Data protection@DPD

Datenschutz bei DPD Datenschutz bei DPD

Data protection@DPD

Introduction

DPD Croatia d.o.o., Slatinska 7, 10 360 Zagreb – Sesvete, OIB: 87109117191 (hereinafter: DPD), wishes, with this privacy policy, to provide all data subjects with clear information on the processing of personal data carried out, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and free movement of such data, and repealing Directive 95/46/EC (hereinafter:  General Data Protection Regulation), the Act on the Implementation of the General Data Protection Regulation and other relevant legislation in the field of privacy and personal data protection.

DPD has implemented numerous technical and organizational measures to ensure a high level of protection of personal data.

DPD shall carry out the processing of personal data exclusively on the basis of possible legal grounds laid down in Article 6. General Data Protection Regulation, which also includes:

  • Consent;

  • Necessity of processing due to the performance of a contract to which the data subject is a party or in order to take action at the request of the data subject prior to the conclusion of the contract;

  • The necessity of processing in order to comply with the legal obligations of the data controller;

  • The necessity of processing for the purposes of the legitimate interests pursued by the data controller or of a third party, except where those interests override the interests or fundamental rights and freedoms of the data subject which require the protection of personal data.

For all questions related to personal data protection and privacy, you can contact us via the contact form or via the e-mail address:   [email protected].

In case of dissatisfaction with the handling of your personal data, you can file a formal complaint with the competent data protection authority. The competent authority for the protection of personal data in the Republic of Croatia is:

Personal Data Protection Agency - Selska cesta 136, 10 000 Zagreb, https://azop.hr/, [email protected]

 

Rights of data subjects

On the basis of the General Data Protection Regulation, you have certain rights regarding the protection of your personal data, which we specify in more detail below.

You can also exercise your rights under the General Data Protection Regulation (Articles 15 to 22) by using the contact form or by e-mail address:   [email protected] .

 

Right of access

Your right to obtain confirmation from the controller as to whether personal data relating to you are being processed and if such received personal data has been processed:

  • for what purpose this data is processed,

  • What exactly is the data in question,

  • third parties to whom this data may be disclosed,

  • how much data will be stored,

  • if the data is not collected from you, available information is required about the source from which it has been collected,

  • on the existence of automated decision-making,

  • on further rights entitled to you (requesting rectification, deletion of personal data or restriction of the processing of personal data or the right to object to such processing).

Right to rectification

Each data subject shall have the right granted by the European legislator to obtain from the data controller the rectification of inaccurate personal data concerning him or her.

Right to deletion ("right to be forgotten")

You have the right to request from the data controller the deletion of personal data in certain cases, such as:

  • if the personal data are no longer necessary in relation to the purposes for which they were collected,

  • if you withdraw the consent on the basis of change of purpose the processing is based on,

  • if you object to the processing and there are no overriding legitimate grounds for the processing, or you object to the processing of personal data concerning the processing in relation to direct marketing,

  • if the personal data have been unlawfully processed,

In certain cases, the data controller may reject your request for deletion, if this is necessary for the exercise of the right to freedom of expression and information, in order to comply with legal obligations, exercise legal requirements another cases provided for in positive legal regulations.

Right to restriction of processing

You can request restriction of processing if:

  • you contest the accuracy of the personal data (for a period enabling the controller to verify the accuracy of the personal data),

  • if the processing is unlawful and you oppose the erasure and request restriction,

  • the controller no longer needs your personal data for the purposes of the processing, if the data subject requests them and for the fulfilment of legal requirements,

  • when objecting to the processing of personal data (up to the point of confirmation whether the legitimate grounds of the controller override those of the data subject).

Right to data portability

Each data subject shall have the right granted by the European legislator to receive personal data concerning him or her, and have the right to transmit this data to another controller without hindrance.

Right to object

Each data subject shall have the right granted by the European legislator to object to processing of personal data concerning him or her on the basis of a legitimate interest or to the performance of a task carried out in the public interest.

