Privacy policy

Sukladno Uredbi (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (Official Journal of the European Union L 119, 4.5.2016, p. 1, hereinafter: General Data Protection Regulation), which has been fully applicable since 25 May 2018 in the Republic of Croatia and all European Union Member States, as well as the Act on the Implementation of the General Data Protection Regulation (Official Gazette No. 42/18, hereinafter: the Act), the Labour Act (Official Gazette No. 93/14 and 127/17), the Occupational Safety Act (Official Gazette No. 71/14, 118/14 and 154/14), i.e. in accordance with the legal framework for personal data protection in the Republic of Croatia and the European Union and best European practices, ARCHEON VISION d.o.o., Milutina Barača 66, Rijeka, Croatia, OIB: 65448361626, registered in the court register of the Commercial Court in Rijeka (hereinafter: ARCHEON), as the controller of personal data of its service users and customers, has adopted the Privacy Policy on the protection of personal data of service users and customers. The Privacy Policy is a unilateral binding legal act based on the fundamental principles of personal data processing, regulating which user data is collected, how such data is processed, and for what purposes it is used. The Privacy Policy also informs service users and/or customers about their rights in relation to the collection and further processing of personal data, all for the purpose of protecting their privacy in a broader sense.

The Privacy Policy is based on the following principles of personal data processing: the principle of lawfulness, transparency and best practice, the principle of limited processing and data minimisation, the principle of accuracy and completeness of personal data, the principle of storage limitation, the principle of integrity and confidentiality of data, the principle of accountability, the principle of trust and fair processing, the principle of purpose limitation, and the principle of processing in anonymised form.

The Privacy Policy applies to all services provided by ARCHEON, with the aim of clearly and transparently informing users about the procedures for processing their personal data and their rights. Above all, users may at any time contact ARCHEON with a request to amend, supplement and/or update their personal data, as well as withdraw their consent and request the cessation of further processing of personal data.

The controller responsible for personal data processing is:

ARCHEON VISION D.O.O., Rijeka, Milutina Barača 66, OIB: 65448361626 (hereinafter: ARCHEON)

Contact details for personal data protection and questions regarding personal data processing:

e-mail: [email protected]

Requests related to data protection may also be sent by post to the controller’s address.

Users have the right to request access to their personal data, rectification of inaccurate data, erasure of data, restriction of processing, data portability, and the right to object to the processing of personal data.

Methods of data collection and types of personal data collected

Directly from users themselves, in such a way that users provide data to ARCHEON as the controller within a scope necessary for the provision of appropriate services, sales, or other forms of interaction between the user and HTTPS://ARCHEON.HR. For the purpose of providing services, the user is obliged to provide ARCHEON with the data necessary for establishing a contractual relationship for the provision of services and/or the sale of products. The customer–user may provide data verbally or in writing at ARCHEON’s office, via email sent to ARCHEON addresses, or via the website HTTPS://ARCHEON.HR.

From other publicly available sources of data about companies and individuals within companies on internet portals, telephone directories containing such data, and other publicly available services, solely for the purposes for which the data was originally collected.

Data from publicly available sources is processed only where there is a legitimate interest of the controller in accordance with Article 6(1)(f) of the General Data Protection Regulation.

Automatically by visiting the ARCHEON website, applications and portal, where such data relates to network identifiers (IP addresses and cookie identifiers, such as Google Analytics for tracking user and/or customer interaction).

A cookie is a small data file stored on a computer or mobile device when visiting a website. Cookies are used to provide a better user experience, store user preferences, ensure efficient website operation, and to monitor and analyse usage and traffic of the ARCHEON website.

By disabling and/or blocking cookies, the user and/or customer can still browse the ARCHEON website. However, certain functionalities may not be available, or access to certain features may be slower than usual.

These network identifiers may leave traces which, when combined with other identifiers and information provided by internet service providers, may be used to identify users and/or customers.

