Privacy Policy

We pay particular attention to the confidentiality, safety and protection of your personal data.

Our privacy policy is intended to provide you with clear, simple and complete information about the data we may collect while you use our website, how we use and process your personal data, how it may be transferred to third parties and about your rights and options to control your personal data and protect your privacy.

You will also be informed in particular about the type of personal data that may be collected and processed, the purpose, duration and legal basis for the collection and processing of your personal data and about the third-party components we use in order to improve our website, services and the user experience.

The responsible party („data controller“) for the website www.wesker.store in the sense of regulations applying to personal data protection,
in particular  Regulation (EU) 2016/679 –  the EU General Data Protection Regulation (hereinafter referred to as the “GDPR“) is:

Wesker & Berta d.o.o.
Put od Fortica 56, HR-52100 Pula
Email: contact@wesker.store

herein referred to as „we“, „us“ or „our“.

Data protection officer of the responsible party:

Mr Mayki Wesker
Address and contact same as above.

1. What is personal data?

Personal data is any information that makes the identification of a natural person possible.
This includes, in particular, name, date of birth, address, telephone number, Email address, IP address, customer number, order number, etc.

2. When can we collect and process personal data?

We collect and process personal data in accordance with the legal regulations and requirements.

Article 6 of the EU GDPR specifies when personal data may be collected and processed.

We may collect and process personal data if:

– You have given consent (Art. 6 (1) lit. a GDPR)

– Processing is necessary for the performance of a contract or to initiate a contractual relationship (Art. 6 (1) lit. b GDPR)

– Processing is necessary for compliance with a legal obligation (Art. 6 (1) lit. c GDPR)

– Processing is necessary for the purposes of our legitimate interests, except where such interests are overridden
by your interests or fundamental rights and freedoms (Art. 6 (1) lit. f GDPR)

More precisely, this means that we may collect and process data when you:

– Order goods from our website

– Create a customer account on our website

– Contact us or send a request for information to us

– Use our online services

– Agree to receive marketing communications from us (e.g. newsletter by Email)

– Browse our website using cookies or similar technology

– Click on our advertisements on the internet

3. How do we collect data?

Some data is collected when you provide it to us. This is, for example, the data you enter in a contact or order form.

Other data is collected automatically by our systems when you visit our website.

4. What do we use your data for?

– To process, manage and fulfill your online orders and their delivery

– To ensure the stability, security and proper functioning of our website

– To offer you a possibility of opening a customer account on our website

– To secure online transactions and prevent fraud

– To manage customer relations

– To improve the customer experience

– To conduct statistical analyses, in order to improve our services

– With your prior consent, to send you information on our offers and news

5. How long do we keep your data?

We store and process your data only as long as required to achieve the particular processing purpose, or if there is a legal retention period,
in particular for accounting or taxation purposes, until that period has expired.

Once the processing purpose has been achieved, or the legal retention period has expired, your data will be erased.

6. With whom do we share your data?

In certain cases, it is necessary to transfer personal data in the course of data processing, in order to achieve the processing purpose.

We may transfer your personal data to the following recipients:

– Shipping/delivery service providers

– Payment service providers

– Service providers as part of order fulfillment

– Marketing service providers

– Government authorities and institutions to the extent that is necessary or required

Some recipients of your personal data may be located abroad, including outside of the European Economic Area.

All data transfers outside of the European Economic Area are subject to appropriate guarantees, especially contractual, technical and organisational guarantees,
that comply with the applicable regulations relating to the protection of personal data.

7. What are your rights and how can you exercise them?

Under current regulations, particularly the GDPR, you have the right to:

– Access your data (Art. 15 GDPR)

– Correct your data (Art. 16 GDPR)

– Restrict the processing of your data (Art. 18 GDPR)

– Request erasure of your data (Art. 17 GDPR)

– Object to processing of your data (Art. 21 GDPR)

– Withdraw your consent to processing of your data (Art. 7 (3) GDPR)

– Obtain portability of your data (Art. 20 GDPR)

You can exercise these rights at any time by sending us an Email at contact@wesker.store, using our contact form or sending us a letter.

If, at any time, you no longer wish to receive information on our offers and news (newsletter),
you can unsubscribe by using the link provided for this purpose in every newsletter we send to you.

You may also lodge a complaint with your competent data protection authority at any time (Art. 77 GDPR).

