Privacy Policy – Plaće.HR

Contact Privacy and Personal Data Protection: gdpr@oktaedar.hr

Thank you for showing interest to our company and our online content. Protection of data is of special importance for Oktaedar d.o.o. Use of web pages Oktaedar d.o.o. it is possible without any indication of personal data. However, if a visitor (data subject) wants to use content and functions on our web site, processing of personal information may become necessary. If processing of personal data is indispensable and there is no legal basis for such processing, we generally agree with the consent of the holder. Processing of personal data, such as the name, address, email address or phone number of the data bearer, is always in accordance with the General Data Protection Regulation (GDPR) and in accordance with the specific data protection under the regulations applicable to Oktaedar d.o.o. Through this statement on data protection, our company wants to inform the public about the nature, scope and purpose of the personal information we collect, use and process. Furthermore, data providers through this privacy statement will be notified of their rights. As a controller, Oktaedar d.o.o. has implemented technical and organizational measures to ensure the full protection of personal data processed through this website. However, data transfers based on the Internet may in principle have security gaps, so absolute protection may not be guaranteed. For this reason, each subject may submit personal information, necessary for the use and / or purchase of certain services and services, free of charge, through alternative means of communication (eg by telephone, by mail, …).

1. Definitions
2. Name and address of the controller
3. Cookies
4. Collecting General Data and Personal Data
5. Log in to our web site
6. Subscription to our newsletters / mailing lists
7. Newsletter / mailing list tracking
8. The ability to contact through the web site
9. Subscribe to blog comments on a web site
10. Routine delete and blocking of personal data
11. Data Holder Rights
12. Terms of Use Data Protection and Use of Facebook
13. Terms of Use for Data Protection and Use of Google AdSense
14. Privacy Policy for Application and Use of Google Analytics (with anonymization function)
15. Terms of Service Data Protection and Use
16. Terms of Use for Data Protection and Use of Google AdWords
17. Provisions on the protection of data on the use and use of LinkedIn
18. Provisions on the protection of data on the use and use of Twitter
19. Legal basis for processing
Legitimate interests performed by a controller or a third party
21. Period for which personal data will be stored
22. Provision of personal data as a legal or contractual request
23. The existence of automated decision-making

1. Definitions

Declaration of Data Protection Company Oktaedar d.o.o. is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our privacy statement must be legible and understandable to the general public as well as to our clients and business partners. To ensure this, we want to first explain the terminology used. In this Privacy Statement we use, among other things, the following terms:

a) Personal data
Personal data includes all data relating to an identified or recognizable physical person (“data carrier”). An identified physical person is one that can be directly or indirectly identified, in particular by calling to an identifier such as name, identification number, location information, online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity and physical person.

b) The data bearer
The data bearer is any natural person identified or recognizable, whose personal data is processed by the controller responsible for processing.

c) Processing
Processing is any action or set of procedures that are performed on personal data or personal data sets, whether it is automated means such as collecting, capturing, organizing, structuring, storing, adapting or modifying, retrieving, transmitting, spreading or otherwise by making available, aligning or combining, restricting, deleting or destroying.

d) Restriction of processing
The processing limitation refers to stored personal data with a view to limiting their processing in the future.

e) Profiling
Profiling means any form of automated personal data processing consisting of the use of personal data to assess certain personal aspects relating to a natural person, in particular for the analysis or prediction of aspects related to the workplace of a natural person at work, economic situation, health, personal preferences, interests, trustworthiness, behavior, location, or movement.

f) Pseudonymization
Pseudonymization is the processing of personal data in such a way that personal data can no longer be attributed to a given subject without the use of additional information, provided that such additional information is kept separate and subject to technical and organizational measures to ensure that personal data is not attributed to the identified or a recognizable physical person.

g) Controller or regulator responsible for processing
The controller or controller responsible for processing is a natural or legal person, a body of public authority, agency or other body which alone or together determines the purposes and means of processing personal data; where the purposes and means of such treatment are laid down by Union or Member State law, a controller or special criteria for its appointment may be provided for by Union or Member State law.

h) Processor
A processor is a natural or legal person, a body of public authority, agency or other body that processes personal data on behalf of a controller.

i) Recipient
The recipient is a natural or legal person, body of public authority, agency or other body disclosing personal information, whether or not a third party is a party. However, public authorities which may receive personal data within a specific examination in accordance with the law of the Union or a Member State shall not be considered recipients; the processing of such data by such public bodies must comply with the applicable data protection rules in accordance with the purpose of the processing.

j) Third party
A third party is a natural or legal person, public body, agency or body that is not a subject of the holder, controller, processor, and persons directly supervised by a superior or a processor authorized to process personal data.

k) Approval
Adherence to the data subject is any freely given, specifically, informed and unambiguous indication of the wishes of the data bearer by which he, by means of a statement or by affirmative actions, indicates the consent to the processing of personal data relating to him,

2. Name and address of the controller

A controller for the purpose of applying the General Data Protection Regulation (GDPR) and other data protection laws applicable in the Member States of the European Union and other data protection provisions is:

Oktaedar d.o.o.
Podravska 20
10360 Sesvete
Croatia

Phone: +385 1 5615 905
E-mail: info@oktaedar.hr
Website: Salary.HR

Contact Privacy and Personal Data Protection: gdpr@oktaedar.hr

3. Cookies

Oktaedar d.o.o. use cookies. Cookies are text files that are stored in a computer system via an Internet browser.

