Personal Data Protection
All your personal data are processed in accordance with the Act no. 18/2018 Collection of Laws on Personal Data Protection and on amendments to certain laws (hereinafter referred to as “the Act”) and in accordance with the Regulation of the European Parliament and the Council (EU) 2016/679 from 27th April 2016 (GDPR).
This document contains all information regarding the safety of your privacy – which data we obtain, how we use them, who we share them with, how can you control their processing, the measures we take to protect your data as well as information on your rights regarding the processing.
The operator of the e-shop located at the website www.sestrice.com is us:
Sestrice s.r.o.
Tupolevova 4,
851 01 Bratislava
Slovakia
Company ID: 50076701
VAT ID: SK2120165630
Company registered in the Commercial Register at the District Court Bratislava I, Sro dpt., insert no. 107831/B
In addition we have appointed a person responsible for the protection of personal data, namely Mgr. Matúš Priehoda. In case you have any questions regarding the use of your personal data or want to exercise your rights you can contact our responsible person at privacy@sestrice.com or in writing at our company’s address.
What data we collect
Shopping
When shopping in our e-shop we only require the data necessary for its execution. It is your e-mail address so we can communicate with you, your shipping address so we are able to send you the ordered goods, your billing address if it differs from the shipping address and your telephone number so the courier from the delivery company can contact you.
During your purchase we do not collect any data on your payment cards. Your payment is done via payment gateway pages that will only send us information about the payment being done and your order is thus processed.
Registration
You can create an account at the www.sestrice.com that will facilitate your shopping. For example you can save your billing address and thus save time during repeat purchases. The only required data is your e-mail address that also serves as your user name.
Sending newsletters
You can subscribe to our newsletters and business information by e-mail without the need to create your own account. Once again the only saved data is your e-mail address. By creating an account you do not automatically subscribe to our newsletters.
Data obtained by using our services
When you use our services we obtain data on how you use them. These are information regarding your interactions with our services, for example when you browse our pages or what exactly you search for.
We also obtain information on devices and computers you use to access our services including IP addresses, browsers settings, information on operating systems, or information on your mobile device, information from which site you access our website, websites you visit and cookies information and similar tools.
How we use the data
We provide our services
We only require your data necessary to provide our services in accordance with our Terms and Conditions. We use them to conclude a contract via internet and fulfil it, especially to receive an order and register it, process the order, send the goods, issue an accounting document, and resolve a contract withdrawal or a claim.
After mutual agreement we can use your personal data for concluding a contract outside of the e-shop.
We communicate with you
Your contact data are only used by us to connect with you in case of resolving questions or problems with your order. We mostly use an e-mail communication and in case of urgent matters also your phone number.
Your e-mail address is also used for sending our newsletter.
We improve our services
Data we store are also used for improving and personalization of our services as well as for marketing. For example the data on your shopping history and products you bought in our e-shop are used by us to suggest to you other products that may interest you.
Information on visits and activity on our website and its individual sections and displayed products are used also for analytic means, so we can understand how people use our website, thus we are then able to make it more intuitive and user friendly.
Protection of rights
Your data are also used to secure the safety of services provided, to respond to requirements that has been imposed on us, during proceedings before the State and other authorities that control our activities and to claim demands we have acquired.
On what grounds we process your data
Performance of a contract
To meet our obligations under the distance purchase contract we use your data provided to us voluntarily by yourself on the basis of the contract.
Consent
For sending you newsletter and creating your account at the e-shop we use your data based on the consent you gave us when you provided us with your e-mail address. You can withdraw your consent anytime at privacy@sestrice.com or in writing at the address of our company.
Compliance with legal obligations
Data regarding your person and your orders are stored by us for accounting and to have them available for the government or other bodies that supervise our operations.
Legitimate interest
For improvement and personalization of our services, some marketing activities or in connection with the security and protection of rights we use your data on the basis of our legitimate interest.
Who we share your data with
We do not make your personal data public, we do not make them accessible, provide them to any other subject aside from the third parties mentioned below. All our partners process your data according to our instructions and in compliance with this document. They comply with all the necessary safety, technical and organizational measures to provide your personal data with the required protection.
