Privacy Policy

I. PRIVACY POLICY

This privacy policy sets out how the company Dinedra d.o.o. (the controller) uses and protects the information and personal data that you provide when using the Bbalance.si website.

Dinedra d.o.o.
Dolenjska cesta 156B
1000 Ljubljana
Registration number: 2235170000
TAX number: 56001401
Telephone no.: 051 633 150
E-mail address: info@bbalance.si

Dinedra d.o.o. is committed to protecting your privacy. If we ask you for any information that can be used to identify you in the course of your use of this site, we assure you that it will be used in accordance with this privacy statement.

II. Management and processing of personal data

The Privacy Policy (together with our General Terms and Conditions), which is set out below, sets out the terms and conditions under which Dinedra d.o.o. uses and protects any personal data and other related information that you provide when using the Bbalance.si online shop.

By using the website, the user confirms that he/she accepts and agrees to the entire content of this Privacy Policy, unless additional forms of consent are required in individual cases. This Privacy Policy may be amended or supplemented at any time without prior notice or warning. By using this website after a modification or update, the user confirms that he/she accepts the modifications and updates.

III. What is the personal data you provide used for?

Personal data is collected for the purpose of the smooth execution of orders or offers, communication with the customer, statistical analysis in order to improve the functioning of the website and services and, if you give us your consent, information about our promotions on new products and special offers, which we send to you as notifications by e-mail until you request to unsubscribe.

In this context, the following data are collected:

  • IP address;
  • basic contact details (name, surname, address, telephone number, e-mail address);
  • the information we need to fulfil the contract and deliver the purchased goods (subject of purchase, price, delivery address, delivery time, payment method, payment date, details of complaints, invoice details, etc.);
  • the time and date of registration;
  • archive of communication with the online shop;
  • information about how you use our websites (links clicked, time spent) and information about how you respond to our emails (whether the email was opened, which links you clicked on);
  • cookies (you can read more about cookies here).

IV. Legal bases for the processing of personal data

We may process your personal data on the following legal bases:

  • where necessary to comply with our legal obligations (e.g. invoicing for goods purchased);
  • where the processing of your personal data is necessary for the conclusion and performance of a contract you have concluded with us or because you have requested a quotation from us;
  • where you have given your consent to the processing of your personal data for a specific processing purpose, in which case you always have the right to withdraw your consent;
  • where we have a legitimate interest in processing your personal data (when we send you an email in case you have left the shopping cart on our website without completing your purchase).

V. Purpose of data processing

The company will only use the collected visitor (user) data for the following purposes:

  • to communicate with you about the provision of our services and to respond to your enquiries;
  • to send invoices and bills in the event of an order received for products or services marketed through the website;
  • for keeping customer records;
  • for the realisation or delivery of the products or services requested;
  • to receive our newsletter (if the person has opted in to receive our newsletter) – see next paragraph for more information
  • to pursue any legal claims and settle any disputes;
  • for statistical and marketing analysis or research relating to website users in order to improve the products and services offered on the website (using analytical tools).

VI. Using your email address for sending newsletters and direct marketing

If the user gives consent, he/she confirms that Bbalance.si may use the personal data for direct marketing purposes, namely for sending e-newsletters and for the purposes of statistical and market analysis, marketing profiling and segmentation related to direct marketing. This way, we will make sure that you are always properly informed about our current offers, and that you are only informed about the product offers that best suit your preferences.

You expressly consent to direct marketing via email when you register and/or place an order on the website by ticking the “Sign up for our newsletter” box or by submitting the newsletter sign-up form located on the website. Otherwise, the customer will not receive direct marketing via email and will not be properly informed in advance of the provider’s online promotions.

Personal data will only be processed by the controller or by a person with whom the controller has a duly executed processing contract.

Consent may be withdrawn at any time by sending us an email to info@bbalance.si to unsubscribe from receiving the newsletter or by filling in the online form, the link to which is provided in each email received from the provider when direct marketing is carried out.

VII. Storage of personal data

The provider will only keep your personal data for as long as necessary to fulfil the purpose for which the personal data was collected and further processed.

We retain basic personal data for as long as you are a registered user of our websites.

We retain personal data processed on the basis of your consent permanently or until you withdraw your consent.

We keep records of invoices issued for 10 years from the date of issue.

We keep the data necessary for the conclusion and performance of the contract between you and us for 5 years after the performance of the contract (delivery of the goods).

After the expiry of the retention period, we effectively erase or anonymise the personal data, which means that we process it in such a way that it can no longer be associated with you or attributed to you.

VIII. Access to your data and contractual processing

We do not provide or make available your personal data to third parties outside the company Dinedra d.o.o., except to those who have a written contract with us or in cases where the data is requested by a competent state authority with a legal basis and in the event that there is a suspicion of business abuse by the user of the website.