Many web sites and servers use cookies. Many cookies contain a so-called cookie ID. Cookie ID is a unique cookie identifier. It consists of a series of characters through which web pages and servers can be assigned to a particular web browser where the cookie is stored. This allows visited web sites and servers to differentiate individual browsers from other web browsers that contain other cookies. A special Internet browser can be identified and identified using a unique cookie ID.

By using cookies, Oktaedar d.o.o. Website users can provide a user-friendly feeling that could not be achieved without the use of cookies. When a user accesses a web site the cookie is stored on the computer system of the user. Another example is a shopping cart in the online store. The online store remembers the items that the customer put into a virtual shopping cart through the cookie.

The data carrier can at any time prevent cookies from being placed through our web site using the appropriate internet browser settings that are used and can therefore permanently deny the setting of cookies. Furthermore, cookies already set can be deleted at any time via an Internet browser or other software program. This is possible in all popular Internet browsers. If the data carrier deactivates setting up a cookie in the Internet browser you are using, all the functions on our website may not be fully available.

4. Collecting General Data and Personal Data

Websites owned by Oktaedar d.o.o. collect a range of general data and personal data when a data subject or an automated system asks for a website. These general information and information are stored in server log files. We have collected (1) browser types and versions, (2) operating system using the access system, (3) website from which the access system reaches our site (the so-called References), (4) date and time of access (6) the Internet Protocol (IP) address, (7) the Internet access provider of the access system, and (8) any other similar information and information that may be used in the event of an attack on our information technology. When you use these general information and information, Oktaedar d.o.o. does not make conclusions about the subject of the data. This information is needed to: (1) properly deliver the content of our web site, (2) optimize the content of our web site and advertisement, (3) ensure the long-term viability of our IT technologies and web technologies, and (4) law enforcement could provide the information needed to prosecute cyber-attacks. Oktaedar d.o.o. anonymously analyzes collected data and information to increase data protection and security, and ensure the optimal level of protection for personal data we process. Anonymous server log data (logs) are stored separately from all personal data provided by the data bearer.

5. Log in to our web site

The data bearer has the option of registering on the web site of the controller with the entry of the required personal data. The personal information that the subject sends to the controller determines the appropriate input mask used for registration. The personal data entered by the data submitter are collected and stored exclusively for internal use by the controller and for their own purposes. The controller may request transfer to one or more processors (eg, a Service Pack) that also uses personal data for internal purposes attributable to the controller.

By registering to the controller’s Internet site, an IP address is also stored – assigned by the Internet Service Provider (ISP) and which uses the holder’s date and time of registration. Keeping these data going in the background. Data is stored and kept for the purpose of preventing the abuse of our services and, if necessary, to enable investigations of committed offenses. These data are not transmitted to third parties unless there is a statutory obligation to transfer data or if the transfer serves the purpose of criminal prosecution.

Registration of the data bearer, with the voluntary delivery of personal data through the registration form, is carried out in such a way that the data subject (registered user) of the data controller can offer the subject content and / or data services that can only be offered to registered users. The controller part of the personal data of the data bearer is collected and used for the purpose of issuing bids and accounts for the services / products and to the interested data subjects. Registered persons may at any time change the personal information provided during the registration or from the controller requesting their complete deletion from the controller data record. Registered persons may not require modification / deletion of personal data of data holders which the controller, on a statutory basis, must keep and archive (personal data on outgoing customer accounts).

The data controller must at any time upon request of the data bearer provide the data holder with information on which personal data of the holder are stored in the controller. Furthermore, the data controller will correct or delete personal data at the request or indication of the data bearer, provided that there are no statutory storage obligations. Contact for Privacy and Data Protection Controllers and for correction and deletion of personal information: gdpr@oktaedar.hr.

6. Subscription to our Newsletter (newsletter)

On the website of Oktaedar d.o.o. users have the opportunity to subscribe to our newsletters. Forms / forms / screens through which the data bearer subscribes to newsletters determine which personal data is transmitted, as well as when a newsletter is ordered by the controller. Oktaedar d.o.o. regularly notifies its customers and business partners through newsletters about business offers and new content on the web site. The subscriber can receive a newsletter of the company if (1) the data bearer has a valid email address and (2) the registration of the newsletter delivery data has been carried out. The e-mail confirmation of the registration of the data bearer on the bulletin will be sent to the email address registered by the data bearer before the first bulletin (newsletter) is sent out for legal reasons and in the double-entry process. This email confirmation is used to prove whether the owner of an email address as a data bearer agrees to receive a newsletter. When registering for newsletters, we also store the IP address of a computer system that is assigned by the Internet Service Provider (ISP), and is used by the data carrier at the time of registration, as well as the date and time of registration. Collecting this data is necessary to understand (eventually) the misuse of an e-mail address of a data bearer and therefore serves as the purpose of legal guardianship of the controller. Personal information gathered within the newsletter application will be used to send our newsletter. In the event that the data subject’s entry on a newsletter has been created on the basis of purchase and / or order of our services / products, personal data will be used to make sales invoices / bids according to the data bearer. Subscribers to the newsletter may be contacted by us via email if it is necessary to send newsletters or registration of the personal data bearer to the newsletter in the event of technical changes related to the work of the newsletter service. There will be no transfer of personal information collected through third party newsletter services. The data carrier can at any time terminate the subscription to our newsletter. The permission to store personal data provided by the data bearer for the delivery of the newsletter may be terminated at any time. For the purposes of termination of consent, each newsletter contains an appropriate link for deleting the data bearer from the list of recipients of the newsletter. Also, the data carrier may cancel the subscription to the newsletter at any time directly on the web site of the controller via contact form or our personal data protection contact email: gdpr@oktaedar.hr or by communicating the controller to other communication channels .