Delivery services:
Slovak Post, Inc., Partizánska cesta 9, 975 99 Banská Bystrica, Slovak Republic, ID: 36631124, registered in the Commercial Register at the District Court Banská Bystrica, Sa dpt., insert no. 803/S
Česká pošta, s. p. , Politických vězňů 909/4, 225 99 Praha 1, Czech Republic, ID: 47114983
GLS General Logistics Systems Slovakia Ltd., Budča 33, 962 33 Budča, Slovak Republic, ID: 36624942, registered in the Commercial Register at the District Court Banská Bystrica, Sro dpt., insert no. 9084/S
PPL CZ s.r.o., K Borovému 99, Jažlovice, 251 01, Říčany, Czech Republic, ID: 25194798
Packeta s. r. o ., Kopčianska 3338/82A, 851 01 Bratislava, Slovak republic IČO: 48136999, registered in the Commercial Register at the District Court Bratislava I, Sro dpt, insert no. 105158 105158
Retino.cz s.r.o, Polská 1621/11, 120 00 Praha 2, Czech Republic, ID: 06222234, registered in the Commercial Register at the City Court in Prague, file no. C278391
Accounting services:
PALKOVIČ services, Ltd., Gorkého 10, 811 01 Bratislava, Slovak Republic, ID: 50529676, registered in the Commercial Register at the District Court Bratislava I, Sro dpt., insert no. 114571/B
Hosting services:
Websupport, Ltd., Staré Grunty 12, 841 04 Bratislava, Slovak Republic, ID: 36421928, registered in the Commercial Register at the District Court Bratislava I, Sro dpt., insert no. 63270/B
Grappastudio, Ltd., Okružná 1027/9, 927 01 Šaľa, Slovak Republic, ID: 4697031, registered in the Commercial Register at the District Court Trnava, Sro dpt., insert no. 30806/T
Newsletters services:
MailChimp / The Rocket Science Group LLC, 675 Ponce de Leon Ave NE, Atlanta, GA 30308 USA
Consumer competitions information storage services:
Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Írsko
Payment processing services:
PayPal (Europe) S.à r.l. & Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg.
GOPAY s.r.o, Planá 67, 370 01 Planá, Czech Republic
Fulfillment services:
FHB Group, s.r.o., Páričkova 18, 82108 Bratislava, IČO: 44305435, , zapísaná v Obchodnom registri Okresného súdu Bratislava I, oddiel Sro, Vložka č. 53699/B
How long your data are stored
The personal data relating to your user account are stored until you cancel this account. Your personal data relating to processed order are stored only for the necessary amount of time which is usually ten years since its receipt.
If we use your data based on your approval, e.g. in case of sending newsletter, we store them until you withdraw your consent.
The data used on the basis of our legitimate interest are stored until the reason for their processing is still lasting.
Cookies
Just like many other companies offering their services on websites, we too use cookies and pixels. Cookies are tiny parts of data that are stored in your browser or mobile device when you browse web pages. Pixels are small pictures or “parts of a code” situated at a web site or in e-mail that collect information about your browser or mobile device, some of them can also save cookies.
Some cookies are automatically deleted from your device after you shut the browser window (session cookie), others stay stored in your device even after you stop browsing our web pages (permanent cookie).
Cookies help us remember your activity and preferences (e.g. login information, data on order in the shopping cart) during certain time period, so you do not have to enter them again every time you come back to the website or when you browse from one website to another.
Cookies also help us understand what interests you about our web page, if it is easy enough to navigate through and if you are able to find what you search for. Thus we use cookies also to improve your user experience.
Cookies can also collect other information, like the number of visitors of our web pages and what kind of subpages from our website you visit most often. Cookies are also used to show you advertisement and page content that is relevant to you considering your interests and needs.
Key (functional) cookies – without them our web site would not work properly. Thanks to these cookies you stay signed in our webpage, your cart remembers the goods you put in it, or unauthorized attempts to your account are detected.
