Privacy Policy

This privacy policy aims to inform you in a clear and transparent way about the collection, use, storage and processing of personal data of visitors to our website, as well as consumers and users of our services and products.

WHAT IS PERSONAL DATA?

Personal data is any information that relates to you as a natural person, for example: name and surname, unique personal identification number, telephone number, location data, internet identifier, data of a financial nature such as a credit card for the purchase of certain products, that is, personal data is any information through which a certain natural person can be identified directly or indirectly.

WHO IS RESPONSIBLE FOR THE PROCESSING OF PERSONAL DATA?

Zegin D.O.O., Skopje with headquarters at Str. National Front No. 5-3/1, as the owner of the domain, zegin.com.mk is a joint controller together with other companies in the Zegin group (MOJA APTEKA Skopje, ZEGIN FARM Skopje, Foundation Dr. Verica Mehandziska, ZEGIN MEDIKA DOOEL Skopje, ZEGIN HEALTHY FOOD Skopje, Zegin Farm Ortopedik DOO) to which your personal data may be submitted, in order to realize the relationship with you and respond to your requests.

The submission of any information or content by you as a subject of personal data (hereinafter referred to as the User) is voluntary and is subject to the Terms of Use which are an integral part of this Privacy Policy (hereinafter referred to as the “Policy”).

The Policy governs the right to privacy and security of personal data that is subject to processing. Please read the Policy and check it from time to time as we reserve the right to change it according to our activities and changes.

If you have any questions regarding the points covered by this Policy, you are free to contact our Personal Data Protection Officer, Marija Peshevska-Stanišić at the following email: marija.stanisic@zegin.com.mk and/or at the phone number 02/3241-677.

By registering and logging in to our website, you declare that you are familiar with and agree to the content of our Privacy Policy.

You can find more detailed instructions for registration on our website at the following link.

You also have the option to delete your profile. More detailed Instructions for deregistration are available at the following link

WHOSE PERSONAL DATA DO WE COLLECT?

We may collect data related to the following categories of persons:

  • Visitors to our website www.zegin.com.mk, potential consumers and
  • Consumers, users of services and products.

WHAT PERSONAL DATA DO WE COLLECT?

Identification data: first name, last name, telephone number, e-mail address, delivery address.

User profile data: username and password, orders placed, order data, preferences.

Website visit data: information about web pages of the website visited by the User, web pages that redirected the User to the Zegin website, web pages that the User visited through links presented on the Zegin website page, date and time of those visits, IP address of the user/IP address of the device-computer/tablet/phone from which the order is placed, type of internet browser used by the User, keywords used by the User when searching the Zegin directory, the number of users who saw the internet advertisement (banner) on the Zegin website, the number of clicks on the internet advertisement (banner) on the Zegin website.

Data of a financial nature: We may have access to billing information, such as access to the type of payment card, date and time of the transaction, amount of the transaction, a limited portion of the card number (in a manner generally permitted by payment card issuers), order data, order identification number.

This data will also be collected and processed by our trusted suppliers as third parties (NLB Tutunska Banka), in accordance with the terms and conditions of their privacy policies and terms of use.

When placing orders, when you enter your personal data, the authorization process of the virtual POS terminal is transferred to the portal of the processing center of NLB Banka, where you enter the necessary data for the card: first and last name of the card user, card number, security code and card expiration date, in order to authorize the transaction.

We process your personal data in accordance with the positive legal regulations in the Republic of North Macedonia.

WHERE IS PERSONAL DATA COLLECTED FROM?

Personal data is collected directly from you, when you register as a User, when you place orders, when you agree to receive marketing offers (newsletter), through your use of our website, through our email: zeginonline@zegin.com.mk or when you otherwise communicate with us.

FOR WHAT PURPOSE DO WE USE PERSONAL DATA?

  • To answer questions about our products and services, other requests, suggestions, complaints.
  • Realization of the order, payment transactions, delivery of the products, return of the product and funds, resolution of complaints in a reliable and effective way.
  • Order and payment data may be used for marketing and business development, analysis, fraud and theft detection in connection with online sales in accordance with legal regulations.
  • Delivery of direct marketing offers, information about discounts, via email and text messages, phone or mail.
  • To optimize the online user experience, personalized marketing messages and promotions that are the result of algorithmic analysis and prediction of preferences, interests and behaviors.
  • To research and monitor the behavior of the User, his habits and interests, to analyze the effectiveness of advertising, for statistical purposes and for the purpose of improving the services offered. We may use Google Analytics for this purpose. Zegin may process this information in a personalized form together with other information about the User that he provided during registration.
  • To receive discounts and benefits through your participation in our Loyalty Program, prize games, surveys or research, educations.

LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA

Whenever we process your personal data, we have a legal basis for that processing. The legal basis for the processing of your personal data can be:

  • Your consent – ​​This applies when you provide your personal data and agree to us processing it in order to provide you with a specific service, for example:
  1. You may receive marketing communications from us. We may use your identification, contact, preferences and user profile data to find out which products, services and marketing promotions would be of interest to you, only with your consent. You have the right to withdraw your consent at any time through an opt-out option whenever you receive marketing offers via email. In addition, to withdraw your consent for marketing offers, you can send us information at the following email: zeginonline@zegin.com.mk, or contact our Personal Data Protection Officer.
  2. We may store certain cookies on your device. Cookies are small text files that are placed on your device by the websites you visit. We may place analytical cookies (these are also known as performance cookies and measure/record your interaction with our site so we can make improvements) on your device. Please see our Cookie Policy on our website for more information about the different types of cookies we use and their purpose.
  • Fulfillment of a contract – This applies when you provide us with your personal data to fulfill an order and pay for a product or service (for example, you want to buy a product and we can manage the logistics associated with it).
  • Our legitimate interests – This applies when you provide us with your personal data and we use it to:
  1. We may use your personal information to process any payment you make when you purchase any of our products/or services (including verifying that your payment is free of fraud or other suspicious activity).
  2. We may use your personal information to ensure that our websites/applications function properly and are safe and secure.
  3. To answer your questions and requests.
  4. Fulfillment of any legal requirements or for statistical purposes.
  • To comply with a specific legal obligation – This applies when you provide us with your personal data that we need to keep for our legal reasons (for example, when you buy a certain product, we need to keep your transaction information in order to comply with our tax and financial reporting obligations).

WHO CAN ACCESS THE DATA?

First we want to emphasize and be clear that we do not sell your personal data. We can share your personal data within the ZEGIN group if it is necessary to fulfill the above-mentioned goals, based on a concluded agreement in which our legal obligations and responsibilities regarding the protection of personal data are mutually regulated.

Access will always be controlled on a need-to-know basis, and will only be provided where necessary to provide you with the requested services or to allow us to perform any necessary or legitimate functions. Where permitted, we may also share some of your personal data, including data collected through cookies, to match and update the information you share with us, perform statistics based on your characteristics, and customize our communications to you.

Your personal data may also be processed on our behalf by our trusted suppliers (third parties).

We rely on trusted third parties to carry out a range of business operations on our behalf. We only provide them with the necessary information to perform the service and request that they do not use your personal data for any other purpose. We always make our best efforts to ensure that all third parties we work with will keep your personal data secure. For example, we may entrust services that require the processing of your personal data to:

  • Advertising, marketing, digital and social media agencies to help us run advertising, marketing and campaigns, analyze their effectiveness and manage your contacts, inquiries and our relationship;
  • Third parties who need to deliver a product to you, e.g. delivery services;
  • Third parties who assist us in providing IT services, such as platform providers, hosting services, maintenance and support of our databases, as well as our software and applications;
  • Providers of payment services such as banks and payment financial institutions that perform services for us, related to the realization of the order and payment;
  • Independent third parties, telecommunications operators, companies for postal services, marketing partners as well as competent institutions that have legal powers that may use personal data for their own purposes.

Our relationship with third parties is regulated on the basis of a legally binding agreement which regulates that the appropriate measures of safety and security of your personal data are taken.

TRANSFER OF PERSONAL DATA

Personal data will not be transferred to third countries outside the European Union or the European Economic Area.

In cases where the Zegin Group transfers personal data to third countries outside the borders of the European Union or the European Economic Area, we take appropriate measures to ensure that an appropriate level of personal data protection is applied during the transfer, by concluding agreements for the processing of personal data (the standard contractual clauses issued by the European Commission or the Personal Data Protection Agency, other contractual clauses or protective mechanisms).

