Skip to content

Privacy Policy

Data protection notice

PRIVACY AND COOKIE POLICY

PRIVACY POLICY

INTRODUCTORY PROVISIONS

The purpose of the Privacy and Cookie Policy (hereinafter referred to as the “Policy”) is to inform subscribers, users, customers and other persons (hereinafter also referred to as the “Iindividuals”) with the purposes and the basis of the processing of personal data by Biostile d.o.o., Komen 129A, SI-6223 Komen (hereinafter referred to as the “Controller”) and the related rights of individuals in this area.

This Policy applies to the websites www.biostile.si and www.biostile.org, which are operated by Biostile, trgovina in storitve, d.o.o., Komen 129A, SI-6223 Komen (hereinafter referred to as “Biostile d.o.o.”).

In accordance with Regulation (EU) 2016/679 of the European Parliament and Council dated 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as the “General Data Protection Regulation”):

  1. contact information of the company and the contact of the authorised data protection officer,
  2. purposes, bases and types of processing of various types of personal data of Individuals, including profiling of personal data of Individuals;
  3. transmission of data to third parties and to third countries;
  4. retention time of individual types of personal data;
  5. rights of Individuals in relation to the processing of personal data;
  6. right to lodge a complaint in relation to the processing of personal data.

Where applicable, the provisions relating to Individuals also apply to issues of secrecy and confidentiality of communications of Users who are legal entities.

This Policy applies to each User when they first visit the website and on all subsequent visits. By using the website, the User confirms that they have read all the provisions of this Policy, that they accept them and that they agree with them. This Policy may be changed or amended at any time without warning or notice. By using the website after the change of this Policy, the User confirms that they agree with the changes.

The operator (and provider) of the websites is: Biostile, trgovina in storitve, d.o.o., Komen 129A, SI-6223 Komen, company registration number: 6004075000, ID for VAT: SI 17834619, e-mail address: marketing@biostile.si.

The Controller does not have an appointed data protection officer, as it does not process personal data to the extent that it should fulfil this obligation. Since your privacy is of utmost importance to us, you can always contact us with any questions regarding the processing of your personal data using the e-mail address provided above.

The company undertakes to protect the confidentiality of personal data and the privacy of the Participants or Users of the website, and to do everything necessary to protect them from any violations or abuses, as the protection of the privacy of our Users is very important to us.

LEGAL BASIS

Here at Biostile d.o.o., we handle personal data in accordance with the General Data Protection Regulation and the Rules on the Protection of Personal Data in the company Biostile d.o.o., which regulate the processing of personal data, procedures and security measures, including responsibility and control in the process of their processing.

PERSONAL DATA PROCESSING

The Provider processes personal data on the basis of the personal consent of each Individual, on the basis of a concluded contract or on the basis of the law.

Each user of the website www.biostile.si and www.biostile.org who enters personal data on our websites also gives active personal consent to the processing of personal data on the basis of a special form submitted before sending an inquiry/order/subscription to the newsletter.

The Provider collects the following information about the Users of our websites:

  • Subscription to the e-newsletter: name and e-mail address;
  • Online store – purchase of products: first name, last name, address (place and post code), phone, e-mail address, company name (if you want to receive a company invoice), purchase history;
  • Question/enquiry forms: first name, last name, phone, e-mail address;
  • Any other data that the User voluntarily submits to the company.

By clicking the “I agree with the Terms and Conditions” button and by clicking the “I agree with the Privacy Policy” button, the Customer or the User of the website confirms that, prior to the registration, they were duly informed in writing about the scope and purpose of the processing of personal data referred to in the previous paragraph (the scope and purpose of the processing of personal data is also indicated next to each online form on our websites), as well as those obtained by the Operator on the basis of these General Terms and Conditions and the Privacy Policy applicable at the time when the Customer performs transactions for the purchase of the Controller’s goods and which relate, in particular, to the following circumstances:

  • types of purchases (type of products);
  • language used by the Customer;
  • Customer’s location;
  • whether the Customer uses a smartphone, personal computer or a tablet, and the operating system used by the Customer;
  • information about the User’s use of the website of the Controller (dates and times of website visits, pages or URLs visited, time spent on each page, number of pages visited, total time of website visit, settings made on the website);
  • type and version of the browser with which the Customer has accessed the web page.