7. Bulletin (newsletter) / mailing list tracking

Bulletin Oktaedar d.o.o. may contain a so-called tracking pixel. Miniature tracking pixel is embedded in such emails that are sent in HTML format. This gives us a statistical analysis of the success or failure of internet marketing campaigns. Based on the built-in monitoring pixel, Oktaedar d.o.o. it can see if and when the business owner has opened emails and who links the emails to the data subjects. Such personal data collected in the monitoring pixels contained in the newsletter stores and analyzes the controller to optimize the delivery of the newsletter as well as tailor the content of the future newsletters even to the interests of the respondent. These personal information will not be disclosed to third parties. Data subjects at any time have the right to revoke an appropriate separate statement of consent issued through a dual-engagement procedure. Oktaedar d.o.o., the withdrawal from the receipt of the newsletter (unsubscribe) is automatically treated as a revocation of the previously given declarations of consent. After the revocation, the controller will delete the personal data of the data bearer provided that there are no legal obligations to store them.

8. The ability to contact through the web site

Web site Oktaedar d.o.o. contain forms and information that provide quick electronic contact with our company as well as direct communication with us, which also includes the general address of the so-called. E-mail (e-mail address). If the data bearer contacts the controller via e-mail or via a contact form, the personal data submitted by the data carrier are automatically stored. Such personal data that the data carrier voluntarily delivers to the data controller is stored on the data controller holder for processing and / or contacting the bearer. There is no transfer of such personal information to third parties.

9. Subscribe to blog comments on a web site

Data subjects can be subscribed to commenting and receiving commentary notices on internet sites and social network accounts used by Oktaedar d.o.o. In that case, the comments of the commentator (username) can be published with the comment. The commentator agrees to comments after his comments on a particular blog post. If a subject decides to subscribe to this option, the controller will send an automatic email confirmation to verify the duplicate activation process so that the owner of the specified email address chooses for this option. The ability to subscribe to comments can be terminated at any time.

10. Routine delete and blocking of personal data

The data controller processes and stores the personal data of the applicant only for the time necessary to achieve the storage purpose or period allowed by the European legislator or other legislators in the laws that prescribe the protection of personal data. If the purpose of storage is not applicable or if the storage period prescribed by a European legislator or other competent legislator expires, the personal data is routinely blocked or deleted in accordance with legal requirements.

11. Data Holder Rights

a) Right of Confirmation

Each data carrier has the right to request from the controller a confirmation that personal data are processed on it or not. If the data subject wants to use this certificate, he can contact us at any time to our personal data protection contact, gdpr@oktaedar.hr or contact our employees.

b) Right to access

Each data controller has the right to request the controller information on his or her personal data stored with the controller. European directives and regulations provide data holders with access to the following information:
b.1. processing purposes
b.2. categories of personal data concerned
b.3. recipients or categories of recipients to whom personal data will be or will be disclosed, particularly recipients in third countries or international organizations
B.4. where possible, the period for which personal data or, if not possible, the criteria used to establish that period will be stored
B.5. whether there is a right to request for correction or deletion of personal data or the limitation of processing of personal data about the subject matter or objection to such processing
B.6. whether there is a right to file a complaint with the supervisory body
B.7. where personal data was not collected from the data bearer, all available information about their source;
B.8. the existence of automated decision-making, including profiling, referred to in Article 22 §§ 1 and 4 of the GDPR and, at least in such cases, significant information on the logic involved, as well as the significance and anticipated consequences of such processing for the data subject.

Furthermore, the data subject has the right to obtain information on whether personal data are transferred to a third country or to an international organization. If this is the case, the data bearer has the right to be notified of the appropriate security related to the transfer. If the data subject wants to use this right of access, he can contact us at any time on our personal data protection contact, e-mail: gdpr@oktaedar.hr or contact our employees.

c) The right to a correction

The data bearer has the right of the controller to request correction of incorrect personal information about him. Taking into account the processing purposes, the data bearer has the right to fill in incomplete personal information, including an additional statement. If the data subject wants to use this right of correction, he can contact us at any time to our personal data protection contact, e-mail: gdpr@oktaedar.hr or contact our employees.

d) Right to delete (Right to oblivion)

