Privacy Policy – APEX AUDIT

General

This Privacy and Personal Data Protection Policy defines how your personal data, provided in connection with the use of the website www.apexaudit.hr (hereinafter referred to as the “Website”) and through your cooperation with us, is used and protected.

The data controller is APEX AUDIT AND CONSULTING d.o.o., with its registered office at Strojarska cesta 20, 10000 Zagreb, Croatia.

All personal data (hereinafter referred to as “data”) is considered strictly confidential and is processed in accordance with applicable legal regulations on personal data protection.

For any information regarding the processing of personal data, please contact us via www.apexaudit.hr.

Personal Data and Their Processing

APEX AUDIT AND CONSULTING d.o.o. will keep personal data confidential and will not distribute, publish, provide them to third parties for use, or otherwise make them available to any third party without your prior consent or contrary to GDPR regulations.

We collect different types of data depending on which of our services you use. APEX AUDIT AND CONSULTING d.o.o. processes personal data that you, as a user, have voluntarily and knowingly provided via the website www.apexaudit.hr or through contact with employees or other authorized representatives acting on behalf of APEX AUDIT AND CONSULTING d.o.o., as well as personal data collected from other sources, such as information collected from forms you fill out on the website and/or social media profiles. This includes data such as your Internet Protocol (IP) address or data automatically collected through the use of cookies, which are necessary to achieve the purposes described in this Privacy Policy.

If you use websites owned by APEX AUDIT AND CONSULTING d.o.o., send inquiries/requests via email, by post, or enter into cooperation agreements, your personal data will be collected, including but not limited to the following:

First name, last name
Home address
Personal Identification Number (OIB)
Date of birth
Gender
Mobile phone number
Email address

The data controller may also collect data that does not fall under the category of personal data, including but not limited to the following:

Information about the device you use to connect to the Internet
The type and version of the Internet browser you are using
Methods of using the website

Transfer of Personal Data to Third Parties

Your personal data may be transferred to third parties only if necessary for the fulfillment of a specific contract, based on legitimate interest, or if you have given prior consent:

a) To other partners providing additional data processing services

b) To third parties, such as legal or financial representatives

c) To public authorities

Security of Personal Data and Retention Period

Your personal data is transmitted to us in encrypted form. We use the HTTPS (HyperText Transfer Protocol Secure) encryption system. We secure our websites and other systems with technical and organizational measures to protect against the loss and destruction of your data, as well as against unauthorized access, alteration, or dissemination by unauthorized persons.

We implement appropriate technical, physical, and organizational measures to protect data against security risks such as accidental, unauthorized, unlawful, or otherwise unwanted access, destruction, loss, or disclosure of data, ensuring a level of security appropriate to the risks associated with data processing.

Your data is stored on a protected internal server infrastructure that cannot be accessed externally. Access to the server infrastructure is granted only to authorized personnel responsible for its maintenance, while access to personal data is granted exclusively to our authorized employees or contractual partners with limited processing rights, in accordance with the rules set forth in this Privacy Policy in the online store.

We require that our processes comply with GDPR regulations.

We collect and store personal data:

For the time necessary to ensure all rights and obligations of the website users

For the period during which APEX AUDIT AND CONSULTING d.o.o., as a data controller, is obliged to retain data in accordance with generally binding legal regulations

In other cases, the retention period depends on the purpose of the processing or is determined by legal acts in the field of personal data protection

Your Rights

Who Has Access to Your Data and to Whom Is It Disclosed?

We may disclose or grant access to your personal data to competent authorities in accordance with legal obligations, to some of our business partners, such as marketing agencies we engage for organizing certain promotional activities, or to IT service providers who maintain our information and communication networks and systems, as well as to business banks. We have concluded agreements with these partners that ensure appropriate technical and organizational measures to protect your personal data, obligations to process them exclusively in accordance with our instructions, obligations to maintain their confidentiality, and restrictions on the use of your personal data for purposes other than those specified in the relevant agreement.

If you access our website from another region, by using our website you expressly consent to the transfer of your personal data to the Republic of Croatia, where it will be processed in accordance with Croatian laws governing the protection of your personal data.

In exceptional cases, data collected through various cookies from social networks and other third parties from the United States (USA) may be transferred to their servers, which may be located in the USA. In such cases, the transfer of personal data will be carried out either within the framework of the European-American Privacy Shield system or based on contracts with recipients of your personal data in such countries, aligned with the Standard Contractual Clauses for the transfer of personal data approved by the European Commission, to ensure the protection of your personal data in compliance with the requirements of European data protection law.

Your Rights Regarding Our Processing of Your Personal Data

Your rights regarding our processing of your personal data are:

The right to access your personal data, i.e., the right to obtain confirmation whether personal data related to you is being processed, and if such personal data is being processed, you have the right to access your personal data. You may request detailed information, particularly about the purpose of processing, the type/categories of personal data being processed, including access to your personal data, the recipients or categories of recipients, and the intended retention period for the personal data (access to personal data may be restricted in cases prescribed by Union law or national legislation or when such a restriction respects the essence of other fundamental rights and freedoms) – to exercise your right, please contact the data controller in writing.
The right to rectification, i.e., the right to correct or complete inaccurate personal data related to you, without delay, by providing an additional statement – to do this, please send your request to the data controller in writing.
The right to erasure of personal data (“right to be forgotten”) related to you, especially in cases where:

Personal data is no longer necessary for the purposes for which it was collected or otherwise processed.
You withdraw, in whole or in part, the consent you have given for the processing of your personal data for those purposes, and there is no other legal basis for its processing.
You object to the processing of your personal data, and there is no overriding legitimate interest for its processing.
The personal data has been unlawfully processed.
The personal data must be erased in order to comply with a legal obligation.

