Privacy policy

Last updated: October 24, 2025


NV dizajn d.o.o. operates this store and website, including all related information, content, features, tools, products, and services, to provide you, the customer, with a personalized shopping experience ("Services"). Diabetesbox.si is based on Shopify, which allows us to provide you with these services. This privacy policy describes how we collect, use, and disclose your personal information when you visit, use, or make a purchase or other transaction using the services or otherwise communicate with us. In the event of a conflict between our terms of service and this privacy policy, this privacy policy shall prevail concerning the collection, processing, and disclosure of your personal information.

Please read this privacy policy carefully. By using and accessing any of the services, you confirm that you have read this privacy policy and understand the collection, use, and disclosure of your information as described in this privacy policy.

Personal Data We Collect or Process

When we use the term "personal data," we refer to information that identifies you or can reasonably be linked to you or another person. Personal data does not include information that is collected anonymously or has been de-identified in such a way that it cannot be identified or reasonably linked to you. Depending on how you interact with the services, where you live, and as permitted or required by applicable law, we may collect or process the following categories of personal data, including inferences drawn from this personal data:


• Contact details including your name, address, billing address, shipping address, phone number, and email address.
• Financial information including credit card numbers, debit card numbers, and financial account details, payment card information, transaction details, payment method, payment confirmation, and other payment-related information.
• Account information including your username, password, security questions, preferences, and settings.
• Transaction details including the products you view, add to your cart, wishlist, purchase, return, exchange, or cancel, as well as your past transactions.
• Communication with us including the information you provide in communications with us, such as when you submit a customer support inquiry.
• Device information including details about your device, browser, or network connection, IP address, and other unique identifiers.
• Usage information including details about your interaction with the services, including how and when you engage with the services or navigate through them.

Sources of Personal Data

We may collect personal data from the following sources:

• Directly from you, including when you create an account, visit or use the services, communicate with us, or otherwise provide us with your personal information;
• Automatically through the services, including from your device when you use our products or services or visit our websites, as well as through the use of cookies and similar technologies;
• From our service providers when we engage them to enable specific technology and when they collect or process your personal data on our behalf;
• From our partners or other third parties.

How We Use Your Personal Data

Depending on how you interact with us or which services you use, we may use personal data for the following purposes:


• Providing, personalizing, and improving services. We use your personal data to provide services, including fulfilling our contract with you, processing your payments, fulfilling your orders, remembering your preferences and items of interest, sending notifications regarding your account, processing purchases, returns, exchanges, or other transactions, creating, maintaining, and managing your account, organizing delivery, facilitating returns and exchanges, enabling the posting of reviews, and creating a personalized shopping experience for you, such as recommending products related to your purchases. This may include using your personal data to better tailor and enhance services.
• Marketing and advertising. We use your personal data for marketing and promotional purposes, such as sending marketing, advertising, and promotional messages via email, text messages, or mail, as well as displaying online ads for products or services within the services or on other websites, based on products you have already purchased or added to your cart, and other activities within the services.
• Security and fraud prevention. We use your personal data to verify the authenticity of your account, ensure secure payment and shopping, detect, investigate, or take action regarding potential fraudulent, illegal, dangerous, or malicious activities, protect public safety, and ensure our services. If you choose to use the services and register an account, you are responsible for the security of your account credentials. We recommend that you do not share your username, password, or other access information with anyone else.
• Communication with you. We use your personal data to provide customer support, respond to you, ensure effective services, and maintain a business relationship with you.
• Legal reasons. We use your personal data to comply with applicable law or respond to valid legal processes, including requests from law enforcement or government agencies, to investigate or participate in civil discovery, potential or actual legal proceedings, or other adversarial legal actions, and to enforce or investigate potential violations of our terms or policies.

How We Disclose Personal Data

In certain circumstances, we may disclose your personal data to third parties for legitimate purposes subject to this privacy policy. Such circumstances may include:

• In connection with Shopify, vendors, and other third parties that perform services on our behalf (e.g., IT system management, payment processing, data analysis, customer support, cloud storage, order fulfillment, and shipping).
• To business and marketing partners to provide marketing services and advertising to you. For example, we use Shopify services to support customized advertising with third-party services based on your online activities across different merchants and websites. Our business and marketing partners will use your data in accordance with their privacy notices. Depending on where you reside, you may have the right to request that we refrain from sharing data about you for targeted advertising and marketing based on your online activities with different merchants and websites.
• When you request, require, or otherwise consent to the disclosure of certain data to third parties, such as for shipping products or using social media widgets or login integrations.
• With our affiliates or otherwise within our corporate group.
• In connection with a business transaction, such as a merger or bankruptcy, to fulfill applicable legal obligations (including responding to subpoenas, search warrants, and similar requests), to enforce applicable terms of service or policies, and to protect or defend the services, our rights, and the rights of our users or others.

