1. General provisions
1.1. This Privacy Policy was developed by ZDRAVO limited liability company, legal entity identification code 34603398 (hereinafter – the “Recipient”) to explain the procedure for receiving, storing, processing, using and disclosing Personal Data of natural persons (hereinafter each such person – ” Provider”), which interact with the functionality of the Recipient’s website on the Internet via the link: https://zdravo.in.ua (hereinafter – the “Site”).
1.2. The Provider’s consent to this Policy means confirmation by the Provider that he is aware of the procedure for receiving, storing, processing, using and disclosing his Personal Data and the Provider has given consent to the Recipient for receiving, storing, processing, using and disclosing his Personal Data in accordance with the provisions of this Policy.
1.3. This Policy enters into force from the moment of its posting on the Site. The Recipient reserves the right unilaterally, without any special notice, to make changes to this Policy at any time by posting a new version on the Site. Each new edition of the Policy enters into force from the moment of its posting on the Site, canceling the validity of the previous edition.
2. Definition of terms
2. Definition of terms 2.1. The term “Personal Data” in this Policy, including Section 1 “General Provisions”, means information about a specific Contributor that allows that Contributor to be identified as an individual.
2.2. Other terms used in this Policy are interpreted in accordance with generally accepted interpretation and current legislation of Ukraine.
3. Personal data
3.1. When visiting and interacting with the Site, the Provider agrees that it may be transferred, and the Recipient may process Personal Data:
3.1.1. email address;
3.1.2. surname, first name and patronymic;
3.1.3. payment details and delivery address;
3.1.4. other data voluntarily transferred by the Provider to the Recipient during interaction with the website.
3.2. Provision of Personal data provided for in Clause 3.1 of this Policy for placing an order on the Site is mandatory.
3.3. In addition to the Personal Data defined in clause 3.1 of this Policy, the Recipient may also collect technical information, including data on the frequency of visits to the Site, visited site pages, duration of use of the Site, time and date of placing an order, IP address of the Provider, etc.
3.4. The recipient does not collect or in any other way process Personal Data about racial or ethnic origin, political, religious or ideological beliefs, membership in political parties and trade unions, criminal record, as well as biometric or genetic data.
4. Purposes of Personal Data processing
4.1. The Recipient stores and processes Personal Data for the purpose of:
4.1.1. ensuring the possibility of processing and fulfilling orders, including processing payments, delivery, registration and return/exchange of goods, as well as communication with the Provider;
4.1.2. provision of effective client support of the Provider, responses to the Provider’s requests in accordance with the current legislation of Ukraine, problem solving and information about the product, changes in the characteristics of the product, etc.;
4.1.3. providing a personalized experience for the Provider, including individual product filling according to the Provider’s wishes;
4.1.4. sending marketing materials, advertising offers, other informational messages that may potentially be of interest to the Visitor through electronic messages and/or SMS messages;
4.1.5. receiving feedback from the Provider, improving the service, as well as for adapting offers;
4.1.6. conducting statistical and other research based on depersonalized data;
4.1.7. ensuring the security and confidentiality of Personal Data;
4.1.8. fulfillment of one’s legal obligations and satisfaction and protection of one’s legitimate interests, fulfillment of decisions and/or requirements of state authorities.
5. Storage of Personal Data
5.1. The Recipient stores and otherwise processes Personal Data only for the purposes disclosed in Clause 4.1 of this Policy and for the period necessary to fulfill its legal obligations and satisfy and protect its legitimate interests.
5.2. Personal data is stored in the personal data database, which is the property of the Recipient.
5.3. The term during which the Recipient stores Personal Data depends on the nature of legal obligations and actions that the Recipient has the right to take to satisfy and protect their legitimate interests. If certain Personal Data is no longer needed by the Recipient for the purposes disclosed in clause 4.1 of this Policy, it will be deleted from its systems.