The right to restrict the processing of personal data in the following cases:

If you dispute the accuracy of your personal data, for a period that allows us to verify the accuracy of the personal data.
If the processing is unlawful and you oppose the erasure of your personal data and instead request the restriction of its use.
If we no longer need the personal data for processing purposes, but you request it for the establishment, exercise, or defense of legal claims.
If you have objected to the processing of personal data necessary for our legitimate interests or the interests of a third party, while it is being verified that legitimate interests outweigh the grounds for the objection.

The right to object to the processing of your personal data based on legitimate interest or for direct marketing purposes, including the prohibition of profiling to the extent related to such direct marketing.

If we process your personal data, you can request free information about the processing of your personal data at any time.

If you believe that we process personal data contrary to the protection of your personal data and the legal provisions of this privacy policy, you may request clarification. You may request the removal of such created status. Specifically, you may request the correction, supplementation, erasure, or blocking of your personal data.

To exercise your rights, please contact us via email at info@apexaudit.hr or the Office for Personal Data Protection at https://ec.europa.eu/.

You can withdraw your consent for the processing of personal data at any time. If you withdraw consent for the processing of your personal data, your personal data will be erased.

Cookies

Our website uses cookies to make it relevant, engaging, and customized for users. Cookies are small text files stored on your computer, smartphone, or other devices and are used in your browser. We use cookies for:

Ensuring proper functionality of the website,
Remembering contact information so you don’t have to enter it multiple times,
Customizing the website to your needs by tracking traffic, movements, and features you use.

What Are Cookies?

Cookies are small text files that your browser stores on your computer or mobile device when you visit a specific website. With cookies, a website remembers your actions and desired settings (like login, language, font size, and other settings related to the display) over an extended period, so you don’t need to re-enter them each time you return to the website or browse its different pages.

Data collected through cookies includes: information about the browser and operating system you’re using, the time of your visit, the functions you use on this site, frequency of visits, file tags you accessed, the amount of data transferred, and websites you’ve accessed through this website.

First-party cookies: Used to track user movement on a single website.
Third-party cookies: Primarily used to track users across different websites and display relevant ads. Third-party cookies are used by other websites to collect information about what you do online. Among other things, they provide advertisers with insights into your interests and preferences, which they then use to show you personalized ads (for example, Google Analytics). You can block third-party cookies through your browser settings (if you use Chrome). More information about cookies can be found at aboutcookies.org.

Purpose of Processing

We use cookies to provide a better user experience, collect statistical data on visits, and provide user interfaces for accessing all services. Based on the data collected, we can more easily adjust the content and features of the website to your needs while also checking the effectiveness of displaying its content and ads. Your interaction with the website is faster and simpler with the help of cookies. They allow the website to remember individual settings and experiences, thus saving time and making browsing more efficient and enjoyable.

Personal data will be collected based on your explicit consent through predefined forms.

Retention Period

Data collected through cookies is deleted after the cookie’s expiration date or if you delete the cookie. Data collected based on predefined forms will be deleted after the agreed period during which you consented to their processing, or after the purpose for which they were collected is completed, and at the latest after the expiration of all legal obligations related to the storage of personal data.

How to Enable or Delete Cookies:

You can delete cookies entirely by going into your browser settings under Security and Privacy and taking the actions you want.

Changing Browser Settings or Deleting Existing Cookies: By adjusting your browser settings, you can accept or reject some or all cookies. Here are links to the most common browsers with instructions for handling cookies:

Firefox or English version of Firefox
Google Chrome or English version of Google Chrome

Disable Google Analytics: If you wish, you can disable Google Analytics tracking by installing an add-on for your browser available here (available for the following browsers: Microsoft Internet Explorer 11, Google Chrome, Mozilla Firefox, Apple Safari, and Opera):
https://tools.google.com/dlpage/gaoptout

Choice

In general, you can use this website without disclosing your data.

You are not legally or contractually obligated to provide your personal data.

If you wish, you can restrict, block, or delete cookies by changing your browser settings, but this may result in the website not functioning properly or blocking access to certain content.

Other personal data is stored only if you make it available to us through your explicit consent. If necessary for the purpose for which you gave consent, your personal data may be shared with one of our partners who process it for us as a Data Processor.

By visiting www.apexaudit.hr, we will ask for your consent to use cookies that are not essential for the website’s operation.

The data controller for data collected through www.apexaudit.hr is:

APEX AUDIT AND CONSULTING d.o.o.
Strojarska cesta 20
10000 Zagreb
info@apexaudit.hr

Changes to the Privacy Policy

APEX AUDIT AND CONSULTING d.o.o. may modify this Privacy Policy at any time by publishing the revised version of the Privacy Policy on the website www.apexaudit.hr. Changes to the Privacy Policy take effect upon publication on the website.