 

Certain forms of personal data processing

Parcel delivery service

WHOSE DATA DO WE PROCESS?Parcel SenderParcel Recipient
WHAT PERSONAL DATA DO WE PROCESS?Name of legal entity, address for sending invoices, contact personsName, surname, address, e-mail address, phone number
FROM WHOM DID WE RECEIVE THE DATA?Directly from the sender or from business partnersFrom senders, sales partners or directly from recipients
LEGAL BASISThe processing of personal data is necessary for the performance of a contract related to the provision of a parcel delivery service.
DATA SHARINGSTORAGE TIME
We generally send your data to our distribution warehouses, which are responsible for picking up your shipments, and to local partners (our vendors) and couriers involved in the parcel delivery process. Pickup Locations If there is damage to the package, then we also send your information to our insurance company. Shipment data or details of the contents of shipments will be forwarded or made available to third parties in exceptional circumstances. Such third parties are primarily the competent state body.DPD operates in accordance with regulations relating to data storage. This includes primarily storage periods in accordance with tax laws, e.g. data related to packages, delivery tour plans and delivery lists, damage reports, complaints, invoices and balance sheets.
Parcel Sender
WHAT PERSONAL DATA DO WE PROCESS?Name of legal entity, address for sending invoices, contact persons
FROM WHOM DID WE RECEIVE THE DATA?Directly from the sender or from business partners
LEGAL BASISThe processing of personal data is necessary for the performance of a contract related to the provision of a parcel delivery service.
DATA SHARING
We generally send your data to our distribution warehouses, which are responsible for picking up your shipments, and to local partners (our vendors) and couriers involved in the parcel delivery process. Pickup Locations If there is damage to the package, then we also send your information to our insurance company. Shipment data or details of the contents of shipments will be forwarded or made available to third parties in exceptional circumstances. Such third parties are primarily the competent state body.
Parcel Recipient
WHAT PERSONAL DATA DO WE PROCESS?Name, surname, address, e-mail address, phone number
FROM WHOM DID WE RECEIVE THE DATA?From senders, sales partners or directly from recipients
LEGAL BASIS
DATA SHARINGSTORAGE TIME
We generally send your data to our distribution warehouses, which are responsible for picking up your shipments, and to local partners (our vendors) and couriers involved in the parcel delivery process. Pickup Locations If there is damage to the package, then we also send your information to our insurance company. Shipment data or details of the contents of shipments will be forwarded or made available to third parties in exceptional circumstances. Such third parties are primarily the competent state body.DPD operates in accordance with regulations relating to data storage. This includes primarily storage periods in accordance with tax laws, e.g. data related to packages, delivery tour plans and delivery lists, damage reports, complaints, invoices and balance sheets.

myDPD

 

GeoPost, with its registered office at 26 rue Guynemer 92130 Issy-Les-Moulineaux, France, parent company subsidiary DPD, Seur and Chronopost, supervises "myDPD".

In accordance with the contract for the provision of delivery services, personal data are processed. GeoPost hereby informs users that the personal data collected is not mandatory for the provision of delivery services, but provides it.

The data will be used by GeoPost, its European entities and/or any third parties involved in the provision of the services, in particular:

  • for the purpose of providing delivery services,

  • for the purpose of offering similar products and services, by any means of communication, as part of the related business processes.

  • for the purpose of measuring the level of user satisfaction and improving the offers and services of GeoPost and its affiliates.

The user's personal data is kept for a maximum of three (3) years after the user last connects to "myDPD", except in the case of the user's physical address, which is kept for five (5) years.

The user will have the right to access and rectify, object, restrict processing and data portability by transfer of his data where technically feasible and erasure of his personal data. These rights can be exercised by sending an e-mail message to  [email protected]

 

For any problems related to the management of their personal data, the user has the right to file a complaint with any relevant supervisory authority.

 

DPD Predict

 

DPD offers the recipient or sender of goods in its product portfolio, and the Predict service. With the help of this service, the recipient of the goods receives an advanced notification of delivery sent by the sender of the goods in the form of an e-mail or SMS message, informing when the delivery will arrive and the possibility for the recipient to make individual changes related to delivery (Follow My Parcel Portal).

For this purpose, the sender forwards to DPD the necessary information about the recipient of the goods, such as an electronic address or mobile phone number.

The data is carried out for reasons of legitimate interest, in order to avoid unsuccessful deliveries and to ensure the best possible user experience by predicting the time and place of delivery and the same notification to the party (recipient).

As a rule, the basis for the processing of data between sender and receiver a contractual relationship or a similar relationship between the recipient and the sender in accordance with Article 6(1) (b) of the GDPR. The transmission of additional information shall not restrict the interests of the Parties concerned which would seek protection or infringe the fundamental rights and freedoms of that Party. The parties concerned may refuse to process this data.  Anticipating notices is not advertising with the aim of promoting your own sales, but serving and implementing the delivery process for already ordered products.