The scope of personal data collected by ARCHEON depends on the type of service provided and the legal basis for data collection. ARCHEON continuously ensures that only the minimum necessary amount of personal data required to achieve the legally defined purpose is collected.

Data on potential users

ARCHEON also collects data on potential users and/or customers. This includes basic data (name and surname, email address) as well as the interests of potential users/customers who contact ARCHEON to receive information and/or offers.

Types of personal data collected?

Data most commonly provided by the customer–user includes:

name and surname
address
personal identification number (OIB)
contact phone and/or mobile number
email address
data from personal identification documents (if necessary for contract conclusion or performance)
bank account details (if required for payment execution)

Where is personal data processed?

Personal data of users/customers is processed in the Republic of Croatia.

Where is collected data stored?

Data is stored in the controller’s information systems.

Controller obligations regarding processing security

TECHNICAL AND ORGANISATIONAL DATA PROTECTION

The controller implements technical and organisational measures to ensure an appropriate level of security.

The controller also ensures that any person acting under its authority who has access to personal data processes such data only in accordance with the controller’s instructions.

Taking into account the nature, scope, context and purposes of processing, as well as risks of varying likelihood and severity to the rights and freedoms of individuals, the controller implements appropriate measures in accordance with security policies to ensure and demonstrate compliance with the General Data Protection Regulation.

Purpose of data collection and further processing

ARCHEON collects and processes personal data of users/customers for the purpose of concluding and performing contracts, executing purchases or service interventions, delivering ordered products, providing advice and assistance, offering additional and/or extended warranties, handling complaints, and other activities related to contract performance in accordance with applicable regulations.

Personal data is processed based on user consent, contract performance, legal obligation, or the legitimate interest of the controller in accordance with Article 6 of the GDPR.

Organisation of prize contests

ARCHEON may occasionally organise prize contests, where personal data is processed solely for the purpose of conducting the contest and notifying winners.

Direct marketing

User/customer contact data may be used to send promotional communications if consent has been given.

Video surveillance

ARCHEON uses surveillance cameras to protect persons and property.

Video recordings are stored for a maximum of 30 days unless required as evidence in legal proceedings.

Data retention period

Depending on the purpose and legal basis, ARCHEON retains personal data for the period prescribed by applicable regulations or until the purpose ceases. After that, data is deleted.

Where processing is based on consent, personal data is retained for up to 1 year.

Data processed based on consent may be deleted earlier upon user request or objection submitted via email: [email protected]
.

Exercising rights

Users may exercise their rights by contacting ARCHEON via the provided contact details or email. Users also have the right to lodge a complaint with a supervisory authority.

Conditions for sharing data with third parties

ARCHEON shares personal data with third parties (including authorities) in the following cases:

to fulfil legal obligations or protect vital interests
to perform contractual obligations where a third-party processor is required

Processing of employee data

Employee data may be processed and shared only when required by law or necessary for employment-related rights and obligations.

Only necessary data is processed and shared upon request by competent authorities.

GDPR and Cookies

About this cookie policy

This Cookie Policy explains what cookies are, how we use them, what types we use, what data we collect, and how to manage cookie settings. For more information, see our Privacy Policy.

You can change or withdraw your consent at any time.

Your consent applies to: HTTPS://ARCHEON.HR

What are cookies?

Cookies are small text files stored on your device when a website loads. They help ensure functionality, security, and improve user experience.

Analytical and marketing cookies are used only with prior consent.

How do we use cookies?

We use first-party and third-party cookies. First-party cookies are necessary for website functionality.

Third-party cookies help analyse usage, provide relevant ads, and improve experience.

Types of cookies we use

Essential: Required for core functionality, session management, and security.

Statistics: Collect information about usage and performance.

Marketing: Used for personalised advertising and tracking effectiveness.

Functional: Enable additional features like video and social sharing.

Preferences: Store user settings like language preferences.

How to control cookie settings?

You can manage your preferences via the “Manage consent” option on the website.

You can also adjust browser settings to block/delete cookies.

For more information visit wikipedia.org, www.allaboutcookies.org.