Retention of personal data and processing period
Your personal data is stored by Shopper’s Mind on its own servers located in Slovenia and servers of cloud service providers located in EU Member States and in the USA. Occasionally, personal data may be processed outside the EU and the US.
Shopper’s Mind will process your personal data to the extent that is relevant and limited to what is required for processing purposes. There are certain issues associated with this, such as whether we need to continue to retain this information in order to fulfill our contractual obligations with you or for our legitimate interests; whether we have any legal obligation to continue processing your information, such as any recordkeeping obligations required by applicable tax and accounting laws; and whether we have a legal basis (such as consent) to continue processing your personal information.
For more information on where and how long your personal information is stored, and your right to delete and transfer your personal information, please contact us at privacy@smind.si.
How we protect your personal information
We have taken the appropriate technical and organizational measures to protect your personal data and to protect it against unauthorized or unlawful use or processing and against the accidental loss or destruction or corruption of your personal information. These measures include:
- the principle of minimum data and processing,
- training our employees on the importance of confidentiality and maintaining the privacy and security of your data,
- commitment to take appropriate disciplinary action to enforce employee responsibility for privacy,
- continuous and comprehensive updating and testing of our personal data protection policies and measures,
- careful and responsible choice of our business partners,
- use of secure servers to store your personal information,
- appointment of an authorized person for the protection of personal data,
- a request for proof of identity from any individual requesting access to their personal information.
We would like to remind you that the transfer of information (including personal data) through the Internet is not always completely secure. If you provide us with any information via the Internet (via email, our Website, or otherwise), you do so entirely at your own risk. We cannot be held responsible for any costs, expenses, loss of profits, damage to reputation, liability or any other form of loss or damage suffered by you as a result of your transmission of information over the Internet.
Web plugins and other tools
a) YouTube
We use Google-controlled plugins on our Websites. The site operator is You Tube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit our Website that contains the YouTube Plugin, you are connected to YouTube servers. YouTube is then notified of the website you have visited.
If you are signed in to a YouTube account, it allows you to link your browsing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.
YouTube allows our Websites to contain video tips and related content. This is a legitimate interest under Art. 6 (1) (f) of the General Data Protection Regulation (hereinafter: GDPR).
More information about handling user data is available in the YouTube Data Protection Statement: Data Protection Statement.
b) Google Maps
On our Websites, we use the Google Maps mapping service through the API. Managed by Google Inc., 1600 Amphitheater Parkway, Mountain View, CA 94043, USA. To use Google Maps, your IP address must be saved. This information is usually uploaded to a Google server in the US and stored there. We, as the Website Provider, have no influence on this data transfer.
The use of Google Maps is in the interest of displaying specific locations on our Websites (such as the location of our corporate headquarters). This is a legitimate interest under Art. 6 (1) (f) GDPR. For more information on how to handle user data, see the Google Privacy Statement at https://policies.google.com/privacy.
c) Slack
We use the Slack communication tool for internal communication. For this reason, the personal data of customers, Users and associates or contractual partners may be transferred to Slack Technologies, 500 Howard Street, San Francisco, CA 94105, USA (hereinafter: Slack Technologies). The processing of personal data through Slack is carried out on the basis of our legitimate interest within the meaning of Art. 6 (1) (f) GDPR.
We have concluded with Slack Technologies a contract on the processing of personal data, in which the latter undertakes to respect EU law in the field of personal data protection.
Slack Technologies is registered with the EU-US Privacy Shield with regard to international data transfers and thus offers an additional commitment to comply with EU rules on personal data protection.
With regard to international data transfers, Slack Technologies has also concluded a data transfer agreement with the so-called Standard Contract Clauses, which obliges the latter to process personal data solely according to our instructions and to comply with EU rules on the protection of personal data.
d) Net-Results
We use the Net-Results of the US provider Net-Results Marketing Automation, 1738 Wynkoop Street, Suite 201, Denver, CO 80202 to operate the Services, submit Shopper’s Mind Content, monitor your activities on the Websites, and perform aggregate analysis to optimize the Websites. It stores your email, the IP address of the device, and the following information, if any: name, phone number, address, business name, and some other information. Information about your activities and interests is also stored on our Web sites, e.g. which pages you viewed, what you clicked, and the like. This information is stored with a Net-Results provider on its servers in the US.
With the seller and maintainer of Net-Results software solution, Frodx d.o.o, Business zone A34, 4208 Šenčur pri Kranju we have concluded a contract on processing of personal data, and with Net-Results we have concluded a contract on transfer of personal data (standard contractual clauses) in which the latter commits itself to respecting EU data protection law. Net-Results is registered for the EU-US Privacy Shield on international data transfers.
The Net-Results platform privacy policy is available at https://www.net-results.com/privacy-policy/.
The use of the Net-Results service is carried out under Article 6 (1) (f) of the GDPR. We have a legitimate interest in selecting technology providers that offer tools to optimize our business.
e) LimeSurvey
We use the open source LimeSurvey software solution (www.limesurvey.org) from LimeSurvey GmbH Services & Consulting, Barmbeker Strasse 7a, 22303 Hamburg, Germany, to prepare and conduct online surveys. LimeSurvey runs on the same web server as Websites. The information processed by LimeSurvey is not transmitted to third parties. This software solution uses cookies, especially for the temporary storage of processing processes.
You can read more about LimeSurvey’s privacy policy at https://www.limesurvey.org/policies/privacy-policy.