Competent data protection authorities can be found at:
https://edpb.europa.eu/about-edpb/board/members

For any questions about the collection and processing of your data by us, you can always contact us at contact@wesker.store

8. Information about the data collection and processing on our website

Server data/Server log files

For technical reasons and to ensure the stability, security and proper working of the website,
our server provider will collect the following data sent automatically by your internet browser:

– Type and version of your internet browser

– Operating system used

– Referrer URL (the website you came from)

– The webpages visited on our site

– Date and time of your visit

– Duration of your visit

– Device type (desktop or mobile)

– IP address of your device

This data will not be combined with any other of your data.

Your IP address will automatically be anonymised.

The data is stored temporarily and will be erased after no more than 7 days, or if continued storage is required for evidentiary purposes,
until the relavant incident has been resolved.

The legal basis for this data collection and processing is Art. 6 (1) lit. f GDPR.
Our legitimate interest lies in the stability, security, improvement and proper working of our website.

Cookies

Cookies are small text files that are stored on your device by your browser and contain certain information about you, such as browser type, location data or IP address.

The use of cookies enables us to make our website more efficient, functional, secure and user-friendly.

They also make certain features of our website possible, like the shopping cart function or displaying the website in different languages.

There are several types of cookies, some are issued directly by us or our service providers, while others may be issued by third parties.

Only the entity that has issued the cookies is able to read or modify the information they contain.

a) The cookie banner

When you visit our website, a cookie banner shows up immediately on the lower part of the screen.

It informs you that our website uses cookies and offers you to see more information on the use of cookies, by clicking the „more information“ button.

It also asks you if you agree to the use of cookies or not.

You may agree to the use of all cookies by clicking the „yes“ button, or deny the use of third-party and analysis cookies by clicking the „no“ button.

If you make no choice regarding the use of cookies, only the cookies that are important for the proper functioning of our website will be used.

Third-party and analysis cookies will only be used if you agree to that by clicking the „yes“ button.

Cookies that are important and necessary for the proper functioning of our website will always be used, unless you block or disable them directly in the settings of your browser.

The cookie banner will not disappear until you have made a choice on the use of cookies.

Once you agreed to, or denied the use of third-party and analysis cookies, a persistent cookie will be stored on your device in order for our website to remember your preferences on the use of cookies.

b) Session cookies

Session cookies are issued by us.

They are temporary and the information they store on your device is in the form of a session identification that will not, in any case, relate to you personally.

These cookies are essential for browsing our website, especially for the order process to work properly.

Disabling the session cookies may cause problems when browsing our website or make it impossible to place an order.

Session cookies will be stored on your device when you visit our website.

When you close your browser, the session cookies are deleted.

The legal basis for the use of session cookies is Art. 6 (1) lit. b GDPR, when these are used for the purpose of initiating or processing contractual relationships.
Additionally, our legitimate interest lies in ensuring and improving the functionality of our website, so the legal basis is also Art. 6 (1) lit. f GDPR.

c) Persistent cookies

Persistent cookies are issued by us.

They store information that is used to remember your preferences for our website, such as language preferences and cookie preferences or your login, when you choose the „remember me“ option.

By using persistent cookies, our website is able to remember your preferences and improve your user experience.

You can disable persistent cookies directly in the settings of your browser. This may, however, affect the user experience and functionality of our website.

Persistent cookies may be stored on your device when you browse our website and they are not deleted automatically when you close your browser.

You can delete the persistent cookies stored by your browser manually in your browser settings.
In case you need help with that, please use the help function of your browser, see the documentation for your specific browser or contact its maker for support.

The legal basis for the use of persistent cookies is Art. 6 (1) lit. f GDPR, as our legitimate interest lies in improving the user experience and functionality of our website.

d) Third-party and analysis cookies

Third-party and analysis cookies are issued by companies we cooperate with (e.g. Google Inc.), for the purpose of conducting statistical analyses, advertising or improving our services.

Third party and analysis cookies are not essential for browsing our website and will only be used if you agree to that, by clicking the „yes“ button on the cookie banner.

You can disable third-party cookies and analysis cookies directly in the settings of your browser.

The issue and use of cookies by third parties on our website are subject to privacy policies of those third parties.

More information about these third parties and their privacy policies can be found further below in this privacy policy.

The legal basis for the use of third-party and analysis cookies is Art. 6 (1) lit. f GDPR, as our legitimate interest lies in the analysis and improvement of our website and services.

e) Disabling and deleting cookies

You can disable the use of cookies in the settings of your browser.

You can also delete the cookies that have already been stored by your browser.

In case you need help with that, please use the help function of your browser, see the documentation for your specific browser or contact its maker for support.

