Privacy and Personal Data Protection Policy
I. Validation and use of policy
This Privacy and Personal Data Protection Policy applies for websites www.bens-consulting.com and chemius.net (hereinafter referred to as the website), managed by BENS CONSULTING d.o.o., Bakovniška ulica 7, Kamnik, Slovenia (hereinafter referred to as the service provider). This Policy applies for all users of the website.
By using the website the user confirms to understand, accept and agree with all of the provisions of this Privacy and Personal Data Protection Policy.
This Policy may be modified or supplemented at any time without prior notice or warning. By using the website under a modified Policy, the user confirms to agree with the realised modifications.
II. User Data Collected by the Service Provider
Personal and other data about users who are natural entities (except sole entrepreneurs) are collected by the service provider via the website or with the assistance of the website. The reasons for processing (using) such data are listed in the following table:
Data type | Where/when is data collected | Purpose of data processing | Duration of data archiving |
---|---|---|---|
– E-mail – Language choice It is obligatory to enter both data. |
At registration for e-newsletter.
Language is selected automatically relating to the language which was chosen by the user for the initial viewing of the website content. |
- Sending e-news, expert articles and other content relating to the website to the entered e-mail address - Recognising benefits, discounts etc. to e-newsletter subscribers in connection with the service provider’s products and services - Registering potential clients |
Until the user revokes (deregisters) from the website. |
- Name - Surname - Company - Contact telephone number (not obligatory) - Language choice All data must be entered except if it is specified otherwise. |
When user registers for an offer.
Language is selected automatically relating to the language which was chosen by the user for the initial viewing of the website content. |
- Preparation of the offer and its submission to the entered e-mail address - Sending e-news, expert articles and other content relating to the website to the entered e-mail address - Recognising benefits, discounts etc. to e-newsletter subscribers in connection with the service provider’s products and services - Registering potential clients and contacting them via e-mail, telephone or in any other manner with the purpose to initiate cooperation |
Until the user revokes (deregisters) from the website. |
- Name - Surname - Company - Contact telephone number (not obligatory) - Language choice All data must be entered except if it is specified otherwise. |
When a user completes a contact form. When the form is completed the user agrees that the service provider can initiate further contact.
Language is selected automatically relating to the language which was chosen by the user for the initial viewing of the website content. |
- Preparation of the offer and its submission to the entered e-mail address - Sending e-news, expert articles and other contents relating to the website to the entered e-mail address - Recognising benefits, discounts etc. to e-newsletter subscribers in connection with the service provider’s products and services - Registering potential clients |
Until the user deregisters from the website. |
– Name – Surname All data must be entered. |
When the contact form is completed by a potential franchisee. |
- Sending franchise questionnaire, on the basis of which the service provider decides whether the candidate is appropriate for further negotiations regarding the granting of a franchise. - Registering potential franchisees. |
Until the user deregisters from the website. |
III. Data Processing
The service provider shall use the collected data exclusively for the purposes stated in the table under Section II of this Policy. Prior to using the collected data for any other purpose, the service provider shall first obtain the user’s consent.
The service provider shall not send the collected data to third parties, except for legally required purposes (e.g. court and other authorities’ decrees etc.).
The user has been informed and therefore agrees that the service provider may submit certain tasks in connection with the collected data to third parties (contractual data processing service). Third parties may process such data exclusively within the framework of the service provider’s authorisation and in accordance with the purposes as defined in the table under Section II of this Policy.
IV. Data Protection and Duration of Data Archiving
The service provider shall protect all user data in accordance with this Policy and personal data protection regulations as stipulated by the legislation of the Republic of Slovenia and in accordance with the regulations of the European Union.
In the chemius.net application all data is sent to the service provider via a secure connection (https). The service provider regularly implements data backup.
The user has been informed and therefore agrees that the service provider may keep all data sent to the service provider for the period as stated in the table under Section II of this Policy. Other data may be kept until it is necessary to achieve the purpose of the data collection, then they must be permanently deleted or efficiently made anonymous, so that no data could be connected to a specific user.
V. Users’ Rights
The service provider shall enable the user with the information and method to unsubscribe from receiving e-mails or deregister from the website.
The user may at any time edit personal data by sending an e-mail to the service provider, i.e. to info@bens-consulting.eu.
The user may request that the service provider, i.e. by sending a request to info@bens-consulting.eu, edits the data referring to that specific user and which is incomplete or incorrect.
The user may request that the service provider, i.e. by sending a request to info@bens-consulting.eu, confirms whether data referring to the user is being collected or processed, as well as the type of data which is being collected and processed. This request may be submitted once every three months.
The user may request that the service provider, i.e. by sending a request to info@bens-consulting.eu, sends an electronic copy of all data referring to the user. This request may be submitted once every three months. Prior to sending the copy of the data, the service provider is entitled to demand that the user proves his/her identity in an appropriate way. If the service provider has any doubts about the identity of the user, the request may be rejected.
The user may request that the service provider, i.e. by sending a request to info@bens-consulting.eu, permanently deletes all data referring to the user. Prior to the deletion of data the service provider is entitled to demand that the user proves his/her identity in an appropriate way. If the service provider has any doubts about the identity of the user, the request may be rejected.
VI. Exclusion of Liability
The service provider shall not be held liable for any damages which the user might suffer from sending the service provider incorrect, false, incomplete or non-updated data referring to that specific user.
The service provider shall not be held liable for any damages which the user might suffer because unauthorised third parties were informed, obtained, modified or in any other way processed the user’s data without explicit prior consent or permission of the service provider and despite the service provider’s diligent conduct.
The service provider is in no case, even if diligent conduct was not performed, held liable for damages which the user would suffer due to the cases specified in the previous paragraph of this item, if such cases were caused by the fact that the user did not diligently save data required for accessing certain elements of the website (username and password). The user shall be solely responsible for protecting data that is necessary for accessing certain elements of the website (username and password).
The user shall be obliged to immediately notify the service provider on any suspicion of abuse of personal data or data necessary for accessing certain elements of the website (username and password) or if there is a suspicion that unauthorised persons were informed about such data.
When the service provider and the user establish a contractual relationship, in each case regarding the exclusion and limitation of liability of the service provider, all provisions regulating that relationship shall apply (contract, general terms and conditions etc.).
VII. Final Provisions
The invalidity of any provision of this Policy, regardless of the reason for invalidity, shall not mean that the entire Policy is considered as invalid as a whole. In such cases the invalid provision shall be considered as non-determined and this Policy shall remain valid without the applicable provision.
The law of the Republic of Slovenia and European Community law shall apply for all legal relations between users and the service provider. The competent court in Ljubljana in the Republic of Slovenia shall have the jurisdiction for resolving any potential disputes.
Za pravna razmerja med uporabniki in ponudnikom se uporablja pravo Republike Slovenije in pravo Evropskih skupnosti. Za reševanje morebitnih sporov je pristojno stvarno pristojno sodišče v Ljubljani, Republika Slovenija.