In the case of dealing with complaints or invoicing, the data are recorded and saved upon individual delivery to our delivery archives in accordance with legal regulations relating to archiving time periods. In accordance with General Data Protection Regulation (GDPR) and the Law on the Implementation of the General Data Protection Regulation, we advise our senders to inform their customers (recipients) about this transfer of personal data.

The sender is responsible for the accuracy of the information transmitted to DPD, such as the e-mail addresses and telephone numbers of his customers (recipients of goods). If DPD has received an instruction from the recipient to further prohibit the sending of information by e-mail or SMS, DPD is obliged to follow these instructions and to terminate the service to a particular recipient.

As part of DPD's Predict service, the sender can also provide in the form of banner advertising information about themselves, and this banner will be visible to recipients. In this process, the sender himself is responsible for allowing the sending of advertising banners to his customers (recipients). DPD undertakes to its clients (senders) not to send advertising content to their customers (recipients).

Recipients who wish to block their electronic addresses for the Predict service should send a cancellation request of the services to [email protected], making sure to indicate their name, postal address, as well as  e-mail address they wish to block or use the unsubscribe link received in an email related to the DPD Predict service. .

We want to emphasize that disabling the receipt of information via the e-mail address will prevent the recipient of the package from receiving further information from any sender. If the deactivation option is to be used only when receiving shipments from a particular sender, the recipient is obliged to contact the sender and inform him that e-mail notifications are disabled.

Suggested text for instructions on confirming recipient consent for DPD service clients:

"During the process of sending the parcel, we will forward in accordance with the General Data Protection Regulation Act. Your data (name and surname, address, and if necessary your e-mail address and/or mobile phone number for the option of sending notifications and premeasurements, together with other data related to sending packages) to our delivery partner.”

 

Job applications

JOB APPLICATIONSKandidata za zapošljavanje.
WHOSE DATA DO WE PROCESS?Candidates for employment.
WHAT PERSONAL DATA DO WE PROCESS?Name and surname, address, e-mail, telephone number, date of birth, data on previous employment and education and other information provided in the CV, certificate that no criminal proceedings are being conducted against the candidate
FROM WHOM DID WE RECEIVE THE DATA?From candidates for employment
LEGAL BASISConsent of the data subject
DATA SHARINGSTORAGE TIME
During the processing of personal data, DPD may use the services of third parties, therefore third parties may have access to the candidate's personal data. When using the services of any third party, DPD will ensure that that third party provides appropriate technical and organizational measures to protect personal data in accordance with the relevant legal regulations. DPD does not employ its own drivers, but independent carriers carry out the pick-up and delivery of packages. For this reason, when applying for a job as a courier, the data subject may give consent for the forwarding of personal data related to employment to interested DPD partners who, as carriers, carry out the delivery of packages.Received open applications are kept for 12 months from the date of submission. Personal data related to applications for tenders are kept for 40 days from the date of expiry of the competition, if the candidate has not given consent for the application to be used for future tenders. In this case, personal data is kept for 12 months from the date of giving consent.
Kandidata za zapošljavanje.
WHOSE DATA DO WE PROCESS?Candidates for employment.
WHAT PERSONAL DATA DO WE PROCESS?Name and surname, address, e-mail, telephone number, date of birth, data on previous employment and education and other information provided in the CV, certificate that no criminal proceedings are being conducted against the candidate
FROM WHOM DID WE RECEIVE THE DATA?From candidates for employment
LEGAL BASISConsent of the data subject
DATA SHARINGSTORAGE TIME
During the processing of personal data, DPD may use the services of third parties, therefore third parties may have access to the candidate's personal data. When using the services of any third party, DPD will ensure that that third party provides appropriate technical and organizational measures to protect personal data in accordance with the relevant legal regulations. DPD does not employ its own drivers, but independent carriers carry out the pick-up and delivery of packages. For this reason, when applying for a job as a courier, the data subject may give consent for the forwarding of personal data related to employment to interested DPD partners who, as carriers, carry out the delivery of packages.Received open applications are kept for 12 months from the date of submission. Personal data related to applications for tenders are kept for 40 days from the date of expiry of the competition, if the candidate has not given consent for the application to be used for future tenders. In this case, personal data is kept for 12 months from the date of giving consent.

