Privacy policy
All your personal data are processed in accordance with the Act no. 18/2018 Collection of Laws on Personal Data Protection and on amendments to certain laws (hereinafter referred to as “the Act”) and in accordance with the Regulation of the European Parliament and the Council (EU) 2016/679 from 27th April 2016 (GDPR).
This document contains all information regarding the safety of your privacy – which data we obtain, how we use them, who we share them with, how can you control their processing, the measures we take to protect your data as well as information on your rights regarding the processing.
The operator of the e-shop located at the website www.bebarefoot.eu is:
JOiO, s.r.o
Stupava 5574
900 31 Stupava
Slovakia
TIN: 2121129252
VAT ID : SK2121129252
Entry in the Slovak Business register in the Distric Court Bratislava I, section: Sro, Insert No.: 141542/B
What data we collect
Shopping
When shopping in our e-shop we only require the data necessary for its execution. It is your e-mail address so we can communicate with you, your shipping address so we are able to send you the ordered goods, your billing address if it differs from the shipping address and your telephone number so the courier from the delivery company can contact you.
During your purchase we do not collect any data on your payment cards. Your payment is done via payment gateway pages that will only send us information about the payment being done and your order is thus processed.
Registration
You can create an account at the www.bebarefoot.eu that will facilitate your shopping. For example you can save your billing address and thus save time during repeat purchases. The only required data is your e-mail address that also serves as your user name.
Sending newsletters
You can subscribe to our newsletters and business information by e-mail without the need to create your own account. Once again the only saved data is your e-mail address. By creating an account you do not automatically subscribe to our newsletters.
Data obtained by using our services
When you use our services we obtain data on how you use them. These are information regarding your interactions with our services, for example when you browse our pages or what exactly you search for.
We also obtain information on devices and computers you use to access our services including IP addresses, browsers settings, information on operating systems, or information on your mobile device, information from which site you access our website, websites you visit and cookies information and similar tools.
How we use the data
We provide our services
We only require your data necessary to provide our services in accordance with our Terms and Conditions. We use them to conclude a contract via internet and fulfil it, especially to receive an order and register it, process the order, send the goods, issue an accounting document, and resolve a contract withdrawal or a claim.
After mutual agreement we can use your personal data for concluding a contract outside of the e-shop.
We communicate with you
Your contact data are only used by us to connect with you in case of resolving questions or problems with your order. We mostly use an e-mail communication and in case of urgent matters also your phone number.
Your e-mail address is also used for sending our newsletter.
We improve our services
Data we store are also used for improving and personalization of our services as well as for marketing. For example the data on your shopping history and products you bought in our e-shop are used by us to suggest to you other products that may interest you.
Information on visits and activity on our website and its individual sections and displayed products are used also for analytic means, so we can understand how people use our website, thus we are then able to make it more intuitive and user friendly.
Protection of rights
Your data are also used to secure the safety of services provided, to respond to requirements that has been imposed on us, during proceedings before the State and other authorities that control our activities and to claim demands we have acquired.
On what grounds we process your data
Performance of a contract
To meet our obligations under the distance purchase contract we use your data provided to us voluntarily by yourself on the basis of the contract.
Consent
For sending you newsletter and creating your account at the e-shop we use your data based on the consent you gave us when you provided us with your e-mail address. You can withdraw your consent anytime at info@bebarefoot.eu or in writing at the address of our company.
Compliance with legal obligations
Data regarding your person and your orders are stored by us for accounting and to have them available for the government or other bodies that supervise our operations.
Legitimate interest
For improvement and personalization of our services, some marketing activities or in connection with the security and protection of rights we use your data on the basis of our legitimate interest.
Who we share your data with
We do not make your personal data public, we do not make them accessible, provide them to any other subject aside from the third parties mentioned below. All our partners process your data according to our instructions and in compliance with this document. They comply with all the necessary safety, technical and organizational measures to provide your personal data with the required protection.
Delivery services:
Zásielkovňa, s.r.o., Kopčianska 3338/82A, 851 01 Bratislava, Slovakia
Newsletters services: Ecomail
Payment processing services: GOPAY
How long your data are stored
The personal data relating to your user account are stored until you cancel this account. Your personal data relating to processed order are stored only for the necessary amount of time which is usually ten years since its receipt.