The data bearer has the right of the controller to request the deletion of personal data related to him. The controller is required to delete personal data without unnecessary delays if one of the following reasons is met and provided that processing is not necessary:

d.1. personal data is no longer required for purposes for which they are collected or otherwise processed.
d.2. the holder of the data withdraws consent if the processing is based on Article 6 (1) of the GDPR of the Directive or paragraph (a) of Article 9 paragraph 2 of the GDPR, and there is no other legal basis for processing.
d.3. the data subject is subject to processing in accordance with Article 21 paragraph 1 of the GDPR and there are no overly legitimate grounds for processing, or the complainant is the subject of the complaint in accordance with Article 21 paragraph 2 of the GDPR.
D.4. Personal information is unlawfully processed.
D.5. personal data must be deleted in order to comply with the legal obligation in the Union law or the Member State to which the secretary has been subject.
D.6. personal data were collected in relation to the offer of information society services referred to in Article 8 paragraph 1 of GDPR.

If one of the foregoing reasons applies and the data bearer wishes to request the deletion of personal data stored by Oktaedar doo, he or she may at any time contact our personal data protection contact, e-mail: gdpr@oktaedar.hr or employees of controllers. Oktaedar d.o.o. will consider the request and if the data deletion criteria are met, the personal data of the data bearer will be deleted. The data subject will receive from us a personal data deletion notice or a notification of the inability to delete the personal data, stating reasons why deleting data is not possible.

If the controller has publicly disclosed the personal data of the data bearer and is required to delete personal data in accordance with Article 17 paragraph 1 of the GDPR Directive, the controller, taking into account available technology and implementation costs, takes reasonable steps, including technical measures, to inform other controllers process personal data that the applicant is deleting, about the need to delete such personal information. Employee data controller responsible for personal data will in each case initiate the necessary measures.

e) The right to limit processing

Each data subject shall have the right to obtain a restriction on the processing of his personal data by the controller if:

e.1. the data bearer contested the accuracy of the personal data and asked for the modification and the controller did not make a correction in the prescribed period. ON

e.2. processing is not prescribed by law or processing is illegal and the data bearer is opposed to the deletion of personal data and instead of deleting requires restrictions on their use.

e.3. the controller no longer needs personal data for processing, but the data bearer requests the establishment, execution or defense of the legal requirements, the data bearer has therefore objected to processing under Article 21 para. 1 of the GDPR Decree and is in the process of verifying whether the legitimate reasons for the controller override those data submitter.

If one of the above conditions is met and the data subject wants to request a limit on the processing of personal data stored by Oktaedar doo, he or she can at any time contact our personal data protection contact, e-mail: gdpr @ octaedar. or any other employee of the controller. Oktaedar d.o.o. organized processing limit when the criteria for applying the right to rest are satisfied.

f) Right to Data Transfer

Each data bearer has the right to assign a European legislator to receive personal information about him, delivered to the controller, in a structured, customary and strictly legible form. He or she has the right to transfer this data to another controller without interfering with the controller to which personal data have been provided, provided that the processing is based on the consent referred to in Article 6 (1) (a) GDPR or Article 9 (2) Of the GDPR, or on the basis of the contract referred to in Article 6, paragraph 1, item (b) of the GDPR, and the processing is carried out by automated means, processing is not necessary for the performance of tasks performed in the public interest or in performing the official authority of the controller.

Furthermore, in exercising its right to transfer of data pursuant to Article 20 paragraph 1 of the GDPR, the data subject shall have the right to have personal data transmitted directly from one controller to another, where technically feasible and without adversely affecting rights and freedoms of others.

In order to gain access to the data transferability, the data bearer can at any time contact the data protection officer designated by Oktaedar d.o.o. or another employee.

g) right to complaint

Each data subject has the right to object, for reasons related to his or her particular situation, to the processing of personal data pertaining to him based on points (e) or Article 6 paragraph 1 of the GDPR. This also applies to profiling based on these provisions.

Oktaedar d.o.o. will no longer process personal information in the event of an objection unless we can demonstrate irrefutable legitimate grounds for processing that override the data subjects’ interests, rights and freedoms, or to determine, enforce or defend the legal requirements. If Oktaedar d.o.o. handles personal data for the purpose of direct marketing, the data subject has the right to object at any time to processing personal information about him or his person for such marketing. This refers to profiling to the extent that it is associated with such direct marketing. If the data carrier breaches Oktaedar d.o.o. to processing for the purpose of direct marketing, Oktaedar d.o.o. will no longer process personal information for these purposes. In addition, the data subject has the right, for reasons related to his or her specific situation, to object to the processing of personal data about him Oktaedar d.o.o. for scientific or historical purposes of research or for statistical purposes in accordance with Article 89 (1) GDPR, unless the processing is necessary for the performance of tasks carried out for reasons of public interest. In order to exercise the right of complaint, the data subject can directly contact the Data Protection Officer from Oktaedar d.o.o. or another employee. In addition, the data bearer is free in the context of the use of information society services, and regardless of Directive 2002/58, to use its right to complain by automatic means using technical specifications.

h) automated individual decision-making, including profiling

Each data bearer has the right to assign a European legislator not to be subjected to a decision that is based solely on automated processing, including profiling, which has or has a significant effect on it in relation to it, as long as the decision (1) is not necessary for or (2) is not authorized by the law of the Union or the Member State to which it is subject and which also provides for appropriate measures to protect the rights and freedoms and legitimate interests of the holder of the case, or (3) is based on the explicit consent of the data subject.

