Privacy Policy
Last updated: 11th December 2024
This Privacy Policy (“Policy”) describes how Kodelab d.o.o. (“Kodelab,” “we,” “us,” or “our”) collects, uses, discloses, and safeguards your personal data when you visit the website kodelab.hr (the “Website”). It also outlines your rights regarding your personal data and explains how you can contact us about our data practices.
We process your personal data in accordance with the EU General Data Protection Regulation (GDPR) and other applicable data protection laws. If you do not agree with this Policy, please do not access or use our Website.
1. Who We Are
Kodelab d.o.o.
Cebini 28, Buzin
10010 Zagreb, Croatia
OIB: 99465081311
If you have any questions about this Policy or how we handle your personal data, please contact our Data Protection Officer (DPO):
Data Protection Officer (DPO)
E-mail: dpo@kodelab.hr
2. Data We Collect and How We Use It
We may collect and process the following types of personal data:
• Contact Information: Such as your email address if you sign up for promotional messages or contact us with inquiries.
• Device and Usage Data: Such as IP addresses, browser type, operating system, language settings, and user behavior on our Website (collected via cookies and similar technologies).
Purposes and Legal Bases:
• Providing Information and Services: If you contact us, we use your data to respond to your inquiries. This processing is based on our legitimate interests or your consent, as applicable.
• Promotional Messages: If you subscribe to receive promotional emails about our products and services, we rely on your consent. You can withdraw your consent at any time by clicking the unsubscribe link within these emails.
• Product Complaints and Customer Requests: If you submit a product complaint, we will process and retain your personal data for up to 12 months to fulfill legal obligations and protect your consumer rights.
• Analytics and Improvements: We use anonymized or pseudonymized analytics data (e.g., via cookies) to improve our Website’s functionality and user experience. Our legal basis is legitimate interest in ensuring a user-friendly and secure online environment.
We only collect personal data that is necessary for the stated purposes and do not process it for any other purposes without your prior notice and, where required, consent.
3. Data Sharing and Transfers
We may share your personal data with:
• Service Providers: Third-party vendors who assist us in providing and improving our services (e.g., hosting providers, analytics tools). Such service providers are subject to contractual obligations to ensure the confidentiality and security of your data.
• Legal and Regulatory Authorities: If required by law or to protect our rights and interests, we may disclose personal data to comply with a legal obligation or enforce legal claims.
If we transfer your personal data outside the European Economic Area (EEA), we will ensure appropriate safeguards (e.g., EU Standard Contractual Clauses) are in place to protect your data in accordance with the GDPR.
4. Data Retention
We retain your personal data only for as long as necessary for the purposes for which it was collected or as required by applicable laws. For example:
• Inquiries: Deleted after we respond, unless retention is necessary for legitimate business or legal reasons.
• Promotional Emails: Retained until you unsubscribe.
• Product Complaints: Retained for 12 months, per legal requirements.
We periodically review our retention periods to ensure they are appropriate and compliant with the law.
5. Your Rights Under the GDPR
You have the following rights regarding your personal data:
• Right of Access: Obtain confirmation that we are processing your personal data and receive a copy.
• Right to Rectification: Request that we correct inaccurate or incomplete data.
• Right to Erasure (“Right to be Forgotten”): Request deletion of your data if we have no lawful basis to continue processing it.
• Right to Restriction: In certain circumstances, request that we limit how we process your data.
• Right to Data Portability: Receive your personal data in a structured, commonly used, and machine-readable format and request its transfer to another controller where technically feasible.
• Right to Object: Object to certain processing activities based on our legitimate interests.
• Right to Withdraw Consent: If we process your personal data on the basis of consent, you can withdraw it at any time.
To exercise these rights, please contact us at dpo@kodelab.hr. We will respond to your requests as soon as possible and no later than 30 days from receipt. We may need additional information to verify your identity before processing your request.
If you believe that we have infringed your rights, you have the right to lodge a complaint with the relevant data protection authority. In Croatia, this is the Croatian Personal Data Protection Agency (AZOP). More information is available at https://azop.hr/.
6. Cookies and Similar Technologies
We use cookies and similar technologies to ensure the optimal functioning of our Website and improve your user experience.
What Are Cookies?
Cookies are small text files stored on your device when you visit a website. They help the Website remember your visits and preferences (e.g., language, login), making it easier to use and more useful to you. Cookies cannot be used to run programs or deliver viruses to your device.
Types of Cookies We Use:
• Necessary Cookies: Required for the Website’s operation. Without these cookies, certain services may not be available.
• Analytics Cookies: We use tools like Google Analytics to collect anonymous information about how visitors use our Website. This helps us improve its performance and content.
Managing Cookies:
Most browsers automatically accept cookies, but you can usually modify your browser settings to decline cookies if you prefer. You can also delete cookies at any time. More information on managing cookies is available at www.allaboutcookies.org.
Please note that disabling or deleting certain cookies may affect the functionality and your experience on our Website.
7. Security Measures
We apply appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage. Access to your personal data is limited to employees and service providers who need the data to perform their duties.
8. Links to Third-Party Websites and Social Media Features
Our Website may contain links to third-party websites or social media platforms. We have no control over their privacy practices and are not responsible for their policies or actions. We encourage you to review the privacy policies of any external sites you visit.
9. Changes to This Policy
We may update this Policy from time to time. The most current version will always be posted on this page, with the date of the last update. Your continued use of our Website after the effective date of any changes indicates your acceptance of the modified Policy.
——
If you have any questions or concerns about this Policy or our data practices, please contact us at dpo@kodelab.hr.
This Policy was last updated on 11th December 2024.