Standard d.o.o. respects your privacy and undertakes to protect your personal data.
We guarantee to our service users that we will treat all personal data as confidential information and a business secret.
We do not, under any circumstances, pass on, forward or exchange any personal data or e-mail addresses of our users, which are collected through the reservation system or contact form.
The purpose of using the collected data is to get in touch with you (in order to send you information via post, fax, electronic mail, telephone, etc.), in the event that we have to contact you quickly, or within our statistical data processing entry, but only for the purposes of our internal and market research needs.
Please check the personal data protection policy from time to time for possible changes.
- name and surname
- e-mail address
- telephone/fax number
- other mentioned data, which you want to remain confidential
PRINCIPLES FOR PROCESSING PERSONAL DATA
We process the data in accordance with applicable laws pertaining to the processing of personal data and in accordance with the best business practice of data protection.
We process the collected data only in accordance with the purpose for which this data was collected.
We collect and process only the data necessary to achieve the purpose of processing.
We pay special attention to the accuracy of the data collected. The User has the right to inspect and correct his / her data at any time.
We process and store the data only for as long as is necessary to fulfil the purpose for which the data was collected or as required by the applicable regulations
We pay the utmost attention to personal data security.
RIGHTS OF CLIENTS
In accordance with the General Data Protection Regulation, the client has the following rights:
Right to rectification and erasure:
The client has the right to obtain rectification of inaccurate data.
The client has the right to obtain erasure of the data unless the data is necessary for the purpose for which they were collected or should be kept in accordance with the applicable legal regulations.
Standard d.o.o. has an obligation to notify the client about the rectification or erasure of data made at the client's request.
The client has the right to obtain the data processing restriction, under the terms defined in the General Data Protection Regulation.
Standard d.o.o. has an obligation to notify the client about the processing restriction made at the client's request.
The client has at all times the right to object to the processing of personal data.
The client has at all times the right to object to direct marketing, in which case the data will no longer be used for that purpose.
The client has the right not to be the subject of the decisions based on automated processing, including profile creation.
PERSONAL DATA COLLECTION PROCEDURE
We collect our clients' data using the following procedures:
When making a reservation or an offer, we ask the user for the personal information required for the reservation or the offer.
The user can leave his or her data personally, or another person can do it in the user's name, or the user can contact us by phone or e-mail.
When making a reservation or making a query for an offer on our web pages, we collect the information needed to make a reservation or an offer.
The client submits the information via the form on the web site.
Consent of the client means unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her (Article 4 of the General Data Protection Regulation).
Without the client's consent, we will never use any of the client's personal information for any purpose that requires consent, according to the applicable regulations.
CATEGORIES OF PERSONAL DATA WE COLLECT
We only collect data that is necessary for the purpose of data collection and in accordance with applicable legal regulations.
We collect personal data for the following purposes:
We collect personal information in order to service a client or in order to make an offer for a service to the client.
We collect personal data in order of legal obligations.
DATA TRANSFER TO THIRD PARTIES
We transfer the clients' data to third parties in the following cases:
FOR THE PERFORMANCE OF A CONTRACT WITH THE CLIENT:
We transfer the data to a third party when it is necessary in order to provide the client with a contracted service or required information. This includes, for example, sending client data to a hotel or carrier when it is needed to perform a service or make an offer for the service.
We transfer the data to a third party if it is necessary for the purpose for which the user has explicitly granted his/her consent.
If we hire subcontractors for the processing, in that case we will transfer the personal data to the subcontractor.
PROTECTION OF PERSONAL DATA
In order to protect personal information of our clients we use the best business practices in the field of tourism and information-communication technologies. We continually adjust our internal processes in order to achieve the optimal level of personal data protection. We use different organizational measures and technical means to protect the user's data from unauthorized access, change, loss, theft or other misuse of data.
The client can exercise his rights under the General Data Protection Regulation by submitting an application to the e-mail address firstname.lastname@example.org
If the client suspects there is a violation of his/her personal data, he/she may submit a complaint to the e-mail address email@example.com
The client may also submit a claim to the Personal Data Protection Agency.
AMENDMENTS, ADDITIONS AND TRANSITIONAL PROVISIONS OF THE POLICY
The policy enters into force and begins to apply on the day of its publication and is available on the internet sites . Customers will be promptly informed about possible changes to the Policy, including through the publication on the web site. The client shall have the right to transfer of personal data, deletion of data and the limitation of personal data processing shall have the client no later than the date of coming into force of the General Data Protection Regulation, i.e. from 25 May 2018.