STATEMENT ON THE PROTECTION OF PERSONAL DATA
Below is an introduction to the processing of personal data when using our website. Personal data are all data which apply to a specific or identifiable individual.
Where necessary, additional information on the purpose of collecting and using personal data is provided at the data collection points.
- Who is the operator?
In accordance with Article 7. Paragraph 4 of the General Data Protection Regulation (hereinafter: GDPR Regulation), the operator is the owner of the website, ie. Back2back d.o.o, represented by Director Neva Boljka
- Which personal data do we collect and why?
When you get in touch with us, we store the information you provide (your e-mail address) through the completed form about the website start, so that we can follow the demands accordingly and notify you of the start up. Such processing is carried out for the purposes of taking action at your request (notification of the service of interest) before concluding the contract or on the basis of a contractual relationship, when you order our product or service on the basis of an online offer and thereby conclude a contract with us.
Also it is later necessary to login/register to access some of the services we are prvoding through our website. It is necessaryy to fill out some fields at login (some are obligatory and others optional). If in such cases the user chooses not to fill out the required personal data, he will not be able to access the requested services of the site and Back2back d.o.o. will not be able to answer his question, request or perform the service to the extent he undertakes.
If you explicitly agree, we will keep you informed about our products and services and send you promotional messages about other products and services that may be of interest to you. Such processing of personal data is subject to your personal consent and may be revoked at any time.
- How long do we store the personal data?
The data we gain is deleted as soon as storage is no longer required to perform a contractual relationship or if the consent is revoked or we limit its processing if there is a legal basis for storing the data (ex: the legitimate interest of the data controller due to the non-payment of products/services or legal basis or obligation).
- How do we ensure the security of personal data?
We use prescribed security technologies and procedures to protect the security and confidentiality of the online collected personal data of users. The data is also password protected. During the processing we use all necessary measures to protect personal data from loss, misuse, unauthorized access, transfer, alteration or destruction, as well as all necessary security measures to protect personal data from such dangers.
All employees of Back2back d.o.o. are familiar with the terms of confidentiality of the data which can only be processed by those who are authorized to process certain data and must not make it available to unauthorized persons. Unauthorized persons are also employees who do not need access to this data to fulfill their work obligations.
- Transmission of personal data to third parties
We occasionally transmit your personal data for processing to an external service provider. We have carefully selected external service providers and authorized them. They have to follow our instructions and we also regularly review them.
The collected personal data may be passed on to third parties in two other cases: 1) if the business activity of the company that manages these sites and the personal data of users stored on them is sold, assigned or transferred to third parties, then in this case the buyer, the legal successor or the person to whom the business is transferred to, is obligated to treat personal data in accordance with the purposes for which they were collected; 2) due to statutory conditions, a court order, or a request by a state authority, or where disclosure of data is necessary for the purpose of legal proceedings or criminal investigation.
- Your rights regarding the collected personal data
As an individual to whom the personal data to be processed are related, you have certain rights related to your personal data, which are written in Article 15 of the GDPR Regulation, “Right of access by the data subject”, in Article 16 of the GDPR Regulation, “Right to rectification”, in Article 17 of the GDPR Regulation, “Right to erasure (‘right to be forgotten’)”, in Article 18 of the GDPR Regulation, “Right to restriction of processing”, in Article 21 of the GDPR Regulation, “Right to object” and in Article 20 of the GDPR Regulation, “Right to data portability”.
In this context, you have the right to request to stop the transmission of notifications and messages to your address and that all collected data is deleted. To exercise this right, please send an e-mail to firstname.lastname@example.org. Please include the address of the page in the message, where you entered your personal data and indicate which information you want to correct, refresh or delete. After receiving a request for deletion of your personal data, your information will be deleted within the appropriate time period. At your request we will also inform you within a reasonable time period, whether and what personal data we have collected during your visits to our website.
You have the right to file a complaint regarding the collection and processing of personal data to our e-mail address email@example.com or by mail to our address Koprska 94, Ljubljana
You also have the right to file a complaint directly with the Information Commissioner if you believe that the processing of your personal data violates applicable law.
We use the following groups of cookies:
- the required cookies make the website useful by providing basic functions such as page navigation and access to secure areas of the site. A website without these cookies is not working properly;
- statistical cookies are cookies that we need to monitor site visits in order to improve the user experience;
- behavioral cookies anonymously collect data about your visits to our site The purpose is to serve ads that are relevant and engaging to the individual user.
With cookies, our site places small text files on your computer’s browser that give us information about the number of times an individual visits our site and what interests them during those visits. The data itself does not contain any information that would allow the identification of an individual, but if you provide us this data by yourself, for example by registering, it may be linked to the information stored in the cookie. You always have the option to accept or decline cookies. Most web browsers automatically accept cookies, which can be changed in settings by either refusing cookies or receiving an alert before the cookie is saved. Pixles (also known as clear GIFs, web beacons or pixel tags) are small snippets of code on a web page or application that allow websites to perform operations such as reading and installing cookies and sending information to Bureau Veritas and our partners. This connection may provide information such as the IP address of the device, the ID number associated with the browser or device, and the type of browser used. Local storage is a standard technology that authorizes a website or application to store and extract data from a computer, mobile phone, or other device. This may include e.g. Local storage, HTML5 caching or device storage.
Why do we use these technologies?
We use these technologies for a number of reasons, the most important of which is providing interesting content and improving our products and services.
The services we exemplary explain and do not limit ourselves to are Facebook Pixel and Google Analytics, which we use to streamline our sites: (i) by optimizing internet traffic, i. visiting the company website and switching to other websites that are part of our business system and, if necessary, (ii) by combining content and optimizing web pages. Facebook Pixel is a service provided by Facebook Inc. IAnd Google Analytics is a service provided by Google Inc. Google and both provide detailed statistics on visits to websites and sites from which users have accessed them, and measure conversion and sales results. With the help of cookies stored on your computer, these sites analyze how users use our sites.
Informations about the use of our websites that are collected through cookies, including your IP address, uses algorithms that provide anonymity to the user. Also the data is sent to Facebook and Google servers in the US. Find more information on how to hide an IP addess here. Google will process data collected by us through cookies to evaluate the use and preparation of activity reports on our websites, and will provide us these reports to analyze them. Google has the right to share this information with third parties in accordance with legal obligations or when the analysis on behalf of Google is done by a third party. In no case will Google combine or associate your IP address with any other information it may have. You can disable it in your web browser settings
Services available on the Back2back d.o.o. websites are intended for persons over 18 years of age. Persons searching for advice must be over 18 years of age. Without the prior consent of the parent or guardian, we will not knowingly collect, use or share the personal data of anyone who is under the age of 18. The parents will be 1) informed of the type of personal data collected from persons under the age of 18 and 2) offered the option of revoking their consent to collect, use and share their children’s personal data with third parties. Back2back d.o.o. strictly complies with all legal regulations on the protection of minors.
If you have any questions or complaints regarding the protection of personal data we collect while using our site or would like to send us comments and suggestions for improvement, please email us on firstname.lastname@example.org or send us a mail to Koprska 94, Ljubljana.