Introduction
This Privacy Policy explains how bloraventi.top d.o.o. ("we", "us", "our") collects, uses, and protects your personal information when you visit our website bloraventi.top or use our services. We are committed to protecting your privacy and ensuring transparency about how we handle your personal data.
Data Controller Information
The data controller for your personal information is:
- Company: bloraventi.top d.o.o.
- Registration Number: 597326418
- VAT Number: HR59362514785
- Address: Maksimirska cesta 26, 10349 Zagreb, Croatia
- Email: [email protected]
- Phone: +385 18945653
Data Collection
We collect information that you provide directly to us and information that is automatically collected when you use our website. The data we collect includes:
Information You Provide
- Name and contact details when you submit enquiry forms
- Email address for communications
- Phone number when provided voluntarily
- Company information and job title
- Project requirements and consultation details
- Any other information you choose to provide in communications
Automatically Collected Information
- IP address and location data
- Browser type and version
- Operating system information
- Pages visited and time spent on our website
- Referral source and website navigation patterns
- Device information and screen resolution
How We Use Your Information
We use the personal data we collect for the following purposes, and how we use your information depends on the legal basis for processing:
Service Provision (Contract Performance)
- Responding to your enquiries and consultation requests
- Providing business intelligence platform analysis services
- Delivering reports and recommendations
- Managing our business relationship with you
Communication (Legitimate Interest)
- Sending responses to your questions and requests
- Providing updates about our services
- Sharing relevant industry insights and analysis
- Following up on consultations and projects
Website Improvement (Legitimate Interest)
- Analysing website usage to improve user experience
- Optimising our content and service offerings
- Understanding visitor preferences and behaviour
- Technical maintenance and security monitoring
Cookies and Tracking Technologies
We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.
For detailed information about the cookies we use, please refer to our Cookie Policy.
Data Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:
Service Providers
We may share information with trusted service providers who assist us in operating our website and conducting our business, including:
- Email service providers for communication
- Analytics providers for website performance analysis
- Cloud hosting providers for data storage
- IT support and security service providers
Legal Requirements
We may disclose your information if required by law or in response to valid legal processes, such as court orders or regulatory investigations.
International Data Transfers
Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, including:
- Adequacy decisions by the European Commission
- Standard contractual clauses approved by the European Commission
- Binding corporate rules for multinational service providers
Data Retention
We retain your personal information only for as long as necessary to fulfil the purposes outlined in this Privacy Policy or as required by law. Our data retention periods are:
- Contact enquiries: 3 years from last contact
- Client project data: 7 years from project completion
- Website analytics data: 26 months maximum
- Marketing communications: Until you opt out or 3 years of inactivity
- Legal compliance records: As required by applicable law
Your Rights
Under the General Data Protection Regulation (GDPR) and applicable privacy laws, you have the following rights regarding your personal data:
Access and Information
- Right to access your personal data and receive information about processing
- Right to receive a copy of your personal data in a structured format
Correction and Updates
- Right to correct inaccurate or incomplete personal data
- Right to update your contact information and preferences
Deletion and Restriction
- Right to request deletion of your personal data in certain circumstances
- Right to restrict processing of your personal data
Portability and Objection
- Right to data portability for data provided with consent or under contract
- Right to object to processing based on legitimate interests
- Right to object to direct marketing at any time
Consent Withdrawal
- Right to withdraw consent where processing is based on consent
- Right to opt out of marketing communications
To exercise any of these rights, please contact us at [email protected] or +385 18945653. We will respond to your request within one month of receipt.
Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include:
- Encryption of data in transit and at rest
- Regular security assessments and updates
- Access controls and employee training
- Secure hosting and backup procedures
- Incident response and breach notification procedures
Children's Privacy
Our services are not directed to individuals under the age of 16, and we do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child, we will take steps to delete such information promptly.
Contact Information
If you have any questions about this Privacy Policy or our data processing practices, please contact us using the following information:
Complaints and Supervisory Authority
If you believe that our processing of your personal data violates applicable privacy laws, you have the right to lodge a complaint with the relevant supervisory authority. In Croatia, you can contact:
- Croatian Personal Data Protection Agency (AZOP)
- Website: azop.hr
- Email: [email protected]
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal information.
Legal Basis for Processing
We process your personal data based on the following legal bases under GDPR:
- Contract: Processing necessary for the performance of a contract with you
- Consent: You have given clear consent for specific processing activities
- Legitimate Interest: Processing necessary for our legitimate business interests
- Legal Obligation: Processing required to comply with legal obligations
For more information about our cookie usage and tracking technologies, please visit our Cookie Policy.