Privacy Policy

1. Introduction

Your privacy and data protection are of the utmost importance to us. This Privacy Policy is our privacy statement through which we would like to provide information in a transparent manner about the nature, scope, purpose, and conditions under which we collect, use and process personal data, as well as the rights that belong to you as a respondent. The processing of your personal data will always be in accordance with the General Data Protection Regulation (GDPR), as well as Croatian regulations on personal data protection.

2. Who is the head of data processing?

As the head of the data processing, CITUS d.o.o has implemented a number of technical and organizational measures to ensure comprehensive protection of personal data processed in the framework of the business relationship with our customers. In case you have any questions regarding your personal data or our data protection procedures, please feel free to contact us:

CITUS d.o.o.
Vrbje 1C, Zagreb, Croatia
Personal Data Protection Officer: gdpr@citus.hr

3. Personal data and processing

We collect and store personal data only to the extent necessary to provide the service based on a legal basis, a contractual obligation or voluntary consent.

When storing data, personal data is stored in the least possible number of places where it is adequately protected. Access to personal data is provided solely based on business needs.

Personal data is not used for the purposes of developing or testing IT systems. Wherever possible, personal data is protected by encryption, pseudonymization or anonymization.

All personal data for which there is no basis for storage shall be deleted or destroyed without delay.

The measures defined by this policy must be complied with by all employees of CITUS d.o.o. as well as third parties who in the framework of their cooperation with the Organization gain access to personal data.

We do not transfer your personal data to third countries; however, if the need arises, we will ask for your explicit consent.

4. Right of access

You have the right to ask us to confirm which category of your personal data we process, for what purpose, whether we share your data with someone, how long it will remain stored, etc.

You have the right to request the correction of your personal data that are inaccurate, the right to supplement your incomplete personal data, and to delete your data if there is no legal basis for their further processing.

If you have questions about our handling of data or the exercise of your rights, feel free to contact us by e-mail at gdpr@citus.hr.

5. Personal data protection

In the case that, despite all security measures taken, the confidentiality or availability of your personal data is compromised in any way, we will immediately notify the competent supervisory authority and/or you as the respondent in accordance with applicable European and national regulations.

6. Cookies

Our website uses only cookies that are strictly necessary for the functioning of the website.

We do not use cookies for:

  • Collection of any personally identifiable information (without your explicit consent)
  • Collection of sensitive information (without your explicit consent)
  • Forwarding your data to third parties

7. How to disable cookies

You can disable/turn off cookies by adjusting your web browser settings to stop accepting cookies (instructions for opting out can be found here). Doing so will most likely limit the functionality of our website as well as many other websites as cookies are a standard part of most modern websites.

This Privacy Policy applies from 14 October 2021.