If a decision (1) is necessary for concluding or executing a contract between the data bearer and data controller, or (2) is based on the explicit consent of the data subject, Oktaedar d.o.o. will implement appropriate measures to protect the rights and freedoms and the legitimate interests of the holders, at least the right to receive human intervention by the controller, to express their views and challenge the decision.

If the data subject wishes to exercise rights related to automated individual decision-making, he may at any time contact our open contact for data protection related to: gdpr@oktaedar.hr and / or the employee of the controller.

i) the right to withdraw consent to the protection of data

Each data bearer has the right to allow European lawmakers to withdraw their consent to the processing of their personal data at any time.

f) if the data subject wishes to exercise the right of withdrawal of consent

He or she may at any time directly contact our Data Protection Contact at gdpr@oktaedar.hr and / or the employee of the controller.

12. Terms of Use Data Protection and Use of Facebook

On its web site the controller can integrate or have integrated Facebook company components. Facebook is a social network.

The Social Network is the place for social meetings on the Internet, a network community that usually allows users to communicate with each other and interact in the virtual space. The social network can serve as a platform for sharing opinions and experiences, or enabling the internet to provide personal or business information. Facebook allows social network users to include private profiles, upload photos, and network through friend requests.

Operative company Facebook is Facebook, Inc., 1 Hacker Way, Menlo Park, CA 94025, United States. If a person lives outside of the United States or Canada, the controller is Facebook Ireland Ltd., 4th Grand Canal, Grand Canal port, Dublin 2, Ireland.

Each call to one of the individual pages of this web site, managed by the controller and integrating the Facebook component (Facebook plug-in), the web browser on the information system of the data bearer is automatically requested to download the corresponding Facebook Facebook component via the Facebook component. View all Facebook plug-ins can be accessed at https://developers.facebook.com/docs/plugins/. During this technical process, Facebook is familiar with the fact that a particular sub-site of our website was visited by the data bearer.

If a person is logged on Facebook at the same time, Facebook detects any access by the data bearer to our web site and records the activity data on our site for the entire duration of the data bearer on our website. This data is collected through a Facebook component and is linked to the corresponding Facebook account holder. If a user clicks on one of the Facebook buttons integrated into our website, eg the “I like” button or if a subject submits a comment, then Facebook matches this data with the personal Facebook account of the data bearer and saves the personal information.

Facebook always receives, via a Facebook component, information about visiting our website by the data bearer, whenever the person is logging in simultaneously on Facebook during a call to our website. This happens regardless of whether the user is sending data to a Facebook component or not. If such data transfer on Facebook is not desirable for the data provider, he or she can prevent it from logging out of Facebook accounts before making a call to our website.

The Data Protection Policy published by Facebook, available at https://facebook.com/about/privacy/, provides information on collecting, processing and using personal data from Facebook. In addition, it explains what settings Facebook offers to protect the privacy of data items. In addition, different configuration options are available to allow removal of data transfer to Facebook, Facebook Blocker of Webgraph Provider, which can be obtained under http://webgraph.com/resources/facebookblocker/. This application can be used by the data bearer to remove data transfer on Facebook.

13. Terms of Use for Data Protection and Use of Google AdSense

On your website, the controller can integrate or have an integrated Google AdSense component. Google AdSense is an online service that allows you to set up advertising on third-party websites. Google AdSense is based on an algorithm that chooses ads displayed on third-party web pages to match the content of a third-party site. Google AdSense allows the targeting of an Internet user and is carried out by generating individual user profiles.
The Google AdSense component company is Alphabet Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, United States.
The purpose of the Google AdSense component is to integrate ads on our website. Google AdSense puts a cookie on the subject’s information technology. The cookie definition is explained in one of the previous chapters of this document. By setting the Alphabet Inc. cookie allows us to analyze the use of our website. Each visit to one of the individual websites managed by the controller and in which the Google AdSense component is integrated, the data browser information server on the Internet will automatically send data through the Google AdSense component for online advertising and settlement alerts to Alphabet Inc. During this technical process, Alphabet Inc. gains knowledge of personal information, such as the data bearer IP address used by Alphabet Inc. to understand the origin of visitors and clicks and then create commissions.
The data carrier can, as noted above, at any time prevent cookies from being placed through our website by matching the web browser used, thereby permanently denying cookies. Such adaptation to an Internet browser would also prevent Alphabet Inc from setting up a cookie on the carrier information technology information. In addition, cookies already used by Alphabet Inc. can be deleted at any time through web browsers or other software programs.
Furthermore, Google AdSense uses so-called tracking pixels. The tracking pixel is a miniature image that is embedded in the web site to allow logging and logging analysis by which statistical analysis can be performed. Based on the built-in tracking pixels, Alphabet Inc. it can determine whether and when the web site opened a person and related to it. Tracking pixels are used, among other things, to analyze the flow of visitors to the web site.
Through Google AdSense personal information and information – which also includes the IP address and needed to collect and calculate the displayed ads – are transmitted to Alphabet Inc. in the United States. These personal information will be stored and processed in the United States. Alphabet Inc. may disclose collected personal data through this technical process to third parties. Google AdSense is additionally explained under the following link https://www.google.com/intl/en/adsense/start/

