Privacy Policy

Privacy Policy

Energo-Tehna d.o.o., Jarun 28, Zagreb, OIB: 86792286330 (hereinafter: Controller) processes personal data lawfully, fairly and transparently in accordance with:

  • Regulation (EU) 2016/679 (GDPR)
  • Directive 2002/58/EC (ePrivacy Directive)
  • Croatian Act on the Implementation of the GDPR
  • Other applicable Croatian and EU legislation

This Privacy Policy applies from December 3rd, 2025.

1. Purpose of This Policy

This Policy explains how we collect, use, share and protect your personal data and outlines your rights.

2. Categories of Personal Data

 

2.1 Data You Provide

  •  full name
  •  email address
  •  contact message content
  •  newsletter subscription email

2.2 Technical Data

  • IP address (shortened where possible)
  • browser and OS type
  • device type

2.3 Website Usage Data

  • visited pages
  • visit duration
  • interaction data

    2.5 Google Analytics Data

      • pseudonymised identifiers
      • device data
      • behavioural data
      • traffic source data

      Processed only with consent.

      3. Purposes of Processing

      • responding to inquiries
      • sending newsletters (with consent)
      • analysing website usage (with consent)
      • ensuring system security
      • complying with legal obligations

      4. Legal Basis

      Consent (Art. 6(1)(a) GDPR)

      • contact forms
      • newsletter
      • analytical/marketing cookies

      Consent may be withdrawn at any time.

      Legitimate Interest (Art. 6(1)(f))

      • website functionality
      • fraud prevention
      • system security

      Legal Obligation (Art. 6(1)(c))

      • accounting and regulatory compliance

      5. Data Recipients

      We may share data with:

      • hosting providers
      • email marketing providers
      • Google LLC (with consent)
      • IT support providers
      • public authorities (when legally required)

      All processors are contractually bound under GDPR.

      6. International Transfers

      Possible transfers to third countries (e.g. USA) based on:

      • Standard Contractual Clauses
      • Additional safeguards

      7. Retention Period

      • Contact forms: up to 12 months
      • Newsletter data: until unsubscribe
      • Google Analytics: 2–26 months
      • Legal data: as required by law

      8. Security Measures

      We implement:

      • firewalls
      • strong password policies
      • antivirus protection
      • encryption and pseudonymisation
      • employee confidentiality obligations
      • regular staff training

      9. Your GDPR Rights

      You have the right to:

      • access
      • rectification
      • erasure
      • restriction
      • portability
      • objection
      • withdraw consent

      Contact: info@energo-tehna.hr

      You may lodge a complaint with AZOP (www.azop.hr).

      10. Automated Decision-Making

      We do not conduct profiling or automated decision-making with legal effects.

      11. Cookies

      See our Cookie Policy for detailed information.

      12. Amendments

      We reserve the right to amend this Privacy Policy.