shopping-list Nakupovalni seznam

Schneider Electric Online Marketplace Privacy Notice

Obvestilo o varstvu osebnih podatkov za Spletno tržnico Schneider Electric

1. Who is in charge of data processing?

The processing of personal data is carried out by Schneider Electric Bulgaria EOOD, a limited liability company incorporated under the laws of Bulgaria, registered in the Bulgarian Commercial Register and Register of Non-Profit Legal Entities under registration number (UIC) 121587769, having VAT registration number BG 121 587 769, having our seat and registered address Business Park Sofia Street, BDG 7, Entrance B, floor 4, Mladost District, Residential Complex Mladost 4, 1766 Sofia, Bulgaria (hereinafter referred to as “we” or “data controller”).

This privacy notice describes how we collect, use, share, or otherwise process personal information as a data controller in the course of operating the Schneider Electric Online Marketplace. We commit to ensure an adequate level of protection for personal data in compliance with applicable laws. We have adopted internal policies which impose common rules for the collection, use and disclosure of personal information by all entities belonging to Schneider Electric Group. To know more, please read our Data Privacy Policy.

1. Kdo je odgovoren za obdelavo podatkov?

Obdelavo osebnih podatkov izvaja družba Schneider Electric Bulgaria EOOD, družba z omejeno odgovornostjo po bolgarskem pravu, vpisana v bolgarski poslovni register in register neprofitnih pravnih oseb pod registrsko številko (UIC) 121587769, ID za DDV: BG 121 587 769, s poslovnim naslovom Business Park Sofia Street, BDG 7, Entrance B, floor 4, Mladost District, Residential Complex Mladost 4, 1766 Sofia, Bolgarija (v nadaljevanju "mi" ali "upravljavec podatkov").

V tem obvestilu o varstvu osebnih podatkov je opisano, kako kot upravljavec podatkov zbiramo, uporabljamo, delimo ali kako drugače obdelujemo osebne podatke pri upravljanju spletne tržnice Schneider Electric. Zavezujemo se, da bomo zagotovili ustrezno raven varstva osebnih podatkov v skladu z veljavnimi zakoni. Sprejeli smo notranje pravilnike, ki določajo skupna pravila glede zbiranja, uporabe in razkrivanja osebnih podatkov za vse subjekte skupine Schneider Electric. Več informacij najdete v našem pravilniku o varstvu osebnih podatkov.

2. What types of personal data do we process?

We collect and process the following categories of personal data:

  • Identification data, such as name/last name, email address, postal address, account ID, customer account number;
  • Information, related to our customer service, such as support requests;
  • Information, related to your online purchases, such as favorite list and shopping cart information;
  • Professional life data, such as job title, job function, company name and address;
  • Traffic data and user behavior data, such as IP address and Device information;
  • Bank information, such as your debit card number.

In cases where your account is managed by someone else (such as an administrator or employer), they may provide data on your behalf, on the basis of your consent.

2. Katere vrste osebnih podatkov obdelujemo?

Zbiramo in obdelujemo naslednje kategorije osebnih podatkov:

  • podatki za identifikacijo, kot so ime in priimek, elektronski naslov, poštni naslov, identifikacijska številka računa, številka računa stranke,
  • podatki v zvezi s podporo strankam, kot so vprašanja strank,
  • podatki v zvezi s spletnimi nakupi, kot je seznam priljubljenih izdelkov in informacije v zvezi z nakupovalno košarico,
  • podatki glede zaposlitve, kot je naziv delovnega mesta, funkcija, podjetje in naslov,
  • podatki o prometu in vedenju uporabnikov, kot je naslov IP, podatki o napravi,
  • bančni podatki, kot je številka vaše debetne kartice.

Če vaš račun upravlja druga oseba (na primer skrbnik ali delodajalec), lahko ta oseba posreduje podatke v vašem imenu na podlagi vašega soglasja.

3. Why do we collect and use personal data?

We use information we collect for the following purposes:

  • to deliver our services (e.g: give access to the platform). The legal basis for processing personal data for this purpose is Article 6, para. 1, “b” of the General Data Protection Regulation (“GDPR”): the performance of our contract with you;
  • to interact with users in relation to complaints or feedback received. The legal basis for processing personal data for this purpose is Article 6, para. 1, “b”, GDPR: the performance of our contract with you, or Article 6, para.1, “c”, GDPR: compliance with a legal obligation;
  • to manage customer relationships (e.g: manage the orders). The legal basis for processing personal data for this purpose is Article 6, para. 1, “b”, GDPR: the performance of our contract with you.
  • to process payment of the products. The legal basis for processing personal data for this purpose is Article 6, para. 1, “b”, GDPR: the performance of the contract between the data controller and you.

