We, JIMA with NIF 45640342Q and IGE with NIF 60504290F, as developers of the OkLista application, are committed to acting responsibly and prioritizing the confidentiality and security of your personal information. This Privacy Policy describes the principles we adhere to when processing personal data in the various activities of OkLista, particularly concerning the operation of our applications and services as defined and governed by the Terms of Services, which complement this document. This Privacy Policy covers all our digital service offerings, regardless of their functionality or the platform through which they are accessed, ensuring a consistent and compliant user experience across our range of products.
As part of our commitment to transparency and responsible handling of your personal information, we have incorporated a Consent Management Platform (CMP) in OkLista. A CMP is a system designed to manage users’ preferences regarding data processing, ensuring that you have full control over what information is used and for what purposes. This system allows users to view what data is used and accept all or only those they wish through the configuration section in the data protection section.
As developers and data controllers of OkLista, we are responsible for managing how your personal information is processed when using our Application. To ensure that your personal data is handled with the utmost care and in accordance with the General Data Protection Regulation (GDPR), we have appointed a dedicated Data Protection Officer (DPO). You can contact our DPO directly for assistance with any matters related to data processing or the GDPR at:
Email: dpo@oklista.com
We recommend that you contact our DPO if you have any questions or requests related to your personal data. Our commitment is to ensure transparency, accountability, and your right to privacy during your experience with our Applications and Services.
We collect information directly from you when you interact with OkLista, such as when you download and use our application, register for an account, use certain features (e.g., list creation, searched products, added favorites, created categories), or communicate with us. We do not use any information you provide to make automated decisions, but we may use this information to provide content that may be more relevant to your needs or interests.
When you download and use our applications or services without registering, we will only process the personal data you choose to provide. These may vary depending on the specific functionalities of the application or service in use and may include items such as your name, payment-related details (or information about payments made through associated platforms), email address, and/or phone number. Additionally, if you choose to provide it, we may process data from your contact list and other voluntary information you may include such as age, gender, language, and details about financial incentives or promotions that may be applicable.
Additionally, for the proper functioning of the features of our application and to present third-party marketing information that is relevant to your interests, we may also process any content you may enter or upload to our application. We use third-party services for transactions, specifically the Google payment gateway, to process any payments made within the app. As a result of processing this data, we may show you product recommendations from specific brands, promotional offers aligned with your interests, and advertising banners, which are essential for us to offer our applications and services for free. Paid versions of our applications and services are also available, which do not include or process this marketing information.
Depending on the devices you use to access our applications or services and your settings, we may process additional information about their usage. This includes technical, analytical, and statistical data about your device and its configuration, such as IP address and device geolocation, data obtained through cookies or other similar technologies, your activity within our services, session data, and information about your internet browser and application or service settings.
This data is processed to formalize and execute a contract with you for the provision of electronic services (Article 6(1)(b) of the GDPR), to comply with tax and legal obligations (Article 6(1)(c) of the GDPR), to manage the quality of our services, and for analytical purposes (Article 6(1)(f) of the GDPR).
The provision of this data is voluntary but necessary for us to offer you the functionalities of our services and applications and to ensure their proper or better functioning. We will retain this data for the duration of the contract execution and maintenance of your account or until the legal limitation periods for claims related to this contract expire.
When you register for an account, for the provision of services that require user login (account registration), we also process the necessary information for account registration: email address and password or information about your account on the platform used for registration and login purposes (such as Facebook, Google, or similar platforms).
The provision of this data is voluntary but necessary for us to provide you with the functionalities of our services and applications that require login information. We will retain this data for the duration of the contract execution and maintenance of your account or until the legal limitation periods for claims related to this contract expire.
When you contact us, we process data such as your name, email address, phone number, and any other information you provide at that time.
This processing is carried out at your request, which we interpret as your explicit consent to handle this data, or based on our legitimate interest in providing responses to your inquiries (Article 6(1)(a) and (f) of the GDPR).
The provision of your personal data is voluntary, but essential for us to respond to your inquiries.
We will retain your data for the duration of the matter in question or until the legal limitation period for claims related to your inquiry expires.
To achieve the goals of processing your data, particularly to ensure the optimal functioning of the features and services of our applications, it may be necessary to delegate the processing of this data to third parties who collaborate with us, such as Amazon, Google, or Microsoft. These service providers will process your personal information solely under our instructions and in accordance with the established data processing agreements.
Additionally, we may share your personal data with other entities acting as independent data controllers, such as courts or government authorities, to comply with legal obligations or protect our legal rights and interests.
We safeguard the confidentiality, integrity, and availability of your personal information. Therefore, we have established rigorous organizational and technical security measures to ensure that we comply with the most demanding legal standards and regulations. We have formulated information security policies that include protocols and procedures designed to protect your personal data from being destroyed, lost, altered, or accessed without authorization, such as encrypting data both in transit and at rest, conducting regular security audits, and implementing strict access controls.
The data related to your payments is handled by external platforms where our subscription transactions take place. These platforms are independent entities, and as such, we do not have direct access to your payment information.
Our applications and services may include links to other websites or applications. We are not responsible for the content or personal data handling practices of these third-party websites and applications. We advise you to review their policies before providing any personal data.
You have the right to access the personal data we process about you in OkLista, as well as a copy of it. You also have the right to have outdated or inaccurate personal data corrected, and to have your personal data deleted or the processing restricted.
You also have the right to withdraw any consent you have given, without affecting the lawfulness of the processing based on consent before its withdrawal.
To exercise these rights, contact us at: dpo@oklista.com
We may modify this Privacy Policy at any time by publishing a revised version on our website and, where appropriate, sending you an email to the address associated with your account or providing a notification within the product.