Order processing

We will process the data you submit to us when ordering goods on our website, in order to fulfill your order and its delivery.

Orders cannot be fulfilled without processing this data.

Your data will be shared with the responsible shipping/delivery company, to the extent required to deliver your order and with the payment service provider, to the extent required to process your payment.

Your data will be deleted after your order has been fulfilled, however only after the legal retention period for accounting and taxation purposes has expired.

If you register a customer account on our website, your order data will not be deleted after your order has been fulfilled.
If a customer account exists, the storage and processing of your data are based on your consent and will be deleted when you revoke your consent, or the legal retention period has expired.
For more information, see the section „customer account“ below.

The legal basis for the processing and transfer of data is Art. 6 (1) lit. b GDPR, as the processing and transfer of this data serve the purpose of fulfilling contractual relationships.

Customer account

If you register a customer account on our website, we will store and use the data you provided during registration for the purposes of opening and providing your account, fulfilling your orders and offering you additional functions, like an overview of your previous orders, the ability to download your invoices from your account and a faster checkout process.

Your IP address and the date and time of your registration will be stored.

During the registration process, we need to obtain your consent for the processing of your data,
with reference being made to this privacy policy and our general terms and conditions.

Your data will only be used for the above mentioned purposes and will not be shared with any third parties.

You may always revoke your consent for the processing of your data by simply informing us of your wish to do so.

Your data will be deleted when you revoke the consent for the processing of your data.
However, data that is subject to legal retention periods for accounting and taxation purposes will only be deleted after this periods have expired.

Please note, that your customer account will be cancelled after you revoke the consent for the processing of your data.

The legal basis for the storage and processing of your data is Art. 6 (1) lit. a GDPR, since the storage and processing are based on your consent given during the registration process.
If your data is used for the purpose of initiation or fulfillment of contractual relationships, the legal basis is also Art. 6 (1) lit. b GDPR.

Contact

When you contact us by Email or using the contact form, we use the data you provide in order to answer your inquiry or process and fulfill your request.

If you contact us by using the contact form, we will obtain your consent for the processing of your data, with reference being made to this privacy policy.

You may always request the deletion of your data or revoke your consent given when using the contact form, by simply informing us of your wish to do so.

Your data will be deleted on your request or when you revoke your consent for the processing of your data or when your request has been fulfilled and if there are no further legal retention periods or obligations to store your data.

The legal basis for the processing and storage of this data is Art. 6 (1) lit. a GDPR, when it is based on your consent.
If your data is used for the purpose of initiation or fulfillment of contractual relationships, the legal basis is Art. 6 (1) lit. b GDPR.
Our legitimate interest also lies in securing a functioning customer support, so the legal basis for data storage and processing is also Art. 6 (1) lit. f GDPR.

Newsletter

If you subscribe to our newsletter, we will store and use the data you provided to us when subscribing for the sole purpose of sending you the newsletter.

We also store your IP address and the date and time of your subscription.

Your data will not be used for any other purposes and will not be shared with any third parties.

Before you subscribe, we need to obtain your consent to receive the newsletter and your consent for the processing of your data, with reference being made to this privacy policy.

You may always revoke your consent to receive the newsletter and your consent for the processing of your data by simply informing us of your wish to do so.

Alternatively, you can always unsubscribe by using the link provided for this purpose in every newsletter we send to you.

The legal basis for the storage and processing of your data is Art. 6 (1) lit. a GDPR, since the storage and processing are based on your consent.

Google Analytics

We may use Google Analytics to conduct statistical analyses on how our website is used.

This service will only be used if you agree to the use of third-party cookies on our website, by clicking the „yes“ button on our cookie banner.

Google Analytics is a third-party web analytics service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
(hereinafter referred to as „Google“).

Google Analytics uses third-party cookies to analyse user behavior on our website and collects information about your visit through these cookies, such as time, location or frequency of your visits and your IP address.

This data will usually be transmitted to a Google server in the USA and stored there.

We have activated the IP address anonymisation function for Google Analytics on our website, so your IP address will be anonymised by Google within the European Union or the European Economic Area, before it is transmitted to the USA.

Your IP address will not be connected with any other data held by Google.

Google will use the collected information on our behalf to evaluate your use of our website and  to compile reports on the website activity for us, while guaranteeing that it will follow the data protection regulations of the European Union when processing data in the USA.

You can always disable the use of third-party cookies in the settings of your browser.

