Furthermore, we wish to inform you of your rights. As a data processing manager, the Discover Mrežnica website has embedded a range of technical and organizational measures to ensure the full protection of personal data processed. However, data transmission over the Internet in theory may have security flaws, so 100% protection can not always be guaranteed. For this reason, each respondent can submit personal information via alternative methods, eg. through a telephone call.
a) Personal data
Personal data is any data relating to any identified physical person (“the respondent”). An identified natural person is one that can be identified, directly or indirectly, by name and surname, identification number, location information, online identifiers such as the physical, mental, genetic, mental, economic, cultural or social identity of a natural person.
b) The respondent
A respondent is any natural person whose identity has been established or can be identified and whose personal data are subject to processing by the processing manager responsible for processing personal data.
Processing is any process or set of procedures applicable to personal data, whether it is automated processes such as collecting, capturing, organizing, structuring, saving, modifying, extracting, viewing, using, detecting by transfer, spreading or placement available, aligned, restricted, deleted, or destroyed.
d) Processing limits
Restriction of processing is the marking of stored personal data in order to limit their processing in the future.
Profiling is any method of automated processing of personal data that consists of the use of personal data to determine personal preferences of physical persons, namely to analyze and overlook the aspects of performance at work, economic situation, health, personal preferences, interests, reliability, behavior , locating and moving each individual person.
Pseudonymization is the processing of personal data in such a way that the respondent can no longer assign attributes without the use of additional data collected in a way that is separate and can be applied by technical and organizational measures that ensure that data can not be applied to any a natural person whose identity is established or can be identified.
g) Personal data processing manager or person in charge of processing personal data
Personal data processing manager or person in charge of personal data processing is any natural or legal person, public institution, agency or other body that solely or in cooperation with others determines the purpose and manner of processing personal data; where the purpose and method of processing of personal data are regulated by the legislation of the EU Member State, the criterion for selection of processing manager will be subject to the ingestion of the legislation of the EU Member State.
h) Personal Data Processing Officer
The Personal Data Processing Officer is a natural or legal person, public institution, agency or other body that processes personal data on behalf of the data processing manager.
The recipient is a natural or legal person, a public institution, agency or other body to which personal data was provided, whether it was a third party or not. However, state bodies receiving personal data through a specific inquiry in accordance with EU or Member State law shall not be considered recipients; processing of personal data by these state bodies will be in accordance with applicable regulations related to the purpose of data processing.
j) Third party
A third party is a natural or legal person, a public institution, agency or other body, who is not a respondent, a processing manager or a processing entity, who is authorized to process the personal data of the respondent by the direct permission of the processing manager or the processing entity.
The consent of each respondent is accurately determined, informed and unambiguous indication of the test taker’s wishes by which he or she through a statement or a clear affirmative action expressed consent to the processing of personal data related to him or her.
Collection of general data and information
The Discover Mrežnica website collects general information and information when a respondent or an automated system accesses the website. These general data and information is then stored on the server in the form of log files. Collected (1) browser type and version, (2) operating system (3) web page with that approach my website (the referrers), (4) the subsite (5) date and time of accession website, (6 ) An IP address, (7) an Internet service provider, and (8) other similar data and information that may be used in the event of an attack on the information system. When using these general data and information, no conclusions are drawn on the respondent. Contrary to this, this information is needed to ensure (1) the contents of the website properly, (2) optimize the content of the website and its marketing, (3) ensure the long-term ability of the system and the website, (4) provide the necessary assistance to state bodies in a case of criminal persecution due to cyber-attacks. Therefore, the Discover Mrežnica website analyzes anonymously collected data and information statistically to increase data protection and security and to ensure the optimal level of protection of all collected personal data processed. Server log file anonymous data is stored separately from the personal data of the respondent.
The possibility of contact through the website
The Discover Mrežnica website contains information that allows quick contact via electronic media as well as direct communication that includes a so-called email address. If the respondent contacts the data processing manager via email or contact form, the transferred personal information is automatically saved. Personal data transferred voluntarily by the respondent to the Personal Data Processing Manager are automatically stored for processing or further communication with the respondent. There is no transfer of this kind of personal data to the third party.