14. Privacy Policy for Application and Use of Google Analytics (with anonymization function)

On your website, the controller can integrate or have an integrated Google Analytics component (with anonymity function). Google Analytics collects and analyzes site visitor behavior information. The web analytics service collects, inter alia, information about the site that the person came from (referrer), which subpages were visited, or how often and by what time viewed the subpages. Web analytics is mainly used to optimize a website and to conduct cost analysis and use of internet advertising.
The Google Analytics component operator is Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, United States.
For web analytics through Google Analytics, the controller uses the “_gat” application. _anonymizeIp “. With this application, Google shortens the IP address of the Internet data bearer and is anonymous when accessing our website from a member state of the European Union or other contracting party to the European Economic Area Agreement.
The purpose of the Google Analytics component is to analyze the traffic on our website. Google collects collected data and information, among other things, to evaluate the use of our website and provide online reports that display activities on our sites and provide other services related to the use of our web site for us.
Google Analytics puts a cookie on the information technology system of the respondent. The cookie definition is explained in one of the predecessor points in the document. By placing a cookie, Google can analyze the use of our web site. Each call to one of the individual pages of this web site, managed by the controller and with which the integrated Google Analytics component is integrated, the web browser on the data carrier’s information system will automatically send data via the Google Analytics Component for advertising purposes on the network. During this technical process, Google acquires knowledge of personal information, such as the IP address of the data carrier, which, inter alia, serves to understand the origin of the visitor and the clicks, and subsequently to make the settlement.
The cookie is used to store personal information, such as access time, the place where access was made and the frequency of visits to our web sites by the data bearer. Every visit on our Internet site, such personal information, including the Internet access IP address used by the data carrier, will be transmitted to Google in the United States. These personal information is stored by Google in the United States. Google may transfer this personal information collected through a technical process to third parties.
The data carrier can, as stated above, at any time prevent cookies from being placed through our web site by matching the web browser used, thereby permanently denying cookies. Such adaptation to the web browser used would also prevent Google Analytics from setting up a cookie on the subject’s information technology. In addition, cookies that Google Analytics already use can be deleted at any time through web browsers or other software programs.
In addition, the data bearer has the ability to complain about the data collection generated by Google Analytics, which relates to the use of this site, as well as processing this data by Google and the ability to prevent the described transfer of personal data. For this purpose, the data carrier must download an additional browser under https://tools.google.com/dlpage/gaoptout and install it. This browser add-on speaks Google Analytics through JavaScript, so that all data and information about website visits is not transmitted to Google Analytics. Installing browser add-ons is considered Google’s complaint. If the carrier information system is later deleted, formatted, or newly installed, the data carrier must reinstall the browser plugins to disable Google Analytics. If an additional browser has been uninstalled by the data bearer or any other person attributable or disabled, it is possible to reinstall or re-enable browser plug-ins.
Additional information and applicable Google data protection provisions can be downloaded at https://www.google.com/intl/en/policies/privacy/ and http://www.google.com/analytics/terms/us. htnl. Google Analytics is additionally explained in the following link https://www.google.com/analytics/.

15. Terms of Service Data Protection and Use

On your site, the controller can integrate or have an integrated Google+ button component. Google+ is a so-called social network. The Social Network is a social gathering place on the Internet, a network community that usually allows users to interact and interact with the virtual space. The social network can serve as a platform for sharing opinions and experiences, or enabling the internet to provide personal or business information. Google+ allows social networking users to create private profiles, upload photos, and network through friends requests.
The Google+ operating company is Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, UNITED STATES.
With each call to one of the individual pages of this site, managed by the controller and integrated with the Google+ button, the web browser on the data carrier’s information system automatically retrieves the corresponding Google+ Google button through the appropriate Google+ button component. During this technical process, Google is familiar with the fact that a specific subsite of our site was visited by the data bearer. More detailed information about Google+ is available at https://developers.google.com/+/.
If a person is signed in to Google+ at the same time, Google detects any access to the data bearer on our web site and records the activity on our site for the entire duration of the data bearer on our web site. This data is collected through the Google+ button and Google matches this with the relevant Google+ account data data link.
If a user clicks on the Google+ button that is integrated into our website and thus provides a Google+ recommendation 1, Google assigns them to the personal Google+ account of the data bearer and stores the personal information. Google stores the Google+ referral to the data bearer, making it accessible to the public in accordance with the terms and conditions accepted by the data bearer in that respect. Thereafter, the Google+ recommendation 1 brought together by the data carrier on this website along with other personal information, such as the name of the Google+ account used by the data carrier and stored photos, is stored and processed on other Google services, such as the Google search engine search engine, Google Accounts Provider, or other places, such as web sites, or ads. Google can also associate this site’s visit with other personal information stored on Google. Google further records these personal information with the aim of improving or optimizing various Google services. Using the Google+ button, Google receives information about who visitors visited our site, if the data carrier at the time of calling to our website is signed in to Google+. If a data submitter does not want to transfer personal information to Google, he can prevent such a transfer by logging out of his Google+ account before calling our website. More information and information about how to protect Google data can be found at https://www.google.com/intl/en/policies/privacy/. You can find more Google references for the Google+ 1 button at https://developers.google.com/+/web/buttons-policy.