The Provider processes the IP addresses of the devices through which Users access the website.

The Provider uses “cookies” on the online portal in order to recognise users; in this way, however, it is not possible to identify Users, which means that it is not possible to determine the name and surname and other identification data of the User only on the basis of information that has been collected in this way.

The collected data will only be used by Biostile d.o.o. for the provision of the services the company offers, and for the purposes and scope for which the Client or User is clearly informed or instructed in advance.

In the event of using the collected personal data for the purpose of marketing or advertising by directly contacting the Customer, the manager will clearly mark the advertising messages as such, and inform the Customer of the possibility and manner of unsubscribing from receiving such messages.

Biostile d.o.o. undertakes not to provide personal or other data to a third party under any circumstances without explicit permission, and will not allow a third party to inspect the personal or other data of a Participant or User unless they are required to do so by the state authorities, if said obligation is laid down by law, or for the purposes of proceedings before courts or other state bodies.

PURPOSE OF DATA PROCESSING

The Provider will use the collected data of the User exclusively for the following purposes:

  • to send an offer based on the received demand, to establish a telephone contact when ordering goods/services or concluding a sales contract, and for sending invoices and performing the sales contract;
  • to keep customer records;
  • to inform Users or Customers about news or offers of Biostile d.o.o., Komen 129A, SI-6223 Komen;
  • to occasionally send e-mails (if an Individual signs up to receive our e-mails) with content related to the website and promotional offers, notices, articles, current events, and benefits offered by Biostile d.o.o.;
  • to provide you with the requested ordered products/information;
  • for the purpose of statistical, marketing and other analyses and research related to the Users of the website, with the aim of improving the offer and services of the Provider.

DATA TRANSFER

Transfer of data to third parties and transfer of data to third countries (countries that are not members of the European Union or the European Economic Area).

The company may, if this is compatible with the purpose for which personal data are processed under EU law and provide personal data on individuals:

  • to persons who perform individual processing tasks for the company, such as: preparing and sending invoices or data analytics, maintenance and development of services, when these tasks include the processing of personal data to the necessary extent;
  • to persons who provide sales and marketing services for the company, including sales and marketing in the field, or cooperate with the company in the field of marketing and sale of its own services or services of third parties, to the extent necessary for such tasks within the scope of the purposes and bases defined in this Policy.
  • in the event of ordering products offered by the Provider and consequently delivery, the transfer of your specific data will be carried out based on your consent with the requests of the carrier providing postal or logistical services for the company, and will refer to the data necessary for the delivery of goods (order number, first and last name, contact number and delivery address).

We do not transfer the collected personal data to other third parties or to third countries without an adequate level of protection. Your personal data may be transferred to the USA (within the framework of the web analytics and e-mail notification service provider), for which we enter into appropriate contracts with all contractual processors in the USA.

If the company is connected or acquired by another company, personal data shall be transferred to the transferee in accordance with the law. By using our services, you consent to the further processing of your personal data by the transferee.

DATA PROTECTION AND RETENTION PERIOD

The Provider uses appropriate technological and organisational means to protect the transfer and storage of personal data.

Accounting data and related contact data on Individuals may be kept for purposes of fulfilling contractual obligations until the full payment of the service or not longer than the expiry of the limitation periods relating to each individual claim, which may, by law, range from one to five years. Invoices shall be kept for 10 years after the end of the year to which the invoice is related, in accordance with the law governing value added tax.

If circulation data is processed on the basis of an Individual’s consent for the marketing of services, the sale of goods or the provision of value-added services, this data may, to the extent necessary, be processed for as long as is necessary for such marketing or services. All other data obtained for information and direct marketing purposes shall be retained until revocation.

The Provider ensures the protection of personal data in accordance with this policy and the requirements for the protection of personal data set out in the legislation of the General Data Protection Regulation.

