Privacy policy

Updated 22.05.2020 09:07

The purpose of this privacy policy ("Policy") is to explain how, when and why TeamBench collects information about individuals, how, for what purposes and on what grounds these 'personal data' are afterwards processed, who processes them and what rights the individuals have concerning their personal data. The Policy also explains TeamBench's practices in using cookies and other technologies for storing information on others' devices and retrieving information from such devices.

When we refer to "TeamBench" or use the word "we", "our" or "us", we mean the TeamBench entity that acts as the 'controller' of the information we hold about you or the 'processor' of the information that a customer has confided to us, as explained in more detail under the "identifying the data controller" part of this Policy. The phrase "TeamBench entity" refers to Infranet development Ltd., Croatian private limited company, based in Zagreb, Croatia.

By "you" we mean the person reading this text, for example you as a natural person and not any company or other organization that you may be associated with.

Some words or phrases used in this Policy are in single quotation marks, for example 'controller', 'processor' and 'data subject'. These are legal terms that have the same meanings as given to them in the EU General Data Protection Regulation, Regulation (EU) 2016/679 ("GDPR").

Application

  1. This Policy applies to the data processing that takes place through or in connection with the following: your use of the time tracking software of Infranet development Ltd.. We shall use the word "Service" in this Policy to designate the above software, and the same word will designate any service, resource or other benefit that Infranet development Ltd. offers as a part of such software. This Policy applies to the data processing that takes place through your visiting, or accessing resources that form part of, any website of Infranet development (we shall use the word "Website" to designate any such site), including, for example, the site at teambench.app; or your communication or interaction with TeamBench.

  2. The Policy does not apply in relation to other parties' products, services, websites, resources or activities.

  3. When we speak of "Personal Data", we mean any information that can identify an individual. The proper legal definition of 'personal data' is any information relating to an identifiable natural person, with the person to whom the information relates being referred to as the 'data subject'. Personal Data do not include information from which no individual can be reasonably identified, anonymous information or personal data rendered anonymous in such a manner that the individual is not identifiable. The Policy does not apply to such information.

  4. The Policy supplements our other terms and policies and is not meant to override them.

Identifying the data controller

  1. We are an IT company and a lot of what we do involves data processing in one way or another. Various data need to be processed in order for us to carry on our business, including provide, maintain and develop our services and websites. Data are processed both for us as well as our customers. Our customers themselves process information through our sevices. Not all of this information constitutes Personal Data and much of the processing is controlled by parties other than TeamBench.

  2. The user environment has certain logically defined parts (each, a "Workspace") where a service user ("User") can enter, record, store, use, disclose and otherwise manipulate various data ("Workspace data"). The User who created the Workspace determines the purposes of and controls the processing of these data. That authority can be assigned to any User but there is always one particular User, identified in the Workspace as the "Workspace Owner", that has legal control over and is responsible for Workspace Data. The Workspace Owner is also the 'controller' of all Personal Data in the Workspace. TeamBench processes these data on the Workspace Owner's behalf and is considered to be the 'processor' of the said Personal Data. This means that any enquiry or complaint that you as a 'data subject' may have in connection with the processing of Personal Data that form part of Workspace Data should be addressed to the relevant Workspace Owner.

  3. TeamBench, specifically Infranet development Ltd., is the 'controller' of the Personal Data that are collected by us or on our behalf through the activities listed in section 1 of this Policy, or which are processed for the purposes of our business.

The information we collect and receive

  1. TeamBench collects, generates and receives information in a variety of ways. Some of this information constitutes Personal Data and the rest does not. We shall use the word "Information" to lable all of the data that are collected, generated or processed by us or on our behalf. This part of the Policy describes which Information and how is collected or generated through the activities listed in section 1.

Profile Information

  1. We collect Information about you in the course of negotiating, preparing, concluding and amending agreements between you and TeamBench.

