Provision of Consent
Type of Information We Collect
The reason we ask for your Personal Data is that we require it to complete the orders and deliver the products from the website www.phistock.com. We do not collect nor process any special categories of personal data.
Categories of Personal Data Processed
Personal Data includes:
- Your personal details: first and last name, address, city/town, state, postal (zip) code, e-mail address, your personal PhiAcademy Logo code
- Data of your purchase: Purchased products, quantities and prices
Purpose and Legal Basis of Personal Data Processing
PhiStock processes Personal Data based on the Law and the consent of the Data Subject. The PhiStock processes Personal Data with the aim to:
- execute the rights and obligations derived from the business relationship between the PhiStock and the Data Subject to fulfil our contractual obligations, this includes, in particular, the delivery of the products ordered.
- fulfill our legal obligations such as the storage of business papers and contractual documents. Such obligations may arise from the GDPR, the UAE Company Law, UEA Tax Legislation or the UAE Civil Code.
- execute legislative obligations of the PhiStock (in accordance with the Personal Data Protection Law and the GDPR)
How Long Do We Process Your Personal Data?
The PhiStock shall process Personal Data collected for the purpose of executing the rights and obligations derived from the business relationship until the completion of the business relationship with the Data Subject, except in cases when the PhiStock is obliged to keep data even after the business relationship with the Data Subject has ended, according to the Law and in accordance with the Data Subject’s consent or legitimate interest (e.g. in the event of a legal dispute between the Data Subject and PhiStock).
Who Receives Your Personal Data?
PhiStock employees will receive your personal information for the purposes outlined above. If we are legally obliged to do so, we will also transfer your Personal Data to state bodies and authorities. In addition, companies commissioned by us (in particular, IT or payment services and back-office providers) will receive your Personal Data if they need it to fulfill their respective tasks. These providers are obliged to treat your Personal Data with confidentiality, to process it only to the extent necessary for their service provision, and have undertaken to ensure an adequate level of Personal Data protection.
Are You Obliged to Provide Personal Data?
For the fulfillment of our contractual obligations, it is necessary that you provide your Personal Data, otherwise we cannot enter into a contractual relationship with you and you will not be able to continue using the PhiStock platform.
Your Rights in the Context of the Processing of Your Personal Data
The Data Subject has the right to access the Personal Data being processed by the PhiStock.
In cases stipulated by regulations in the area of personal data protection, the Data Subject has the right to require rectification, update, erasure, as well as the right to object to and restrict processing. The Data Subject has the right to submit a complaint in regard to his/her Personal Data processing at any moment.
Right to Lodge a Complaint with a Supervisory Authority
Under the conditions set forth by the regulation, if you believe that we have violated your rights under the GDPR or while processing your Personal Data, please contact us. In this manner, will address your concerns as quickly as possible.
The Data Subject has the right to lodge a complaint with a supervisory authority (the Commissioner for Information of Public Importance) regarding the Personal Data processing of his/her Personal Data.
We do not apply automated decision-making or profiling.
When you access our website for payment processing, we do not retain any information which may be used for personal identification or any financial information that you have entered into our website in order to execute a payment transaction. We do not collect or store any information that is entered into our website contained on payment cards. This applies in both payment methods – bank transfer and the use of credit or debit cards.
Data protection for card payments
During the entering of payment card information, confidential information is transmitted via a public network in a secure (encrypted) form using SSL protocols, using the latest methods of sensitive data tokenization, and in accordance with PCI-DSS standards. The security of the data during the purchase is guaranteed by the processor of payment cards STRIPE. No information about the payment card is available to the PhiStock as the merchant at any moment.
3D Secure Protection for All Merchants and Customers – STRIPE Payment Gateway uses the highest global standards of protection and privacy of data. All merchants who use STRIPE Payment Gateway are automatically included in 3D-Secure protection, which guarantees customers the security of purchasing. Customer payment card numbers are not stored on the merchant system and the entry itself is protected by SSL data encryption.
PCI DSS Standards – STRIPE Payment Gateway is consistently compliant with all the requirements of card organizations in order to increase the level of security of traders and customers. From 2005 to the present, without interruption, the system has been certified as PCI-DSS Level 1, which is the highest standard in the industry. PCI Data Security Standard (PCI-DSS) is a standard that defines the necessary security measures for processing, storage and transmission of sensitive card data. PCI Standards are sensitive to sensitive cardholder data during the entire payment process: from the moment the data is entered at the merchant’s point of sale, during communications between the trader and the relevant banks and card organizations and the subsequent storage of such data.
Links to Other Web Sites
Technically required Cookies
The following cookie is used:
|Cookie Name||Purpose||Storage period|
|PHPSESSID||Your session ID on the server.||1 hour|
This cookie is technically necessary for the presentation of the Website. You can deactivate the setting of cookies in the settings of your browser. Please note that a general deactivation of cookies may possibly lead to functional limitations of our Website.
Furthermore we use the Cookies of Google Analytics, a web analysis service provided by Google LLC (hereinafter “Google”). These cookies transmit data about your usage of the Website to a Google server in the USA. However, your IP address will be shortened by Google prior to transmission and the transmitted data can no longer be associated with your person. Google will use this information to evaluate general usage data of our Website and to compile reports on Website activities. If you want to prevent the use of Google Analytics cookies, you can either do this through your browser settings (see section 7.1), or you can install the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout.
|Google Analytics Cookies||Purpose||Storage period|
|_gat||Determined by Google Analytics to identify unique sessions||30 minutes|
|_gid||Determined by Google Analytics to identify unique sessions||30 minutes|
|_ga||Determined by Google Analytics to identify unique sessions||30 minutes|
Facebook Audience Pixel
We also use the Facebook Audience Pixel analysis tool from Facebook Ireland Limited or Facebook Inc. to measure the effectiveness of our advertising. The pixel collects information about website usage, such as when the website is used and transmits that information to Facebook’s servers in Ireland and the United States. This information may also be cross-checked with other Facebook information or our information that we have about you. All data collected by this pixel is encrypted by Facebook using “hashes”. Facebook Ireland Limited is located in the European Union; Facebook Inc. is located in the United States and has a Privacy Shield Certificate which ensures the protection of your data.
The collection of data by Facebook Pixel only takes place with your consent. This consent can be withdrawn by you at any time. The comparison of the data with the data stored by us is based on our legitimate interest in marketing.
Access to Information: Contacting Us
To keep your Personal Data accurate, current, and complete, please contact us as specified below. We will take reasonable steps to update or correct Personal Data in our possession that you have previously submitted via the website: www.phistock.com
You Have The Right
- to request information about which of your personal Data we process;
- to rectify or erase your Data;
- to restrict the processing of your Data;
- to withdraw your consent;
- to object to the processing of your Data;
- to Data portability.
If you believe that we violate your rights when processing your Data, please contact us. This is the only way we can treat your concerns as quickly as possible.
Who Can You Contact?
If you have any questions or concerns relating to your Personal Data, contact us directly by e-mail by by telephone or by postal services at the following addresses:
Company: PhiStock DD Ratkovo
Phone number: + 381 62 670 804
Address: IFZA Dubai – Building A2, Unit 101, United Arab Emirates