Privacy Statement

In application from 15.10.2020.


APPLICATION OF THE RULES

Superknjižara d.o.o. Zagreb, Roosevelt Square 4 (hereinafter: SK) processes personal data of users or customers (hereinafter: Personal data) on its website https://www.superknjizara.hr (hereinafter: Network Site) and in connection with the provision of services available through the Network Site in the capacity of processing manager in the manner and for the purposes described in these Privacy Policy (hereinafter: the Rules).

In addition to these Rules, your use of the Website is also subject to the Cookie Rules and the General business terms (hereinafter: the General Terms), which together form a contract governing the rights and obligations of SK as a service provider and you as a user or customer. The provisions of the General Terms and Conditions also apply to these Rules if a certain issue is not regulated here at all or in a different way. The Cookie Policy contains specific provisions as to which cookies are used on this Website, for what purposes and in what manner. By accessing this Network Site, or using it, in particular, by ordering the offered goods, you accept all the provisions of the stated Rules and General Terms and Conditions in full. That is why it is important to read them carefully. If you deem unacceptable any provision of these Rules, Cookie Rules or the General Terms and Conditions, please do not access this Website again.

We may update these Rules, the Cookie Policy and the General Terms and Conditions from time to time. Therefore, we recommend that you check for any changes from time to time. Updated Rules will be published on this website with an indication of the date of their application below the title. In the event of significant changes and / or additions, we may also notify users in another appropriate manner (for example, by posting a separate notice on the Site, including system notifications in your account, or by sending an email to registered users, etc.).

If you have any questions and / or comments, please contact us by e-mail at the following address: superknjizara@superknjizara.hr or via the contact form on the Website.


WHAT PERSONAL DATA DO WE COLLECT AND HOW DO WE USE IT?

We may collect your personal information directly from you as part of a transparent registration process when necessary to provide you with our services, for example to sell products ordered to you, or to communicate with you, for example at your request or as part of our promotional activities. However, when visiting our Website, we also process certain information by analyzing the information collected about your visit and use of our Website that may also be considered Personal Data even if you could not be directly identified by such information.

 

  1. Data for registration, and order, purchase and delivery of offered products

    In order to be able to order and purchase the products offered on our Network site, we collect, among other things, the following categories of Personal Data: information about your identity (name and surname), contact information (email address, mobile phone number, residential address), data for payment and other data specified in the forms for conducting the purchase transaction. If you wish, you can also register and create your account on our Network Site. In this case, in addition to the already listed categories of data, we will also process your username and password. We process such Personal Data on the basis of a contract that we enter into with you in this way because we need it for its conclusion and fulfillment, ie for the purpose of selling the products ordered and delivered to you.
     
  2. Marketing and profiling

    We may offer you the opportunity to receive marketing and other promotional information, materials and / or other communications about the products and services we offer, such as e-newsletters, for which you can choose which of the offered ways you want to receive, for example, by e-mail. SMS / MMS messages, etc. In such a case, we will ask you for appropriate personal data, such as your name, e-mail address, mobile phone number, etc., as well as consent, ie consent to send such promotional communications. We process personal data for the purposes of direct marketing on the basis of consent and store it for a maximum of 6 months after the withdrawal of consent.

    Profiling is a form of automated processing of personal data consisting of the use of Personal Data to assess certain personal aspects related to your interests and consumer behavior in relation to our offering, marketing, advertising and business in general, especially to analyze or predict such aspects of behavior. Although we may use your Personal Information to profile our customers and their consumer habits, such processing of Your Personal Information does not make decisions based solely on automated processing and produce legal effects that apply to you or significantly affect you in a similar way.

    For example, when you visit our Website, we collect certain information, such as your computer name and browser type, clicks, and views. Information about your use of our Website and services allows us to classify Website visitors, or our customers, into specific groups with a number of common characteristics such as age group, gender or region (so-called segments). We will probably classify you into one of our segments. We use segments to customize the Web site and, for example, to change the order of search results or to determine where to post certain bids in order to make you more likely to see them. We process such Personal Information because we need it based on our legitimate interests for the purpose of improving the quality of our Website. Logs on the use of our Network Site will be deleted 1 year after their generation.

    At any time, you have the right to object to the processing of your Personal Data for direct marketing purposes, which includes creating a profile as explained in the previous paragraphs of this item 2, or the right to withdraw or modify consent to receive promotional communications. After we receive your complaint, ie after withdrawing your consent, we will stop processing your Personal Data for such purposes. In doing so, the withdrawal of consent does not affect the lawfulness of the processing based on the consent before it was withdrawn. You can withdraw or change the consent, or you can exercise your right to object by sending an e-mail to the e-mail address: superknjizara@superknjizara.hr or contact form indicating that you want to unsubscribe from our list for direct marketing or to oppose the use of your Personal profile creation data. You can also unsubscribe from the direct marketing list via the link contained in each of our promotional communications. Finally, if you are a registered user, you can turn off the box to receive marketing messages in your account.
     
  3. Maintenance and optimization of our Network Site

    Your Personal Information will also be used to maintain and analyze our Website for the purpose of resolving functionality issues, improving the availability, security and protection of the Website against fraud or other similar violations. We process such Personal Data for the stated purposes on the basis of our legitimate interests, and Personal Data will be kept for a maximum of 1 year.
     