    For example, when you register for our service User Account, we ask you to give us your full name, email address, country of residence and time zone. In order to maintain a Workspace you need to provide us with your physical address and may give a telephone number at which you can be reached. During the sign-up procedure, we may automatically record your IP address. During the sign-up an application programming interface token (API token) is automatically generated and stored under your User Account. API token is an authentication token that you can use for accessing the Service through other software. For validating access to the User Account, you will create a user name and a password. Both your user name and password will be stored in our data base along with the API token. You will also be assigned a user ID, which is a numerical value that we generate, store and can identify you by.

    Our service has a user invitation feature that can be used for inviting you to become a User. If a User chooses to invite you, User will give us your email address and the Service will send you an invitation. We store this email address but not as part of your User profile, it only becomes part of User profile if you become a User Account.

Billing Information

  1. If a User subscribes to a paid Service plan, we ask them to supply us with the full name of the person or entity that will pay for the Service plan, their physical address and email address and VAT number (only needed for company). The payer may not be the User subscribing to the Service plan, so it is possible for us to receive the above Information about you from another User (for example company that you work for).

    Transaction data, in that personal data, can be transferred for the benefit of PayLane Sp. z o.o. located in Gdańsk at Norwida 4, zip code: 80-280, KRS: 0000227278, on the terms that it will beneficial on in service connected to subscription payments. A client has the right to see the content of his data and any corrections made to it. Sharing of information is voluntary, however, at the same time it is crucial to using this site.

    In a case of a paid Service plan, you will supply a third-party payment service provider with such information as they request from you to facilitate your payments to us. We do not collect any information about your methods or instruments of payment, except for the last four digits of the credit card number are stored in the Workspace under subscription billing info.

Usage Information

  1. As with most websites and other software solutions certain data are automatically collected when you use our service and this Information is recorded in log files. For example, when you log in, the date and time of your login will be recorded along with your IP address and a limited user agent string, telling us what type of Service application you use. When you create a data entry, your Service application type and version may be recorded.

    If you use the feedback feature, then certain information about you and some technical data concerning your Service release and other software and hardware are automatically sent to us along with the content of your communication. It usually includes some of your information such as name, user ID and email address as well as information about which Service application and what version you are running and the type and version of your device's operating system, name of your device and information as to your web browser type and version, Service settings and usage history and Workspace Service plan.

    We collect or have third parties collect for us information about the use of our service and customer base. Some of the information we may collect is information about the number of Users, Workspace team sizes, choices between application types, settings, modes of use and Service plans, Service performance and User churn. Also information such as practices and trends in using specific features or components of the Service, the effectiveness of Service messages, and other Information that is not Personal Data.
  1. When you use our applications or retrieve resources, certain pieces of data known as cookies are sent to the device you are using and will be stored there. When using your web browser it stores cookies either at our request or the request of a third party whose services we use. Each cookie distinguishes you from other users. There are also other techniques for tracking user activity, such as using web beacons or pixels. In this Policy, the word "cookie" labels the objects delivered by those techniques as well.

    Cookies vary by nature and purpose. For example, a "session cookie" is stored in temporary memory and is not saved after the browser is closed. A "persistent cookie" is a data file capable of providing websites with user preferences, settings and information for future visits, has a longer lifespan - it exists until you delete it or until it expires. A "secure cookie" can only be obtained when using an encrypted connection. A "first-party cookie" refers to a cookie obtained by the domain that a user is visiting. So when using our service first-party cookie belongs to us and a "third-party cookie" belongs to a company providing us with our service or delivering our messages across the internet.

    Some of the above mentioned cookies are associated with your User Account and certain of your Profile Information, allowing you to log in and remembering that you are logged in. Other cookies allow us or the third parties to recognize and count the number of visitors to a Website, see how they move around the site when using it, or to selectively record and analyze through what medium Users are interacting with our applications. Certain cookies are used to recognize you when you return to a Website, allowing us to remember your preferences and based on that personalize your content.

    There are also some third-party cookies that gather information about your browsing activities over time and across different websites following your use of ours.

    You will encounter all of these cookies when using our applications and website. Cookies are vital to our service. However you can remove them and it is possible to disallow their use altogether or refuse certain types of them. Just consult your browser tools or support pages on how to do that. If you disallow first-party cookies, your user experience using TeamBench will be noticeably poorer or at least not as we intended it to be.