The User is aware and agrees that the Provider shall keep their data provided to them at the time of registration at all times when the User has the status of a registered user in the Provider’s applications or is a subscriber of the e-newsletter, as well as for one year after the termination of this status or the cancellation of the subscription to the e-newsletter. Other data may be stored for as long as is strictly necessary to achieve the purpose for which the data was collected, and then permanently deleted or effectively anonymised, so that the specific data can no longer be linked to a specific User.

Personal data that we collect on the basis of the Individual’s explicit consent are processed for the purposes defined with the consent and stored until the consent is revoked.

The User is also responsible for the protection of their personal data, by ensuring the safety of their usernames and passwords, as well as the appropriate software and antivirus protection of their computers.

RIGHTS OF USERS/CLIENTS UNDER THE GENERAL DATA PROTECTION REGULATION

In terms of your personal data that we are processing, you have the following rights:

the right to withdraw your consent to personal data processing at any time (the withdrawal of consent shall not affect the lawfulness of data processing which was carried out on the basis of consent until its withdrawal). If you only wish to update personal information, you can do so, for example, in your account on the website,

the right to be informed: the right to obtain confirmation whether we are processing your personal data,

obtain access to your personal data relating to you and a copy of this information, obtain information on the purposes of processing, types of personal data, and whether personal data are transferred to a third country or an international organization, etc.,

to correct, without undue delay, inaccurate personal data relating to you, as well as the right to complete your personal data,

the right to deletion (right to be forgotten): you can request that we delete personal data relating to you without undue delay in certain cases, when the processing is no longer necessary for the purposes for which the personal data have been collected or otherwise processed, or when we have collected personal data on the basis of consent and you withdraw your consent to the processing of personal data, etc.,

restrictions on processing in certain cases, such as when you dispute the accuracy of data, etc.,

the right to data portability: you have the right to obtain the personal data in a structured, commonly used and machine-readable format, as well as the right to transmit the personal data to another controller in certain cases,

the right to object to the processing of personal data relating to you on the basis of our legitimate interest, and the right to object to direct marketing and profiling, if this is related to direct marketing,

the right to declare that a decision based solely on automated processing of personal data, including profiling, has legal effects that are related to you or significantly affect you in a similar way or do not apply to you. If the decision (1) is necessary for the conclusion or performance of a contract between you and us or (2) is justified by your explicit consent, we will implement appropriate measures to protect the rights and freedoms and your legitimate interests and ensure at least the right to personal intervention of the Controller, to express your own point of view, and to challenge the decision,

the right to file a complaint with a supervisory authority, regardless of the aforementioned rights, if you are convinced that the processing of your personal data constitutes a breach of the GDPR. You can file a complaint with the Information Commissioner, Dunajska 22, SI-1000 Ljubljana, e-mail address: ip@ip-rs.si, telephone: +386 1 230 97 30, website: www.ip-rs.si.

You can contact us at any time at marketing@biostile.si for any questions related to the aforementioned rights.

We will ensure that your request is complied with immediately, but no later than 30 days after receipt of the request. You will obtain the requested personal data in a structured, machine-readable and generally usable format. The first copy of your personal data in electronic or physical form will be provided to you free of charge, while any additional copies may be charged to you to cover the cost of preparing said copies.

The User may exercise their rights at any time by sending an e-mail to marketing@biostile.si or by writing to Biostile, trgovina in storitve, d.o.o., Komen 129A, SI-6223 Komen.

These rights do not release you from your obligations under the General Terms and Conditions or from the contract concluded with Biostile d.o.o.

LINKS TO OTHER WEBSITES

Our websites may contain links to third-party websites. These websites have their own privacy policies that you should familiarise yourself with, as we do not assume any responsibility for them.

Links to social networks

Our website contains links to social networks (social network plug-ins), and we have an integrated link to Facebook and Instagram, which redirects to these social networks when you click on their icon. The processing of personal data obtained by the social networks when you click on the social network plug-in and when you are redirected to the social network is carried out by said social networks and takes place in accordance with their privacy policies available at:

Facebook: the processing of personal data is carried out by Facebook Inc., 1601 S. California Ave, Palo Alto, CA 94304, USA; their personal data protection statement is available at https://www.facebook.com/policy.php.

