GDPR

PRIVACY STATEMENT

In accordance with the Regulation (EU) 2016/679 of the European Parliament and Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter: General Data Protection Regulation), Turistička zajednica središnje Istre (hereinafter: TZSI) shall operate in accordance with the rules of compliance with and protection of personal data and privacy of users of these websites, as long as such data are used within the frameworks of the permitted terms of use.

Collection of Data

Personal data shall be regarded as any data used for identification and data required for communication (e.g. last name and first name, address, e-mail address, phone number, mobile phone number, fax number, etc.).

You can use our website without disclosing your personal data. You are not required to provide personal information as a condition of using our site, except as may be necessary to provide you a product or service at your request. When you use our website, data may be stored for various security purposes. Such data may include the name of your internet service provider, data on the internet site through which you linked to our site, data on the internet sites you visited from our site and your IP address. This data may include the name of your Internet service provider, the website that you used to link to our site, the web sites that you visit from our site and your IP address. This data could possibly lead to your identification, but we do not use it to do so. We do use the data from time to time for statistical purposes, but maintain the anonymity of each individual user so that the person cannot be identified. In cases when personal data is provided to third parties to provide you products or services you have requested, or for other purposes you have authorized, we take care that the third person is registered for these activities and that it provides sufficient guarantees in terms of pursuing objectives related to data protection and confidentiality and we rely on technical and organizational means to assure that applicable data security regulations are followed.

Collection and Processing of Personal Data

We collect personal data only when you provide it to us, through registration, completion of forms or e-mails, as part of an order for products or services, inquiries or requests about materials being ordered and similar situations in which you have chosen to provide the information. The database and its contents remain at our company and stay with data processors or servers acting on our behalf and responsible to us. Your personal data will not be passed on (by us or by our agents) for use by third parties in any form whatsoever, unless we have obtained your consent or are legally required to do so.

We will retain control of and responsibility for the use of any personal data you disclose to us. Some of this data may be stored, either fully or partially, or processed in computers located in other countries (e.g. United States of America), whose data protection laws may differ from the jurisdiction in which you live. In such cases, we will ensure that appropriate security measures are in place to require the data processor in that country to maintain protections on the data that are equivalent to those that apply in the country in which you live.

Purpose of Use

The data we collect will only be used for the purpose of supplying you with our products or services or for other purposes for which you have given your consent, except where otherwise provided by law.

Right of Access and Correction

With regard to your personal data stored in our system, you have the right to access, correct, amend and delete it if you believe it may be incomplete, incorrect and out of date. Just send an e-mail to the address given in the imprint or contact the relevant Data Protection Officer.

Right of Cancellation

You have the right at any time to withdraw your consent to the processing of your personal data and request termination of their further processing, unless the personal data is used for statistical purposes when your identification is no longer possible. Just send an e-mail to the address given in the imprint or contact the relevant Data Protection Officer.

Data Retention

We only retain personal data for as long as is necessary for us to render a service you have requested or to which you have given your consent, except where otherwise provided by law (e.g. in connection with pending litigation).

Use of Cookies

Our website uses so-called “cookies” to adjust your Internet use to your requirements. Cookies are small text files that are stored on your hard drive via your browser. Cookie files cannot be used to start programs or infect your computer with viruses. Cookie files are stored separately and can only be read by the browser under the domain that recoded such file.

If you do not consent to our use of cookies, you can easily delete (or block) them on your computer or mobile phone using your browser settings. For more information on cookies refer to the websites of the browser you are using.

Since the purpose of cookies is to improve and enable the use of our websites and relevant processes, bear in mind that by blocking or deleting cookies you could disable functioning of such features or affect their functionality and appearance in your browser.

Web Analysis

This website uses Google Analytics and Google Search Console, web analysis services of Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States (”Google”).

Based on your prior consent, Google will analyse your use of our website on our behalf. To this purpose, we use the above-described cookies. The information collected by Google in connection with your use of this website (e.g. the referring URL, which of our webpages you visit, your browser type, your language settings, your operating system, your screen resolution) will be transmitted to a server of Google in the US, where it will be stored and analysed; the respective results will then be made available to us in an anonymised form. In this process, your usage data will not be connected to your full IP address. We have activated on this website the IP anonymising function offered by Google, so that the last 8 digits (type IPv4) or the last 80 bits (type IPv6) of your IP address are deleted. Google is certified under the EU-US Privacy Shield which ensures an adequate level of data protection with respect to the processing of data by Google in the US.

You may withdraw your consent to the use of web analysis at any time either by downloading and installing a Google Browser-Plugin or you can either block or delete cookies on your computer or mobile phone. Both options will prevent the use of web analysis only if you use the browser on which you installed the Plugin or if you do not delete the opt-out Cookie.

For further information on Google Analytics please refer to the Google Analytics Terms of Service, in Google Analytics Security and Privacy Principles and the Google Privacy Policy.

Security

ITB uses technical and organizational security precautions to protect your data from manipulation, loss, destruction or access by unauthorized persons. Any personal data that you provided us will be encrypted in transit to prevent its possible misuse by third parties. Our security procedures are continuously improved based on new technological developments.

Children

In light of the importance of protecting children’s privacy, we do not collect, process or use on our website any information relating to an individual whom we know to be under 16 years old without the prior and credible consent of his or her legal representative. Such legal representative has the right and may request to view the information provided by the child and require that it be deleted.

Contact

If you have any problems, questions or ideas, please contact the following person:

Daniela Ritoša, Data Protection Officer, e-mail: daniela@central-istria.com


The constant development of the internet requires occasional adjustments to our privacy statement. We retain the right to make changes when necessary.

Access to and use of these websites as well as the Privacy Statement shall be governed in accordance with the law of the Republic of Croatia, and in case of a dispute Croatian courts shall have exclusive jurisdiction.

This Privacy Statement shall become effective on 25 May 2018.