Change language
Change language
The privacy policy is designed to ensure the protection of personal data processed by the PHARMACY FACILITY 'NORAPHARM', all in accordance with the Law on Personal Data Protection ('Official Gazette of the RS', No. 87/2018). This privacy policy applies to Customers, visitors to the website, or users of the mobile application 'RORI.' With this Privacy Policy notice, we inform you about how the PHARMACY FACILITY 'NORAPHARM' collects and processes your personal data that become available through the website and mobile application.
The data controller is the PHARMACY FACILITY 'NORAPHARM', located in Belgrade-Kaludjerica, Grocka, Vojvode Stepe Stepanovića 9/lok 1, registration number 17907484, tax identification number 110138757. The person designated within internal departments as the Data Protection Officer is: Andrej Džaković, contact: +381-11-4513-801.
1. Your privacy is very important to us, we value your trust and UNDERTAKE to protect and preserve your personal and confidential data with due care. 2. The data will be processed in a manner that ensures appropriate protection of personal data, including protection against unauthorized or unlawful processing, as well as against accidental loss, destruction, or damage through the application of appropriate technical, organizational, and personnel measures ('integrity and confidentiality'). 3. We collect only necessary, basic data about clients and data necessary to conclude and properly perform a contractual relationship, as well as to inform users in accordance with good business practices and in order to provide quality service. With your consent, your registered data such as email address may be used for occasional or regular updates on our news and notifications if you have opted for this option during registration or order creation. In addition to choosing to participate in marketing campaigns during registration or when creating an online order, customers have the option to unsubscribe from our mailing lists later if they wish.
1. 'Personal data' means any information relating to an identified or identifiable natural person, directly or indirectly, in particular by reference to an identifier such as name and identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person. 2. 'Processing of personal data' means any operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction ('processing'). Data processing is carried out using computers and/or IT tools, following organizational procedures and modes strictly related to the purposes indicated. In addition to the Controller, in some cases, the Data may be accessible to certain types of responsible persons, involved with the operation of this application (administration, sales, marketing, legal, system administration) or external parties (such as technical service providers, postal carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Data Processors by the Controller. An updated list of these parties may be requested from the Owner at any time. 2. Data is processed at the owner's business offices and at any other places where the parties involved in the processing are located. 3. Unless otherwise specified in this document, personal data will be stored and processed for as long as required by the purpose for which they were collected and may be stored longer due to applicable legal obligations or with the user's consent.
Users may freely provide their personal data or, in the case of usage data, such data may be automatically collected when using the website/mobile application. Unless otherwise indicated, all data required by this website/mobile application are mandatory and failure to provide these data may make it impossible for the PHARMACY FACILITY 'NORAPHARM' to provide its services. In cases where it is explicitly stated during the use of the website/application that certain data are not mandatory, users are free not to disclose such data without consequences for the availability or functioning of the Service. Users who are uncertain about which personal data are mandatory can contact the Controller. Users/Customers are responsible for all personal data of third parties obtained, disclosed, or shared through this application. We process data based on your consent or when necessary for the performance of a service. The data collected for the purposes mentioned above include: a. CUSTOMER/USER ACCOUNT: The customer's account is primarily used for easier ordering of goods, reservations, tracking the order status, and issuing invoices. The Customer/User has the option to either create an account or use the 'Guest Checkout' option. During registration, you choose your username and password, which you will use to log in to our website and application. Contact details provided in the form: for individuals: name, surname, email address, residential address, delivery address, phone number, for legal entities: name of the legal entity, registration number, headquarters address, delivery address, contact phone number, as well as personal data in the form of purchase history, will be subject to processing. The Customer/User has the option to update or supplement the data themselves; the Customer/User is responsible for the accuracy of the data and is responsible for maintaining the confidentiality of their account and password received during registration on the website. The above data will be processed for the entire duration of the account. Within the account, the Customer/User can set the form of communication – they can activate or deactivate various types of business messages that can be sent to them. In case the customer does not wish to receive any form of commercial communication, their registration form data will only be used for processing individual orders and related actions or for other purposes that do not require the customer's consent. The Customer has the option to cancel their account at any time. b. SALES AGREEMENT Processing and collection of data for the conclusion and fulfillment of the Sales Agreement: for