation of the site and easier use, to analyze the use and behavior of the site, and to show you ads that interest you.
1. What are cookies?
Cookies are small files that we place in your browser when you visit the site and enable us to recognize you when you visit the site again. They contain small amounts of data and do not contain personal data that you enter when using the services on the site.
The cookies that are stored can be temporary (they are stored only during the visit to the website) or permanent cookies that remain stored on the visitor's computer even after the visit.
2. Deleting and blocking cookies
When you visit our site, we ask for your permission to set cookies, if you do not accept the setting of cookies, we will set only those cookies that are necessary for the site to work properly.
If you do not want or do not agree with their use, you can delete all cookies or completely block the use of cookies in your browser, and instructions on how to do this in your browser can be found on the links:
- Google Chrome
- Mozilla Firefox
- Safari
If you delete or disable the use of cookies, we cannot enable the proper functioning of some parts of the website.
Necessary and functional cookies
For the purpose of proper functionality, we use cookies from the Magento system, a content management system.
Third party cookies
Analytical
Service provider: Google Analytics:
- You can find the privacy policy at https://policies.google.com/privacy?hl=hr
- You can limit the processing https://tools.google.com/dlpage/gaoptout
Targeted third-party advertising
Service provider: Google Adwords
You can find the privacy policy at the link https://policies.google.com/privacy?hl=hr
You can limit the processing at the link https://adssettings.google.com/authenticated?hl=hr
Service provider: Facebook (Facebook Pixel)
You can find the privacy policy at the link https://www.facebook.com/privacy/explanation
Facebook collects data about your interests and connects them with your data saved in your Facebook profile.
You can limit the processing at the link https://www.facebook.com/ads/preferences/
Deleting and blocking cookies
When you visit our site, we ask for your permission to set cookies, and if you do not accept the setting of cookies, we will set only those cookies that are necessary for the proper operation of the site.
If you do not want or do not agree with their use, you can delete cookies or you can completely block the use of cookies in your browser.
Instructions for your browser can be found on the links:
- Google Chrome https://support.google.com/chrome/answer/95647?hl=en-GB
- Internet Explorer https://support.microsoft.com/en-in/help/17442/windows-internet-explorer-delete-manage-cookies
- Mozilla Firefox https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
- Safari https://support.apple.com/en-in/guide/safari/manage-cookies-and-website-data-sfri11471/mac
Instructions on how to turn off cookies for different services can be found at the links:
- http://www.allaboutcookies.org
- http://www.youronlinechoices.eu
If you delete or disable the use of cookies, we cannot enable the proper functioning of some parts of the website and procedures for which cookies are required.
How you can turn off cookies for different services can be found on the links:
- http://www.allaboutcookies.org
- http://www.youronlinechoices.eu
How we protect your data
We undertake and continuously improve appropriate technical, organizational and personnel measures with the aim of protecting collected personal data and preventing unauthorized access to personal data or their loss.
Access to the website is protected by a secure protocol (HTTPS) against data theft, with an appropriate level of encryption.
Data on computer servers are stored in a controlled, secure environment, protected from unauthorized access and abuse.
Only authorized persons of the data controller and service provider have access to the data. All persons who have access to personal data are contractually obliged to keep personal data confidential.
To whom we transfer your data and for what purpose
The controller does not distribute, rent or in any other way share your data with third parties, except for the purpose of processing as stated in the Data Protection Statement.
The data is transferred to providers of IT services and services for the analysis of website visits and use.
We can use external agencies in Croatia for market research.
The data that we transmit are only those that are necessary to provide the service of the third party, which is contractually obliged to use it only for the purpose of the contract.
What are your rights and how can you exercise them
You have the right to request access to personal data, correction or deletion of personal data, limit the processing of your data, as well as the right to object.
For processing that is based on the legal basis of consent, you can withdraw consent at any time, in whole or in part, however withdrawal of consent does not affect the legality of personal data processing until the moment of withdrawal of consent.
In the case of a request for data deletion, we will inform you whether there is an obligation to save data and which data we are unable to delete, as well as the deadline and legal basis for data storage.
You can exercise all rights arising from the Regulation by sending a request for the exercise of rights to contact@bioeterica.hr.
You can also withdraw your consent to receive notifications via e-mail through the link we send you in every e-mail.
The processing manager will respond to your request within one month of receiving it, and depending on the complexity of the request, the deadline may be extended by an additional two months.
If we are not able to confirm that you are the owner of the personal data to which your request refers, we will not be able to fulfill your request.
In the event that you believe that your rights have been violated, you have the right to file a complaint with the supervisory body - the Personal Data Protection Agency.
For any additional information related to data protection, you can always contact us at the published contacts of the data controller.
Publication date: June 3, 2020.