Oncliniq DOO acts as data controller in line with the general data protection regulations and relevant implementation acts and the provisions of other applicable laws, regulations, and rules.
User Privacy Notice
Points of sale must provide their buyers with the option not to participate in marketing campaigns, and the right to object to the processing of personal data by third parties.
Points of sale can use the following template for the user privacy notice:
ONCLINIQ DOO takes data protection and privacy very seriously. We collect only relevant and necessary data to accomplish the specified purpose and to meet our obligations. Our buyers are informed about the way the collected data is used, moreover, they can control and determine how their personal data is used. Buyers can also decide whether they want their name removed from the list used for marketing campaigns.
All user personal data is kept strictly confidential. It is available only to employees who require such data to perform their work tasks. All employees of ONCLINIQ DOO and business partners are obliged to demonstrate that their activities are compliant with the Data Protection Principles.
If the prices, indicated on the online point of sale, are given in some international currency (for example £, $…), the final price can also be in the same currency or it can be calculated and indicated in EUR currency before the checkout. It is necessary to provide the following statement of conversion (adapted to the language, currency and the exchange rate of the bank).
If the conversion is in EUR, the statement may be as follows:
All payments will be effected in EUR currency. The amount your credit card account will be charged for is obtained through the conversion of the price in Euro into your local currency according to the current exchange rate of your national bank. When charging your credit card, the same amount is converted into your local currency according to the exchange rate of credit card associations. As a result of this conversion there is a possibility of a slight difference from the original price stated in our web site.
If the prices available on the online point of sale are given in the origin currency, and not in foreign currency, this statement about conversion can be used for the foreign customers:
All payments will be effected in EUR currency. The charged amount on your credit card account is converted into your local currency according to the exchange rate of credit card associations.
Statement about the Protection of Personal Data Transfer
Data protection pursuant to the General Data Protection Regulation of the European Parliament and the Council no. 2016/679- Regulation and implementation of the GDPR
Monri WSPay, being the processor of authorization and payment made by credit cards, uses personal data as the processor pursuant to the General Data Protection Regulation of the European Parliament and the Council no. 2016/679, and compliant with PCI DSS Level 1 Regulations for data transfers.
Monri WSPay uses 256-bit SSL encryption and TLS 1.2 cryptographic protocol as the highest protection standards for data entry and transfer.
Personal data used for the purposes of authorization and payment are deemed to be confidential data.
The following customer’s personal data are necessary to fulfil the Agreement (authorization and payment):
- Name and Surname
- Telephone number
- Address
- City
- Post Code
- Country
- Type of credit card
- Credit card number
- Expiry date (credit card)
- CVV number for credit card
Monri WSPay does not process or use these personal data except for the purpose of fulfilling the Agreement, the authorization and the payment.
Monri WSPay ensures to meet the requirements determined by applicable personal data protection regulations, for the processors of personal data, especially taking all necessary technical, organizational or security measures confirmed by PCI DSS Level 1 certificate.
Monri WSPay Usage Statement
ONCLINIC DOO (sales point) uses Monri WSPay for online payments.
Monri WSPay is a secure system for online payments, real time credit and debit card payments, and other payment methods. Monri WSPay ensures the buyer and the merchant with the secure card data entry and transfer, which is also confirmed by PCI DSS certificate. Monri WSPay uses 256-bit SSL encryption and TLS 1.2 cryptographic protocol as the highest protection standards for data entry and transfer.
What personal data do we collect about you?
The personal data we process may include:
•Basic information, such as your name, title, position, the company you work for, your relationship to a person.
•Contact details.
•Data necessary for processing invoices.
•Personal data that we need for compliance purposes.
•Personal data provided to us while rendering services which may include special categories of data.
•Any other personal data relating to you that you provide to us.
How do we obtain your personal data?
We obtain the personal data in the following situations:
•When you provide us with your personal data, or when you interact with us directly by e-mail or telephone.
•When you enter into an agreement with us.
•When we monitor our technology tools and services, including the e-mails which are sent to and from us.
•When we collect personal data from other sources, such as local counsel, counterparties, the Trade Register, the Land Registry, commercial databases or by using public sources.
For what purposes do we process your personal data?
•To process and to respond to requests, enquiries or complaints received from you.
•To onboard and execute our services and supporting processes and systems required.
•To manage and administer our relationship with you.
•To comply with regulatory and policy requirements.
•To provide services requested by you.
•To identify services, you may be interested in.
•To communicate with you about our services.
•To monitor and analyse our business processes and systems.
•To handle your job application.
•To establish, exercise or defend a legal claim and proceeding against us.
On what basis do we use your personal data?
•To conclude and perform a contract.
•To comply with regulatory and policy requirements.
•For a legitimate interest (e.g. managing and administering the relationship with clients and suppliers).
•With your consent.
How long do we keep your personal data?
We will keep your personal data no longer than is necessary to achieve the purposes stated in this Privacy and Cookie Policy. The retention period for each category of personal data is based on regulatory and policy requirements and the purpose for which the information is collected and used.
Who do we share your personal data with?
In connection with the provision of our services and supporting, dispute resolution and regulatory systems and processes we may need to share your personal data with any current or future other offices or related parties of Oncliniq DOO We may also need to allow our suppliers and sub-suppliers access to your personal data when they perform services on our behalf (mainly to maintain and support our ICT systems) and regulatory authorities, courts, tribunals, government agencies and law enforcement agencies for the purposes specified above. Any transfer of personal data outside Montenegro is made in line with applicable data protection laws.
How do we protect your personal data?
Oncliniq DOO has taken appropriate technical and organisational measures to protect personal data against loss or against any form of unlawful processing. The information security is in the hands of skilled external and or internal ICT professionals.
What rights do you have regarding your personal data?
You, as a data subject, specifically have the following rights:
•Right to access your personal data.
•Right to rectification or correction of your personal data.
•Right to erasure of your personal data.
•Right to object or to request restriction of processing of your personal data.
•Right to data portability.
•Right to object to profiling.
•Right to lodge a complaint with a supervisory authority.
•Right to withdraw your consent for the future to the extent that the processing of your personal data takes place based on your consent.
Changes to This Privacy Policy
We may update our Privacy Policy from time to time. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
Contact Us
If you have any questions about this Privacy Policy, please contact us.
This Privacy Policy is owned by Oncliniq DOO
Last updated: April 2024