16. Terms of Use for Data Protection and Use of Google AdWords

In this website, the controller is integrated with Google AdWords. Google AdWords is an Internet advertising service that allows the advertiser to place ads on Google search engine results and the Google advertising network. Google AdWords allows the advertiser to pre-define certain keywords by which the ad is only displayed on Google’s search results when a user uses a search engine to find keyword-related search results. In the Google Advertising Network, ads are distributed on relevant web pages using an automatic algorithm, taking into account pre-defined keywords. The Google AdWords operating company is Google Inc., 1600 Pkwy amphitheater, Mountain View, CA 94043-1351, UNITED STATES. The purpose of Google AdWords is to promote our website by including relevant advertising on third-party websites and search engine results by Google search engine and advertising insertion third party to our website.
If the data handler reaches our website through Google ads, the Google Data Conversion cookie is sent to the information technology information system. The cookie definition is explained in the previous paragraphs of the document. The conversion cookie is lost after 30 days and is not used to identify the data bearer. If the cookie does not expire, the conversion cookie is used to check for specific subpages, such as a shopping cart from the online store system, on our website. Through the conversion cookie, Google and the controller can understand whether the person who came to the AdWords ads on our site generated sales, or performed or canceled the sale of the goods.
Google uses the data and information collected by using the conversion cookie to create a statistics visit to our website. These visitor statistics are used to determine the total number of users served through AdWords ads to determine the success or failure of each AdWords ad and optimize AdWords ads in the future. Neither our company nor any other Google AdWords advertisers receive information from Google that could identify the data.
The Conversion cookie stores personal information, such as the web site visited by the data bearer. Every time we visit our web site, personal information, including the IP address of the Internet access that the data carrier uses, is transmitted to Google in the United States. These personal information is stored by Google in the United States. Google may transfer this personal information collected through a technical process to third parties.
The data carrier can at any time prevent cookies from being placed on our web site, as indicated above, using the appropriate Internet browser settings and permanently denying cookies. This setting of the Internet browser used would also prevent Google from putting a conversion cookie on the subject’s information technology. In addition, the cookie set up by Google AdWords can be deleted at any time through an Internet browser or other software program.
the data bearer has the ability to complain to an ad based on Google’s interest. Therefore, the data carrier must access each of the browsers using the www.google.de/settings/ads link and set the desired preferences.
Further information and applicable Google Privacy Terms can be downloaded at https://www.google.com/intl/en/policies/privacy/.

17. Provisions on the protection of data on the use and use of LinkedIn

The Controller can integrate the LinkedIn Corporation components on their web site. LinkedIn is a web-based social network that allows users with existing business contacts to connect and create new business contacts. More than 400 million registered people in more than 200 countries use LinkedIn. LinkedIn is currently the largest business contact platform and one of the most visited websites in the world.
The LinkedIn operating company is LinkedIn Corporation, 2029 Stierlin Court Mountain View, CA 94043, United States. For privacy issues outside UNITED STATES LinkedIn Ireland, Privacy Policy, Wilton Plaza, Wilton Place, Dublin 2, Ireland, is responsible.
Each call to one of the individual pages of this web site, managed by the controller and in which the LinkedIn component (LinkedIn plug-in) is integrated, the Internet browser on the information system of the subject matter automatically requests the download of the corresponding LinkedIn LinkedIn component. More information about the LinkedIn plug-in can be found here: https://developer.linkedin.com/plugins. During this technical process, LinkedIn acquires knowledge of which website is visited by the data bearer.
If a person is registered at LinkedIn at the same time, LinkedIn detects any access by the data bearer to our web site, and for the entire duration of the data bearer’s presence on our website, records the activity data of the data bearer on our site. This information is collected through the LinkedIn component and is linked to the appropriate LinkedIn account of the data bearer. If a user clicks on one of the links linked to LinkedIn integrated into our website, LinkedIn assigns this data to the personal LinkedIn user data account and saves personal information.
LinkedIn first information via LinkedIn component provided the data bearer is logged at LinkedIn at the time of access to our website. This happens regardless of whether a person clicks the LinkedIn button or not. If such data transfer to LinkedIn is not desirable for the data bearer, he or she can prevent it by logging out of your LinkedIn account before visiting (visiting) our web site.
LinkedIn at https://www.linkedin.com/psettings/guest-controls provides the ability to unsubscribe to emails, SMS messages, and targeted ads, as well as the ability to manage ad settings. LinkedIn also uses affiliated companies such as Eire, Google Analytics, BlueKai, DoubleClick, Nielsen, Comscore, Eloqua and Lotam. Setting such cookies can be rejected under https://www.linkedin.com/legal/cookie-policy. The applicable LinkedIn Privacy Policy is available at https://www.linkedin.com/legal/privacy-policy. LinkedIn Cookie Policy is available at https://www.linkedin.com/legal/cookie-policy.

