Booking system NauSYS is owned by the company Stratus Informacijske Tehnologije d.o.o., Zagreb, Selska 90a, OIB: 08299048747 (hereinafter reffered as ‘NauSYS’, ‘we’, ‘our’ or ‘us’) – a controller.
All you need to, clearly and transparently:
- what data we collect and how,
- for how long we will use your data,
- for how long will they be stored and why,
- how we protect your data,
- with whome we could share your data,
- what cookies and tools we use,
- how can you exercise your rights.
WHAT DATA WE COLLECT AND WHY?
Your privacy is important so we collect only data required for:
- providing customer service and support,
- improving your customer experience,
- improving services and informing of enhanced or new services developed for you,
- compliance with legal regulations.
You provide us with data by filling forms when using services, we collect them automatically when you use NauSYS or from external sources while using a service from your external partner at NauSYS (eg. card-payments etc.).
We collect data you entered at:
- registering, filling polls, surveys or other online forms,
- communication with other users through NauSYS messages/notes,
- providing customer support, advices or responses to objections,
- other activites through NauSYS.
This method collects name, addresses, contact details and other data you enter.
We can also automatically collect data avilable at access and use of NauSYS:
- geolocation (only if you have approved the use),
- informations on the device you use (model, IMEI, mobile network etc.),
- records on using services that may contain IP addresses, time and duration of access, browser type, means of access to NauSYS, pages viewed or used application funcionalities, errors etc.
- content, time and duration of phone conversation with NauSYS and the phone nuber of the incoming call,
- what services, when and how you use them.
We will ask for the specific permission:
- when collecting and processing special categories of personal data, such as sexual orientation, health status, religious orientation etc.
- NauSYS services are not inteded for users under 16 years of age, but for the collected or processed data we cannot estimate if they reffer to minors. We advice parents and custodians to teach childern on how to handle personal data in a safe and responsible manner when using internet.
HOW YOUR DATA WILL BE DEALT WITH?
Collected data, as well as data brought to our knowledge through services will be processed exclusively for the purpose:
- they were give for,
- you gave a personal consent to,
You have a right to:
- have knowledge on what personal data of yours we have and process
- request corrections,
- obtain your data in digital form,
- withdraw at any given consent partially or complete, and at any time.
In case of an objection concerning your legal rights you can complain to the competent Agency for protection of personal data..
We can use your data to:
- provide you informations and help,
- provide and facilitate use of NauSYS,
- adapt content to your interests,
- conduct surveys and adjust to your needs,
- inform you of new and updated services,
- provide you informations on events and special offers from NauSYS,
- provide informations from our partners that might interest you,
- prevent frauds or other prohibited and illegal activities,
- protect security and integrity of NauSYS and your data,
- run business and statistic analysis and according to them develop new services and products,
- fulfill legal obligations.
We do not sell, rent or borrow nay list of our users or their personal data to third parties..
Data we have made anonymous or aggregated the way a physical person cannot be recognized any more we do not consider as personal data.
HOW DO WE PROTECT YOUR DATA?
We are fully commited to data protection from unauthorised access, disclosure or removing, regardless on the location of storage, processing, or formate they are stored in.
We cooperate with reliable and professional partners.
We apply acknowledged standards of information security by:
- implenting technical and organisational measures of protection based on the risk assessment,
- verified data collecting, storing and processing,
- whenever possible, all data are anonymous or under pseudonyme,
- taking measures that can identify and/or prevent unauthorised collect or misuse of personal data, and minimise potential damage.
We shall take measures to secure the integrity of data and availabillity of processing systems considering latest techological achievments, and all data will be stored at highly at highly available data-base center in Croatia.
We are aware there are no completely safe systems and that security has to be continuously improved.
Both you and all other users of NauSYS are our partners in security. Update your data continuously thus enabling us to send you recommendations how to protect your data from abuse.
WITH WHOME SHALL WE SHARE YOUR DATA?
