Personal Data Protection Terms
- Basic Information
- What Personal Data We Process
- Versions for Mobile Phones and Mobile Applications
- Why We Collect and Process Your Personal Data
- We Process Personal Data on the Following Legal Grounds
- Transfer of Personal Data to Third Parties
- How Long Do We Process Your Personal Data?
- Personal Data Security
- Personal Data of Individuals Under 16 Years of Age
- Your Rights Regarding the Protection of Your Personal Data
Basic Information
Personal Data Controller
We are the company OKTIS, s.r.o., with its registered office at J. D. Matejovie 940/63, 976 52 Čierny Balog, Company ID: 47 024 445, registered in the Commercial Register of the Slovak Republic, maintained by the District Court Banská Bystrica, section: Sro, insert number: 23772/S, contact details: email: gdpr@oktis.sk, tel.: +421 915 209 686 as the Controller and we are the controller of your personal data.
What Personal Data We Process
Personal Data You Provide to Us
We process personal data that you provide to us yourself.
More Information
Personal Data We Obtain Other Than Directly from You
As part of joint marketing campaigns, we may also process your personal data for the purposes of marketing campaigns or for the proper fulfillment of a contract, and we may combine them.
If your personal data is transferred to another entity, we will inform you in advance, including stating to whom the data is being transferred. Likewise, if someone sells your personal data to us, they must also inform you of this in advance.
Personal Data of Third Parties You Provide to Us
If you provide us with personal data of third parties, it is your responsibility to inform the person concerned and to obtain their consent to these personal data protection terms.
More Information
Personal Data We Process Automatically
When visiting our website, we may collect certain information about you, such as IP address, date and time of access to our website, information about your internet browser, operating system, or your language settings. We may also process information about your behavior on our websites, such as which links you visit on our site and which products are displayed to you. However, information about your behavior on the web is anonymized for maximum privacy, and therefore we cannot assign it to a specific user, i.e., a specific person.
If you access our websites from a mobile phone or similar device, or via one of our mobile applications, we may also process information about your mobile device (data about your phone, possible application crash logs, etc.).
Cookies
We also automatically process cookies.
What is a cookie?
A cookie is essentially a small text file created when you visit any website. It is used as a standard tool to store information about how our website is used.
This allows us to distinguish (but not identify) individual users from one another and tailor content to specific preferences. Cookies are important. Without them, browsing the web would be much more difficult.
What are cookies used for?
Cookies serve several purposes. On our online store and in our mobile applications, we use the following cookies:
Technical cookies: We use technical cookies to ensure our online store works properly (e.g., to allow you to create a user account, log in, and purchase goods and services). Without them, our online store would not function at all.
Functional cookies: Functional cookies help you avoid having to log in repeatedly and constantly reset your preferences (e.g., the language in which our online store is displayed). In such cases, your password is always encrypted. Using these cookies is not strictly necessary but significantly improves and eases your visit to our online store.
Analytical cookies: Analytical cookies help us improve our online store, which ultimately benefits you. Analytical cookies on our site are collected using a script from Google Inc., which then anonymizes the data. After anonymization, they are no longer considered personal data, as anonymized cookies cannot be linked to a specific user or person. We only work with cookies in anonymized form. Therefore, we cannot determine how a specific user behaved on our website (which pages they visited, which products they viewed, etc.).
The insights from these cookies are also used for advertising purposes, allowing us to display ads on other websites that we consider relevant to you based on this data. If you want to control which of your analytical cookies we process, you can use this add-on from Google (only available on desktop computers).
How you can influence which of your cookies we process
Simply use any standard internet browser (e.g., Internet Explorer, Safari, Firefox, Chrome) with the private browsing feature enabled, which prevents storing data about visited websites. Alternatively, you can completely disable cookies in your browser. However, if you also disable the processing of technical and functional cookies, you will prevent some features that help you from working properly.