    Third-party cookies can usually be managed by the tools provided by those third parties. Some of such tools are available here:

    https://adssettings.google.com (Google advertising settings);

    https://tools.google.com/dlpage/gaoptout (Google Analytics opt-out);

    https://www.facebook.com/policies/cookies (Facebook cookie policy and opt-out);

    http://optout.networkadvertising.org (Network Advertising Initiative opt-out page);

    http://optout.aboutads.info (Digital Advertising Alliance opt-out page).

    We cannot give you a full-scale list of the means for opting out of third-party cookies as the service providers who may set such cookies change from time to time. Using the details at the end of this Policy contact us to find out which third-party cookies may currently be in use.

    Our Service does not respond to web browsers' "do not track" signals and our data processing practices are not altered upon our receipt of such signals.

    We are not allowed to use cookies unless you agree to it, and by accepting this Policy you have agreed to cookies. If you are not using your own device we expect you to have the owner's permission to agree on their behalf with us storing cookies on the device and retrieving information from it. By using the device you are confirming to us that you are authorized to do so.

"Third-Party Information"

  1. A User can choose to permit third-party services for her copy or instance of the Service or in relation to certain aspects of the Service. Typically, a third-party service is software that integrates with the Service and a User can enable or disable this integration for her Service application, User Account or Workspace. Once enabled, the relevant third-party service provider may share certain information with us. For example, if you choose to use a third-party service to validate your access to the Service, then the provider of such a service may send us your name, user name, email address and/or telephone number to perform the validation. Or if some other third-party application (e.g., a storage, development, communication, project or resource management or accounting service) is enabled to permit data to be imported into your Service user environment or otherwise exchanged between the application and the Service, we may receive your name, user name, email address, profile picture, location and/or such other information as you have elected to let the application make available to us, and we are authorised to access such of your data in that third-party application as you let us. You should check the privacy settings of these third-party services to understand what data may be disclosed to us.

Other Information

  1. We receive from you such Information as you provide us when filling in forms when using TeamBench, sign up to receive notifications and  newsletters or other communications from us, request support, interact with our social media accounts or any correspondence with TeamBench. If you email us or send us a letter or a message, we may keep a record of that communication, including your name and address, email address or telephone number, the content of our communication.

Purposes and grounds for Information processing

  1. The purposes for which Information is processed and the legal grounds for such processing depend on the nature of the Information. If Information is anonymous we may collect, use, disclose and otherwise process it for any purpose. However our processing of Personal Data is limited to the purposes set out in this Policy.

  2. We will process your Personal Data in the following circumstances:  if we need to perform an agreement you have with us ("Contractual"); where we need to comply with a legal obligation, for instance, one arising from a law or regulation concerning taxation, accounting, financial reporting, prevention of terrorism or money laundering, judicial or administrative process ("Legal");  if it is warranted by our legitimate interests or those of a third party and those interests are not breaking your fundamental rights and freedoms ("Interest"); where we have your explicit consent before processing your Personal Data in that specific situation ("Consent").

  3. Each of the categories of Information described in sections 9 -- 14 may include your Personal Data but not all those categories may apply to you. The table below sets out the purposes for which your Personal Data in the specified category may be stored, used, disclosed or otherwise processed, and which of the above grounds we rely on when doing so. Please note that we may be processing the same pieces of your Personal Data for several purposes at the same time and on more than one legal ground. Contact us if you need details about the specific legal ground. Also, note that not each piece of Personal Data in a particular category is processed for all the purposes specified in connection with that category. Contact us to find out which of the said purposes precisely and in what circumstances applies. You can fine our contact details at the end of this Policy.

