Privacy Policy

Introductory provisions

In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (hereinafter: the General Data Protection Regulation), which has been in full force and effect since 25 May 2018 in the Republic of Croatia and all Member States of the European Union, as well as the Act on the Implementation of the General Data Protection Regulation (Official Gazette No. 42/18, hereinafter: the Act), i.e. in accordance with the legal framework for the protection of personal data in the Republic of Croatia and the European Union and best European practice, Jet Osijek d.o.o. as the controller of the personal data of its service users and customers, has developed a Privacy Policy for service users and customers. The Privacy Policy is a unilaterally binding legal act based on the fundamental principles of personal data processing, which regulates which user and/or customer data are collected, how such data are processed, and for what purposes they are used. The Privacy Policy also informs service users and/or customers of their rights in the collection and further processing of personal data, all for the purpose of protecting their privacy in a broader sense.

The Privacy Policy is based on the following principles of personal data processing: the principle of legality, transparency and best practices, the principle of limited processing and data minimization, the principle of accuracy and completeness of personal data, the principle of limited storage, the principle of integrity and confidentiality of data, the principle of accountability, the principle of trust and fair processing, the principle of opportunity (purpose of processing), the principle of processing in an anonymous (anonymized) form.

The Privacy Policy applies to all services offered by the Company, with the aim of the Policy to inform users and/or customers in a clear and transparent manner about the processing procedures for their personal data and their rights. First of all, users and/or customers may contact the Company at any time with a request to change or supplement and/or update data relating to them, as well as with a request for a statement on the purposes for which they want or do not want their data to be processed.

The Company is responsible for the processing of personal data:

JetOS limited liability company for trade and services, with its registered office in the Republic of Croatia, Osijek, Vinkovačka cesta 68, entered in the court register of the Commercial Court in Osijek under the registration number (MBS): 030005764, personal identification number (OIB): 59858651270.

1. What data do we collect and how?

The Company collects only basic data in a way that the user and/or buyer personally submits it via the contact form or leaves it on the website:

- name and surname

- e-mail address

2. Why do we collect the above data and for what purposes?

The Company collects data based on a legal or contractual obligation, and on the basis of the consent given by the user and/or buyer for one or more precisely specified purposes, and specifically:

- to respond to the sent inquiry

- to send promotional offers via e-mail marketing, so-called newsletters (basis for processing - consent of the user and/or buyer)

3. Who do we share your data with?

- with the MailChimp service of Rocket Science Group for sending newsletters for promotional purposes (with the possibility of the recipient to unsubscribe from the newsletter list); you can see their data protection policy at the following link:

https://mailchimp.com/legal/privacy/

All customer data is strictly kept and is only available to employees who need this data to perform their job. All our employees and business partners are responsible for respecting the principles of privacy protection.

Customer data will not be given to unauthorized persons under any circumstances because it is considered secret and is only available to official persons upon official request.

JetOS d.o.o. reserves the right to use this information to create anonymous statistical reports on the number of visits to the Site (reports in which users as individuals are not and cannot be identified).

JetOS d.o.o. reserves the right to provide all confidential user data to law enforcement agencies in the event of an official request for access to it, and in accordance with the laws of the Republic of Croatia.

JetOS d.o.o. reserves the right to, on its own initiative, hand over data about individual users to law enforcement agencies without an official request if it believes that said users are violating the laws of the Republic of Croatia, or that someone's life or material goods are in danger.

Legitimate interest

Legitimate interest of JetOS d.o.o. defines its legitimate interest to store data about customers for an indefinite period of time for the possibility of insight into the history of inquiries and communication for the reason of approving special benefits in certain situations if possible, and does not request the special consent of the customer for such data storage.

JetOS d.o.o. defines as its legitimate interest the possibility of contacting the customer by phone or e-mail if there are ambiguities in the inquiry via e-mail message.

User Responsibility

The user is also responsible for the protection of personal data, so they ensure the security of their e-mail address and appropriate software (antivirus) protection of their computer.

JetOS d.o.o. takes data protection very seriously and has taken various precautions to protect data. Unfortunately, no data transmission over the Internet or any wireless network can be 100% secure. As a result, JetOS d.o.o. Although it implements commercially reasonable data protection measures, it cannot guarantee the protection of any information transmitted to or from the jetos.hr website and is not responsible for the actions of any third party that receives such information.

Cookies (Cookie policy)

In order for the pages at jetos.hr to function properly, a small amount of information (Cookies) is stored on the user's computer.

By using the jetos.hr website, the user agrees to the use of Cookies.