We also process information to gather the ratings on our products and services, ensure security and compliance with contract and terms of use, and analyze use of services to improve them. This is based on our legitimate interest to operate Schneider Electric Online Marketplace and to provide services to our customers (Article 6, para. 1, “f”, GDPR).

Some of the processing activities, such as the provision of information relating to the standard pricing, costs and products, as well as activities related to personalized experience, are based on your consent. (Article 6, para. 1, “a”, GDPR)

We do not make decisions based solely on automated processing which may produce legal effects or similarly affect you.

3. Zakaj zbiramo in uporabljamo osebne podatke?

Zbrane podatke uporabljamo v naslednje namene:

  • za zagotavljanje naših storitev (npr. omogočanje dostopa do platforme). Pravna podlaga za obdelavo osebnih podatkov v ta namen je točka (b) člena 6(1) Splošne uredbe o varstvu podatkov ("Splošna uredba"): izvajanje pogodbe, sklenjene z vami;
  • za interakcijo z uporabniki v zvezi s prejetimi pritožbami ali povratnimi informacijami. Pravna podlaga za obdelavo osebnih podatkov v ta namen je je točka (b) člena 6(1) Splošne uredbe: izvajanje pogodbe, sklenjene z vami, oziroma točka (c) člena 6(1) Splošne uredbe: izpolnjevanje zakonskih obveznosti;
  • za upravljanje odnosov s strankami (npr.: upravljanje naročil). Pravna podlaga za obdelavo osebnih podatkov v ta namen je točka (b) člena 6(1) Splošne uredbe: izvajanje pogodbe, sklenjene z vami;
  • za obdelavo plačila izdelkov. Pravna podlaga za obdelavo osebnih podatkov v ta namen je točka (b) člena 6(1) Splošne uredbe: izvajanje pogodbe med upravljavcem podatkov in vami.

Podatke obdelujemo tudi za zbiranje ocen glede naših izdelkov in storitev, zagotavljanje varnosti in skladnosti s pogodbo in splošnimi pogoji ter analiziranje uporabe storitev, da jih lahko izboljšamo. To temelji na našem legitimnem interesu za upravljanje spletne tržnice Schneider Electric in zagotavljanje storitev našim strankam (točka (f) člena 6(1) Splošne uredbe).

Nekatere dejavnosti obdelave, kot je zagotavljanje informacij v zvezi s standardnimi cenami, stroški in izdelki, ter dejavnosti v zvezi z osebnimi prilagoditvami, temeljijo na vaši privolitvi (točka (a) člena 6(1) Splošne uredbe).

Ne sprejemamo odločitev, ki bi temeljile izključno na avtomatizirani obdelavi in bi imele pravne učinke za vas ali bi podobno vplivale na vas.

4. How long do we keep your personal data?

We keep personal data as needed to perform the purposes described above, taking into consideration the need to provide the services, marketing requirements, security requirements, legal requirements and statute of limitations.

Personal data, processed for the purposes of the performance of the contract between the data controller and you, is stored for no longer than 5 years after the end of the completion or termination of the contract.

Personal data, processed on the basis of a legal obligation, is stored until the compliance with this obligation, unless a longer period is required under the law.

4. Kako dolgo hranimo vaše osebne podatke?

Osebne podatke hranimo toliko časa, kolikor je potrebno za izvajanje zgoraj opisanih namenov, ob upoštevanju potrebe po zagotavljanju storitev, trženjskih zahtev, varnostnih zahtev, zakonskih zahtev in zastaralnih rokov.

Osebni podatki, ki se obdelujejo za namene izvajanja pogodbe med upravljavcem podatkov in vami, se hranijo največ 5 let po izvedbi ali prenehanju pogodbe.

Osebni podatki, ki se obdelujejo na podlagi zakonske obveznosti, se hranijo do izpolnitve te obveznosti, razen če je po zakonu zahtevano daljše obdobje.

5. Who do we share personal data with and where is it processed?

We do not sell your personal data.

Personal data will be processed by our affiliates and suppliers involved in the provision of the services and in the performance of the purposes. Their activities include hosting and maintenance, performance monitoring, payment services provider and security.

Teams and suppliers may have global or multi-country roles, and they can be located anywhere in the world, in countries with different privacy standards than the country of our customers. We take measures to ensure that personal data receives an adequate level of protection. We have internal policies applied by our affiliates and we conclude relevant contracts with our suppliers to ensure appropriate safeguards. Our group has adopted Binding Corporate Rules (BCR). In addition, we conclude Standard Contractual Clauses and rely on EU Commission’s adequacy decisions. To obtain more details and copies of safeguards put into place, you may contact global-data-privacy@schneider-electric.com.

