General personal data protection conditions
While conducting payments on our web shop you are using HT PayWay – an advanced system for secure acceptance of credit cards on the Internet.
HT PayWay ensures complete privacy of your credit card data from the moment you type them into HT PayWay payment form. Data required for billing is forwarded encrypted from your web browser to the bank that issued your payment card. Our store never comes into contact with your payment card data. Similarly, HT PayWay operators cannot access your complete cardholder data. An isolated system core independently transmits and manages sensitive data while at the same time keeping it completely safe.
The form for entering payment data is secured by an SSL transmission cipher of the greatest reliability. All stored data is additionally protected by hi-grade encryption, using hardware devices certified by FIPS 140 2 Level 3 standard. HT PayWay fulfills all of the requirements for safe online payment prescribed by the leading credit card brands, operating in compliance to the PCI DSS Level 1 standard-the highest security standard of the payment card industry. Payments made by cards enroled with the 3-D Secure program are further authenticated by the issuing bank, confirming your identity through the use of a token or a password.
All information collected by HT PayWay is considered a banking secret and treated accordingly. The information is used exclusively for the purposes for which they were intended. Your sensitive data is fully secure and it’s privacy is guaranteed by the state of the art safeguard mechanisms. We collect only the data necessary for performing the work in accordance with the demanding prescribed procedures for online payment.
Security controls and operating procedures applied within the HT PayWay infrastructure not only ensure current reliability of HT PayWay but permanently maintain and enhance the security levels of protecting your credit card information by maintaining strict access controls, regular security and in-depth system checks for preventing network vulnerabilities.
Data protection information
„Branka“ Flower Shop as the controller of personal data, collects data for sales contract fulfilment, product delivery, sales documentation, technical support and credit or debit card payment authorisation for which legal basis is laid down in Article 6(1)(b) of the General Data Protection Regulation. In other words, data processing is necessary for contract fulfilment in which the data subject is a party or in order to take action on the data subject’s request before the contract is concluded.
Furthermore, personal data is processed in order to store orders made by the buyers, to identify specific users and to analyse business activity for which the basis is laid down in Article 6(1)(f) of the General Data Protection Regulation, since data processing is necessary for the need to legitimately improve business activity and adapt according to the market needs.
In special cases, if you have given us your permission, your contact data can be used for direct marketing for which the legal basis is laid down in Article 6(1)(a) which states that the data subject has given their consent for personal data processing for one or more specific purposes.
If you as a user have any questions regarding personal data protection, you can contact „Branka“ Flower Shop, located in Zagreb, Frankopanska 3, directly, or you can contact us our via e-mail: firstname.lastname@example.org
The user as a data subject is responsible and obligated to browse and study www.flowershopzagreb.com before sharing any personal data.
Processed personal data and personal data usage
On our website, www.flowershopzagreb.com, „Branka“ Flower Shop collects the following personal subject data:
• name and surname,
• telephone number,
• email address,
• shipping address,
• billing address,
• postal code,
Insight into personal user data can be granted to, when conducting their scope of work concerning buying and selling which users make with „Branka“ Flower Shop, legal persons that take part in sales contract fulfilment, for example delivery agencies, accounting agencies, IT support and similar with whom we determine the scope and the means of personal data protection through contractual agreements.
„Branka“ Flower Shop can give the listed information to third parties in order to fulfil the contract, protect the users’ and „Branka“ Flower Shop ‘s interests and to stop the potential abuse, in order to get the best possible insight and understanding into individual user needs and requests, as well as to develop the highest possible quality of service provision by „Branka“ Flower Shop which should result in increased user satisfaction for which legal basis is the legitimate interest of the controller described in Article 6(1)(f) of the General Data Protection Regulation.
Personal data storage
„Branka“ Flower Shop will ensure that the personal user data is kept on a safe location (which includes a reasonable administrative, technical and physical protection in order to prevent unauthorised use, access, disclosure, copying or modification of personal data), access to which will be granted only to authorised „Branka“ Flower Shop personnel.
„Branka“ Flower Shop does not record or store users’ transaction data needed for card payment. „Branka“ Flower Shop will protect personal data to the extent laid down in specific legal regulations (for example, data on financial transactions is stored for 11 years, as laid down by the Accounting Act) or until the right to use the data is repealed as per the data subjects’ wish if it does not interfere with the legal regulations.
The controller has taken the technical, personnel and organisational personal data protection measures necessary to protect personal data from accidental loss or destruction and from unauthorised access, modification, publication or any other form of abuse and has determined that it is the obligation of data processing personnel to sign a non-disclosure agreement.
Information regarding your rights
In accordance with applicable regulations on data privacy protection, you have the following rights:
• The right to information on your stored personal data;
• The right to request corrections, erasure or restricted use of your personal data;
• The right to objection to data processing for our own legitimate interest, public interest or profiling, except if we can prove that there are convincing, justified reasons above your interests, rights and freedoms, or that such processing is carried out because of validation, application or defence of legal requirements;
• The right of data transmission;
• The right to file a complaint to the Personal Data Protection Agency.
At any point in time you can withdraw your consent regarding your personal data collection, processing or usage. For further info, read above to find out more on data processing based on your consent.
If you have any questions regarding your rights, you can contact our data protection support at: email@example.com
You will receive a response no later than 30 days after the filing date.
„Branka“ Flower Shop finds personal data protection extremely important and has taken a number of precautions in order to protect the users’ personal data. The users can access their personal data on www.flowershopzagreb.com with a password and an email address.
Links to other websites
This Data Protection Information applies only to usage of data that „Branka“ Flower Shop collects from data subjects.
Other websites that can be accessed via www.flowershopzagreb.comhave their own confidentiality agreements and privacy policies. If a user visits another website through www.flowershopzagreb.com, „Branka“ Flower Shop advises users to check the data confidentiality agreement of the website, since „Branka“ Flower Shop is not responsible for conditions of work of other websites.
Cookies in users’ browsers allow „Branka“ Flower Shop to provide adequate functionality of all features of the internet portal, to adjust certain content specifically to the needs of each individual user, and to constantly improve the Portal based on the visits analysis.
What is a Cookie?
A Cookie is information stored on the user’s computer by a website that they have visited. Cookies normally save the user’s preferences and settings for the website, such as the preferred language or address. When a user visits the same website afterwards, their internet browser sends back the Cookies that belong to this site. This feature enables „Branka“ Flower Shop to show information adjusted to each individual user’s needs.
Cookies can store a wide range of information, including personal information (such as the user’s name or e-mail address). However, this information can be saved only when the user enables the feature – websites cannot gain access to information that user did not give permission for, and they cannot access other files on the user’s computer. The default activities for storing and sending Cookies are not visible to users. However, the user can alter their internet browser settings in such a way that they can chose whether they want to approve or reject requests for storing Cookies, by deleting the saved Cookies automatically when the internet browser is closed, and the like.
Besides personal data, „Branka“ Flower Shop can ask for other data from data subjects through which data subjects can be identified, but is not considered personal data (for example data on website usage, computer data, internet provider data, preferences, hobbies, interests, activities) and which provide „Branka“ Flower Shop with higher quality, more precise and more personalised content for users, better websites and additional content customization for users. Based on these data, „Branka“ Flower Shop gains information on the most popular content among specific users.
Changes in the Data Protection Information