Social media

 

DPD also appears on social media sites, like Facebook, YouTube and LinkedIn. DPD provides its service on these platforms in accordance with the data protection regulations of each service provider and has no direct responsibility for the processing of data by the operator. This data may be used for internal purposes or for direct communication. DPD wants to emphasize that such platforms are publicly available and all content on them is available to all their users. DPD will not transmit delivery information or personal data details to other public forums through these platforms.

Data protection provisions on the application and use of the social network Facebook

Through this page, visitors can access the official Facebook page of DPD Croatia via the link.

For all information about the processing of personal data via Facebook social network, you can contact Meta Platforms Ireland Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland.

The data protection provisions of the social network Facebook are available at  https://www.facebook.com/about/privacy, and provide information on the collection, processing and use of personal data by Facebook.

 

Data protection provisions on the application and use of YouTube

Through this page, visitors can access the official YOUTube channel of DPD Croatia via a link.

For all information about the processing of personal data via Youtube, you can contact YouTube, LLC, 901 Cherry Ave., San Bruno, CA 94066, UNITED STATES. YouTube, LLC is a subsidiary of Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.

YouTube's data protection provisions are available at https://www.google.com/intl/en/policies/privacy/ and provide information on the collection, processing and use of personal data by YouTube and Google.

 

Data protection provisions on the application and use of the social network LinkedIn

Through this site, visitors can access the official LinkedIn website of DPD Croatia via the link.

For all information about the processing of personal data via LinkedIn, you can contact LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, United States. LinkedIn Ireland, Wilton Plaza, Wilton Place, Dublin 2, Ireland are responsible for privacy issues outside the United States.

The applicable Privacy Policy for LinkedIn is available on https://www.linkedin.com/legal/privacy-policy. LinkedIn's cookie policy is available on https://www.linkedin.com/legal/cookie-policy.

 

Contact form

 

Through this website DPD Croatia enables communication through the contact form. Personal data entered by the data subject via the contact form are not automatically stored, but are forwarded directly to the e-mail address of the responsible person according to the type of inquiry.

WHOSE DATA DO WE PROCESS?Posjetitelji stranice koji ispune kontakt formu.
WHAT PERSONAL DATA DO WE PROCESS?Name and surname, e-mail address
FROM WHOM DID WE RECEIVE THE DATA?From site visitors who fill out the contact form.
LEGAL BASISLegitimate interest
DATA SHARINGSTORAGE TIME
There is no transfer of personal data to third parties.One year from receipt.
Posjetitelji stranice koji ispune kontakt formu.
WHAT PERSONAL DATA DO WE PROCESS?Name and surname, e-mail address
FROM WHOM DID WE RECEIVE THE DATA?From site visitors who fill out the contact form.
LEGAL BASISLegitimate interest
DATA SHARINGSTORAGE TIME
There is no transfer of personal data to third parties.One year from receipt.

Video surveillance

 

DPD uses a video surveillance system to:

  • Tracked packages during the sorting and manipulation process in Hub and Depot to correct any errors in the process and ensure a safe working environment.

  • He supervised the properties where the company's headquarters and hub are located, as well as those where depots are located due to reducing the risk of theft, burglary, violence and similar events, as well as to control entry and exit.

DPD bases this processing of personal data on a legitimate interest.

Personal data obtained through the video surveillance system are kept for 6 months.

 

Chatbot

 

Through the website, the chatbot "Gita" is also available as a way to communicate with users. The data entered via the chatbot is kept for 6 months after which it is automatically deleted. The data may be deleted earlier at the request of the user. Personal data collected in this way are processed for the purpose of providing effective customer support, and on the basis of legitimate interest.

Use of cookies

In order for this website to work properly and to improve your browsing experience, the site must store a small amount of data on your computer or access this already stored data (so-called "cookies"). By blocking cookies, you can still browse the site, but some of its features will not be available to you.

 

What is an HTTP cookie?

A cookie is information stored on a personal computer at the time of browsing the website you have visited. Cookies usually store your website settings such as language or address. Later, when you open the same website again, the internet browser sends back the cookies that belong to that page. In this way, the information is tailored to your needs and common uses.

About simple information about the settings, cookies can also store a large number of personal information (name, e-mail address) for which you must fully give consent. This data can only be stored if you enable it – websites cannot gain access to data that you have not given them and cannot access other files on your computer. The activities of storing and sending cookies are not visible to you, but you can choose in the settings of the selected Internet browser the possibility of approving / rejecting the request for storing cookies, deleting saved cookies automatically when closing the Internet browser and other activities related to the use of cookies.