18. Provisions on the protection of data on the use and use of Twitter

On this site, the controller has integrated Twitter components. Twitter is a multi-lingual, publicly available microblogging service where users can post and distribute so-called tweets, such as short messages, which are limited to 140 characters. These short messages are available to everyone, including those who are not logged on to Twitter. Tweets are also shown to so-called followers of the appropriate user. Followers are other Twitter users who follow the tweete users. Furthermore, Twitter allows you to address a wide audience through hashtags, links, or retweet.
The Twitter operating company is Twitter, Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, UNITED STATES.
Each call to one of the individual pages of this web site, managed by the controller and with the Twitter component integrated (Twitter button), automatically searches for an Internet browser on the data item information system to download the display of the appropriate Twitter component of Twitter. Additional information on tires at Twitter is available at https://about.twitter.com/de/resources/buttons. During this technical process, Twitter gains knowledge of what the specific site of our site visited the subject of the data. The purpose of integrating a Twitter component is to transfer the content of our web pages to the users of this social network.
If a person logs on to Twitter at the same time, Twitter detects any access to the data bearer on our web site and records the activity data of the data bearer on our site on our web site for the entire duration of the data stay. Information is collected through a Twitter component associated with the respective Twitter account holder. If the data bearer clicks on one of the Twitter buttons that are integrated into our website, Twitter assigns this data to the personal Twitter account of the data bearer and stores the personal information. The third user receives information via the Twitter component of the data provider who visited our site, provided that the data bearer was reported on Twitter at the time of visit to our website. This happens regardless of whether a person clicks on the Twitter component or not. If such data transfer to Twitter is not desirable for the data carrier, he or she can prevent it by logging out of your Twitter account before visiting our web site. Applicable provisions on data protection on Twitter can be accessed at https://twitter.com/privacy?lang=en.

19. Legal basis for processing

Article 6 (1) of the GDPR Directive is the legal basis for the processing of personal data by the Oktaedar d.o.o. for which Oktedar d.o.o. got a consent for a certain purpose of processing.
If the processing of personal data is necessary for the performance of contractual obligations and transactions or the processing of personal data is part of the actions necessary for the delivery of goods or provision of any other service, processing is based on Article 6 (6) paragraph (1) item (b) GDPR Directive. The same applies to the processing of personal data necessary for the execution of pre-contractual measures (eg in the case of inquiries about our products or services).
When our company is subject to the statutory obligation to process personal data to meet tax obligations and other legally prescribed processing, processing of personal data is based on Article 6 (6) Paragraph (1) item (c) of the GDPR Directive.
In rare cases, personal data processing may be necessary to protect the vital interests of data carriers or other physical persons. This would, for example, be the case if a visitor was injured in our company and his name, age, health insurance information or other vital information should be forwarded to a doctor, hospital or other third party. Then the processing will be based on Article (6) Paragraph (1) of Section (d) of the GDPR Directive.
Processing of personal data may also be based on Article (6) paragraph (1) item (f) of the GDPR Directive. This legal basis is used for the processing of personal data in cases not covered by any of the foregoing legal bases, if the processing is necessary for the legitimate interests of our company or a third party, unless such interests are in conflict with interests or fundamental rights and the freedoms of data holders. Descriptive processing is permitted since the European and the legislator specifically mentioned (It is considered that legitimate interest can be assumed if the client controller data bearer, recital 47, statement 2 of the GDPR directive).

20. Legitimate interests performed by a controller or a third party

When the processing of personal data is based on Article (6) Paragraph (1) item (f) of the GDPR Directive, our legitimate interest is to do business for the benefit of all our employees and owners.

21. Period for which personal data will be stored

The criteria used by the controller to determine the storage period of personal data are complied with the legally prescribed deadlines for the storage of particular categories of personal data. After the expiration of statutory deadlines for keeping personal data, the corresponding data is routinely deleted from the data bearer. Certain personal information may be included in historical backups that include a combination of data for which the statutory deadline for data and data to be retained remains to be maintained. In such cases personal data will not be deleted from the backup.

22. Provision of personal data due to statutory or contractual obligations

Oktaedar d.o.o. may ask the data subject to request information about the personal data necessary to regulate the regulatory reporting obligations of the controller to the state administration bodies and / or request the information on the personal data necessary for the establishment of business cooperation and / or delivery of services and products by Oktaedar d.o.o. according to the subject of the data. Obligation of the data bearer is Oktaedar d.o.o. submit required set of data. the data bearer has the potential consequences that may arise from incorrect data supplied by the data subject to Oktaedar d.o.o.
The need for a certain set of personal data may be partially prescribed by law (eg tax provisions) or may also arise from contractual provisions (eg contract partner information). Sometimes it may be necessary to conclude a contract that provides us with personal information, and then we have to process them. For example, the data bearer is required to provide us with personal information when our company signs a contract with it. Failure to comply with such personal data would result in the inability to conclude a contract with the data subject. Before the personal data are provided by the data bearer, the data bearer must contact our data protection officer. Our Data Protection Officer explains to the Data Holder whether the provision of personal data is prescribed by law or contract or is required to conclude a contract, whether there is a requirement to provide personal data and the consequences of non-execution of personal data.

23. The existence of automated decision-making

As a responsible company, we do not use automatic decision-making or profiling.