Analytical cookies – they enable us to monitor the website traffic and use of various features. According to them we improve the structure, look and content of our websites. For this we use the service Google Analytics from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. For more information on privacy protection please click here; to reject cookies you can install a software add-on available here.
Tracking and remarketing cookies – they help us optimize the offer for customers and reach them in advertising space on other web pages. For this we use Facebook Pixel service from Facebook Ireland Ltd. 4 Grand Canal Square, Grand Canal Harbour Dublin 2, Ireland. For more information on privacy protection please click here; to reject cookies click here.
You can accept or reject cookies on webpages you visit when you change your browser settings. Check the Help in your browser and follow the instructions. Remember that with cookies turned off, the comfort of use of our webpage can significantly reduce.
Your rights
Seeing that we use your personal data, you have certain rights. If you exercise any of them, we have 30 days to inform you about processing of your request. In justified cases we have a right to extend the deadline by 60 days, which we will inform you about.
You can exercise your rights at privacy@sestrice.com or in writing at the address of our company. Please, state your name, surname and address in your request so we are able to verify your identity and will not provide an unauthorized person with your personal data.
Right of access to data
You have a right to know if we process your personal data. If we do, you can ask us for an access to the data. Based on your request we will issue a verification with information about what personal data we process, if they were transmitted to third countries and how long we will keep your data.
Right to rectification
You have a right to have your personal data that are processed by us correct, complete and up-to-date. If you find out we do not use your data to your liking, you can always contact us and we will fix it.
Right to erasure
You have a right to ask us to erase your personal data that are processed by us if the following conditions are met and legal exceptions do not apply:
- Your personal data are no longer necessary in relation to the purpose they were provided to us
- You withdraw your consent and there is no other legal ground for processing of your personal data
- Based on certain situation you object to processing of your personal data
- Your personal data are unlawfully processed
- The personal data have to be erased for compliance with a legal obligation
- If you are a child, or a parent of a child that agreed with processing of personal data via internet
In case of erasing your personal data we will inform third contractual parties that you have exercised your right to erasure and thus they should erase all links to your personal data.
Right to restriction of processing
You also have a right to ask us for temporary restriction of processing if:
- we are processing wrong personal data, for a period until the accuracy of these personal data is verified
- the processing of your personal data is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead
- we no longer need the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims
- you have objected to processing of your personal data until the time of verification whether the legitimate grounds for processing your personal data override your legitimate interests
Right to data portability
You have a right to require we provide you with your personal data in electronic form (e.g. XML or CSV file) that will enable you to easily transfer your data to other company. You can also ask us to transfer your personal data to the chosen company. We will comply with your request in case you yourself have provided us with your personal data and gave us your consent of their processing.
Right to object
You have the right to object, on grounds relating to your particular situation, at any time to processing of your personal data that is performed on the basis of our legitimate interest, including the right to object to profiling based on our legitimate interest.
You have always right to object to processing of your personal data if these data are processed for the purpose of right marketing.
How we protect your personal data
The safety of your personal data is of our highest priority. To secure the protection of your personal data we have taken the necessary technical and organizational measures. The personal data are processed on computers that are protected by password and anti-virus protection. The web page that serves for the operation of our e-shop is secured with the SSL certificate.
Transmission to third countries
We do not actively transmit your personal data to third countries outside EU. However, some partners we cooperate with during processing of your personal data do implement such data transfer, namely to the USA. All persons in the USA that these data are made available to do comply with the conditions of US-EU Privacy Shield and thus provide your personal data with adequate level of protection.
Payment security
No payment takes place on our webpage, everything is processed via payment gateways. These are complexly secured systems that communicate in encrypted way with your credit card issuer. Your payment details are only stored during the time necessary for completing the payment for your order. Naturally, we meet all the PCI (Payment Card Industry) standards.
Due to this we have none of your sensitive data available we could use in any way. At the same time there is no way we can affect the payment processing or speed up a refund.
Complaints
If you think that processing of your personal data by our company is contrary to applicable laws on personal data protection, you have a right to complain to our main supervisory authority – Office for Personal Data Protection of the Slovak Republic.