The use of the LimeSurvey software solution is implemented under Article 6 (1) (f) of the GDPR. We have a legitimate interest in selecting technology providers that offer tools to optimize our business.
f) Salesforce CRM
Shopper’s Mind uses one of the leading and more advanced Salesforce CRM software from SalesForce.com Inc., The Landmark @ One Market Street, Suite 300, San Francisco, CA 94105, USA, for effective and secure customer relationship management cloud computing technology. The latter means that part of the data relating to you is stored in data centers within the EU (France, Germany) and part of the data is stored in data centers in the United States (USA).
The service provider is the recipient of numerous certifications (https://trust.salesforce.com/en/compliance/) in the field of information security and compliance with personal data protection legislation, which is why Shopper’s Mind has contracted data processing services to this service provider . In addition, Salesforce was approved by eTrust, and awarded with data protection certificate by TÜV Saar.
The transfer of personal data to EU data centers is subject to the principle of free movement of data within the EU, while the transfer of data to the US is based on the Privacy Shield tool, jointly designed by the US Department of Commerce and the European Commission, and which serves as a support mechanism for meeting data protection requirements for the transfer of personal data from the EU to the US. Your data is stored exclusively in the EU and the US, which does not exclude the possibility that specialized third-party experts may access the stored data from time to time for the purposes of maintaining, correcting incidents or performing upgrades and providing other forms of technical support. Such access to third-country data is based on SalesForce’s Binding Corporate Rules (https://www.salesforce.com/eu/company/privacy/), which have been endorsed in a special process by The French Supervisory Authority (CNIL) and are valid throughout the EU.
We have entered into a contract with Salesforce.com, Inc. for the processing of personal data, which obliges the latter to comply with EU rules on the protection of personal data. You can read more about Salesforce.com’s privacy policy https://www.salesforce.com/company/privacy/full_privacy/
The use of Salesforce CRM services is based on Art. 6 (1) (f) GDPR. We have a legitimate interest in optimizing the operation of our services or services to better manage our customer relationships.
Cookie Policy
What are cookies and why are they needed?
These are small text files that most websites store on devices that users access the Internet to identify the individual devices that users have used when accessing. Their storage is under the full control of the browser that the user has ̶ this can be limited or disabled if the cookies are stored. Cookies are not harmful and are always limited in time.
Cookies are small text files that are downloaded to a user’s computer when they visit a site, and usually contain:
- the name of the cookie and the server from which the cookie was sent,
- cookie life,
- value (unique number).
Cookies are important for providing user friendly web services. The most common e-commerce features would not be possible without cookies. Web-site interaction with cookies is faster and easier with the help of cookies. With their help, a website remembers one’s preferences and experience, saving time and making web browsing more efficient and enjoyable.
Cookie upload settings
Some cookies are deleted as soon as you close your browser. These cookies are called session cookies or temporary cookies because they only last as long as a single session and are no longer stored after the session. Such cookies usually only contain an identification code that can only be recognized by the website that installed the cookies.
Other cookies have a certain life or validity period. These are used to make it clear that you have already logged in to a certain site, or to keep information about some settings, such as language selection.
At Ceneje.si we use 3 groups of cookies, of which you can change the setting for one group. The cookie settings apply to the device on which you currently use our site.
Necessary cookies, which are necessary for the proper functioning of the Ceneje.si website and to ensure the smooth operation of the Ceneje d.o.o.
- Cannot be excluded (these cookies do not require your consent)
Analytical cookies, for anonymously measuring website traffic and collect data on website usage so we can continually improve our user experience based on our findings.
- Cannot be excluded (by using the site you agree to the installation)
Advertising cookies and retargeting cookies, which may serve advertisements tailored to your interest on our website and / or external sites.
Disabling web cookies
You may refuse some or all of the cookies used on our web sites by changing your browser settings, but this may impair your ability to use our web sites and some or all features.
Temporarily disable the download / save of web cookies by using the “private window” (Incognito) in your browser. Private browsing allows you to browse the web without storing any information about the pages you have visited on your web browser.
Permanent shutdown of web cookies (until the next time you visit or re-enable them) which you can control in your web browser. For information on cookie settings, select the web browser you are using:
Attention! You should be aware that permanently disabling / deleting cookies will lose the ability to maintain your personal preferences, login status, online purchases and much more, and that pages will not function properly or be deprived of additional options. For example, websites will load a little slower, since images and all pieces of content will have to be loaded from the beginning each time.
Which cookies uses our websites on (sub)domains smind.si, smind.hr, smind.online, certifiedshop.com and certifiedshop.si?
- Cookies on the website smind.si and smind.hr:
The name of the cookie |
Purpose |
Cookie time |
Company |
__gads |
Advertising/Targeted advertising |
2 years |
Google Inc. |
__mauuid |
Net Result differentiate users |
20 years |
Forward IT Solutions |
_ga |
Website view statistics |
2 years |
Google Inc. |
_gid |
Website view statistics |
1 day |
Google Inc. |
_hjIncludedInSample |
The effectiveness, functionality of web analytics and Hot Jar services |
session |
Hot Jar |
_hjMinimizedPolls |
It is used to keep the widget on the website minimized. |
1 year |
Hot Jar |
cookie_notice_accepted |
Permission to use cookies on the site smind.si |
1 month |
Ceneje d. o. o. |
- Cookies on the ecommerceday.smind.hr web site, ecommerceday.smind.si, webmaster.smind.si, webtrgovacgodine.smind.hr:
The name of the cookie |
Purpose |
Cookie time |
Company |
_ga |
Website view statistics |
2 years |
Google Inc. |
_gid |
Website view statistics |
1 day |
Google Inc. |
_hjIncludedInSample |
The effectiveness, functionality of web analytics and Hot Jar services |
session |
Hot Jar |