Privacy policy

Data Controller: Golubica Parking d.o.o.

OIB: 20459614645
Address: Krapanjska 12, Zagreb (Office: Heinzelova 60, Zagreb)
Tel.: +385 99 2345 670
E-mail: info@parking.hr

Categories of Personal Data Collected:

Category of Data SubjectsCategories of Personal DataPurpose and Legal Basis
Retail CustomersName, surname, email, contact phone, video surveillance recordingsInvoicing, customer communication / VAT Law and related regulations
Wholesale CustomersName and surname of authorized representative, email, contact phone, video surveillance recordingsContracting business relationships, invoicing, customer communication / VAT Law and related regulations
EmployeesName, surname, gender, address, OIB, phone, email, and other personal data necessary for employment contracts, and pension and health insurance registrationEmployment contract execution / Labor Law, Contributions Act, and other employment-related regulations
Suppliers and Business PartnersName and surname of representative, phone, emailEstablishing and fulfilling contractual obligations (ordering goods and services), partner communication / Obligations Act

Legal Bases for Data Collection:

  1. Your Consent, which you may withdraw at any time by emailing info@parking.hr.
  2. Contractual Obligation, as data processing is necessary to provide the company’s services to you.
  3. Legal and Regulatory Requirements, as data processing is necessary to comply with legal obligations.
  4. Vital Interests, as data processing is essential to protect the vital interests of the data subject or another individual.
  5. Public Interest or Official Authority, when processing is necessary for the performance of a task carried out in the public interest or under official authority of the controller.
  6. Legitimate Interests, when processing is necessary for the legitimate interests pursued by the controller or a third party.

Data Sharing: We may share your personal data with:

  • Public authorities and other recipients when required by relevant regulations, to the extent necessary to achieve the defined purpose.
  • Providers of IT solutions, accounting services, and other organizational partners with whom we have contracts detailing data processing procedures. These partners cannot process or share your data with third parties without our instruction.

Your personal data will not be shared with other third parties.

Data Retention Period: We process your personal data until the purpose of data processing is fulfilled. Once this purpose is completed, your personal data will no longer be used but will remain in our storage system for the period required by legal and internal company regulations.

Cookie Usage: Our official website, www.parking.hr, uses cookies—text files placed on the user’s computer by the server displaying the website via the Internet service provider (ISP). Cookies are created when the browser loads a visited website, sending data back to the server each time the user returns.

IP addresses are stored for security reasons and are deleted after one month.

Organizational and Technical Data Protection Measures: We collect and process personal data in a manner that ensures appropriate security and confidentiality, implementing data protection principles, reducing the data amount, limiting the scope of processing, and controlling the retention period and accessibility. We adhere to strict security protocols to mitigate the risks of data destruction, unauthorized disclosure, and access violations.

Personal data is stored in secure environments with limited physical access. We employ firewalls, strong passwords, antivirus software, and other technical measures. Only authorized individuals have access to personal data, as regulated by internal policies. Regular staff training is conducted to raise awareness of data protection.

We take all appropriate technical and organizational measures to prevent accidental or unlawful destruction, loss, alteration, unauthorized use, disclosure, inspection, or access.

All employees of Golubica Parking d.o.o. are bound by a signed Confidentiality Statement.

Your Rights as a Data Subject:

  • Right to Withdraw Consent – You may withdraw consent at any time for a particular processing purpose, after which your data collected under that consent will no longer be used for the specified purpose.
  • Right to Object – You have the right to object to the processing of your personal data based on your specific situation. Upon objection, we will no longer process your data unless compelling legitimate reasons outweigh your interests, rights, and freedoms or if processing is for legal claims.
  • Right to Restriction of Processing – You may request a restriction of processing if you contest the data’s accuracy, consider the processing unlawful, or when an objection is lodged and verification is pending.
  • Right to Erasure (“Right to be Forgotten”) – You may request the erasure of your personal data if:
    • The data is no longer necessary for its collected purpose.
    • You withdraw consent, and there is no other legal basis for processing.
    • You object to processing, and there is a prevailing legitimate reason for erasure.
    • Data has been unlawfully processed.
    • Erasure is necessary to comply with legal obligations.
  • Right of Access – You have the right to confirm whether your data is being processed, access your personal data, and obtain information on the purpose, categories, potential recipients, storage duration, etc.
  • Right to Rectification – You have the right to request the correction of inaccurate personal data and, in some cases, an obligation to update your data.
  • Right to Data Portability – You have the right to obtain and transfer your personal data to another data controller.

We ensure the security of personal data by adhering to protection principles, reducing data volume, limiting processing scope and retention periods, and maintaining accessibility.