Privacy notice of Synnefo systems ltd.

This privacy notice explains how we collect, use and protect your personal information when you use our website www.synnefo-systems.com or www.synnefo.eu.

Company name: Synnefo systems ltd.
VAT ID: 83808801571
Headquarters: Tratinska ulica 26, 10000 Zagreb, Croatia
Email address of the Data Protection Officer: dpo@synnefo.eu

During a normal visit to our website, we only collect data about the IP address from which the request comes. We use data on the IP address for the purpose of monitoring malicious actions, and we keep the data for 7 days, after which the IP address is anonymized. The purpose of collection is legitimate interest.

In the event of a security incident (ransomware, web defacement, etc.), we can forward all collected data to competent authorities for the purpose of reporting a cyber incident as evidence. The legal basis for such action is the Law on Cyber ​​Security (Directive (EU) 2022/2555 of the European Parliament and the Council of December 14, 2022 on measures for a high common level of cyber security throughout the Union, amending Regulation (EU) No. 910/2014 and Directive (EU) 2018/1972 and repealing Directive (EU) 2016/1148 (NIS2 Directive) (OJ L 333/80, 27.12.2022).

When you, as a natural person, send us an inquiry by sending an e-mail or by phone, we can process the following data for the purpose of fulfilling the request:

  1. name and surname
  2. email address
  3. telephone number

We store the data listed under a) and b) in our business system at the time of issuing the commercial offer, while we do not store the information about the telephone number.

We delete unrealized offers from natural persons at the end of the calendar year. When there was no previous realization of a business relationship between us and a natural person, which was accompanied by the issuance of an invoice, then we also delete your personal data.

When there is a business relationship that is finalized by issuing an invoice to a natural person, we are obliged to keep your personal data according to positive legal regulations, which in the case of issuing an invoice amounts to 11 years.

The data required for issuing invoices are:

  • The data required for issuing invoices are:
    • name and surname
    • the e-mail address to which you want to receive the invoice
    • adresa e-pošte na koju želite zaprimiti račun

We use appropriate technical and organizational measures to ensure the security of your personal data and protect it from unauthorized access, modification, disclosure or destruction, such as:

  • we adhere to strict security procedures to reduce the risk of data destruction, unauthorized disclosure of data, unauthorized access to personal data and other violations.
  • the equipment/premises on/in which we store personal data is located in a secure environment with limited physical access.
  • we use active network security devices, strong passwords, multi-factor authentication, antivirus programs and other measures to protect personal data (for example, encryption and anonymization)
  • only authorized persons in our entity have access to personal data, and we have regulated the same in internal acts
  • we have committed our employees to the confidentiality of all information they learn in the course of their work
  • we regularly hold training sessions for our employees so that the level of awareness of our company about the protection of personal data is satisfactory
  • Right of access: You have the right to request access to your personal data that we process.
  • Right to correction: You can request the correction of incorrect or incomplete data.
  • Right to deletion ("right to be forgotten"): You have the right to request the deletion of your personal data if they are no longer needed for the purposes for which they were collected or if you withdraw your consent.
  • Right to restriction of processing: You can request restriction of processing of your data in certain cases.
  • Right to data portability: You have the right to request the transfer of your data to another service provider in a structured, common and machine-readable format.
  • Right to object: You have the right to object to the processing of your data based on our legitimate interests or direct marketing.
  • Right to withdraw consent: if we have asked you for consent for data processing, you have the right to withdraw that consent at any time.

To exercise these rights, you can contact us by e-mail at dpo@synnefo.eu, the response time is 15 days from the inquiry. dpo@synnefo.eu, rok za odgovor je 15 dana od upita.

In the event of a complaint regarding your own rights, you can submit a complaint to the supervisory body for the protection of personal data, i.e. the Agency for the Protection of Personal Data (AZOP). Agenciji za zaštitu osobnih podataka (AZOP).

We do not share personal data with third parties. We deliver the data of natural persons to whom the invoice was issued to the accounting office - contracted processor. The data that the accounting office processes for the purpose of calculating taxes and other duties is:

  • name and surname of the client
  • the e-mail address to which you want to receive the invoice

Data is kept in paper form until the end of the accounting calendar year, after which the accounting department submits the documentation in written form to the processing manager.

Data in the accounting system (application) in digital form remain with the processor until the legally stipulated deadlines.

We do not use cookies to collect information on this website.

This privacy policy may be updated from time to time to ensure compliance with relevant laws or changes to our practices. We recommend that you periodically check this page to be informed of any changes.