We may also share your personal data, as necessary:

  • with competent authorities, based on a good faith belief that disclosure is necessary to respond to a judicial process, a valid official inquiry, or if otherwise required by law;
  • to defend our legal rights, or to protect the rights or safety of any person or entity;
  • as instructed by you, our customer or the user;
  • with third parties in the context of reorganization of operations.

5. S kom delimo osebne podatke in kje jih obdelujemo?

Vaših osebnih podatkov ne prodajamo.

Osebne podatke bodo obdelovale naše povezane družbe in dobavitelji, ki sodelujejo pri zagotavljanju storitev in izvajanju namenov. Njihove dejavnosti vključujejo gostovanje in vzdrževanje, spremljanje delovanja, zagotavljanje plačilnih storitev in varnosti.

Ekipe in dobavitelji lahko delujejo globalno ali v več državah in se lahko nahajajo kjer koli na svetu, tudi v državah, ki imajo drugačne standarde glede varstva osebnih podatkov kot države, iz katerih prihajajo naše stranke. Izvajamo ukrepe, s katerimi zagotavljamo ustrezno raven varstva osebnih podatkov. Sprejeli smo notranje pravilnike, ki veljajo za naše povezane družbe, z dobavitelji pa sklepamo ustrezne pogodbe, da zagotavljamo ustrezne zaščitne ukrepe. Naša skupina je sprejela zavezujoča poslovna pravila (Binding Corporate Rules). Poleg tega sklepamo standardna pogodbena določila in se opiramo na sklepe Evropske komisije o ustreznosti. Za več podrobnosti in kopije vzpostavljenih zaščitnih ukrepov se lahko obrnete na global-data-privacy@schneider-electric.com.

Vaše osebne podatke lahko po potrebi delimo tudi:

  • s pristojnimi organi, če v dobri veri menimo, da je razkritje potrebno za odgovor v sodnem postopku, odgovor na uradno poizvedbo ali je sicer zahtevano po zakonu,
  • za zaščito naših zakonskih pravic ali za zaščito pravic ali varnosti katere koli osebe ali subjekta,
  • po vaših navodilih oz. po navodilih naše stranke ali uporabnika,
  • s tretjimi osebami v okviru reorganizacije poslovanja.

6. How do we secure personal data?

We follow generally accepted industry standards to protect the information submitted to us, both during transmission and once we receive it. We maintain appropriate administrative, technical and physical safeguards to protect personal data against accidental or unlawful destruction, accidental loss and unauthorized alteration.

Please note that no method of transmission over the internet, or method of electronic storage, is 100% secure. Therefore, we cannot guarantee absolute security.

6. Kako varujemo osebne podatke?

Za zaščito podatkov, ki nam jih posredujete, tako med prenosom kot po prejemu upoštevamo splošne standarde, ki veljajo v panogi. Vzpostavljene imamo ustrezne administrativne, tehnične in fizične zaščitne ukrepe za zaščito osebnih podatkov pred nenamernim ali nezakonitim uničenjem, nenamerno izgubo in nedovoljeno spremembo.

Vendar pa noben način prenosa prek interneta ali elektronskega shranjevanja ni 100-odstotno varen. Zato ne moremo zagotoviti popolne varnosti.

7. How to exercise your choices and rights about your personal data?

As a data subject, you have the following rights under the applicable data protection law:

  • (a) Right of Access: You have the right to obtain confirmation and/or detailed information, including a copy of the personal data processed about you.
  • (b) Right to Rectification: You have the right to request that your personal data be corrected (updated) without undue delay.
  • (c) Right to Erasure (“right to be forgotten”): If the corresponding requirements are met, you may request that the personal data related to you be deleted without undue delay.
  • (d) Right to Restriction of Processing: If the corresponding requirements are met, you can request the restriction of the processing. In such case, the respective personal data are designated accordingly and, if applicable, only processed for specific purposes.
  • (e) Right to Object: You may object to the collection and further processing of your personal data where there is no legal basis for us to continue processing it.
  • (f) Right to Data Portability: If the corresponding requirements are met, you have a right to data portability in respect of personal data concerning you which you have provided to us, i.e. the right to receive these data in a structured, commonly used and machine-readable format and, if applicable, the right to transmit those data to another controller without hindrance from our side.
  • (g) Right to Withdraw your Consent: In case the data processing is based on your consent, you have the right to withdraw the consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

In order to exercise these rights, you may make a request at the contact details available within the application or at global-data-privacy@schneider-electric.com. To ensure the security of your personal data, we may ask you to provide other details to verify your identity.