  4. Cookies

    Much of the information referred to in these Rules, in particular in paragraphs 2 and 3 above, is collected through cookies and similar technologies. Cookies are small text files that can be stored on your device (eg your computer, smartphone or tablet) and contain certain information needed, for example, to remember your account, language and country settings, but also to be able to measure and analyze your behavior on our Web site. When required by law, we will ask for your consent, ie consent to the use of cookies. For more information on which cookies we use, how and why, read our Cookie Policy.


EXCHANGE OF YOUR PERSONAL DATA

We may disclose your Personal Data, ie provide access to your Personal Data to the competent authorities in accordance with legal obligations, as well as our affiliates or processors, or other business partners such as data analysis providers or IT services that maintain our information and communication networks (hereinafter : Recipients). Disclosure of Personal Data to Recipients is based on an appropriate legal basis, for example in the case of competent authorities it is primarily an appropriate legal provision, and in the case of our affiliates or business partners it will usually be an appropriate contract for personal data processing. organizational measures to protect your Personal Data, including in particular the obligation to maintain its confidentiality. If some of the Recipients are in the so-called. "Third countries", ie in countries outside the European Economic Area that are not considered to provide an adequate level of protection of personal data, such transfer of Personal Data is carried out on a valid basis and for justified purposes in a way that ensures adequate protection in accordance with applicable law.

 

SECURITY OF PERSONAL DATA

We will implement appropriate technical, physical and organizational measures to protect Personal Data from misuse or accidental, unlawful or unauthorized destruction, loss, alteration, disclosure, acquisition or access (hereinafter: Data Breach), in accordance with applicable legal regulations and accepted technical standards. in the area of ​​privacy and data security. However, no network location can be 100% secure. Therefore, to the fullest extent permitted by law, we exclude liability for undisguised or accidental Data Breach.

Our Network Site may contain links to other network sites. We are not responsible for the privacy processing and / or protection, content or security policies or practices on such other online sites to which these Rules do not apply. We recommend that you always read carefully the privacy policies that apply to such online sites.


DEADLINES FOR STORAGE OF YOUR PERSONAL DATA

We will process your Personal Data: (i) within the time limits prescribed by law (this applies, for example, to Personal Data used to process and execute a purchase transaction in accordance with applicable accounting and tax regulations); or if the deadlines for keeping Personal Data are not determined by law, (ii) we will process them as long as necessary to achieve the purpose for which they were collected, or within the special deadlines specified in the previous provisions of these Rules if you do not request their removal before the deadline. with your right from the next section of these Rules; in doing so, (iii) certain Personal Data, ie the accompanying documentation in which they are contained, may be kept for a maximum of 5 years from the realization of the purpose for which they were collected, for evidentiary purposes in case of subsequent objections, disputes or proceedings.

After the expiration of the appropriate retention period, we will destroy Personal Data or anonymize certain Personal Data if there are needs for this and the appropriate preconditions are met. Anonymized data is no longer Personal Data because it does not allow the identification of individuals.

 

YOUR RIGHTS REGARDING THE PROCESSING OF PERSONAL DATA

Your rights regarding our processing of your Personal Data are:

(1) to access your Personal Data, ie the right to obtain confirmation from us whether Personal Data relating to you are being processed, and if such Personal Data is being processed, the right to access your Personal Data, including the right to obtain a copy of the Personal Data being processed ;

(2) to correct or supplement inaccurate Personal Data relating to you without undue delay, including by making an additional statement or independently, updating the data in your account if you are a registered user;

(3) the deletion of Personal Data relating to you, in particular in cases where:

(i) are no longer necessary for the purposes for which they were collected or otherwise processed;

(ii) have been unlawfully processed;

(iii) withdraw, in whole or in part, the consent given to us for the processing of your Personal Data for the stated purposes and if there is no other legal basis for the processing; or

(iv) must be deleted for compliance with a legal obligation under applicable law;

(4) to limit processing in the following cases:

(i) if you dispute the accuracy of your Personal Data, for a period that allows us to verify the accuracy of the Personal Data;

(ii) if the processing is illegal, but you object to the deletion of your Personal Data and instead seek to restrict their use;

(iii) if we no longer need Personal Data for processing purposes, but you request it for the purpose of making, realizing or defending legal claims; or

(iv) if you have objected to the processing of your personal data which we process on the basis of legitimate interests - until it has been established whether the legitimate interests of the Employer are more important than your personal interests;

(5) if we process your certain Personal Data on the basis of consent, you have the right to withdraw consent at any time, but this does not affect the lawfulness of processing based on consent before it is withdrawn;

(6) in the case of automated decision-making, which involves the creation of a profile, you have the right to be informed of the logic involved, as well as the importance and intended consequences of such processing for you;

(7) you have the right at any time to object to the processing of your personal data for the purposes of direct marketing, which includes a ban on the creation of profiles to the extent associated with such direct marketing;

(8) the portability of your Personal Data, ie the right to receive your Personal Data (provided to us) in a structured, commonly used and machine-readable format and to transfer this data to another controller if their processing is based on consent or contract and is carried out be automated; and

(9) submit a complaint regarding the processing of your Personal Data to the Personal Data Protection Agency, Zagreb, Selska cesta 136 (www.azop.hr).

If you wish to exercise any of these rights or have any questions or comments regarding the processing of your Personal Data in connection with the use of our Website or the application of these Rules, please contact us at the following e-mail address: superknjizara@superknjizara.hr or via contact form.