Profile information

Purpose Grounds
Negotiating, preparing, concluding, performing, amending and enforcing our agreements with you and exercising our rights under such agreements Contractual, Legal, Interest (recovering debts due to us, enjoying and defending our rights, negotiating new terms or amending existing ones to reflect changes in circumstances or to better suit our interests and/or yours)
Keeping our records updated Legal
Contacting you on matters relating to the Service or your agreements with us or in connection with matters that may affect you, and replying to your communications Contractual, Legal
Delivering messages to you from Users, invitations to become a User Interest (performing our agreements with the Users)
Sending you communications you have subscribed or otherwise agreed to receive Interest (providing you with information we find relevant and reasonably believe is of interest to you)
Investigating Service-related illegal conduct, violations of contract and (actual or suspected) infringements of legal rights or freedoms (yours, ours or those of third parties) Legal, Interest (enjoying and enforcing our rights and freedoms)
Disclosing if and as required by law Legal

Billing Information

Purpose Grounds
Preparing, performing, amending and enforcing our agreements with you Contractual, Legal, Interest (recovering debts due to us and defending our rights)
Informing you about matters concerning your Service plan and payments to us Contractual, Interest (keeping you current as to our relationship)
Managing and executing our sales to you Interest (operating our business)
Financial and tax accounting Legal
Disclosing if and as required by law Legal

Usage Information

Purpose Grounds
Providing the Service Contractual
Ensuring an appropriate level of security particularly in terms of data processing Contractual, Legal, Interest (keeping our products and services competitive)
Customizing the content, layout and other properties of the Service and Websites for you Contractual, Interest (keeping our products and services relevant and enjoyable)
Improving your Service user experience Interest (keeping the Service enjoyable)
Gaining a better understanding of how you interact with the Service or a Website Interest (keeping our products and services competitive)
Investigating and preventing Service-related errors, defects, performance and security issues, illegal conduct, violations of contract and (actual or suspected) infringements of legal rights or freedoms (yours, ours or those of third parties) Contractual, Legal, Interest (enjoying and enforcing our rights and freedoms)
Maintaining, improving, otherwise developing and protecting the Service and Websites Contractual, Interest (furthering our business, enjoying our rights and freedoms)
Creating new products and services Interest (growing our business)
Making our communications to you more relevant Interest (being relevant to you, thereby contributing to the success of our business)
Measuring the effectiveness of the messages we address to you Interest (making our marketing more effective)
Learning where our customers come from and where to focus our marketing efforts Interest (informing and shaping our business decisions)
Having our messages delivered across the internet Interest (being visible and remembered)
Disclosing if and as required by law Legal
Purpose Grounds
Same as for Usage Information Same as for Usage Information

Third-Party Information

Purpose Grounds
Providing the Service Contractual
Performing our agreements with the third parties concerned Interest (adhering to contracts)
Disclosing if and as required by law Legal

Other Information

Purpose Grounds
Providing the Service Contractual
Keeping our records updated Legal
Responding to your requests, comments and questions Contractual, Legal, Interest (being responsive)
Sending you communications you have agreed to receive Interest (providing you with information we find relevant and reasonably believe is of interest to you)
Offering you the Service or other products or services Interest (growing our business)
Improving or otherwise developing the Service, our other products and services and Websites Interest (keeping our products and services competitive)
Creating new products and services Interest (growing our business)
Improving customer relationships and experiences Interest (growing our business)
Disclosing if and as required by law Legal
  1. The communications that we initiate with you can broadly be classified as: Service-related technical, administrative, business, legal and subscribed-to promotional messages that we address to Users ("Service Messages"); and  messages about products, services and things you have shown interest in or which we believe may be of interest to you ("Marketing Messages").

  2. You can unsubscribe from certain Service Messages by modifying your User Account settings and from others by following the instructions provided in the message. However there are some Service Messages which you cannot opt out of receiving unless you unsubscribe from the Service. On the other hand you can always opt out of receiving Marketing Messages, but the procedure for doing so may depend on the nature of the message. Try customizing your User Account settings, there should always be opt-out instructions in the message itself. If you have trouble unsubscribing, contact us and we will opt you out. Our details are at the end of this Policy.

Failure to provide Information

  1. No one is obliged to give us their Personal Data but failure to do so is likely to result in our not being able to achieve the data processing purposes and the particular 'data subject' may miss the benefits corresponding to that purposes.