You can easily control the processing of analytical cookies on our side by using this Google add-on (only available on desktop computers). However, disabling analytical cookies will unfortunately make it significantly harder for us to improve our online store.
Camera Systems at Our Locations
We also automatically process footage from cameras at our locations.
Our physical stores are monitored by camera systems with live streaming and recording. Cameras at our premises are used for both prevention and investigating potential unlawful activity. The camera system is operated by us, the company OKTIS, s.r.o., with its registered office at J. D. Matejovie 940/63, 976 52 Čierny Balog, Company ID: 47 024 445.
Versions for Mobile Phones and Mobile Applications
If you access our website from a phone, tablet, or similar device, we optimize it for such devices. Your personal data is processed in a similar way as when accessing from a computer.
Why We Collect and Process Your Personal Data
We process your personal data for the following reasons:
- Purchase of Goods and Services: First and foremost, we process your personal data to properly handle and deliver your order. If any problems arise, your personal data helps us know whom to contact.
- Customer Support: If you contact us with a question or problem, we need to process your data to respond to or resolve it. In some cases, personal data may be shared with third parties (e.g., the delivery service).
- User Account: Thanks to the personal data you provide in your user profile, a number of useful features are available to you (e.g., if you provide your phone number, we can easily inform you when your order will be delivered). You can change the information you’ve entered at any time, except for the email address, which is used to access your user account.
- Marketing Activities:
- Email Marketing: We send marketing emails based on your consent. You can easily unsubscribe from marketing emails by using our contact form or calling our customer support line at +421 915 209 686. If you create multiple user accounts using the same contact details (e.g., several accounts with different emails but the same phone number), for technical reasons it is not possible to unsubscribe all profiles from marketing emails via automated processes. In such cases, please contact us by phone or via the contact form to unsubscribe all profiles.
- Telemarketing: We conduct marketing calls to offer our goods and services and for related marketing communication. The legal basis for processing your phone number is either your consent or our legitimate interest in conventional direct marketing. You may object to this processing (see page Contacts > Other > Personal Data > Raise an Objection).
- Marketing Competitions: In some cases, a winner may be photographed or recorded, mainly to increase transparency of our marketing competitions. This personal data processing is based on our legitimate interest in increasing the credibility and attractiveness of the competitions. You may object to this processing (see page Contacts > Other > Personal Data > Raise an Objection).
- Improving Our Services: Based on your order history and behavior on our website, we can offer more relevant product suggestions, e.g., accessories for products you’ve purchased. In certain sections, we display products tailored specifically to your needs and interests. We may use tools like A/B testing, Google Analytics, Facebook Analytics, etc., to optimize web elements.
- Customer Reviews of Products and Services: After purchasing from us, you may be asked to rate the products or services. You can also submit a review voluntarily.
- Customer Support Line: If you contact us via our customer support line, we may record your phone call after prior notification. These recordings help us monitor the quality of service provided by our staff. If no notification of call recording is given, the call will not be recorded.
- Assertion of Rights, Legal Claims, and Government Inspections: We may also process your personal data if needed to assert our rights and legal claims (e.g., if you have an outstanding debt with us). Additionally, we may process your personal data for the purposes of inspections carried out by public authorities and for other similarly important reasons.
We Process Personal Data on the Following Legal Grounds
Contract Fulfillment and Conclusion
We need a large portion of your personal data in order to enter into a purchase or other agreement with you (such as an agreement for accounting services) regarding goods or services you wish to buy/order from us. Once the contract is concluded, we process your personal data to properly deliver the purchased goods or to properly provide the purchased services. Based on this legal reason, we mainly process billing and delivery data. To the necessary extent, we also process data related to accounting in accordance with the Accounting Act.
Legitimate Interests
We also use your personal data to provide you with relevant content—i.e., content that is interesting to you. On the basis of legitimate interest, we primarily process personal data that is collected automatically and through cookies.
For the same legal reason, we may send you email and SMS messages as our customer. The processing of your personal data on this legal basis also includes monitoring through cameras at our business premises.