Exclusively with partners in contractual relationship and only data necessary for provision of certain services. All persons having access to your data as well as our partners have contract relating confidentiality obligations as well as obligations to conduct organisational and technical security measures.
If they are prescribed by law for the purpose of:
- undertaking applicable laws, byelaws or other regulations,
- detecting, preventing or solving of frauds and security or technical problems related to NauSYS or users’ personal data.
Data you have provided to us shall not be transferred outside EU.
WHAT COOKIES AND TOOLS WE USE?
We use tools to analyse usage of NauSYS and collect informations on your habits and activities to recognize, as good as possible, your needs in purpose of improving the quality of offers.
We use our cookies as well those from our partners to recognize your computer and provide you with better service.
Collected data will not be associated to your personal data on NauSYS.
By appropriate setting on your computer, browser or mobile device you can decline or erase cookies and continue to use NauSYS. In that case most of the NauSYS fuctions might not be available to you.
Listed tools can collect and store tecnical data such as cookies, IP address of user and/or visitor, IMEI, browser data etc., but without identifying any individual person.
THE RIGHTS TO ERASURE AND RESTRICTION OF PROCESSING
At any moment you can request to erase your personal data collected withing use of NauSYS or restrict the purpose of use of your data, partially or complete.
Your data or settings can be modified through the NauSYS interface or you can simply sign out from the list of promotions recepients through the link within electronic mail.
Request for erasure or restriction of processing can be rejected if we cannot confirm your identity as the owner of specific personal data or if there are some other legal limits.
Erasure of personal data can be requested in written form sent to our address or by electronic mail sent to firstname.lastname@example.org.
Upon erasure request we will confirm receipt and start the procedure of identification and therefore uniquely connect you to data within NauSYS and effectively erase them.
Your data will be stored depending on purpose and according to applicable regulations or legitimate interests arising from or relating to use of NauSYS and will be erased at the expiry of defined period.
For example, records related to finacial transactions, invoices or receipts shall be kept in accordance to legally defined period, other categories of data shall be kept for the period we have determined.
THE RIGHT TO DATA PORTABILITY
As an owner of the active user account you can at any moment request to transfere your data and content toward another provider.
Request can be rejected if we cannot confirm your identity as the owner of specific personal data.
You can download your data personally through user interface for registered users ‘My profile’.
Data you cen download digitally are: your name and the contact details.
We protect privacy of our users and do not allow downloading of contents that can infringe your or other users’ rights.
Due to technical restraints we can not enable automatized data transfer to other provider.
THE RIGHT TO INFORMATION (DATA ACCESS)
You are the owner of your data and have the right to information what data wee keep or process and can request additional information.
Request can be rejected if we cannot confirm your identity as the owner of specific personal data or if there is some other restriction.
Your data may be reviewed through registered user interface ‘My profile’.
If you need more informations or are not registered as user of NauSYS send us a request in written form to our address or by electronic mail sent to email@example.com.
THE RIGT TO DATA RECTIFICATION
It is important to have correct data so, please, check them occasionally.
Request to rectification can be rejected if we cannot confirm your identity as the owner of specific personal data and you will be notified if there is any other rectification restriction.
We will send you reminders on importance of using correct data and thus please rectify your data through ‘My profile’ interface.
LINKS TO OTHER SITES
In case you left NauSYS pages by folowing a link, we kindly ask You to get acquainted wit other’s policies of privacy and how they protect your personal data.
NOTIFICATION ON CHANGES AND CONTACTS
Occasionally we can change these rules and changes of the Policy will be published on NauSYS page.
Publication of the Policy has been carried out on May 25th 2018 and shall apply from May 25th 2018.
In case of changes of the Policy preceding versions can be requested by electronic mail on firstname.lastname@example.org.
Queries and complaints related to this Policy as additional informations related to collected personal data of yours through using NauSYS can be obtained by request in written form to our address or by electronic mail sent to email@example.com.