By using products and services and by accessing this web site, you entrust us with your personal data. This statement describes which personal data we collect from the User, how we process it and for what purposes we use it, as well as the rights related to this data.
The Data Controller is responsible for the collection, processing and protection of personal data:
1 Kralja Zvonimir Street, Požega
The controller pays particular attention to the protection of personal data and privacy (further: privacy protection) of its users in accordance with current regulations and best European practice.
We want to provide our users with clear information about the processing and protection of their personal data and enable them to easily monitor and manage their personal data and consents with the policy of protection of personal data of users of the network headquarters.
Field of application
The policy applies to all personal data of the User of the online headquarters that the Data Controller collects, uses or otherwise processes, directly or through its partners. Personal data is any data relating to a natural person whose identity has been determined or can be determined, directly or indirectly (hereinafter: data or personal data). Data processing is any action performed on personal data, such as collection, recording, storage, use, transfer of personal data and access to personal data.
The policy does not apply to anonymous data. Anonymous data is data that has been changed in such a way that it cannot be linked to a specific natural person or cannot be linked without a disproportionate effort, and therefore, in accordance with current regulations, it is not considered personal data.
Principles of personal data processing
The protection of the User's privacy is very important to us, therefore we want to be completely transparent and clear regarding the processing of the User's personal data - which is also the purpose of this policy. Users can always contact us with a request to change their personal data or with an expression of will about the purposes for which they want or do not want their data to be processed.
When processing data, we act in accordance with the General Data Protection Regulation, but we also strive to apply the highest standards and best practices.
Limitation of the purpose of processing
We collect and process personal data only for a specific and lawful purpose, and we do not further process them in a way that is inconsistent with the purpose for which they were collected, unless otherwise prescribed by law or on the basis of the user's consent.
Reducing the amount of data
We always use only those User data that are appropriate and necessary to achieve a certain legal purpose, and not more data than that.
Integrity and Confidentiality
We process personal data in a secure manner, including protection against unauthorized or illegal processing and against accidental loss, destruction or damage (e.g. access to the User's personal data is only available to authorized persons who need it for the performance of their work, and not to other employees).
Quality of personal data
We attach great importance to the quality of the data we process. The personal data we process must be accurate, complete and up-to-date in order to ensure maximum protection of the User's data and prevent possible abuse.
Limited storage time
We store and process the User's data only as long as it is necessary for the execution of a certain legitimate purpose, unless a longer or shorter storage time is provided for a particular purpose by the applicable regulations or in other cases expressly prescribed by law. After that, the data is permanently deleted or made anonymous.
How we collect personal data
We collect data primarily directly from the User and that is in a way that they provide it to us. The most common example of this type of data collection is filling in formulas for Contact and Your chocolate.
We also collect data that is generated automatically when the User uses our web site. The most common example of this type of data collection is the IP address, approximate location of the device, time and duration of use, etc.
What data we collect
When using the website and using our services, we may use technology, such as that provided by Google Analytics, to collect information about the User's visit to our website. In principle, these tools allow us to analyze how Users use our web site.
The information we collect may include:
- anonymized IP address;
- browser type (eg whether you use Chrome or Safari);
- number of visits per browser on each device;
- the type of device and operating system used by the User;
- time zone;
- user settings;
- pages visited by the User.
Use of collected data
We use the data that Users voluntarily give us for:
- for the purpose of protecting the legitimate interests of the User and/or the owner of the network headquarters;
- ensuring a superior user experience at the network headquarters;
- personalization of the user experience at the network headquarters;
- market research and analysis;
- preventing, detecting and processing abuse of the network headquarters;
- improving the security of Users, employees, products and services;
We may share anonymous usage data that does not link the User to third parties. We may combine User information with that of other Users of our website and share such information in aggregated and anonymized form with third parties to improve the design and operation of the Website, thereby increasing the effectiveness of the Website and the user experience for all Users.
The legal basis for data processing for these purposes is the legitimate interest of the Controller, except when that interest is stronger than the interest or fundamental rights and freedoms that require the protection of the User's data.
As a rule, we keep your personal data for 12 months from the date of collection, and at the latest until the expiration of all legal obligations related to the storage of personal data.
How we protect data
We use various technical and organizational measures to protect the User's data from unauthorized access by persons inside and outside our legal entity, changes, loss, theft and any other violation and misuse of data in accordance with the best European practice. This includes, among other things, the fulfillment of security requirements (so-called security by design) and data protection requirements (so-called privacy by design), anonymization of data, conclusion of personal data protection contracts with all subcontractors and collaborators, implementation of all measures to protect the User's personal data, implementation of regular controls of security measures and personal data protection measures.
Place of data processing
We process the User's personal data in the Republic of Croatia. Sometimes we can process personal data in other member states of the European Union with the assurance of adequate protection of personal data and with the prior consent of the User.
In addition to the User's active role in relation to consent management, i.e. the User's right to withdraw consent at any time, the User also has the following active roles, all in accordance with the General Data Protection Regulation: the right to object, correct, delete, access, limit processing and data portability.
The User can exercise his rights by addressing or submitting a request directly to the Data Controller at the e-mail address email@example.com. Also, the User is authorized to submit a complaint to the Personal Data Protection Agency.
Cookies (en. cookies) are small data packets sent from the server to the User's computer, and they serve as an anonymous identifier and enable the collection of statistical data on the User's behavior at the network headquarters (e.g. on which parts of the network headquarters users stay the longest and where the shortest), which Internet browser (eg Internet Explorer, Opera, Safari, Google Chrome, Firefox) uses and similar.
The purpose of cookies is to improve the user experience when using the web site. The information collected by cookies also allows us to improve the site by evaluating the amount and patterns of use, the suitability of the site to the individual needs of the User, faster searches, etc. For example, it is used to remember your personal preferences while browsing the site and on future visits.
|ACCORDING TO DURATION|
|Permanent||They remain on the computer after closing the Internet browser program. They usually last from several months to permanently.|
|Temporary||They are removed from the computer after closing the Internet browser program.|
|ACCORDING TO THE SOURCE|
(en. first party cookies)
|First-party cookies come from the website the User is viewing, and can be permanent or temporary. With the help of these cookies, the network headquarters can store data that will be used again during the next visit of the User to that network headquarters.|
(en. third party cookies)
Third-party cookies come from other web sites, which are located on the web site that the User is viewing. With the help of these cookies, other web sites can track the use and behavior of the user on the web site that the User is viewing for marketing purposes.
|ACCORDING TO THE FUNCTION|
|Necessary||They are necessary for the network headquarters to function and cannot be turned off. They are usually set in response to User actions that include a request for services, such as cookie settings, logging in, or filling out forms.|
|Executive||They enable anonymous recording of visits and sources of traffic, which parts of the network headquarters are more or less visited, the movement of Users around the network headquarters so that we can measure and improve the effectiveness of the network headquarters. They do not directly store personal data, but are based on the unique identification of the User's browser and internet device.|
|Functional||They enable memorization of information (settings) that change the way the site behaves or looks, such as the preferred language or the region in which you are located.|
|Advertising||They enable monitoring of the User through multiple network locations. The intention is to display individualized and relevant ads for each User, and at the same time represent value for publishers and third-party advertisers.|
The information stored in cookies is used exclusively by us, except for those described below as "third-party cookies", which are used and managed by external legal entities in order to provide the services we request to improve our services and the User experience when browsing our website . These "third-party cookies" are mainly used to obtain access statistics and to guarantee payment transactions if they are executed.
This policy was last modified on March 24, 2023.