Routine deleted or blocking personal data
The Personal Data Processing Manager will process and keep personal data of the respondent only in the time needed to achieve the goals of keeping personal data, or until the deadline that allows EU legislation or other legislators under its authority to process personal data. If the reason for the storage of personal data can not be fulfilled or the period of custody imposed by EU legislation or other relevant legislators expires, the personal data of the respondent will be routinely blocked or deleted in accordance with the legal preconditions.
The rights of the respondent
a) Right to Confirm Personal Data
Each respondent has the right to be guaranteed by EU legislation that the data processing manager receives confirmation of whether or not his or her personal information is being processed or processed. If the respondent wishes to use this right of confirmation, he or she may at any time contact the data processing manager.
b) Right to Access Personal Data
Each respondent has the right to be guaranteed by EU legislation that at any time, from the data processing manager, he receives free information about his personal data stored and a copy of the requested personal data. Furthermore, European provisions and directives allow the respondent access to the following information:
- purpose of processing personal data;
- type of requested personal data;
- recipient or recipient type with which personal data are shared, in particular recipients from third countries or international organizations;
- where possible, the intended period of retention of personal data or, in the event of inability, the criterion determining that period;
- the right of respondents to request correction or deletion of personal data from the data processing manager, the limitation of processing of personal data of the respondent or the right of the respondent to the complaint against the processing of personal data;
- the existence of the right to lodge a complaint with the supervisory authority;
- if personal data is not collected directly from the respondent, information available on the source of personal data;
- the existence of an automated decision-making process referred to in Article 22, Paragraphs 1 and 4 of the General Regulation on Personal Data Protection, and in this case available information on the logic of automation, as well as the importance and anticipated consequences per respondent. Furthermore, the respondent has the right to information if his or her personal data is transferred to third countries or international organizations. In this case the respondent has the right to information on security measures carried out in the data transfer
If the respondent wishes to use this right of access, he may at any time contact the personal data processing manager.
c) The right to correct personal data
Each respondent has the right to be guaranteed by European legislation that at any time from the processing manager of the personal data is corrected incorrect personal data. Having in mind the purpose of processing personal data, the respondent has the right to complete his / her incomplete personal data, with the rest and through a complete statement.
If the respondent wishes to use this right of correction, he may at any time contact the data processing manager.
d) Right to delete personal data (Right to oblivion)
Each subject has a right guaranteed by European legislation at all times of the Personal Data Processing Manager requires deletion of personal data relating to subjects without delay. The Personal Data Processing Manager has the obligation, without delay, to delete personal data where at least one of the conditions applies, until processing is indispensable:
- Personal data is no longer necessary for the purposes for which it was collected or processed.
- The respondent has withdrawn the personal data processing privilege based on Article 6, Paragraph 1 or Article 9, Paragraph 2 of the General Regulation on Personal Data Protection, and where there is no longer a legal basis for data processing.
- The respondent objects to the processing of data pursuant to Article 21, Paragraph 1 of the General Regulation on the Protection of Personal Data, and there is no legal basis for data processing, or the respondent objects to the processing of data pursuant to Article 21, Paragraph 2 of the General Regulation on the Protection of Personal Data.
- Personal data has been processed illegally.
- Personal data must be deleted according to the statutory obligation under the EU or the law of the Member State whose head of processing personal data is a citizen.
- Personal data was collected in connection with the provision of information society services pursuant to Article 8, Paragraph 1 of the General Regulation on Personal Data Protection. If at least one of the above reasons is applicable and the respondent requests the deletion of the personal data collected by the Curicum Care website, he or she may contact the data processing manager. The Personal Data Processing Manager will ensure that the personal data are deleted immediately.
In places where the data processing manager has permitted the disclosure of personal data, and by Article 17, item 1 is mandatory the deletion of the said personal data, the personal data processing manager will take reasonable steps, including technical measures, in order to make technical considerations informed other managers of personal data processing that the respondent requested the deletion of all links, copies or replicas of personal data, until their processing is no longer needed. The Personal Data Processing Manager at Terraktiv website will ensure the implementation of these measures in each individual case.
e) The right to limit the processing of personal data
Every EU Legislation responder has the right to obtain the right to restrict the processing of personal data from the data processing manager in cases where the following applies:
- The accuracy of the personal data is denied by the respondent, which enables the personal data processing manager to verify the accuracy of the personal data.
