The controller of your data
The Controler of your Data is:
Body&mind 18, 2000 Maribor, Slovenia
Data Protection Officer: email@example.com
Personal information we collect
About Site visit
When you visit the Site, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site, to perform analysis of usability to achieve better customer experience. We refer to this automatically-collected information as “Device Information”. If you do not want that we collect and process your Device Information as stated above, please leave the side.
We collect Device Information using the following technologies:
“Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier.
“Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.
“Web beacons”, “tags”, and “pixels” are electronic files used to record information about how you browse the Site.
Registration and Purchase information
If you decide to become a registered user, we need to process your personal data to grant you access and to identify you as a user. When you want to make a purchase, you need to be registered. For this purpose, we collect the following data: first name, last name, e-mail address.
When you decide to make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your first name, last name, billing address, shipping address, payment information (including credit card numbers), email address, and phone number (in case we need to contact you during the purchase process, including the possible delivery process). Your personal information is necessary for us to enter into a contract fort he Services you want to purchase from us. We refer to this information as “Order Information”. If you do not provide us with your personal information necessary to conclude a contract with you, we can not provide you with the requested Services.
Some personal information we process only upon your consent, such as your request to remember the payment data and shipping data (you opted in to Save this information for next time).
In case you send us only some inquiries about products or other questions and you do not register on the Site or do not initiate the purchase procedure above, we process only the data that are necessary to manage your request or question. We consider having a legitimate interest in case any such inquiry or question is presented from you to us.
How do we use your personal information?
We use the Order Information that we collect generally to fulfil any orders placed through the Site (including processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations). Additionally, we use this Order Information to:
Communicate with you;
Screen our orders for potential risk or fraud. We reserve the right to block the purchase process when we consider the transaction to be fraudulent.;
Manage your potential returns, requests and other information you might need in the purchase process;
When in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.
We believe to have a legal interest in processing your personal information for fraudulent activities, to protect your purchase from any fraud attempts of third parties.
We use the Device Information that we collect to help us screen for potential risk and fraud (in particular, your IP address), and more generally to improve and optimize our Site (for example, by generating analytics about how our customers browse and interact with the Site, and to assess the success of our marketing and advertising campaigns).
If you decide to subscribe to the newsletter we will process your personal information on the basis of consent, specifically e-mail address and also other personal information if necessary to send you customized information on our Services. You can unsubscribe from the newsletter at any time and we will immediately stop processing your personal information and stop sending you newsletters.
For purposes of tracking the usability, satisfaction and other analysis of the customer behaviour, we consider that we have a legitimate interest analysing the Site to provide better user experience for you.
In case our right to process your data is based on the consent, you have the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
How long do we keep your personal information?
For the purpose of registration to the Site, we will process your information until you decide to remain registered.
When you place an order through the Site, we will maintain your Order Information for our records as long as it is necessary to execute the purchase process, including possible returns, complaints or other potential claims related to the purchase in question.
We will also process your information as long as we resolving your request or question.
For purposes of direct marketing, we will process your personal information upon your consent until you unsubscribe from the newsletter.
Sharing and transferring your personal Information
We share your Personal Information with third parties to help us use your Personal Information, as described above. For example, we use Wix to power our online store--you can read more about how Wix uses your Personal Information here: https://www.wix.com/about/privacy. We also use Google Analytics to help us understand how our customers use the Site -- you can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
Finally, we may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or another lawful request for information we receive, or to otherwise protect our rights.
In case the service provider mentioned previously is located outside the European Economic Area (“EEA”), we will make sure that your personal data transferred and processed outside the EEA will be carried out in compliance with applicable laws. To keep your data safe we will use Standard Contractual Clauses and EU-US Privacy Shield Framework as safeguards approved by the EU Commission for countries outside EEA.
As described above, we use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt out of targeted advertising by using the links below:
Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/.
Do not track
Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.
You have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or erased.
The right to erasure shall not be applicable in the following cases:
you have an ongoing matter with us;
you have an open order which has not yet been shipped or partially shipped;
you have an unsettled debt with Body&mind d.o.o., regardless of the payment method;
if you are suspected or have misused our services;
your debt has been sold to a third party within the last five years;
your credit application has been rejected within the last three months;
if you have made any purchase, we will keep your personal data in connection to your transaction for bookkeeping rules.
You have also the right to object to processing your personal data that is based on our legitimate interest. Body&mind will not continue to process the personal data unless we can demonstrate a legitimate ground for the process which overrides your interest and rights or due to legal claims.
You have the right to request that Body&mind d.o.o. restricts the process of your personal data under the following circumstances:
a) if you object to the processing of your personal data based on Body&mind d.o.o. legitimate interest according to Article 21(1), Body&mind shall restrict all processing of such data pending the verification of the legitimate interest.
b) if the processing is unlawful you can oppose the erasure of personal data and instead request the restriction of the use of your personal data instead
c) if Body&mind d.o.o. no longer needs the personal data but it is required for your to for the establishment, exercise or defence of legal claims.
d) if you have claimed that your personal data is incorrect or inaccurate, for a period enabling Body&mind d.o.o. to verify the accuracy of the personal data.
Whenever Body&mind d.o.o. process your personal data by automated means based on your consent or based on an agreement you have the right to get a copy of your data in a structured, commonly used and machine-readable format transferred to you or to another party, where technically possible. This only includes the personal data you have submitted to us.
We consider that we have a legitimate interest to process your personal information concerning the exercise of your rights, claims, returns, inquiries, questions about Services, as we have legal obligations on these matters.
How to exercise your rights?
If you would like to exercise your rights, please contact us through the contact information below.
Additionally, we note that we are processing your information in order to fulfill contracts we might have with you (for example if you make an order through the Site), or otherwise to pursue our legitimate business interests listed above.
How can you exercise your rights Data Protection Officer (DPO)?
We take data protection very seriously, therefore you can contact us to Contact information below.
We have additionally appointed a Data Protection Officer (DPO) to ensure that we continuously process your personal data in an open, accurate and legal manner. You can contact our Data Protection Officer at firstname.lastname@example.org.
Right to complain with a supervisory Authority:
If you consider your personal data is processed or handled in a incorrect way you can contact us at contact information below. You also have the right to lodge a complaint with a supervisory authority.
Changes and Updates to our Privacy Notice:
When you place an order through the Site, we will maintain your Order Information for our records unless and until you ask us to delete this information.
The Site is not intended for individuals under the age of 18.
For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by e‑mail at email@example.com.
Vinarje 18, 2000 Maribor, Slovenia