HOW LONG WILL THE DATA BE KEPT?

We will keep your personal data for as long as necessary to provide you with the requested service/s or to satisfy commercial and legal obligations. To determine the retention period of your personal data, we take into account several criteria to ensure that we do not keep your personal data longer than necessary. Those criteria are the following:

  • The purpose for which we keep your personal data;
  • Our legal and regulatory obligations related to that personal data, for example obligations arising from financial operations and submission of financial statements;
  • If our relationship with you is current, i.e. active, for example if you have an active user profile on our website, if you continue to receive marketing communications or if you regularly search or buy products through our website;
  • If you no longer order our products, for example, if you do not want to receive our emails, if you do not visit our website;
  • Any specific request from you regarding the deletion of your personal data; and
  • Our legitimate business interests in relation to the management of our own rights, for example, the defense of any legal claims or for statistical purposes.

In particular, we retain certain personal data for the following periods:

  • When you purchase products and services, we store your personal data for the duration of our contractual relationship;
  • When you have consented to receive marketing communications, we retain your personal data until you: (i) request that we delete your personal data or until you withdraw your consent to receive marketing communications; or (ii) after a certain period of inactivity (ie when you have not communicated with us for a period of time);
  • When cookies are placed on your computer, they are kept for as long as necessary to achieve their purposes (for example, for the duration of a session for shopping cart cookies or session identification cookies).

When we no longer need to use your personal data, it will be removed from our system and records, or it will be anonymized so that you can no longer be identified through it.

RIGHTS OF PERSONAL DATA SUBJECTS

You as subjects of personal data have the following rights:

  • The right to be informed about the processing of your personal data;
  • Right of access to personal data and their copy;
  • Right to correction and deletion of personal data if they are incomplete and incorrect, processed in an illegal manner and the purpose of their processing is fulfilled;
  • The right to limit the processing of personal data, if you dispute their accuracy for the time it takes us to check their accuracy, the processing is illegal, but you oppose their deletion and request the limitation of their use, they do not need to be stored longer than on our side, but are necessary for the fulfillment of your legal requirements, you object to their processing based on our legitimate interests until it is confirmed that they prevail over your interests as a subject of personal data;
  • The right to object to the processing of personal data when it is processed on the basis of our legitimate interest. You have the right to object at any time to processing for direct marketing and profiling related to direct marketing;
  • The right to data portability, that is, to receive your personal data in a structured machine-readable format or to be transferred to another company, which is provided in an automated way, based on a contract or your consent.

For additional information and/or exercise of your rights for personal data protection, you can contact our Personal Data Protection Officer Marija Peshevska-Stanisic at the following e-mail: marija.stanisic@zegin.com.mk and/or at phone number: 02/3241-677.

Requirements for exercising the rights to personal data:

Form No. 1 – Request for access to personal data

Form No. 2 – Request for correction of personal data

Form No. 3 – Request for deletion of personal data processing

Form No. 4 – Request to limit the processing of personal data

Form No. 5 – Request for transfer of personal data

Form No. 6 – Request for withdrawal of consent for personal data processing

Form No. 7 – Objection to the processing of personal data

WHICH DATA ARE MANDATORY AND WHICH ARE OPTIONAL?

The data that are necessary for the realization of the orders and payment operations are mandatory, otherwise the order will not be able to be executed.

AUTOMATED DECISION-MAKING PROCESS, PROFILING

We may use an automated decision-making process, including profiling in the process of processing your personal data based on previously given consent for marketing activities. We may analyze your personal data based on demographic data, search data, purchase history. Based on this analysis, we can give you a specific offer for certain products.

If you have any questions regarding automated decision-making, you are free to contact us via the contact details of the Personal Data Protection Officer listed above.

RIGHT OF OBJECTION TO THE PERSONAL DATA PROTECTION AGENCY

You have the right to submit an objection to the Personal Data Protection Agency (AZLP) against the processing of your personal data if you believe that your right to personal data protection has been violated. You can exercise this right by submitting a Request to AZLP, via the following contact email: info@privacy.mk  or by visiting their website: https://dzlp.mk/prizlnlp.

PRIVACY POLICY CHANGE

The privacy policy will be regularly changed and supplemented according to the changes and our activities.

March, 2024