User consent and withdrawal
Data processing manager
What type of data is collected?
The Association collects all personal data that is accumulated when users use the services offered by the Association (Website) and communicate with the Association. Only those personal data that are essential for the purpose for which the users use the offered services are collected and their scope will not exceed what is necessary to achieve such a purpose.
This includes:Data entered by users via online forms or entered by them in other ways while using the services of the Association (for example, by phone or e-mail) including personal data (name, address, telephone number, date of birth, gender, means of payment, etc.), user data sent or automatically generated (for example, date and time of service use, current and previously used page, IP address, data related to the browser used, device code, current location, if such information is given, etc.), as well as interaction data if available without installing additional programs on the computer (for example, mouse movements and clicks or keystrokes on the website), personal data generated by the Association or third parties (for example codes), correspondence and other communication with users (for example , e – mail, telephone conversations, which can be recorded if necessary).
Purpose of data processing
The Association may use user data collected or collected for it for the following purposes:
- Obtaining services offered by the Association,
- Preparation of various types of statistics related to, for example, the amount of demonstrated interest of users for the product and comparison of services or for other services offered by the Association,
- Internal training and quality control,
- Maintaining and developing customer relationships,
- Guarantees of security and availability of the system and data of the Association and its service providers,
- Corporate transactions performed by the Association, which may have an impact on user data,
- Prevention, detection and prevention of any abuse,
- Responding to justified official inquiries or inquiries related to the proof of lawsuits or other legal disputes concerning the Association or in which the Association participates.
Further purposes may arise from given circumstances or legal obligations, or may be required as part of the collection of relevant data.
Brochures, commercial communication
In connection with the services offered by the Association, it may periodically send brochures or other content (of a commercial nature) to the address or number of any user who has registered his e-mail address or any other electronic address or mobile phone number of the Association. By registering, users give their consent to receive such brochures and content. However, they may notify the Association at any time and free of charge that they no longer wish to receive or be notified of the foregoing.
Is any data passed on to third parties?
With the exceptions listed below, the Association does not in principle pass on any personal data to third parties:
The Association may invite third parties to process personal data on behalf of and exclusively for the purpose of the Association’s business. The Association shall take appropriate measures to ensure that such third party processes the data exclusively in the manner in which the Association is authorized to process it;
The Association may disclose personal data to third parties if its user so requests (registration, request for an offer, etc.), if this is otherwise necessary to provide the service required by the user or if the Association has explicitly informed the user that his / her her data to present. In exceptional cases (eg misuse), user data may also be disclosed to third parties for other purposes specified in this data privacy statement or for the purpose provided by law. The Association cannot control, guarantee or guarantee that third parties comply with the data protection rules applicable to the Association’s website; they process the data for their own purposes, possibly also abroad where different regulations apply.
The Association may disclose personal data to third parties if so provided by law.
Furthermore, the Association may disclose anonymized user data to third parties. Such information shall take a form that does not allow third parties to know the identity of the users concerned or is unlikely.
All employees of the Association and business partners are responsible for respecting the principles of privacy protection through contractual relations for the Association and associated companies.
Where and how data is stored
In the context of storing or processing user data in any other way, the Association will apply appropriate technical and organizational measures to prevent unauthorized or otherwise unauthorized processing. Such measures are subject to regular monitoring and are amended as necessary. This also applies to third parties in charge of running the system.
Personal data is kept in a form that allows the identification of the user and no longer than is necessary for the purpose for which the data is collected or further processed. We use a variety of security measures, including encryption and authentication, to protect and maintain the security, integrity, and availability of your data.
Among other things, we use the following measures:
- strictly limited personal access to your data on the principle of “necessary knowledge” and exclusively for the purposes for which you are informed,
- secure transfer of collected data,
- continuous monitoring of access to IT systems to detect and prevent the misuse of personal data.
How long we keep your data
We store and process personal data only for as long as is necessary for the execution of a certain legitimate purpose, unless the applicable regulations provide for a longer period of storage for a particular purpose. In the case of giving consent to marketing, we keep the data as long as the consent is not withdrawn. In the case of rejected bids, where no consent has been given for marketing, we keep the data related to the bid for one year, and in case you ask us to delete them, they will be deleted immediately.
Personal data that is no longer needed is either irreversibly anonymized or destroyed in a secure manner.
Questions, suggestions, requests for information, corrections or deletions
The user has the right at any time to withdraw the consent given for the processing of personal data and request the cessation of further processing of his data, unless it is data processing for statistical purposes, when personal data no longer allow identification of the data subject. The user also has the right to request the correction or modification of personal data provided for processing. Withdrawal of consent or a request for correction or modification of personal data shall be submitted in writing by e-mail to firstname.lastname@example.org or to the postal address: Kratka 6, 42000 Varaždin. The user has the right to explicitly object to the processing of his personal data for marketing purposes and in that case the personal data relating to him will not be processed for that purpose. Opposition to the processing of personal data for marketing purposes will be submitted by the user in writing by e-mail to email@example.com, or to the postal address, Kratka 6, 42000 Varaždin. All other questions, suggestions and comments regarding the processing of personal data are welcome.
Anyone who considers that a right guaranteed by this Act has been violated may submit a request for establishing a violation of the right to the Personal Data Protection Agency.
Contact details of the personal data protection officer:
Plant a tree, don’t be a stump!
Kratka 6, 42 000 Varaždin
Personal identification number: 75737555548
Projects and campaigns
Plant a tree,
don't be a stump!
Personal identification number: 75737555548
Identification number: 5324572
Account number: HR5824020061100999327