individuals: name, surname, email address, residential address, delivery address, phone number, for legal entities: name of the legal entity, registration number, headquarters address, delivery address, contact phone number, as well as data concerning the goods, invoicing data. The Customer provides this personal data during ordering and receiving the goods directly or via their user account, if available. The data retention period for concluded Sales Agreements is 3 years. c. THERAPY RESERVATION Processing and collection of data when reserving therapy: name and surname, phone number, email address for the purpose of enabling you to reserve the desired therapy and pick it up at the selected pharmacy. The data retention period for reservation data is 3 years. d. ASK THE PHARMACIST The PHARMACY FACILITY 'NORAPHARM' has provided its users with an online counseling service on its website and mobile application, for which it processes personal data of individuals as part of the Ask the Pharmacist service (name and surname, email address, information provided within your question on the basis of which we can provide the most accurate answer, usually gender, age, weight, health condition, and other data). The data are processed based on explicit consent for a period necessary for providing an answer, but not longer than 1 year. Consent is voluntary and can be revoked. Additional information on the processing of personal data can be found in the Ask the Pharmacist Rules. e. GEOLOCATION By using the application provided by the PHARMACY FACILITY 'NORAPHARM' to perform a contractual relationship and, therefore, for the purpose of performing activities, the PHARMACY FACILITY 'NORAPHARM' may obtain Customer's geolocation data if the Customer has enabled this function directly on their mobile device, and only during the time when the Controller provides delivery services to the Customer, according to the previously placed order. Outside of that time, the PHARMACY FACILITY 'NORAPHARM' will not have access to geolocation data. Therefore, this function will not affect the privacy of the Customer/User. The PHARMACY FACILITY 'NORAPHARM' will use the obtained data solely for the purpose of performing the contractual relationship and sharing them in case of incidents related to those orders.
Any use of cookies – or other tracking tools – by this application or by the owners of third-party services used by this application serves the purpose of providing the service required by the User, in addition to any other purposes described in this document and in the Cookie Policy.
Your personal data are strictly kept and accessible only to employees who need them for their work, so we hereby undertake not to use the collected data for any other purposes, nor will we make them available to any third party. All employees are aware of the importance of maintaining data confidentiality and are responsible for complying with this Privacy Policy.
Personal data will be processed electronically or in printed form in a non-automated manner. The Controller has taken appropriate technical and organizational measures to ensure adequate protection of personal data, selected, and reviewed appropriate processors.
The retention period of your personal data depends on the purpose for which we process them.
Users of the website or mobile application have the right to request from the PHARMACY FACILITY 'NORAPHARM': - access to their personal data: At any time, you have the right to request access to your personal data, receive information on the purpose of data use and processing, the category of your personal data we store, the period during which we process and store your data. You can also request information from us about third parties and the category of third parties with whom we share your data. - a copy of the personal data we process: You have the right to request from our facility a copy of some or all of the personal data we process. We can provide you with a copy electronically, in the usual electronic format, unless you request the copy to be delivered in another way. - correction and supplementation of your personal data: It is important for us that your data are accurate and complete. You have the right to request that your inaccurately entered data be deleted or corrected immediately, as well as to request us to supplement and update them if they are outdated. - erasure of personal data: In case you want your data to be erased or you want us to stop processing them, you can contact us. In case your data are necessary to fulfill contractual obligations towards you and you request the deletion of data, please note that in that case contractual obligations may not be fulfilled. - to restrict the processing of your personal data by us or a third party in part or in full in case: - you dispute the accuracy of personal data concerning you, in case the processing is unlawful and you object to deletion and request the restriction of use, if they are no longer needed but you request them for the purpose of filing, exercising, or defending a legal claim, if you have objected to the processing of data in accordance with Article 37 paragraph 1 of the Law on Personal Data Protection and the assessment of whether the legal basis for processing by the Controller outweighs your interests is ongoing. - to exercise the right to object to the processing of your personal data processed for the purposes of direct advertising, including profiling to the extent it is related to such direct advertising.
We reserve the right to change this Privacy Policy and terms of use of the website. The change becomes effective when published on this page. No notifications will be sent. Any changes to the privacy policy will be marked with the last date of change. By using the website/mobile application, you consent to the changes in the Privacy Policy and terms of use.
This Privacy Policy is valid and applicable from 01.01.2024, when the last change was made and published. In case of any ambiguities, feel free to contact us.