Instagram: the processing of personal data is carried out by Instagram LLC, 1601 Willow Rd, Menlo Park, CA 94025, USA; their personal data protection statement is available at https://help.instagram.com/155833707900388.

Twitter: the processing of personal data is carried out by Twitter International Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07 IRELAND; their personal data protection statement is available at: https://twitter.com/en/privacy.

LinkedIn: the processing of personal data is carried out by LinkedIn Corporation, 1000 West Maude Avenue Sunnyvale, CA 94085, USA; their personal data protection statement is available at: https://www.linkedin.com/legal/privacy-policy.

EXCLUSION OF LIABILITY

The Provider shall not be liable for the damage caused to the User by providing incorrect, incomplete or up-to-date information to the Provider when requesting/signing up for the e-newsletter or at any later point in time.

The Operator of the website www.biostile.si kindly asks Users who do not agree with this Policy or its amendments to leave the website and do not use it in the future.

 

COOKIE POLICY

Web cookies

This notice is provided in accordance with the ePrivacy Directive and the General Data Protection Regulation (GDPR), which govern the use of cookies and similar technologies for storing or accessing data stored on your computer or mobile device.

Information on the use of cookies

This site uses cookies. By using our website, the User declares that they accept and agree with the use of cookies in accordance with the terms of use stated in this document.
Data controller: Biostile d.o.o., Komen 129A, SI-6223 Komen, marketing@biostile.si

What are cookies?

Cookies are small text files that are downloaded to your computer or mobile device when you visit a website. Cookies usually contain the name of the server from which the cookie was sent, the lifespan of the cookie, and a value that is usually a randomly generated unique number.
When the User returns to the same website, the server recognizes him through the cookie. With the help of cookies, websites remember certain information that allows you to quickly and easily browse the web.
The cookies on www.biostile.si ensure a better user experience, allow you to use the website and the functionality on the site, and collect aggregated information on the use of www.biostile.si.
Cookies themselves do not allow you to be identified and cannot be used to determine who you are.

Types of cookies we use

There are two main types of cookies which depend on the duration:

temporary (session) cookies and permanent cookies.

Temporary cookies (session cookies) are installed automatically when you access the website. A temporary cookie stores the information on the server which then remains in memory until the session expires. Temporary cookies are removed from your computer when you close your browser. The cookie itself does not include any personal data.
Persistent or stored cookies remain stored on the computer for days, months or even years after the user closes the browser and closes the session. They are removed when their expiration date expires, but you can delete them yourself.

Depending on the necessity of use, cookies may be necessary (cookies that are necessary for the operation of the site) or not, which means that a website can also function without them. The latter can be used to analyse the visit and use of the site; at the same time, they can also allow for the use of certain functions of the site, and they are only allowed to be used on the basis of your consent.

Which cookies do we use?

 __stripe_mid 1 year. Stripe payment interface cookie that stores the ID required for payment
__stripe_sid 24 hours. Stripe payment interface cookie that stores the ID required for payment.
_gat_* 1 minute. The cookie is used to limit the frequency of hits

GROUP 1: STRICTLY NECESSARY: Strictly necessary cookies are cookies that are necessary for the proper functioning of the website. This category only includes cookies that provide the basic functionalities and security features of the website. These cookies do not store any personal data.

cookielawinfo-checkbox-necessary 11 months This cookie is set by the GDPR Cookie Consent plug-in. Cookies are used to store user consent for cookies in the “Necessary” category.
cookielawinfo-checkbox-necessary 11 months This cookie is set by the GDPR Cookie Consent plug-in. Cookies are used to store user consent for cookies in the “Necessary” category.
cookielawinfo-checkbox-necessary 1 year This cookie is set by the GDPR Cookie Consent plug-in. The cookie is used to store the user’s consent for cookies in the “Necessary” category.
CookieLawInfoConsent 1 year Records the default state of the corresponding category button & CCPA status. It only works in coordination with the primary cookie.
viewed_cookie_policy 11 months The cookie is set by the GDPR Cookie Consent plug-in and is used for storage, regardless of whether the User has consented to the use of cookies. They do not store any personal data.

woocommerce_cart_hash session.