A cookie is information stored on your computer (tablet or mobile phone) that can be delivered directly by the website you visit (first-party cookies) or in cooperation and for the needs of the website you visit from a third party (third-party cookies). Cookies usually store your settings for a website, such as your preferred language (where available) or IP address. After some time, when you reopen the same website, the internet browser sends back cookies belonging to that website. This allows the website to display information tailored to your needs.

Cookies can store a wide range of information, including some personal information (such as your name or e-mail address that you enter when contacting us online). This information can only be stored if you allow it - websites cannot access information that you have not given them and cannot access other files on your computer.

jetos.hr - uses cookies to track statistical website traffic in order to obtain necessary information about the website's performance and also uses a third-party service called Google Analytics.

Detailed third-party information about this service, as well as the user's ability to regulate the cookie settings necessary for this, is available at: http://www.google.com/analytics/learn/privacy.html

By disabling cookies, the user decides whether to allow cookies to be stored on their computer. Cookie settings can be controlled and configured in the web browser that the user uses to browse the website. If the user disables cookies, there is a possibility that the site will not be able to use some of the functionalities provided by jetos.hr.

Cookie Settings

Duration of storage and processing of personal data

Depending on the purpose and legal basis for which the personal data of users and/or customers is collected, the Company is in certain cases obliged to store personal data for the period of time (period) prescribed for a particular purpose by the relevant regulations or upon the termination of the purpose for which they were collected.

In cases where the basis for collecting and processing data is the legitimate interest of the Company or the consent of the user and/or customer, personal data is stored indefinitely, i.e. until the user and/or customer requests deletion of the data.

Rights of users/customers

Right to access personal data – The Company, as the controller, undertakes, based on a written request submitted by the user and/or customer, which request may also be in the form of an e-mail, to provide access to the personal data it processes about them, to inform them of the purpose of the personal data processing for which they are processed, of the type of personal data being processed, of the recipients or categories of recipients to whom the personal data have been or will be disclosed, of the envisaged processing period or of the criteria used to determine that period.

Right to correction of inaccurate data – The Company, as the controller, will provide correction of inaccurate personal data in each individual case when it is determined that the collected personal data about the user and/or customer are incorrect or that the user and/or customer data have changed.

Right to erasure of personal data

The Company will erase the personal data of the user and/or customer in the following cases:

- when the user and/or customer withdraws consent as a legal basis for data processing, and there is no other legal basis for data processing;

- when the user and/or customer objects to data processing (see more under the heading Right to object)

- when the personal data must be erased in order to comply with legal obligations under the law of the European Union or a Member State to which the data controller is subject;

- when the personal data were collected in connection with the offering of information society services in relation to the consent of a child.

Right to restriction of data processing – The Company will ensure the restriction of the processing of personal data in cases where the user and/or customer contests the accuracy of the data, when the processing is unlawful and the user and/or customer opposes the deletion of the data and instead requests the restriction of their use, when the controller no longer needs the personal data for the purposes of the processing but the user and/or customer requires the data to exercise legal claims, as well as in cases where the user and/or customer objects to the processing of personal data based on the Company's legitimate interest, including the creation of user and/or customer profiles.

Right to object – The user and/or customer has the right to object to the processing of personal data relating to him/her if the data is processed for the purposes of the controller's legitimate interest. In such a case, the Company, as the controller, will cease processing personal data, unless it proves that there are compelling legitimate grounds for the processing of personal data in relation to the rights of the user and/or customer, or in cases where the processing of data serves the establishment, exercise or defence of legal claims.

If the personal data of the user and/or customer is processed for direct marketing purposes, the user has the right to object to the processing for direct marketing purposes at any time, in particular if the personal data is used for the purpose of creating a profile.

If you do not want us to store your personal data, nor to share them with our partners, please inform us by e-mail: gdpr@jet.hr

Under what conditions are personal data forwarded to a third party

The Company forwards the personal data of users and/or customers to third parties (including competent authorities) only in the following cases:

- with the consent of the user and/or customer;

- in order to fulfill the legal obligations of the Company;

- when such processing is necessary to protect the vital interests of users and/or customers.

Consent Management

The active role of the user and/or customer in privacy protection is reflected in the provision of consent as a voluntary, specifically informed and unambiguous expression of the wishes of the data subject, by which he/she gives his/her consent to the processing of personal data by means of a statement or a clear affirmative action. Consent management implies the possibility for the user and/or customer to authorize the Company, by an active and unambiguous action, to collect and process certain personal data for one or more purposes (data subject consent), or to withdraw previously given consent for the collection and processing of personal data for one or more purposes in the same way.

Amendments and supplements to the Privacy Policy

The Company reserves the right to amend and supplement this Policy at any time, without providing any special notice to interested parties. For this reason, it is recommended that all interested parties regularly check the content of the Company's website in order to be informed about the updated content of this Policy.

In Osijek, July 2023.

JetOS d.o.o.