To protect against illegal distribution and access to the electronic content you purchased, your name, surname, and address may be displayed.
If we process your personal data based on this legal ground, you may object to such processing (see the GDPR section).
Consent
For the purposes of sending marketing messages (email marketing) and telemarketing, we process your personal data based on your consent. If you do not give us consent and you are already our customer, we may still send you marketing messages (or call you as part of telemarketing) without your explicit consent. In any case, you can easily opt out of such marketing communication by contacting us via the helpline at +421 915 209 686, or by emailing us at gdpr@oktis.sk.
If you give us consent to process your personal data, you may withdraw it at any time via our contact form (see page Contacts > Other > Personal Data > Other).
Transfer of Personal Data to Third Parties
We transfer your personal data to third parties in the following cases:
- Delivery of Goods: The carrier you select would never be able to deliver the ordered goods without us providing them with details such as where and to whom the goods should be delivered. We provide this information to the carrier based on how you fill it out in your order. The transferred data includes primarily your first and last name, delivery address, phone number the carrier can contact you on, and if the goods were not paid for in advance, the amount to be collected upon delivery. The carrier is authorized to process this data only for the purpose of delivering the goods and must delete the personal data immediately afterward.
- Delivery of Goods Stored by a Contractual Partner: If you order goods from us that are stored in a warehouse of our contractual partner, we must provide your personal data to this partner so they can fulfill the order. This data includes your first and last name, delivery address, phone number for carrier contact, and the payment amount if the goods were not prepaid. The contractual partner must then forward the personal data to the carrier responsible for delivery. Both the warehouse partner and the carrier are obligated to use the data solely for the purpose of storage and delivery and delete it immediately afterward.
- Payment Cards: Our company does not have access to your payment card information. This data is handled solely by the secure payment gateway and the respective banking institution.
- If you have saved your payment card to speed up future purchases in our online store, we only store basic data such as a few digits at the beginning and end of the card number. If you wish to delete this data, simply go to your user profile settings and remove the card information (Account Settings > Payment Cards > Delete).
More Information
- Marketing Messages: For sending marketing messages (e.g., by email or SMS) or for telemarketing, we may use a third-party service. This third party is bound by confidentiality and may not use your personal data for any other purpose.
- Government Authorities: In the process of enforcing our rights, your personal data may be shared with a third party (e.g., a lawyer). If required by law or a state authority (e.g., the Slovak Police Force), we must provide your personal data accordingly.
- Group Companies: Your personal data may be shared with affiliated companies based on the legal ground of legitimate interest.
- You may object to this processing through our contact form (Other > Personal Data).
How Long Do We Process Your Personal Data?
First and foremost, we will process your data for the entire duration of the contractual relationship between us.
If the processing of personal data is based on consent, your personal data will generally be processed for 7 years or until such consent is withdrawn.
If you subscribe to marketing communications, we will process your personal data for 7 years or until you express your disagreement with further communication. You can easily opt out by calling our helpline at +421 915 209 686.
Please note that personal data necessary for the proper provision of services or fulfillment of legal obligations—whether arising from our contract or from generally binding legal regulations—must be processed regardless of your consent, for the period required by applicable laws (e.g., tax records must be kept for at least 10 years).
Data obtained through your user account or similar means will be processed for the duration of your use of our services, and usually for 5 years after termination. Afterwards, only basic identification data and information about the reason for account termination or data included in operational backups are retained for a reasonable period.
Call recordings from our helpline are stored for a short period, but no longer than 1 year, unless there is a legitimate interest requiring longer retention (e.g., suspected data misuse, fraud, etc.).
Camera recordings are generally stored for 90 days. If illegal activity occurs in a monitored area, we may contact the police and submit the recordings to the relevant authority (police, court, etc.). In such cases, the recordings will not be deleted after 90 days but retained as evidence until the matter is legally resolved.