As an individual, you acknowledge and agree that the provider may entrust certain tasks relating to your data to other persons (contractual processors). The contractual processors may process the entrusted data exclusively on behalf of the provider, within the limits of the provider’s authorisation (in a written contract or other legal act) and in accordance with the purposes defined in this privacy policy.

The contractual processors we work with are:

  • accounting services; law firms and other providers of legal advice,
  • IT systems maintainers,
  • email providers,
  • payment system providers,
  • providers of online advertising solutions,
  • delivery services.

The provider will not pass on your personal data to unauthorised third parties.

Contractual processors may only process personal data under the controller’s instructions and may not process personal data for their own purposes. They are committed, together with their employees, to protecting the confidentiality of your personal data.

Contractual processors do not export personal data to third countries (outside the Member States of the European Economic Area – these are EU Member States plus Iceland, Norway and Liechtenstein).

IX. Exclusion of liability

The provider shall not be liable for any damage caused to the user as a result of the user providing the provider with incorrect, incomplete or inaccurate information relating to the user at the time of registration.

X. Rights of users or customers under the GDPR General Regulation

In order to ensure fair and transparent processing, you have the following rights as a user under the regulations:

1. Right to withdraw consent

If you, as a user, have consented to the processing of your personal data (for one or more specific purposes), you have the right to withdraw your consent at any time, without affecting the lawfulness of the processing of the data carried out on the basis of your consent up to the time of withdrawal.

2. Right of access to personal data

As a user, you have the right to obtain confirmation from the provider (the personal data controller) as to whether personal data is being processed in relation to you and, where this is the case, access to personal data and certain information.

3. Right to rectification of personal data

As a user, you have the right to have inaccurate personal data concerning you corrected by the provider without undue delay. As a user, you have the right, taking into account the purposes of the processing, to have incomplete data completed, including by submitting a supplementary declaration;

4. Right to erasure of personal data (“right to be forgotten”)

As a user, you have the right to have your personal data erased when there is no longer a legitimate reason for further processing.

Prevention of processing may be possible in specific circumstances:

when the processing is no longer necessary in relation to the purpose of the collection and processing; when the user withdraws consent to the processing;

where the user objects to the processing and there are no overriding legitimate grounds; where the processing was unlawful;

where erasure is necessary to comply with a legal obligation (EU or Member State law); where the processing is related to the provision of information society services to the child.

5. The right to restriction of processing

As a user, you have the right to have the provider restrict processing where one of the following applies:

if you, as a user, dispute the accuracy of the personal data;

where the processing is unlawful and you, as the user, object to the erasure and request a restriction of use;

when the data is no longer necessary for the purpose of the processing and you, as the user, need it to assert legal claims.

6. Right to data portability

As a user, you have the right to receive personal data relating to you that you have provided to the provider in a structured, commonly used and machine-readable format.

7. Right to object to processing

As a user, you may object to processing in the case of processing for the performance of a task carried out in the public interest or in the exercise of official authority and direct marketing (including profiling).

8. Right to lodge a complaint with the supervisory authority

As a user, you have the right to lodge a complaint with a supervisory authority, in particular in the country in which you are habitually resident, where you work or where the alleged infringement took place (in Slovenia, the Information Commissioner), if you consider that the processing of personal data concerning you violates data protection rules.

XI. Procedure for exercising rights

You may address your requests concerning the exercise of your rights relating to personal data in writing to the controller’s e-mail address, info@bbalance.si.

We may request additional information from you for the purposes of reliable identification in the event that you exercise your rights in relation to personal data, but we may refuse to take action only if we can demonstrate that we cannot identify you reliably.

We must respond to your request to exercise your rights in relation to personal data without undue delay and at the latest within one month of receiving your request.

XII. Safety

All information provided is protected against third party intrusion, which ensures you a smooth and uninterrupted transaction with the provider. Protecting the personal data of our users is an important concern for our company. Your data is protected at all times against loss, destruction, falsification, tampering, manipulation and unauthorised access or unauthorised disclosure. The provider shall take various measures and information mechanisms to ensure the smooth operation of the website and the security of data transmission on the website.

XIII. Links to other pages

Our website may contain links to other websites. If you click on any of these links to leave our site, please be aware that we have no control over that other site, and they are not subject to our privacy policy. Their own privacy policies will apply to your personal data, which may differ from ours.

XIV. Publication of changes

Any changes to our privacy policy will be posted on this website. By using the website, the individual acknowledges that he or she accepts and agrees to the entire content of this Privacy Policy.

XV. Final provisions

Legal relations between users and the provider are governed by the law of the Republic of Slovenia and the law of the European Communities. The competent court for the settlement of any disputes shall be the Court of Ljubljana, Republic of Slovenia.

Updated: 25/09/2023

 

 

Articles
  • 12.10.2023

    Fat burning with kinesio tapes

  • 11.10.2023

    Plaster for knees. All about taping for pain in 2023