 

How to disable cookies?

By turning off cookies, you do not allow them to be stored on your own computer. Cookie settings can be controlled and configured in the selected internet browser.

For information about cookie settings, select the internet browser you are using.

If you disable cookies, you will not be able to use certain functionalities of the website.

 

What are session cookies?

Temporary cookies or session cookies are removed from your personal computer after you close your Internet browser. With the help of these cookies, websites store temporary data.

 

What are persistent cookies?

Persistent cookies remain on your personal computer even after you close your Internet browser. With the help of these cookies, websites store information to make it easier for you to use. For example, websites that require entering a username and password will "remember" your entry so that you do not have to log in every time you visit the site. Persistent cookies will remain on your computer for days, months, even years (depending on your settings).

 

What are first-party cookies?

First-party cookies come from the website you are viewing and can be permanent or temporary. In this way, websites store information that will make it easier for you to use it every time you visit this website.

 

What are third-party cookies?

Third-party cookies come from third-party domain advertisements (such as pop-ups or other advertisements) that are on the website you are viewing. With the help of these cookies, different internet domains can track the use of the Internet for marketing purposes.

 

Does it use www.dpd. com/en cookies?

Yes, with the primary goal of enabling our websites to provide a better user experience and easier data viewing.

 

Additional information about turning off cookies

Currently, there are several websites for turning off the storage of cookies for various services. More information can be found at these links:

DPD Croatia d.o.o. (hereinafter referred to as "DPD") is considered an independent data controller when it comes to the processing of personal data of clients in connection with parcel delivery.

The decision on the status of the controller was made at the DPDgroup level with the aim of unifying and creating a common position for all DPDgroup members to whom the General Data Protection Regulation applies, in accordance with the definition of the controller in the General Data Protection Regulation.

DPD determines which data will be processed when providing the service, in what way and for what purpose. The collection, organization, processing and storage of personal data are DPD's obligations.

The above does not affect the obligation of the other party to be guided by all the principles prescribed by the General Data Protection Regulation when processing personal data and apply all relevant provisions of the General Data Protection Regulation and all other legal regulations governing the issue of personal data protection and privacy.

In accordance with the stated DPD, both the client and the DPD are considered, each for themselves, as independent controllers, with all the rights and obligations that are based on the applicable legal regulations related to this status. Consequently, there is no legal obligation to conclude a data processing and sharing contract between DPD and an individual client, since each of the entities is independently responsible for compliance with the obligations arising from the General Data Protection Regulation.

For personal data that DPD has not obtained directly from the data subject, such as personal data of the recipient of the parcel, DPD is obliged in accordance with Article 14 GDPR. In accordance with Article 10 of the General Data Protection Regulation, you can provide the following information:

 

Controller and contact of the Data Protection Officer

The controller is:

DPD Croatia d.o.o.,

Slatinska 7, 10 360 Zagreb – Sesvete,

ID: 87109117191

You can contact the Data Protection Officer via e-mail address: [email protected]

 

 

Purpose of processing, legal basis and types of personal data

PURPOSE OF PROCESSINGLEGAL BASISPERSONAL DATA
Execution of parcel delivery servicePerformance of a contractual obligationFirst name, surname, address, telephone number, e-mail address
Informing customers about the status of the packageLegitimate interestFirst name, surname, address, telephone number, e-mail address
Proof of parcel deliveryLegitimate interestFirst name, last name, GPS location of the recipient, signature
Implementation of procedures related to the process of customs clearance and control of existing sanctions (embargo)Compliance with legal obligations of the controllerFirst name, surname, address, telephone number, e-mail address
Conducting activities related to direct marketingApprovalName, surname, e-mail address
Improving services and measuring customer satisfactionLegitimate interest