Personal Data Security
Your personal data is safe with us. To prevent unauthorized access and misuse of your personal data, we have implemented appropriate technical and organizational measures.
We care deeply about protecting your personal data. Therefore, we not only regularly review our security measures but continuously improve them. All communication between your device and our web servers is encrypted. Login credentials are password-protected, and all your data is stored only on servers in secure data centers with restricted, carefully controlled, and audited access.
We strive to use security measures that, given the current state of technology, provide sufficient protection. These measures are regularly updated.
Personal Data of Individuals Under 16 Years of Age
Our online store is not intended for children under the age of 16. A person under 16 may use our online store only with the consent of their legal guardian (parent or custodian).
Your Rights Regarding the Protection of Your Personal Data
With regard to your personal data, you have the right to withdraw your consent to data processing at any time, the right to correct or supplement your data, the right to request restriction of processing, the right to object or complain about the processing of your data, the right to access your personal data, the right to request the transfer of your data, the right to be informed about any data security breaches, and under certain conditions, the right to request the deletion of certain data we process about you (the so-called „right to be forgotten“).
Modification and Supplementation
You have control over your personal data primarily through your user account. Here, you can delete or modify your basic personal information and change settings related to the sending of marketing messages (or unsubscribe from them), etc.
Alternatively, you can contact us via our helpline at +421 915 209 686.
Correction
If you believe that the personal data we process about you is incorrect, you can contact us via email at gdpr@oktis.sk. However, to speed up the correction of your data and for your convenience, we recommend updating your personal information directly in your user profile.
Access (Portability)
You may request a summary of your personal data by sending a request to gdpr@oktis.sk.
You also have the right to access the following information related to your personal data:
- The purposes of processing your personal data,
- The categories of personal data concerned,
- The recipients of your personal data, other than us,
- The planned period for which your personal data will be stored,
- Whether you have the right to request rectification or erasure of your personal data, restriction of processing, or to object to such processing,
- Information about the source of the personal data if not obtained directly from you.
Erasure
You may also request that we erase your personal data (however, this does not apply to data on documents we are required to retain by law, such as invoices or credit notes). If we need your personal data to establish, exercise, or defend legal claims, your request may be denied (e.g., if you have an outstanding balance with us or a complaint process is ongoing).
Please note that the main information about your payment card is not stored by our company but by our payment gateway. Therefore, we cannot delete this data ourselves and you must contact the payment gateway used to complete the transaction. Except in such cases, you have the right to erasure in the following situations:
- The personal data is no longer needed for the purposes for which it was processed,
- You have withdrawn your consent on which the processing was based, and there is no other legal ground for further processing,
- You have objected to the processing of personal data and it is determined that your interest outweighs our legitimate interest in processing the data in the specific situation,
- The personal data has been processed unlawfully,
- The obligation to erase the data is stipulated by a specific legal regulation,
- The data concerns children under the age of 16.
You can exercise your right by emailing gdpr@oktis.sk.
Objection
Some of your personal data is processed based on our legitimate interest (see the section titled “We Process Personal Data on the Following Legal Grounds”). If you have specific reasons, you may object to the processing of your personal data. You can submit your objection via email to gdpr@oktis.sk.
Restriction of Processing
If (a) you dispute the accuracy of your personal data, (b) your personal data is being processed unlawfully, (c) we no longer need your personal data for processing purposes but you need it to establish, exercise, or defend legal claims, or if (d) you have objected as described above, you have the right to have the processing of your personal data restricted.
In such cases, we may process your personal data only with your consent (with the exception of storage or backup of the relevant personal data).
Filing a Complaint
If you believe that we are processing your personal data unlawfully, you also have the right to file a complaint with the Office for Personal Data Protection. However, we would appreciate it if you first tried to resolve the issue with us. You can always easily contact us via our helpline at +421 915 209 686.
These Personal Data Protection Terms, including their components, are valid and effective as of 25.05.2018 and are available electronically at www.oktis.sk in the “Personal Data Protection” section.