- The processing of personal data is illegal and the respondent is opposed to the deletion of personal data and instead asks for limitation of the use of said personal data.
- Personal Data Processing Manager personal data is no longer required for processing, however the respondent is required to establish, enforce, or defend the legal requirements.
- The respondent objected to the processing of personal data under Article 21, Paragraph 1 of the General Regulation on Personal Data Protection, awaiting verification of whether the legitimate basis of the data processing manager was overwhelmed by those respondents.
- If at least one of the foregoing reasons is applicable and the respondent requests a restriction on the processing of personal data collected by the Discover Mrežnica website, he or she may contact the processing manager of the personal data. The Personal Data Processing Manager will provide a limit to the processing of personal data.
f) The right to transfer of personal data
Furthermore, according to the existing right to transfer of personal data under Article 20, Item 1 of the General Regulation on the Protection of Personal Data, the respondent has the right to transfer his or her personal data directly between the Data Processing Manager where this is technically feasible where such proceedings do not endanger the rights and the freedom of other respondents.
In order to use its right to transfer personal data, the respondent can at any time contact the Discover Mrežnica Personal Data Processing Manager
g) Right to Objection
Every respondent by EU Legislation has the right to a complaint based on his / her own situation at any time on the processing of personal data pertaining to the respondent, based on items E and F of Article 6, Paragraph 1 of the General Regulation on Personal Data Protection. It may also apply to profiling based on this Regulation.
Discover Mrežnica website will not continue processing personal data in the event of a complaint unless there is a serious legal basis for the processing of personal data, which may overcome the interests, rights and freedoms of the respondent, or the establishment, implementation or defense of legal requirements.
If the Discover Mrežnica website carries out personal data processing for marketing purposes, the respondent has the right to object at any time against the processing of personal data used for such purposes. This also applies to profiling that is closely related to the purposes of such direct marketing. If a respondent expresses his / her objection to personal data processing for direct marketing purposes, the Terraktiv website will no longer process the personal data of the respondent for the purpose of direct marketing.
In addition, the respondent has the right, on the basis of his / her own right, to object to the processing of personal data by the Discover Mrežnica website and used for scientific research or statistical purposes pursuant to Article 89, Paragraph 1 of the General Data Protection Act, unless processing the data necessary for the purpose of public interest.
In order to take advantage of the right of complaint, the respondent can at any time contact the Discover Mrežnica Personal Data Manager. In addition, the respondent in the context of the use of information society services, in spite of Regulation 2002/58 / EC, may exercise his right to complain to automated means using technical specifications.
h) Automated decision-making, including profiling
i) The right to withdraw consent and the abolition
Google Analytics Personal Data Protection Terms (with Anonymous Function)
The Discover Mrežnica Personal Data Processing Manager website has embedded Google Analytics components (with anonymous functionality). Google Analytics is an Internet service; collecting and analyzing visitor behavior data on a website. Web analytics service inter alia collects information about the webpage from which the respondent came, what submissions he or she has visited, or how often and how long it looks at a specific subpage. Web analytics is used to optimize a website and to conduct an analysis of advertising on the Internet.
The owner of Google Analytics is Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, USA.
For the purpose of web analytics through Google Analytics, the Personal Data Processing Manager uses the “_gat._anonymizelp” application through which the IP address of the respondent is shortened by Google and anonymized when the Discover Mrežnica website approaches a respondent from an EU Member State or another country under the European Economic Area space.
- The purpose of the Google Analytics component is to analyze traffic on the Discover Mrežnica website. Google uses the collected data and information, among other things, to evaluate the use of the site and to provide reporting that displays the activity on the web site and to provide other services related to the use of the web site. Google Analytics places the cookie on a computer system of respondents. The cookie definition is already explained in this document. Setting a cookie allows Google to analyze the use of a website. Each review of a Discover Mrežnica website subcategory, which is managed by the Personal Data Processing Manager, incorporates the Google Analytics component, the examinee’s browser will automatically provide the Google Analytics component with the information required for the purpose of Internet Advertising and the calculation of a commission that belongs to Google. During this technical process, Google will receive personal information such as the IP address of the respondent (it serves to understand where the visits and clicks come from, and on that basis creates a commission calculation).