7. Kako lahko uveljavljate svojo pravice do izbire in pravice v zvezi z osebnimi podatki?

Kot posameznik, na katerega se nanašajo osebni podatki, imate v skladu z veljavno zakonodajo o varstvu podatkov naslednje pravice:

  • (a) Pravica do dostopa: Imate pravico dobiti potrditev in/ali podrobne informacije, vključno s kopijo osebnih podatkov, ki se obdelujejo o vas.
  • (b) Pravica do popravka: Imate pravico zahtevati, da se vaši osebni podatki brez nepotrebnega odlašanja popravijo (posodobijo).
  • (c) Pravica do izbrisa ("pravica do pozabe"): Če so izpolnjene ustrezne zahteve, lahko zahtevate, da se osebni podatki v zvezi z vami brez nepotrebnega odlašanja izbrišejo.
  • (d) Pravica do omejitve obdelave: Če so izpolnjene ustrezne zahteve, lahko zahtevate omejitev obdelave. V takem primeru se osebni podatki ustrezno označijo in po potrebi obdelujejo le za določene namene.
  • (e) Pravica do ugovora: Ugovarjate lahko zbiranju in nadaljnji obdelavi vaših osebnih podatkov, če nimamo pravne podlage za njihovo nadaljnjo obdelavo.
  • (f) Pravica do prenosljivosti podatkov: Če so izpolnjene ustrezne zahteve, imate pravico do prenosljivosti podatkov v zvezi z vašimi osebnimi podatki, ki ste nam jih posredovali, tj. pravico, da te podatke prejmete v strukturirani, splošno uporabljani in strojno berljivi obliki, in pravico, da te podatke posredujete drugemu upravljavcu, ne da bi vas mi pri tem ovirali.
  • (g) Pravica do preklica privolitve: Če obdelava podatkov temelji na vaši privolitvi, imate pravico, da privolitev kadar koli prekličete, ne da bi to vplivalo na zakonitost obdelave na podlagi privolitve pred njenim preklicem.

Za uveljavljanje teh pravic lahko podate zahtevek s pomočjo kontaktnih podatkov, ki so na voljo v aplikaciji ali na naslovu global-data-privacy@schneider-electric.com. Za zagotavljanje varnosti vaših osebnih podatkov vas bomo morda prosili za dodatne podatke za preverjanje vaše identitete.

8. How to contact us?

You may address questions or comments about our privacy practices or this privacy notice to our Group Data Protection Officer (“Group DPO”):

DPO@schneider-electric.com

DPO Schneider Electric

35 rue Joseph Monier

CS 30323

92506 Rueil Malmaison-

France

8. Kako stopiti v stik z nami?

Vprašanja ali pripombe v zvezi z našim zagotavljanjem varstva osebnih podatkov ali tem obvestilom lahko naslovite na našo pooblaščeno osebo za varstvo podatkov za skupino ("POVP za skupino"):

DPO@schneider-electric.com

DPO Schneider Electric

35 rue Joseph Monier

CS 30323

92506 Rueil Malmaison-

Francija

9. Which is the responsible Complaints Office?

If you believe that the data controller has processed your personal data in violation of applicable law, you may file a complaint with the Group DPO at the contact details above or with (a) the Commission for Personal Data Protection of Bulgaria at:

1592 Sofia, 2 Proff. Tsvetan Lazarov Blvd.
Tel. + 359 2 91 53 518, e-mail: kzld@cpdp.bg,

or

(b) the Slovenian Information Commissioner at

Dunajska cesta 22, 1000 Ljubljana
Tel. +386 1 230 97 30, e-mail: gp.ip@ip-rs.si.

You also have the right to lodge a complaint with supervisory authorities in other jurisdictions, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement.

9. Kateri je pristojni organ za pritožbe?

Če menite, da je upravljavec podatkov vaše osebne podatke obdelal v nasprotju z veljavno zakonodajo, lahko vložite pritožbo pri POVP za skupino na zgoraj navedene kontaktne podatke ali pri bolgarski Komisiji za varstvo osebnih podatkov Bolgarije na naslovu:

1592 Sofia, 2 Proff. Tsvetan Lazarov Blvd.
Tel. + 359 2 91 53 518, e-mail: kzld@cpdp.bg

ali

(b) pri Informacijskem pooblaščencu na naslovu:

Dunajska cesta 22, 1000 Ljubljana
Tel. +386 1 230 97 30, e-mail: gp.ip@ip-rs.si.

Pravico imate, da vložite pritožbo pri nadzornih organih v drugih državah, zlasti v državi članici vašega običajnega prebivališča, zaposlitve ali kraja domnevne kršitve.

10. Changes to this privacy notice

Please note that this privacy notice may change from time to time. We will provide information about material changes.

Last updated: October 2025

10. Spremembe tega obvestila o varstvu osebnih podatkov

To obvestilo o varstvu osebnih podatkov se lahko občasno spremeni. O bistvenih spremembah vas bomo obvestili.

Zadnja posodobitev: October 2025