Alternatively, you can download and install an opt-out plugin for your browser, offered by Google at https://tools.google.com/dlpage/gaoptout?hl=en or set an opt-out cookie by using the following link:
Deactivate Google Analytics

If you agreed to the use of third-party cookies on our website, you can always disable and delete them in your browser settings or  use the opt-out plugin or set an opt-out cookie to prevent further collection of your data by Google Analytics on our website.

Please note, that if you delete the cookies in your browser settings, the opt-out cookie may also be deleted and it might become necessary to set it again.

Google’s privacy policy  and information about the deletion of your data can be found at https://policies.google.com/privacy

More information on data protection regarding Google Analytics can be found at https://support.google.com/analytics/topic/2919631?hl=en

The legal basis for the use of Google Analytics is Art. 6 (1) lit. f GDPR, as our legitimate interest lies in the analysis and improvement of our website and services.

Google Fonts

We use Google Fonts to be able to display certain fonts on our website.

Google Fonts is a service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as „Google“).

In order to display certain fonts on our website, a connection is established to a Google server in the USA when you access our website.

Google guarantees, that it will follow the data protection regulations of the European Union when processing data in the USA.

Google receives the information that your request for the display of fonts has been sent through our website and your IP address to which the fonts are being transmitted for display.

According to Google, all collected data is only used to provide the fonts and is not evaluated individually, but only in aggregated form to create general statistics on the use of fonts.

Google Fonts does not use any cookies or similar tracking technologies.

Google’s privacy policy  can be found at https://policies.google.com/privacy

More information on Google Fonts can be found at https://developers.google.com/fonts/faq

The legal basis for the use of Google Fonts is Art. 6 (1) lit. f GDPR, as our legitimate interest lies in the uniform and attractive presentation and technical optimisation of our website.

Google AdWords and Google Conversion Tracking

We use Google AdWords together with Google Conversion Tracking to advertise our website in Google search results and on other websites.

These services are provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as „Google“).

We use Google Coversion Tracking as part of Google AdWords, which means that when you click on our advertisement served by Google, a conversion tracking cookie will be stored on your device.

These conversion tracking cookies expire after 30 days and do not identify you personally.

If the cookie is still active and you visit certain pages of our website, we and Google can see that you clicked on our advertisement and that you were then forwarded to that page.

Each Google AdWords advertiser has a different cookie, so cookies cannot be tracked over the websites of Google AdWords advertisers.

The information collected by the conversion tracking cookie is used by Google to create coversion statistics for us.

We receive information on the total number of users who clicked on our advertisements and what pages they subsequently visited on our website.

Neither we, nor any third parties who also use Google AdWords are able to identify you personally from this conversion tracking.

You can disable the use of cookies or delete the already stored cookies in your browser settings.

Google’s privacy policy  can be found at https://policies.google.com/privacy

The legal basis for the use of Google Conversion Tracking as part of Google AdWords is Art. 6 (1) lit. f GDPR, as our legitimate interest lies in the analysis and improvement of our website and advertisement.

Payment service providers

When processing your order, we need to share the information you provided when placing the order with the payment service provider responsible for the processing of your payment, in order to fulfill your order.

Your data will only be shared to the extent required to process your payment.

The legal basis for the processing and transfer of data is Art. 6 (1) lit. b GDPR, as the processing and transfer of this data serve the purpose of fulfilling contractual relationships.

a) PayPal

PayPal payments are processed by PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, 2449 Luxembourg, Luxembourg (hereinafter referred to as „PayPal“).

When paying by PayPal, you will be redirected to PayPal‘s website, where the payment can be completed using your PayPal account and in accordance with PayPal’s privacy policy.

PayPal’s privacy policy can be found at https://www.paypal.com/webapps/mpp/ua/privacy-full

b) Stripe

Credit card, SOFORT and Giropay payments are processed by Stripe Payments Europe Ltd. and Stripe Technology Europe Ltd. (STEL),
The One Building, 1, Lower Grand Canal Street, Dublin 2, Ireland (hereinafter referred to as „Stripe“).

All payments are processed in accordance with Stripe’s privacy policy.

Stripe’s privacy policy can be found at https://stripe.com/privacy

You can find out more about the individual payment methods in our Terms and Conditions.

9. Security

We use appropriate technical and organisational security measures to protect the data we store and process against manipulation, loss, destruction or access by unauthorised parties.

Security measures are constantly being adjusted to new security standards.

All data transfer from and to our website is always encrypted using the current TLS encryption protocol.


Version 002EN