Date: 02 January 2025
On this website, the data controller is Loopsie Code j.d.o.o., Podstrana, OIB: 48504870176.
We collect personal data that you provide to us directly when you contact us, when you purchase our products or use our services, and when you subscribe to our newsletters and recipes. We also collect certain personal data when you visit our website.
Purposes of Data Processing
We process your personal data for the following purposes:
for (technical) maintenance, analytics, and improvement of our website,
when communicating with you by phone or email regarding our services and products,
to manage our client database,
to send our newsletters, during which we also process data on email and link openings for each individual recipient of our newsletters,
for order processing.
We do not transfer data to third parties in any manner, except where we are legally obliged to disclose data (e.g. the Tax Administration, which has the right to supervise our accounting documentation), or where we have concluded a data processing agreement with our partners for the maintenance of our IT systems and website (e.g. MailPoet for email services and sending newsletters).
If we process your personal data, you have the right to access, rectify, and erase your personal data. You also have the right to object to processing and the right to data portability.
Below you can find a longer version of our Privacy Policy, which provides more detailed explanations of which data we collect, how, for what purposes, and on what legal basis. If you have any questions, feel free to contact us at contact@loopsie-code.hr.
Website Maintenance and Improvement
Based on our legitimate interest, we use information about your visit to our website in order to display our website to you and analyze which pages are most frequently visited. This information enables us to analyze and improve our website without compromising privacy.
Communication
If you provide us with your contact details (e.g. when you contact us via the contact form or place an order), we will use them solely to contact you or process your order.
If you purchase one of our products, we will use your email address to inform you about the status of your order via email.
If you do not wish to receive our emails, you can click the unsubscribe link at the bottom of the email.
Regular Business Operations
Due to certain legal obligations, we process contact details, payment details, and communication data of (former) clients for the purpose of regular business operations. We issue invoices, store invoices, and archive correspondence with (former) clients on our server and in online work folders. Data is stored in accordance with applicable laws (e.g. the Accounting Act – 11 years).
Lawfulness of Processing
Personal data may only be processed if there is a legal basis for doing so. In accordance with the General Data Protection Regulation (GDPR), we process personal data based on the following legal grounds:
Consent: If you are not our client, you may give consent to receive our newsletter.
Contracts / pre-contractual actions: When, as our client, you purchase or intend to purchase our products and/or services, and we necessarily need to process your personal data in order to provide our services and products, process orders, or prepare an offer.
Legal obligation: If we receive a legitimate request for data from a competent authority. We are also legally obliged to retain personal data in our financial records for a certain period in accordance with tax and accounting legislation.
Legitimate interest: If you were previously a customer or we sent you an offer, we will retain your contact details for 11 years after the last contact in order to be able to contact you in the future regarding potential new projects/offers. Based on legitimate interest, we also send our customers/clients updates related to personal data protection, information security, and our services and products. In all cases, you have the right to object to processing based on legitimate interest when the data is used for marketing purposes.
Recipients of Personal Data
We do not disclose personal data to third parties unless we are legally obliged to do so. However, we use services of providers in the field of information and communication technologies. We have concluded data processing agreements with such business partners. Data processors may process personal data only on our behalf and under our supervision, solely for purposes determined by us and under strict confidentiality.
For data transfers outside the European Union carried out by our processors for the provision of IT services, we apply appropriate data transfer safeguards.
We use MailPoet services to send our newsletters.
Data Retention Period
We do not retain personal data longer than necessary for the purpose for which it was collected. This assessment is based on the type of personal data, the product or service for which the data was collected, and the period during which you, as a data subject, may reasonably expect your data to be retained (e.g. business cooperation – maximum retention period of 11 years from the end of cooperation; newsletters until consent is withdrawn).
Data Security
We have enabled traffic encryption on our website. This makes data traffic between you and our server unreadable to third parties. We have also ensured that your data is adequately protected across all our systems. This is achieved through technical (e.g. strong passwords) and organizational measures.
Your Rights
In accordance with the General Data Protection Regulation (GDPR), you have the right, upon request, to access your personal data and, if necessary, to rectify or erase it. In addition to the rights of access, rectification, and erasure, you may request restriction of processing and object to processing if you disagree with it. In certain cases, you may also exercise the right to data portability.
In all cases, you have the right to object to processing for marketing purposes based on legitimate interest.
If you have any complaints, you may also contact the competent supervisory authority — in the Republic of Croatia, the Croatian Personal Data Protection Agency.
For any questions or requests, please feel free to contact us at contact@loopsie-code.hr.
Changes to the Privacy Policy
In the event of changes to the Privacy Policy, we will publish the updated version on our website.