  2. Where we need to collect your Personal Data by law or under the terms of a contract we have with you, or in order to enter into such a contract, and you fail to provide those data when requested, we may not be able to enter into the relevant contract (which may be a contract for the provision of the Service or some other benefit). Should that be the case, we may have to cancel a product or service you have with us, but we shall let you know at the time if that applies.

  3. If you limit the ability of our service to set cookies, you may prevent yourself from using our site or certain of its features, or may decline your user experience as it will not be personalized to you. It may also stop you from saving customized settings and you may need to validate your access more frequently.

Duration of Personal Data storage

  1. We only store your Personal Data for as long as necessary for the purposes for which the data were collected and any additional period as may be required by law.

  2. Legal retention periods vary depending on the type of Information and they can be quite long. For instance, Personal Data relevant to our accounting or taxation (which is likely to be the case upon some of the Personal Data under the Profile Information and Billing Information categories, and may also apply to some other Personal Data) must be retained for at least seven years after the primary purpose for their processing ceases to apply. For example it means that data is retained for seven years following the financial year when our business relationship with you terminated and the last transaction between us occurred.

Disclosure of Personal Data

  1. This part of the Policy describes the circumstances in which we may disclose or transmit your Personal Data to third parties. Parts of the Policy below only address the disclosure and transmission of Personal Data. It does not apply to anonymous Information which we may disclose at any time to anyone anywhere, in any aspect and for any purpose. Also, this part does not apply to disclosure of Workspace Data. As said earlier Workspace data is at the responsibility of the Workspace Owner.

  2. If you invite another User to your Workspace or join someone else's Workspace, certain part of your Profile Information will be displayed (name, address, email address, country of residence, time zone and telephone number) and, if needed, Billing Information (name, billing address, billing email address, VAT number and the last four digits of your credit card number) in the Workspace such that other Users may have access to them.

  3. If you use the Service invitation feature to invite someone to become a User, we will let the invitee know who you are by including some of your Profile Information (name, email address) in the invitation.

  4. When you share Workspace Data or other content from your User Account by distributing links to such data certain of your Profile Information (name, email address) is likely to be disclosed to the addressee and you may also be disclosing other Users' Personal Data.

  5. Your Profile Information and possibly Billing Information may also be shared when integrating third-party services with your User Account, Workspace or Service application and when using such third-party services. You can control which data are shared when enabling the integration (depending on the third-party service). We suggest that you do check your privacy settings for our service as well as the third-party service prior to integration to determine which data may be shared. And please note that we are not responsible for the privacy practices of such third-party service providers, so it would be desirable for you to make sure, that you trust the service and the provider in question and are satisfied with the provider's policy.

  6. We have engaged and will continue to use third-party service providers to assist us in providing, maintaining, developing, protecting and promoting our Service. We may, for example, use such parties for hosting the Service, sending out Service Messages or Marketing Messages, providing or hosting customer support services, performing analyses related to the Service or for processing payments. We may also store Personal Data in locations outside our direct control - on third-party cloud infrastructure or platforms (IaaS/PaaS) or cloud infrastructure whose operation we have entrusted to other parties. These service providers may have access to your Personal Data for the purpose of providing the service we have engaged them to provide. For you our use of such service providers may involve transmitting your Personal Data to jurisdictions other than the one you reside in. In that case, section 37 will apply.

  7. We may share your Personal Data with our corporate affiliates, outside accountants, legal counsels and auditors.

  8. If we should happen to engage in or are subjected to mergers, divisions, acquisitions, public offerings or our securities or transformations, obtaining financing, divestiture of all or substantially all of our assets or a significant an element of such assets, transfer of the enterprise or a part of the enterprise to which your agreement with us pertains, or the identical transaction or proceeding, or if we take steps in contemplation of such activities, your Personal Data may, subject to straightforward confidentiality arrangements, be shared with, or transferred to, our counterparties or other relevant participants within the respective transaction or proceeding.

