Personal data – any information relating to an identified natural person or an identifiable natural person.
Processing – any action or set of actions performed in Personal data or a set of personal data.
Data bearer – a natural person whose Personal data is processed.
DPO – Data Protection Officer.
Principles of data protection
We promise to be guided by the following data protection principles:
Processing is legal, fair, and transparent. Processing activities have a legal basis. We will provide you with information regarding on-demand processing.
Processing is limited by its purpose. Our processing activities are consistent with the purpose for which personal data was collected.
We collect and process the minimum amount of your personal data required for any purpose.
We will not keep your personal information longer than necessary.
We will do our best to ensure the accuracy, security, and integrity of the data.
User rights regarding personal data
The data subject has the following rights:
Right to information – the user has the right to know whether his private data is processed, what data is collected, where it is obtained and why and by whom it is processed.
Right of access to data – means that the user has the right to access data collected about them and from them. This includes the right to request and obtain a copy of the collected personal data of the user. The user can request access to copies of their data in machine-readable format via e-mail email@example.com.
Right to rectification of data – means that the user has the right to rectify personal data that is inaccurate or incomplete. The user can request the correction of personal data by contacting DPO via e-mail firstname.lastname@example.org.
Right to delete data – implies that in certain circumstances the user may request the deletion of personal data from our records. The user can do this via e-mail email@example.com.
The right to restrict the processing of data – means that if certain conditions are met, the user has the right to restrict the processing of personal data. In that case, they can contact our DPO via e-mail firstname.lastname@example.org.
Right to object to data processing – means that in certain cases the user has the right to object to the processing of personal data, for example in the case of direct marketing. In that case, they can contact our DPO via e-mail email@example.com.
Right to appeal – in the event that we reject the user’s request, guaranteed the right of access, we will provide the user with the reason why this happened. If the user is not satisfied with how his request is treated, he can contact our DPO via e-mail firstname.lastname@example.org.
Right to withdraw consent – the user has the right to withdraw any consent to the processing of personal data.
What personal information we collect about the user
Information provided by the user himself/herself
This can be an e-mail address, name, telephone, delivery address or information that is necessary to deliver the product / service to the user or to improve user experience. We store the information so that users can comment or perform other activities on the site. This information includes the user’s name and e-mail address.
Information automatically collected about the user
Information that is automatically saved via cookies or other tools. This includes, for example, information about the user’s shopping cart, their IP address, purchase history etc. This information is used to improve user experience. When and if a user uses or views the content of our site, those activities must be reported.
Information from our partners
We collect information from verified partners with confirmation that they have a legal basis to share that information. This is either information that you have provided directly to them, or they have gathered on other legal grounds.
Publicly available information
We may collect information about you that is publicly available.
When visitors write a comment on a web page, we collect information displayed in the form of a comment, the IP address of the visitor, as well as the string of the browser’s user agent to make it easier to detect spam.
When a user contacts us via the contact form on the website, we use this information exclusively so that users can respond to their inquiries in a quality manner. The data from the contact form is kept for one year after their receipt and is then irrevocably deleted.
Embedded content from other websites
Articles on this website may contain embedded content (e.g. videos, images, articles, etc.). Embedded content from other web pages behaves in the same way as if a visitor had visited that other web page.
How we use user private data
We use user personal data in order to:
provide a service (this includes receiving orders on our web shop, communication about orders, notifications of changes in the way of doing business)
improve the user experience
fulfill obligations under the law or contract
We use your personal information for legitimate reasons and / or with your consent.
Based on the conclusion of the contract or fulfillment of contractual obligations, we process user data for the following purposes:
to identify the user
to provide a service to the user or to send / offer them products
to communicate with the customer for sales, complaints, or billing.
Based on a legitimate interest, we process user personal data for the following purposes:
to send the user offers specifically created for them (ours and / or from our carefully selected partners)
to administer and analyze our customer base in order to improve the quality of products and services, and the availability and breadth of the range of products we offer
to conduct customer satisfaction surveys.
Until the customer informs us otherwise, we strive to offer them products and services that are similar to those of the past purchase search in accordance with our legitimate interest.
With the user’s consent, we process personal data for the following purposes:
to send newsletters and offers (ours and / or from our carefully selected partners)
for all other purposes for which we have requested the user’s consent.
We process the user’s personal data in order to fulfill the obligation arising from the law and / or use the user’s personal data for the options provided by law. We reserve the right to anonymity of the collected personal data and the use of such data. We will use data outside the scope of the Policy only when it is anonymous. We store your payment information and other information collected about you for as long as necessary for accounting purposes or other obligations arising from the law, but no longer than that.
We may process the user’s personal data for additional purposes, but that they are consistent with the original purpose for which the data was collected. To do this, we ensure that:
the link between the purpose, context and nature of personal data is conducive to further processing
further processing will not harm your interests in any way
there would always be some protection for processing.
We will always inform the user about further processing and purpose.
How long we store user data
If you write a comment, the comment and its metadata are saved forever. This is so that we can automatically recognize and approve future comments, instead of keeping them pending for approval.
For users who register on our website (if any), we also store the personal information they provide in their user profiles. All users can view, edit, or delete their personal information at any time (except they cannot change their username).
Website administrators can also view and edit this information. We store order information for as long as legally required due to bookkeeping needs.
Who has access to user personal information
We do not share user information with strangers. In certain cases, personal information is provided to our trusted partners in order to provide the service properly or to improve the user experience. We share user data:
To our data processing partners:
analytics tool vendors (Google)
our expert advisors on legal, tax, audit, or accounting issues
social networking platforms for personalized and targeted communication
newsletter partner (Mailchimp).
To our delivery partners:
General Logistics Systems Croatia d.o.o.
To our payment processing partners:
We only work with processing partners who are able to provide a sufficient level of protection of user personal data. We disclose user personal information to third parties or public officials when we are legally required to do so. We may disclose your personal information to third parties if you have given your consent or there is another legal basis for doing so.
How we protect user data
For communication and data transfer we use secure protocols (such as HTTPS) and SSL certificate and a reliable hosting provider (SiteGround).
We strive to maintain complete data security, but we cannot fully guarantee this.
In the event of a breach of data privacy conditions, we will notify the competent authorities and users and take all legally necessary steps.
If the user has an account on our website, it is essential that he has a strong password that will ensure data security.
We do not collect information about children or target our services.
A cookie is a small text document stored on a user’s computer. Cookies store information that helps a site work. Only we have access to cookies from our site. You can control your cookies through your internet browser. Choosing to disable cookies may interfere with the use of certain functionalities of our websites.
Required / mandatory cookies – these cookies are needed by the user to be able to use important functions on our website, such as logging in and placing products in the cart. These cookies do not collect any personal information.
Functional cookies – these cookies provide functionality to make the user use the services more comfortable and allow personalization of functions.
Analytical cookies – we use these cookies to track the use and performance of our site and services.
Advertising cookies – these cookies are used to deliver advertisements that may be relevant to the user and in accordance with the user’s interests.
Additionally, they are used to limit the number of times a user has seen an ad. They are most often placed on the site by advertising networks with the permission of the website owner. These cookies remember that you visited the site, and this information is shared with other bodies, such as advertisers. Targeting and advertising cookies are often related to the functionality of the site, provided by other bodies.
Cookies stored on the user’s computer can be removed via an Internet browser. The user can also control cookies through some privacy enhancement platform, such as optout.aboutads.info or youronlinechoices.com. For more information on cookies, see allaboutcookies.org.
LRS Creative d.o.o.
Odeska 13 21000 Split
See the contact page for other contact information
Changes to personal data protection rules