Privacy Policy
GDPR harmonized
Why we need your personal information?
Your data we need to (1) the organization of travel (eg. Air tickets are being made on the name of the person) and (2) communicate with you because of pay arrangements and elaborate details and services that you plan to use as part of package tours. We collect only the information that we use for these purposes. We respect the privacy rights of our customers and we recognize the importance of protecting the information collected. We have established procedures in order to ensure safe processing of your personal data.
Who processes the data?
The collected data about customers, employees and associates are strictly guarded. Only the head of data processing and the processing of data may get your information. If you have any inquiry concerning the personal information provided to us, please contact us personally or by e-mail at info@stupica-excursions.com.
Defining terms personal data and data processing
Personal Information is any information concerning the identification or recognition of individuals. The recognizable person is a person who can be identified, directly or indirectly, in particular by reference to recognition as name, identification number, information on the location or using one or more factors specific to the physical, psychological, genetic, mental, economic, cultural or social identity of that person. When we use the term “treatment”, we mean any procedure or set of procedures that are performed upon personal data, or on a set of personal data, any automated means, such as collection, recording, organization, use, disclosure by transmission, dissemination or making available classification and combination, restriction, erasure and destruction.
What personal information is collected and how to define?
All our activities are based on strict ethical principles and legal requirements, and we are committed to protecting the privacy of all our customers, our employees and external floor exercise. For the purpose of travel organization collect the following information: name, last name, gender, date of birth, address, city, type of travel document, travel document number, where and when it issued travel document and it is valid travel document.
In order to communicate with you collect e-mail address and contact phone / cell phone. Under the communication consider arranging payment, update information about flights (for example, if the changed schedule of the year you are using), and contact phone / cell phone use while traveling in case you become separated from the group and needed assistance leader travels. E-mail address used for sending notifications about discounts, promotions and new products. The approval of the marketing use (only by us, but not third parties) give when applying for travel or if you voluntarily enroll in our newsletter list. We are very important to just you have full control over this service and receive notification only if you want. In every marketing communication open you clearly discernible option of removing their contact with the same.
Cookies – On our website we use cookies, a visitor to the page it is recommended to find out more about our use of cookies and privacy policy side from which we use tools for website analysis or in which we have integrated additions to our website.
How to handle the data collected?
The collected personal data is used only within the legal framework, and forwarded to carriers, accommodation facilities, embassies (if it is to realize trips require a visa) and for the fulfillment of all legal obligations towards the Republic of Croatia. After traveling data is archived and stored as long as required by law. You are able to request the deletion of your data after the deadline storage that we prescribed. This request shall be made in writing (1) The letter sent by mail, (2) the e-mail address info@stupica-excursions.com.
Legal Basis
When you buy one of our package tours or get in any other form of contract with us, we will process your conventional personal information for that particular purpose. You can cultivate your conventional personal information if you have a query or the like prior to your decision on the conclusion of the contract with us.
The legal basis for which we can process your personal data listed in Article 6, paragraph 1, b) of the EU Regulation on personal data (EU) 2016/679 (GDPR), because the processing of your data necessary for the fulfillment of our contract with you or us how to deal with your issues and the like, before concluding the contract.
You can cultivate your usual personal information on the basis of the rules in Article 6, paragraph 1, f), if you are not our interests surpassed your rights to privacy and legal freedom. We have a legitimate interest in the processing of your personal data (name and email address) for marketing and analytical purposes. Our legitimate interest based on your preferences so we can better adapt our offer and eventually offer products and services that better meet your needs and wishes. Also, we have a legitimate interest in the processing of personal data for analytical purposes. Disclosure of personal data processing of your data with the utmost care and confidentiality is one of our core values. If so required by law, your data may be disclosed to third parties. We employ service providers and data processors to process data on our behalf. These services include authentication services, hosting and maintenance, service analysis, service of sending e-mail messages, service delivery, processing payment transactions, solvency, address and email checks. These third parties are our processors and data may only process personal data to the extent necessary to provide their own services. Our data processors are the contractual obligation that the data is treated in the strictest confidence. They are prohibited to use the data in any other way than is necessary. The necessary steps to ensure that our data processors, including service providers and other processors who work for m/b Stupica, support and protect the confidentiality of your information.
Some of our data processor located outside the EU / EAA. Consequently, we will share your personal information with countries outside the EU / EEA. However, the information we provide only if the recipient meets the applicable requirements, including:
- The country in question is considered a safe third country.
- The supplier in question will begin on the model contract of the European Commission for the transfer of personal data to third countries.
- The supplier is certified according to Art. 40 of GDPR; or
- supplier in question has a set of approved binding corporate rules.