Relationship with Shopify

The services are hosted by Shopify, which collects and processes personal data about your access to and use of the services in order to provide and improve those services. The information you provide to the services will be shared with Shopify and third parties that may be located in countries where you do not reside, to provide and enhance the services. Additionally, to protect, grow, and improve our business, we use certain enhanced features of Shopify that include data and information obtained from your interactions with our store, other merchants, and Shopify. To provide these enhanced features, Shopify may use personal data collected about your interactions with our store, other merchants, and Shopify. In these circumstances, Shopify is responsible for processing your personal data, including responding to your requests to exercise rights regarding the use of your personal data for these purposes. To learn more about how Shopify uses your personal data and about any rights you may have, you can visit the Shopify Consumer Privacy Policy. Depending on where you live, you may exercise certain rights regarding your personal data here.

Websites and Third-Party Links

The services may contain links to websites or other online platforms operated by third parties. If you follow links to websites not affiliated with us or under our control, you should review their privacy and security policies and other terms and conditions. We do not guarantee and are not responsible for the privacy or security of such websites, including the accuracy, completeness, or reliability of information found on those websites. Information you provide on public or semi-public sites, including information shared on third-party social media platforms, may also be viewed by other users of the services and/or users of those third-party platforms without restriction regarding its use by us or a third party. Our inclusion of such links does not imply that we endorse the content on such platforms or their owners or operators unless this is disclosed in the services.

Children's Data

The services are not intended for children and we do not knowingly collect any personal data about children under the age of majority in your jurisdiction. If you are a parent or guardian of a child who has provided us with their personal data, you may contact us using the contact details provided below and request their deletion. As of the effective date of this privacy policy, we are not actually aware of "sharing" or "selling" (as those terms are defined in applicable law) personal data of individuals under the age of 16.

Security and Storage of Your Data

Please be aware that no security measure is perfect or impenetrable, and we cannot guarantee "complete security." Additionally, all data you send us may not be secure during transmission. We recommend that you do not use unsecured channels to communicate sensitive or confidential information.
How long we retain your personal data depends on various factors, such as whether we need it to maintain your account, provide services, fulfill legal obligations, resolve disputes, or enforce other applicable contracts and policies.

Your Rights and Choices

Depending on where you live, you may have some or all of the rights listed below concerning your personal data. However, these rights are not absolute and may only be exercised under certain circumstances; in specific cases, we may deny your request as permitted by law.

Right of Access: You may have the right to request access to the personal data we hold about you.
Right to Deletion: You may have the right to request that we delete personal data we hold about you.
Right to Correction: You may have the right to request that we correct any inaccurate personal data we hold about you.
Right to Data Portability: In certain circumstances and with specific exceptions, you have the right to receive a copy of the personal data we hold about you and to request that we transfer it to a third party.
Managing Communication Preferences: We may send you promotional emails, which you can unsubscribe from at any time using the opt-out options provided in our emails. If you unsubscribe, we may still send you non-promotional emails, such as about your account or orders you have placed.
If you are a resident of the United Kingdom or the European Economic Area, you may also exercise the following rights, subject to exceptions and limitations provided by local law:
Objection to Processing and Restriction of Processing: You may have the right to request that we stop or limit the processing of your personal data for specific purposes.
Withdrawal of Consent: Where we rely on your consent to process your personal data, you have the right to withdraw that consent. If you withdraw your consent, it will not affect the lawfulness of processing based on your consent before its withdrawal.

You may exercise any of these rights as described in the services or by contacting us using the contact details provided below. To learn more about how Shopify uses your personal data and any rights related to the data processed by Shopify, you can visit the website https://privacy.shopify.com/en.

We will not discriminate against you for exercising any of these rights. Before we can process your requests, we may need to verify your identity as permitted or required by applicable law. Under applicable law, you may appoint an authorized representative to submit requests to exercise your rights on your behalf. Before we accept such a representative's request, we will require proof that you have authorized them to act on your behalf and may need to verify your identity directly with us. We will respond to your request in a timely manner, as required by applicable law.

Complaints

If you have any complaints about how we process your personal data, please contact us using the contact details provided below. Depending on where you live, you may have the right to appeal our decision by contacting us using the contact details below or by filing a complaint with your local data protection authority. For the EEA, you can find a list of relevant data protection supervisory authorities here.

International Transfers

Please note that your personal data may be transferred, stored, and processed outside the country in which you reside.
If we transfer your personal data from the European Economic Area or the United Kingdom, we will rely on recognized transfer mechanisms, such as the standard contractual clauses of the European Commission or equivalent agreements issued by the relevant competent authority of the United Kingdom, unless the transfer is to a country that has been determined to provide an adequate level of protection.

Changes to This Privacy Policy

We may update this privacy policy from time to time, including due to changes in our practices or for other operational, legal, or regulatory reasons. The updated privacy policy will be posted on this website, the date in the "Last Updated" section will be revised, and we will provide notice as required by applicable law.

Contact

If you have any questions about our privacy practices or this privacy policy, or if you wish to exercise any rights available to you, please call us at +386 1 5408 007 or send an email to info@diabetesbox.si, or contact us at NV DIZAJN, d.o.o., Letališka cesta 32, 1000 Ljubljana, Slovenia. For the purposes of applicable data protection legislation, we are the data controller of your personal data.