Ime, prezime, adresa elektroničke pošte

LEGAL BASIS
Execution of parcel delivery servicePerformance of a contractual obligation
Informing customers about the status of the packageLegitimate interest
Proof of parcel deliveryLegitimate interest
Implementation of procedures related to the process of customs clearance and control of existing sanctions (embargo)Compliance with legal obligations of the controller
Conducting activities related to direct marketingApproval
Improving services and measuring customer satisfactionLegitimate interest
PERSONAL DATA
Execution of parcel delivery serviceFirst name, surname, address, telephone number, e-mail address
Informing customers about the status of the packageFirst name, surname, address, telephone number, e-mail address
Proof of parcel deliveryFirst name, last name, GPS location of the recipient, signature
Implementation of procedures related to the process of customs clearance and control of existing sanctions (embargo)First name, surname, address, telephone number, e-mail address
Conducting activities related to direct marketingName, surname, e-mail address
Improving services and measuring customer satisfaction

Ime, prezime, adresa elektroničke pošte

Recipients of personal data

Within DPD's business, access to personal data is provided only to authorized employees who need access in the performance of regular business activities.

Personal data may also be shared with third parties such as contractual partners (undercarriages, warehouse managers, payment service providers). All entities with whom personal data is shared are obliged to comply with all legal regulations related to the field of personal data protection and privacy and to treat personal data by adhering to appropriate security and technical measures. DPD has concluded appropriate data processing and sharing agreements with all legal entities in respect of which such an obligation exists.

 

Storage period

The period of retention of personal data depends on the basis of the processing and the purpose of processing each category of personal data. Personal data are kept only for as long as necessary to achieve the purpose for which they were collected or further processed. Personal data are deleted, destroyed or anonymized after the purpose of the processing has been fulfilled, unless there is any other legal basis or where this is necessary for the establishment, exercise or defense of legal claims.

 

Rights of data subjects

Based on the General Data Protection Regulation, you have certain rights regarding the protection of your personal data, which we specify in more detail below.

You can also exercise your rights under the General Data Protection Regulation (Articles 15 to 22) by using the contact form or by e-mail [email protected] .

 

Right of access

Your right to obtain from the controller confirmation as to whether personal data relating to you are being processed and if such personal data are processed receive information:

  • for what purpose this data is processed,

  • What exactly is the data in question,

  • third parties to whom this data may be disclosed,

  • how much data will be stored,

  • if the data is not collected from you about any available information about the source from which it is collected,

  • on the existence of automated decision-making,

  • on further rights entitled to you (requesting rectification, deletion of personal data or restriction of the processing of personal data or the right to object to such processing).

 

Right to rectification

Each data subject shall have the right granted by the European legislator to obtain from the controller the rectification of inaccurate personal data concerning him or her. You also have the right to supplement incomplete personal data.

 

Right to erasure ("right to be forgotten")

You have the right to request from the Controller the erasure of personal data in certain cases, such as:

  • if the personal data are no longer necessary in relation to the purposes for which they were collected,

  • if you withdraw the consent based on which the processing is based,

  • if you object to the processing and there are no overriding legitimate grounds for the processing, or you object to the processing of personal data concerning the processing in relation to direct marketing,

  • if the personal data have been unlawfully processed,

In certain cases, the controller may reject your request for deletion, if this is necessary for the exercise of the right to freedom of expression and information, in order to comply with legal obligations, exercise legal requirements and other cases provided for positive legal regulations.

 

Right to restriction of processing

You can request restriction of processing if:

  • you contest the accuracy of the personal data (for a period enabling the controller to verify the accuracy of the personal data),

  • if the processing is unlawful and you oppose the erasure and request restriction,

  • the controller no longer needs the personal data for the purposes of the processing, but you, as a data subject, request them and for the exercise of legal requirements,

  • when objecting to the processing of personal data (up to the point of confirmation whether the legitimate grounds of the controller override those of the data subject)

 

Right to data portability

Each data subject shall have the right granted by the European legislator, to receive personal data concerning him or her, which is granted by the European legislator, to receive personal data concerning him or her, and shall have the right to transmit this data to another controller without hindrance.

 

Right to object

Each data subject shall have the right granted by the European legislator to object to processing of personal data concerning him or her based on a legitimate interest or to the performance of a task carried out in the public interest.

 

Right to withdraw consent

Where the processing of personal data is based on the consent of the data subject, it may be revoked at any time, without prejudice to the lawfulness of the data processing carried out based on consent until its revocation.

 

Objection to the supervisory authority

In case of dissatisfaction with the handling of your personal data, you can file a formal complaint with the Personal Data Protection Agency.

You can contact the Personal Data Protection Agency via the www.azop.hr website.

 

Source of personal data

Personal data are provided by contractual partners (delivery service seekers).

This privacy policy was last updated 3/2019