6. Rights of the Provider in matters of Personal Data protection
6.1. According to the Law of Ukraine “On the Protection of Personal Data”, the Provider has the right to:
6.1.1. to know about the sources of collection, the location of their Personal data, the purpose of their processing, the location or place of residence (residence) of the owner or manager of personal data or to give an appropriate mandate to receive this information to persons authorized by him, except for cases established by law;
6.1.2. to receive information about the conditions for providing access to personal data, in particular information about third parties to whom his Personal Data is transferred;
6.1.3. to access your Personal Data;
6.1.4. to receive no later than thirty calendar days from the date of receipt of the request, except in cases provided by law, an answer on whether his Personal Data is being processed, as well as to receive the content of such Personal Data;
6.1.5. present a reasoned demand to the owner of Personal data with an objection to the processing of his Personal data;
6.1.6. make a reasoned demand for the change or destruction of your Personal Data by any owner and manager of personal data, if these data are processed illegally or are unreliable;
6.1.7. to protect your Personal Data from illegal processing and accidental loss, destruction, damage due to intentional concealment, failure to provide or untimely provision, as well as protection from providing information that is unreliable or dishonors the honor, dignity and business reputation of a natural person;
6.1.8. file complaints about the processing of your Personal Data to the Commissioner or to the court;
6.1.9. apply legal remedies in case of violation of the legislation on the protection of personal data;
6.1.10. enter a reservation regarding the limitation of the right to process your Personal Data when giving consent;
6.1.11. withdraw consent to the processing of Personal Data;
6.1.12. know the mechanism of automatic processing of Personal Data;
6.1.13. to protect against an automated decision that has legal consequences for him.
6.2. If the Buyer is located in the EU, according to the GDPR, he has the right to:
6.2.1. request access to their Personal Data stored by the Recipient, their deletion or correction;
6.2.2. to be informed about the processing of his Personal Data;
6.2.3. limit the processing of your Personal Data;
6.2.4. on the portability of your Personal Data;
6.2.5. object to the processing of your Personal Data;
6.2.6. submit a complaint to the relevant supervisory authority.
7. Protection of Personal Data
7.1. The recipient uses generally accepted standards of technological and operational protection of Personal Data against unauthorized access, misuse, modification or destruction. At the same time, despite all efforts, the Recipient cannot guarantee absolute security against any threats arising beyond the scope of responsibility and regulation of the Recipient.
7.2. The Recipient guarantees the fulfillment of its obligations regarding the protection of Personal Data, as well as technical and organizational security measures to prevent unauthorized access, misuse, modification or destruction of Personal Data within the scope of responsibility and regulation of the Recipient.
8. Transfer of Personal Data to third parties
8.1. The Recipient undertakes not to transfer Personal Data to third parties, except when such transfer is required by law, relates to legal protection or is carried out at the request of the Provider himself in other cases when it is necessary for the purposes disclosed in clause 4.1 of this Policy, with compliance with the “principle of goal limitation”. The Provider agrees that the Recipient has the right to transfer the Personal Data of the Provider to payment systems, as well as delivery services for the purpose of no more than the fulfillment of a specific order.
8.2. In particular, the Recipient’s obligations to observe the confidentiality and protection regime do not extend to the disclosure of Personal Data in the following cases:
8.2.1. the information was disclosed publicly by the Provider himself;
8.2.2. the information was disclosed to a state body at its request and the authority of this body to receive such information is determined by current legislation;
8.2.3. the information is disclosed on the basis of a court decision, which has entered into force, to the extent necessary for the implementation of such a decision;
8.2.4. information is allowed to be disclosed with the written consent of the Provider;
8.2.5. the information is disclosed in connection with the direct performance by the Recipient of his duties stipulated by the Agreement and/or the current legislation of Ukraine.
8.3. The Provider agrees that the confidentiality of the data transmitted over the Internet is not guaranteed, and in the event that access to this data is obtained by third parties outside the zone of technical means of communication subject to the Recipient, the Recipient bears no responsibility, including, but not limited to, for damage caused by such access.
9. Other conditions
9.1. The Recipient shall not be liable for damage or loss suffered by the Provider or third parties as a result of misunderstanding or misunderstanding of the terms of this Policy. Before accepting the terms of this Policy, any person has the right to contact the Recipient for clarifications regarding the provisions of the Policy.
9.2. In the event that any part of this Policy is invalid, the other parts will remain in effect. Provider’s waiver of any provision or condition of this Policy or any violation thereof shall not waive the effect of such provision or condition.
10. Contact information
10.1. In case of any questions regarding the application of this Policy, the Provider may contact the Recipient using the information below:
Email: info@zdravo.com.ua .
Phone: +380445037868.
Postal address: 04114, Ukraine, Kyiv, Avtozavodska str., 54/19, apartment A, office.