Skip to content

Data Protection Policy Statement

Who we are

Afront, zavod za prostorsko inovativnost is committed to protecting the privacy and personal data of our customers, employees, and other stakeholders. This Data Protection Policy Statement outlines our approach to managing personal data and our commitment to complying with applicable data protection laws and regulations.

Data Collection and Use

We collect and use personal data only for the purposes for which it was provided or as otherwise permitted by law. We collect personal data when it is necessary to provide our products or services, to manage our business operations, or to comply with legal obligations. The types of personal data we collect may include names, addresses, email addresses, phone numbers, and other information relevant to our business operations. We retain such data for as long as it is necessary to provide our services or for as long as it is necessary to comply with legal obligations pertaining to said data.

Data Sharing

We do not share personal data with third parties except as necessary to provide our products or services or as required by law. We may share personal data with service providers who assist us with our business operations, such as payment processors or IT service providers. In such cases, we require our service providers to maintain appropriate safeguards to protect the personal data we share with them. These safeguards in essence ensure our service providers handle your data in compliance with GDPR and other applicable laws governing data security, making sure the data is used solely for its intended purposes and not shared illegaly.

Data Security

We take appropriate technical and organizational measures to protect personal data from unauthorized access, use, or disclosure. We maintain physical, technical, and administrative safeguards to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access, or any other form of unlawful processing. We monitor and evaluate the adequacy of our security measures regularly and implement changes should we discover any issues in data security.

Individual Rights

We respect the rights of individuals with respect to their personal data. We provide individuals with access to their personal data upon request and allow them to correct or delete their personal data if it is inaccurate or incomplete, subject to any legal obligations we may have to retain such data. They may also request we cease all processing of their personal data to which we comply immediately, unless legal requirements do not permit us to do so.

Compliance

We comply with applicable data protection laws and regulations (GDPR, ZVOP-2 and other applicable laws) and regularly review and update our data protection practices to ensure ongoing compliance.

Contact Us

If you have any questions or concerns about our data protection practices or this Data Protection Policy Statement, please contact us at [email protected]