GROUP 2: FIRST-PARTY ANALYTICAL: Analytical cookies allow us to analyse what is happening on the website (in particular: the number of visitors, browser identification, keywords, etc.), which is also very important for the good functioning of the website. To install these cookies, we need your explicit consent, which you can provide by ticking the “Analytical cookies” box in the settings. You can withdraw your consent at any time in the cookie settings. When performing our own analytics, users are monitored anonymously (IP anonymisation). We also use these cookies exclusively in our company, and they have a minimum duration.

cookielawinfo-checkbox-analytics 11 months. This cookie is set by the GDPR Cookie Consent plug-in. The cookie is used to store the user’s consent for cookies in the “Analytics” category.

GROUP 3: ADVERTISING: Advertising cookies enable us to show you personalised offers. To install these cookies, we need your explicit consent, which you can provide by ticking the “Advertising cookies” box in the settings. You can withdraw your consent at any time in the cookie settings.

cookielawinfo-checkbox-advertisement 1 year. GDPR plug-in For cookie consent, this cookie is used to record the user’s consent for cookies in the “Advertisement” category.

GROUP 4: FUNCTIONAL

Functional cookies help to perform certain functions such as sharing website content on social media platforms, collecting feedback, and other third-party functions.

cookielawinfo-checkbox-functional 11 months The cookie is set by the GDPR consent to record user consent for cookies in the “Functional” category.

GROUP 5: OPERATIONAL PERFORMANCE

cookielawinfo-checkbox-performance 11 months This cookie is set by the GDPR Cookie Consent plug-in. The cookie is used to store the user’s consent for cookies in the “Performance” category.

GROUP 6: OTHERS

cookielawinfo-checkbox-others 11 months This cookie is set by the GDPR Cookie Consent plug-in. The cookie is used to store the user’s consent for cookies in the “Others” category.

cookielawinfo-checkbox-non-necessary 1 month This cookie is set by the GDPR Cookie Consent plug-in. The cookie is used to store the user’s consent for cookies in the “Non-necessary” category.

viewed_cookie_policy 11 months The cookie is set by the GDPR Cookie Consent plug-in and is used for storage, regardless of whether the User has consented to the use of cookies. They do not store any personal data.

woocommerce_items_in_cart session helps WooCommerce to decide when the content/information of the shopping cart have changed.

wp_woocommerce_session_* 2 days Contains a unique code for each customer so that the system knows where to find the shopping cart data in the database.

woocommerce_items_in_cart session helps WooCommerce to decide when the content/information of the shopping cart have changed.

If you select the “Do not allow cookies” option for each group of cookies, we will delete all cookies in this group from your device and will not install them until you explicitly allow it by changing the settings.

If you select the “Allow cookies” option for each group of cookies, we will place cookies from this group on your device and install them until you change the setting.
If you do not agree with the use of cookies (if you do not select the option “I allow cookies” or the option “I do not allow cookies”), only cookies that are necessary for the operation of the website will be installed on your device.

YOUR COOKIE SETTINGS

  1. Turning off cookies in your web browser:

Internet Explorer: http://windows.microsoft.com/sl-si/windows-vista/cookies-frequently-asked-questions

Google Chrome: https://support.google.com/chrome/answer/95647?hl=sl

Mozilla Firefox: http://support.mozilla.org/sl/kb/cookies-information-websites-store-on-your-computer

Safari: http://www.apple.com/support/safari/

Opera: http://www.opera.com/browser/tutorials/security/privacy/

  1. Exclusion of cookies from elsewhere:

Adobe Flash Player: http://helpx.adobe.com/flash-player/kb/disable-local-shared-objects-flash.html

Google Analytics: https://tools.google.com/dlpage/gaoptout

VALIDITY OF THE POLICY

This Policy is published on our websites and takes effect on 20 April 2023.