If we use your data based on your approval, e.g. in case of sending newsletter, we store them until you withdraw your consent.
The data used on the basis of our legitimate interest are stored until the reason for their processing is still lasting.
Cookies
- A cookie is a small text file which is transferred from a website and stored on your computer’s hard drive. It enables a website to “remember” who you are.
- When you visit our website for the first time you will be asked to agree to our cookie policy.
- The information stored in cookies is safe and anonymous to any external third party, and your account security is never compromised. You can find more information about cookies at http://www.allaboutcookies.org/
- Most browsers allow you to refuse, accept and delete cookies. The methods for doing so vary from browser to browser, and from version to version. Please consult your browser provider for up-to date information on cookies.
Your rights
Seeing that we use your personal data, you have certain rights. If you exercise any of them, we have 30 days to inform you about processing of your request. In justified cases we have a right to extend the deadline by 60 days, which we will inform you about.
You can exercise your rights at www.bebarefoot.eu or in writing at the address of our company. Please, state your name, surname and address in your request so we are able to verify your identity and will not provide an unauthorized person with your personal data.
Right of access to data
You have a right to know if we process your personal data. If we do, you can ask us for an access to the data. Based on your request we will issue a verification with information about what personal data we process, if they were transmitted to third countries and how long we will keep your data.
Right to rectification
You have a right to have your personal data that are processed by us correct, complete and up-to-date. If you find out we do not use your data to your liking, you can always contact us and we will fix it.
Right to erasure
You have a right to ask us to erase your personal data that are processed by us if the following conditions are met and legal exceptions do not apply:
- Your personal data are no longer necessary in relation to the purpose they were provided to us
- You withdraw your consent and there is no other legal ground for processing of your personal data
- Based on certain situation you object to processing of your personal data
- Your personal data are unlawfully processed
- The personal data have to be erased for compliance with a legal obligation
- If you are a child, or a parent of a child that agreed with processing of personal data via internet
In case of erasing your personal data we will inform third contractual parties that you have exercised your right to erasure and thus they should erase all links to your personal data.
Right to restriction of processing
You also have a right to ask us for temporary restriction of processing if:
- we are processing wrong personal data, for a period until the accuracy of these personal data is verified
- the processing of your personal data is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead
- we no longer need the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims
- you have objected to processing of your personal data until the time of verification whether the legitimate grounds for processing your personal data override your legitimate interests
Right to data portability
You have a right to require we provide you with your personal data in electronic form (e.g. XML or CSV file) that will enable you to easily transfer your data to other company. You can also ask us to transfer your personal data to the chosen company. We will comply with your request in case you yourself have provided us with your personal data and gave us your consent of their processing.
Right to object
You have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data that is performed on the basis of our legitimate interest, including the right to object to profiling based on our legitimate interest.
You have always right to object to processing of your personal data if these data are processed for the purpose of right marketing.
How we protect your personal data
The safety of your personal data is of our highest priority. To secure the protection of your personal data we have taken the necessary technical and organizational measures. The personal data are processed on computers that are protected by password and anti-virus protection. The web page that serves for the operation of our e-shop is secured with the SSL certificate.
Transmission to third countries
We do not actively transmit your personal data to third countries outside EU. However, some partners we cooperate with during processing of your personal data do implement such data transfer, namely to the USA. All persons in the USA that these data are made available to do comply with the conditions of US-EU Privacy Shield and thus provide your personal data with adequate level of protection.
Payment security
No payment takes place on our webpage, everything is processed via payment gateways. These are complexly secured systems that communicate in encrypted way with your credit card issuer. Your payment details are only stored during the time necessary for completing the payment for your order. Naturally, we meet all the PCI (Payment Card Industry) standards.
Due to this we have none of your sensitive data available we could use in any way. At the same time there is no way we can affect the payment processing or speed up a refund.
Complaints
If you think that processing of your personal data by our company is contrary to applicable laws on personal data protection, you have a right to complain to our main supervisory authority – Office for Personal Data Protection of the Slovak Republic.