  9. We might find ourselves in a situation where we are legally obliged to your Personal Data or where we reasonably believe that we are obliged. this could be the case if we receive requests from an authority or there are laws and regulations that need us to form a disclosure without specific request (e.g., to suits national or international measures against terrorism or money laundering). We can also be compelled to disclose your Personal Data by a judicial, arbitral, administrative or otherwise mandatory order or judgment. Where any of the foregoing applies, we shall make the disclosure, and that we might not be permitted to inform you that your Personal Data are disclosed.

  10. There may additionally be situations where we discover the disclosure of your Personal Data to be necessary so as to exercise, enforce or defend our rights, freedoms or legitimate interests or to safeguard the rights, freedoms or legitimate interests of a 3rd party (e.g., a 'data subject' or an holding owner).

  11. We will disclose your Personal Data at your request (unless we are legally prohibited, it could also be impracticable or involves unreasonable effort or expense) or may do so upon your Consent.

International transfers of Personal Data

  1. We might transfer your Personal Data to jurisdictions apart from the one you are residing in, subject to section 37.

  2. We shall not transfer your Personal Data from countries participating within the European Economic Area ("EEA") to those which don't, or from the EEA to international organisations unless the recipient country or the actual person or entity receiving the information ensures an adequate level of protection for the information received, or, if it doesn't, then without applying such safeguards as legally required and/or without the transfer being subject to such other conditions because the law provides for these forms of transfers. for example, if we are to transfer your Personal Data from the EEA to a recipient within the u. s. (which is probably going to occur in our use of a number of the service providers mentioned under section 30), we shall ensure that the recipient participates within the EU-U.S. Privacy Shield Framework, having thus self-certified itself as ensuring tier of protection of non-public Data that's essentially appreciate the one guaranteed under the GDPR.

Personal Data Security

  1. We shall maintain adequate technical and organisational measures to make sure such level of security in our processing of non-public Data as appropriate within the given circumstances. Upon assessing whether a measure is adequate and which level of security is suitable we consider the character of the non-public Data we are processing and therefore the nature of the processing operations we perform, the risks to which you're exposed by our processing of your Personal Data, the state of the art, the prices of implementation and such other matters as is also relevant within the particular circumstances.

  2. The measures referenced within the preceding section particularly address the following: (a) the protection of private Data against unauthorized or unlawful processing and against accidental loss, alteration or destruction; (b) the integrity and confidentiality of private Data; (c) the provision and resilience of the Service features pertinent to the processing of private Data; and (d) our ability to revive the provision and access to private Data in a very timely manner after a Service failure

  3. However, please remember that no security measure is ideal. Our efforts notwithstanding, we are unable to guarantee that your Personal Data, during transmissions over the internet or while stored in our systems or those of our service providers or while otherwise in our care, are going to be absolutely safe from unauthorized or unlawful processing or accidental loss, alteration or destruction, or that they'll indeed be intact and confidential in any respect times or shortly available after any Service incident. Note also that we cannot control, and aren't to blame for, the actions of other parties with whom you share (or instruct us to share) your Personal Data.

Your rights as a Data subject

  1. 'Data subjects' within the EEA have certain statutory rights under the GDPR concerning the private Data that we've got on them. This a part of the Policy aims to convey you a general understanding of those rights and that we encourage you to deepen this understanding by studying the GDPR yourself. To facilitate this, we have, in reference to each of the rights noted below, provided regard to the precise provision of the GDPR from which that right arises. Especially then, and subject to such statutory exceptions as might apply in your case, your 'data subject' rights include the following:

Right of access / GDPR Article 15

  1. You have the correct to enquire and obtain a confirmation from us on whether or not we process any of your Personal Data. Where we do, you will request access to those data and have us provide you with a replica of them. A User can access most of the non-public Data we've about her by logging in to her User Account and visiting her profile page (we have what you see there), and it's going to preferably be that these are the sole Personal Data we maintain on her. If you want to be sure or haven't any User Account, please use the contact details at the tip of this Policy to exercise your 'right of access'.

