Privacy Policy

PRIVACY POLICY

​

1. Introduction

 

This Privacy Policy explains how Luka Horžen s.p.  collects, uses, and protects your personal data when you visit and make a purchase from our e-commerce store, www.luhovibe.com, LUHO vibe.

We are committed to protecting your privacy and handling your personal data in an open and transparent manner, in accordance with the General Data Protection Regulation (GDPR - EU Regulation 2016/679) and applicable Slovenian law.

​

2. Data Controller Contact Information

 

The Data Controller responsible for the processing of your personal data is:

• Data Controller: Luka Horžen s.p.

• Address: Globoko 13c, 8254 Globoko, Slovenia

• Tax/Registration Number: SI71123610 / 9332804000

• Dedicated Privacy Email: luhovibe@yahoo.com

​

3. Personal Data We Collect

 

We collect personal data from you when you interact with our Site, specifically:

Identity and Contact Data: Name, surname, email address, billing and shipping address, phone number.

Financial and Transaction Data: Payment details, purchase history, order details (Note: We do not store full credit card details, which are processed by third-party payment processors).

Profile Data: Username and password (if registered), purchase history, preferences, and feedback.

Technical and Usage Data: IP address, browser type, operating system, time zone setting, information about how you use our Site (pages viewed, time spent).

​

4. Legal Basis and Purposes of Processing (GDPR)

 

We will only use your personal data when we have a lawful basis to do so under GDPR. The most common purposes and legal bases are:

Order Processing and Delivery: Necessary for the performance of a contract with you (to process and deliver your goods).

Account Management: Necessary for the performance of a contract or our legitimate interests (to provide customer service).

Direct Marketing (Newsletters): Your consent. You can withdraw consent at any time.

Website Improvement and Analytics: Our legitimate interests (to improve the Site and services).

Legal Compliance: Necessary for compliance with a legal obligation (e.g., tax and accounting requirements in Slovenia).

​

5. Sharing Your Personal Data

 

We may share your personal data with the following categories of third parties only when necessary for our operations or legally required:

• Payment Processors: PayPal to handle transactions securely.

• Legal and Financial Advisors: For auditing and compliance with legal requirements.

All third parties are required to protect your data and treat it in accordance with the law.

​

6. Cookies

 

Our Site uses cookies to distinguish you from other users and improve your experience. 

​

7. Data Retention

 

We will only retain your personal data for as long as necessary to fulfil the purposes for which we collected it, or as required by legal, accounting, or reporting requirements.

Typically, order and financial data will be retained to comply with Slovenian and EU tax laws. Data collected based on consent (like newsletters) is held until consent is withdrawn.

​

9. Your Data Protection Rights (GDPR Rights)

 

Under the GDPR, you have the following rights regarding your personal data:

1. The Right to Be Informed

2. The Right of Access

3. The Right to Rectification (Correction of inaccurate data)

4. The Right to Erasure ('Right to be Forgotten')

5. The Right to Restrict Processing

6. The Right to Data Portability

7. The Right to Object (e.g., to direct marketing)

8. The Right to Withdraw Consent

You can exercise any of these rights by submitting a written request to our dedicated privacy email: luhovibe@yahoo.com

​

9. Right to Lodge a Complaint

 

If you have a complaint regarding our handling of your personal data, you have the right to lodge a complaint with the relevant supervisory authority. For Slovenia, this is the Information Commissioner (Informacijski pooblaščenec).

• Address: Zaloška 59, 1000 Ljubljana, Slovenia

• Website: https://www.ip-rs.si/