• English

Privacy Policy

Data collection

Personal data means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Processing means any operation which is performed on personal data such as collection, storage, use, making available and transmission of personal data.

The controller of your personal data is GTF – Inicijativa za održivi rast (hereinafter: the Association).

Your data will be collected when using the free tourist mobile application “Explore Lika”, the aim of which is to present to the visitors of Lika various tourist places in text and image form, starting from restaurants and gastronomic establishments, natural sights, historical sites, etc. (hereinafter: the Application).

The legal basis of the processing is the legitimate interest of the controller – to improve the content of the Application.

Persons under the age of 16 are not permitted to use the Application and their personal data is not intentionally collected by the Association.

Anonymous data are data that cannot be associated with a specific natural person, and in that regard, you can comment on the content of the Application and report a problem completely anonymously, without providing any personal data.

This Privacy Policy does not apply to anonymous data.

Providing your personal data is not a requirement for using the Application.

What personal data do we collect?

Based on your consent, the Association collects the following personal data: name and/or surname and/or nickname, or any personal data that you voluntarily leave when commenting or reporting a problem.

You have the right to withdraw your consent at any time; however, this does not affect the lawfulness of the processing carried out on the basis of the consent until the withdrawal.

In addition, we collect location data from the User who uses the Application's option to calculate the distance of their current location from one of the displayed locations in the Application.

When using this option, the Application retrieves the User's position every 10 minutes to calculate distances from locations, and the data about these positions are not stored anywhere.

In that regard, the Association does not have a history of data on the location(s) and does not monitor the position of the User in real-time and therefore does not process personal data in this context.

How do we collect personal data?

We collect data based on your consent when you comment publicly on the content of the Application or data that you submit directly to our Association when reporting problems (you can do both completely anonymously, without providing any personal data).

How will we use your data?

Our Association does not necessarily need or use your personal data, but if you voluntarily provide them, we will use them to:

  • improve your user experience (we are constantly trying to improve the offer of our Application based on the feedback we receive from you);
  • correct and improve the content of the Application based on your problem reports (feedback).

The purpose of data processing is to provide you with more appropriate content of the Application, i.e., information within the Application.

How do we store your data?

We store your data securely by using a third-party provider – Amazon Web Service Inc. via the Amazon Web Service (AWS) cloud storage infrastructure.

The Association uses the SSL protocol to ensure the security of your data. Using the SSL protocol provides a higher level of privacy and security than an unencrypted Internet connection. It reduces the risk of third parties intercepting and misusing data.

We will not transfer or store stored data in countries outside the European Union.

Protecting your data

To protect the personal data you submit through this website, we use physical, technical and organizational security measures, and we continually update and review our security technology. We limit the access to your personal data only to those employees who need to know that information in order to provide you with certain benefits or services. In addition, we train our employees on the importance of data confidentiality and the protection of privacy and the protection of your data.

How long do we retain your data and how do we erase them?

With regard to the collection method, retention and erasure will be carried out as follows:

  • We keep your name/surname/nickname that you enter when voluntarily commenting on locations as long as they are publicly available to Application users. Once they become publicly unavailable due to deletion of the location, we erase them within 30 days of deletion of the location.
  • We keep your name/surname/nickname that you enter when reporting a problem for as long as they are deemed necessary.

Making your personal data available for use

We may transmit your personal data to information and communication solution and service providers who act as processors. We have concluded contracts with these processors in which the processing of personal data is regulated in detail so that they cannot process your personal data without our order and pass them on to third parties.

In certain circumstances, we have a legal obligation to transmit your personal data and the processing of personal data may involve their international transfer. The legal obligation may arise from national or EU regulations. For instance, it is sometimes necessary for supervisory authorities of the Member States to take joint supervisory activities or to take action to collect a fine that has been imposed but not paid. Therefore, your data will be transmitted to other recipients if we are bound by the relevant regulations, to the extent necessary to achieve the specified purpose.

Your personal data will not be transmitted to third parties for direct marketing purposes.

Your rights regarding personal data

Right of access – you have the right to request copies of your personal data from the Association.

Right to rectification – you have the right to ask the Association to rectify any data that you believe is incorrect. You also have the right to ask our Association to complete data that you consider incomplete.

Right to erasure – you have the right to request that the Association erase your personal data, under certain conditions.

Right to restriction of processing – you have the right to require the Association to restrict the processing of your personal data, under certain conditions.

Right to object to the processing – you have the right to object to the processing of your personal data by the Association, under certain conditions.

Right to data portability – you have the right to request that the Association, under certain conditions, transmit the data we have collected to another organization or directly to you.

If you make a request, we have one month to respond.

You also have the right to lodge a complaint with a supervisory authority.

If you would like to know whether we hold and process your personal data, or if you would like to access the personal data we hold about you, please contact us at gtf@zg.t-com.hr.

You can also request information about: the purpose of the data processing, the categories of personal data that are being processed, who else outside our organization has received your personal data from us, what the source of the personal data is (if you have not provided them to us directly) and how long we will keep the data.

If you wish to exercise any of these rights, contact us at our email address: gtf@zg.t-com.hr

Call us at: +385 1 6137 783

Or send us a letter at: Savska cesta 41, 10 000 Zagreb, Hrvatska

Cookies

Our Association does not use cookies.

Cookies are text files located on your computer to collect standard data from your Internet log and data on user habits. When you visit our website, we can automatically collect data from you through cookies or similar technologies.

For more information, please visit allaboutcookies.org.

Third party privacy policy

Our Application may contain links to other websites or applications.

Our Privacy Policy only applies to our Application. If you click on a link to another website or application, you should read their privacy policy.

Changes to our Privacy Policy

Our Association reviews its Privacy Policy regularly and posts any updates to this website. This Privacy Policy was last updated on 04.05.2021.

Notification of personal data breaches

In the event of a personal data breach, we will notify you and the relevant supervisory authority by email within 72 hours of the extent of the breach, the data affected, the potential impact on our services and our planned data protection measures, and the limitation of any adverse impact on any natural persons.

We will not send you a data breach notification in the following cases:

  • if technical and organizational protective measures (e.g. encryption) have been taken for the personal data affected by the personal data breach that render the data unintelligible to any person who is not authorized to access it;
  • if we have taken subsequent measures to ensure that there is no longer a high risk to the rights and freedoms of natural persons;
  • if it would involve disproportionate effort (in such a case, we will inform you by public communication means or a similar equally effective measure).

A personal data breach means a breach of security resulting in the unintentional or unlawful destruction, loss, alteration, unauthorized disclosure of or access to personal data transmitted, stored and processed in connection with the provision of our services.

How to contact us?

If you have any questions about our Association's Privacy Policy, the data we hold about you, or if you wish to exercise any of your privacy rights, do not hesitate to contact us.

Send us an email at: gtf@zg.t-com.hr

Call us: +385 1 6137 783

Or send us a letter at: Savska cesta 41, 10 000 Zagreb, Hrvatska

Your consent

By using this Application, you consent to this Privacy Policy.

Right to complain to the competent authority

You can lodge a complaint with the competent authority about our collection and processing of your personal data at any time. In the Republic of Croatia, you can lodge a complaint with the Croatian Personal Data Protection Agency (AZOP).

Changes to the Privacy Policy

The change to the Privacy Policy will take effect immediately upon publication within the Application. Your continued use of the Application after the effective date of the changes means that you acknowledge and accept the changed Privacy Policy. In the event of a change to our Privacy Policy, we will notify you on this page and update the date of the change on the Privacy Policy as follows.

This Privacy Policy was last changed on 04.05.2021.