Right to rectification / GDPR Article 16

  1. If the non-public Data we gathered about you is wrong, you've got the right to request that we correct it, and, in some circumstances, you'll have the right to request that your incomplete Personal Data is made complete(but in each of those cases we may have to verify the accuracy of the data you provide). like the 'right of access', Users can and are encouraged to update the non-public Data under their User Accounts themselves.

Right to erasure (right to be forgotten) / GDPR Article 17

  1. You have the right to request that we delete or remove the Personal Data we have gathered on you where there is no good reason for us to continue processing it. Please note that we might not always be able to comply with your request as there might be specific legal reasons which warrant the processing. If this should be the case, we will inform you accordingly at the time of your request.

Right to object / GDPR Article 21

  1. You have the right to request removal of the Personal Data we have gathered on you where there is no good reason for us to continue processing it. Please note that we might not always be able to comply with the request as there might be specific legal reasons which warrant the processing. If this is the case, we will inform you accordingly at the time of your request.

Right to restriction of processing / GDPR Article 18

  1. You have the right to request that we suspend processing your Personal Data where any of the following points apply: (a) you have contested the accuracy of the data and it needs to be verified; (b) the processing is unlawful but you don't want us to erase the data that we are processing; (c) you need us to maintain the data even though we no longer require it as it is necessary for your establishment, exercise or defense of legal claims; or (d) you objected to processing as it is described under the section 45, but we need to verify whether we have overriding legitimate grounds for processing.

Right to data portability / GDPR Article 20

  1. If our processing of your Personal Data which you provided us is based on a Contractual ground or on Consent and the processing is carried out by automated means, you are entitled to have us make that data available to you in a structured, commonly used and machine-readable format so that you could send them to someone else (another 'controller'). You can also ask us to send this data to that other 'controller' directly, and we will do so, if technically feasible.
  1. If we are processing your Personal Data based on Consent, you can withdraw consent at any time (this will not affect the lawfulness of any processing activities carried out based on your consent before its withdrawal).

  2. As noted above, you can exercise some of your 'data subject' rights ('right of access' and the 'right to rectification') through your User Account. If you are unable to do so, particularly if you have no User Account, or if the right in question cannot be thus exercised, please use the contact details at the end of this Policy to contact us and we will do what we reasonably can to facilitate the exercise of your rights.

  3. We will aim to respond to any legitimate request within a month of receiving them but it could take longer if your request is particularly complex or you have made several requests. If this happens to be the case, we will let you know and keep you updated.

  4. We will not charge you a fee for exercising the above-mentioned rights, unless, your requests are unfounded or excessive (e.g., because of their repetitive character), in which case we may charge a fee. As another option, we might decline your request in such circumstances.

Right to lodge a complaint with a supervisory authority

  1. In case that you believe we are processing your Personal Data in violation of the GDPR, you have the right to lodge a complaint with the 'supervisory authority' located in the EEA country where you reside, work or where the alleged infringement took place. Or you can lodge the complaint with our 'supervisory authority' whose details are noted below.

    CROATIAN PERSONAL DATA PROTECTION AGENCY

    Selska cesta 136, HR - 10 000 Zagreb

    Tel.         00385 (0)1 4609-000

    Fax         00385 (0)1 4609-099

    E-mail:    azop@azop.hr

    Web:       http://www.azop.hr

Changes to this Policy

  1. This Policy may be revised from time to time to reflect changes to the Service, Websites, applicable laws, regulations or standards, or any other changes that may occur in our business. We shall post the revised Policy (or our new privacy policy) on the same webpage where we published this Policy or on another webpage as we then may habitually use for publishing materials such as the Policy. We may also use the Service, email or other means to notify Users of policy changes. The revised Policy (or the new one) will be effective when posted as described. Unless the document specifies a later time for its entry into force.

Contact details

  1. Feel free to get in touch with us if you have any questions regarding this Policy, our data processing practices or if you want to exercise your 'data subject' rights with respect to your Personal Data we maintain.

    Call us: +385 1 464 1264

    Fax us: +385 1 205 4783

    Email us: info@infranet.hr

    Write to us: Infranet razvoj, Ulica grada Vukovara 269D, HR10000 Zagreb, Croatia
Cookie settings Icon