- The cookie is used to store personal information such as the time of access to the website, the location to access and the frequency of website access by the respondents. With each visit to the Discover Mrežnica website, such personal information, including the IP address of the respondent, will be forwarded to Google and will be placed there. Google may pass on the provided personal information through a third-party technical procedure. As already mentioned, a respondent may prevent cookies from being set up with appropriate browser changes at any time. Such revisions would also prevent Google Analytics from setting up a cookie on the computer system of the respondent. It is also possible to delete cookies that have already been placed through a browser or other software solution. In addition, the respondent may object to the collection and processing of personal data generated by Google Analytics related to the use of the Discover Mrežnica website. To do this, the examinee must download the add-on to the https://tools.google.com/
- Additional information and Google privacy protection guidelines can be found at https://www.google.com/
intl/en/policies/privacy/ and ht tp://www.google.com/analytics/ terms/us.html. Dodatne informacije vezane uz Google Analytics mogu se pronaći na https://www.google.com/ analytics/.
Legal basis for the processing of personal data
Article 6, Paragraph 1, Subsection A of the General Regulation on the Protection of Personal Data is the legal basis for the processing of personal data for which we have received the privilege. If processing of personal data is necessary for the performance of the contract which the respondent is a part of, such as when personal data processing is necessary for the delivery of goods or services, processing of personal data is based on Article 6, Paragraph 1, Subparagraph B of the General Regulation on Personal Data Protection. The same applies when processing personal data necessary to take precautionary measures, eg on product or service queries.
If a legal or natural person is a legal obligation to process personal data, such as the fulfillment of tax obligations, the processing of personal data is based on Article 6, Paragraph 1, Subparagraph C of the General Regulation on the Protection of Personal Data. In rare cases, processing of personal data is necessary to protect the interests of the respondent or some other natural person. For example, if the respondent is injured when visiting the site owner, personal information such as name, age, health insurance information, or other vital information will have to be forwarded to the doctor, hospital or third person.
Such processing is based on Article 6, Paragraph 1, Subpart D of the General Regulation on Personal Data Protection. Finally, processing of personal data may also be based on Article 6, Paragraph 1, Subparagraph F of the General Regulation on the Protection of Personal Data. This legal basis is used in the processing of personal data when no previous legal basis is applicable if the processing of personal data is necessary for the legitimate interests of the Discover Mrežnica website or a third party, except in situations where these interests undermine the fundamental rights and freedoms of the respondent , which require the protection of personal data. Such processing of personal data is particularly permissible since it is specifically mentioned in EU legislation. It is foreseen that legitimate interest can be invoked if the client is a client of processing personal data.
The legitimate interests of the Head of the processing of personal data or third party
Where personal data processing is based on Article 6, Paragraph 1, Subpart F of the General Regulation on Personal Data Protection, legitimate interest is a business for the benefit of employees and / or shareholders, if any.
Personal Data Storage Period
The criterion for determining the storage period of personal data is the maximum length of storage specified by law. After the expiration of this period, personal information is routinely deleted as long as they are no longer needed to complete the contract or its conclusion.
Providing personal data as a legal or contractual prerequisite for the conclusion of a contract, the obligation of the respondent to provide personal data, possible consequences if the data does not provide
We must clarify that the provision of personal data is partially prescribed by law (eg tax provisions) or may be the result of a contractual obligation (eg contractual partner information). Sometimes a contract must be concluded so that the respondent provides personal information that is then processed. For example, a resident is required to provide personal information when the Discover Mrežnica website owner concludes a contract. Refusal to provide personal information will result in the inability to conclude a contract. Before the recipient delivers personal information, he will need to contact the owner of the Discover Mrežnica website. He will then indicate whether the provision of personal data is legally or contractually necessary, ie whether it is necessary to conclude a contract, whether there is a duty to provide personal data and ultimately the consequences if he or she refuses to provide personal information.
The existence of an automated decision making process
The Discover Mrežnica website does not use automated decision-making or profiling.
Deleting personal data on request
To delete personal data that websites Discover Mrežnica is stored during the subject’s use of each respondent can contact direct request for deleting an e-mail address: [email protected]
- This website may contain links to other websites. Discover Mrežnica is not responsible for the content or privacy of these websites.