Personal Data Protection Statement
Update date: December 20th, 2022
A.T.I. L.t.d. Travel Agency, Zadarska 15, Pula, Croatia recognizes and appreciates Your right to the confidentiality of data and undertakes to preserve the security of the data of users of its services.
All personal information You provide us is used exclusively in accordance with this Statement, that is to say, the General Data Protection Regulation (EU) 2016/679 and other applicable regulations.
This Statement clarifies the procedures for collecting and processing Your personal information.
Collection of personal data
Information You provide includes personal information that You have voluntarily provided by phone, e-mail or verbally, and when making a travel contract, a package deal, a related travel arrangement, insurance, use of accommodation, when buying tickets, excursions, bus tickets, airline tickets, boat tickets, return of money in the case of travel cancellation, visa obtaining process for the realization of the trip, sending various inquiries, participation in researches and surveys using our website, log in to our newsletter, complaints about the service and more.
Information we collect about You
We collect personal information about You that You give to us as a user of the service or personal data of the person who contracts the service on Your behalf and as the contractor of the service.
Information You provide may include:
• First and last name
• Address (street, house number, city)
• Date, place and country of birth
• Number, date, place of issue and the validity period of the ID card
• Passport number and validity date
• The telephone/mobile phone number of the service user or parent / legal representative for the juveniles
• E-mail address
• Data on disability, special needs, pregnancy
• Type, number, and credit card validity date
• Bank account number and bank name
• Name and surname of a family member
• Retirement status
• Student status
In connection with each visit to our website we can automatically collect this information:
• Cookie Identification Sessions
• Website visitor information via Google Analytics
When using our site, we collect technical information about the devices You use to access our site, including an Internet and/or mobile connection (including IP address), mobile device type information, operating system, browser type or other software, hardware specifications, or other technical information provided by the browser. These are all technical information about our users and their actions and forms, which do not provide personal information.
Information we receive from other sources
We collect Your personal information when You visit one of the websites we manage. We also collaborate with third parties from whom we can receive information about You, for example, with business partners or agencies for the purpose of selling services.
Sensitive personal information
Your personal information regarding disability or health information is collected solely for the purpose of the contract. We can look for sensitive personal information when arranging accommodation in health centers and rehabilitation centers, cruise sales or airline tickets, whereby some shipping and airline companies condition health information. We may also collect other personal information of a particular category that arises from the organization's specificity and the realization of the journey.
Cookies are a small set of information sent from the server at www.ati.hr to the user's computer and serve as an anonymous identifier. Cookies are not used to access user data or to track user activity when leaving our website.
These cookies are essential for web service activity to allow unobstructed work and access. Without these cookies, some parts of the site will not be available.
These cookies are used for faster access to specific parts of the site.
We use Google Analytics to collect information about how visitors use our site. We are able to keep track of which links from our websites are most commonly opened, which device You access to our website and similar. We collect this for the purpose of optimizing and improving the service, and facilitating Your work and getting information about the visit. Usage information and IP address are sent to Google Inc. through the Google Analytics tool. To stop tracking Your actions from Google Analytics, visit http://tools.google.com/dlpage/gaoptout. You can get more information about Google Analytics at https://www.google.com/analytics/. Cookies can expire at the end of a browser session and are deleted after the internet browser closes, this is temporary cookies ("session cookies"). Cookies can last and can be stored on Your hard drive and remain there even after You close Your web browser, these are persistent cookies.
Our website contains links to other websites we do not manage. We therefore warn and please the users that we can not be held responsible for the privacy of these websites. Such sites contain their own privacy statements and need to be read.
Use of personal data and legal basis for such treatment
Mentioned personal data are usually necessary to provide the quality information, product or service You have requested. In those cases where personal information is not necessary, we will notify You of this and request Your consent for their collection and processing. We will notify You about the consequences for our ability to provide our service if You do not agree, as well.
We will process Your personal information only if one of the following conditions is met:
• to have Your permission to process Your personal information
• that processing is necessary for the realization of the contract with You
• we have a legal obligation to process Your personal information
• processing is necessary to protect Your key interests or the interests of other physical persons
• that processing is necessary for the performance of public interest tasks
• there are legitimate reasons, both of us or of third parties, except where there are stronger interests or fundamental rights and freedoms that require the protection of personal data
With user consent given to us, You accept for processing of personal data and it is voluntary, in writing, in an easily understandable, clear and simple language, clearly indicated for the purpose and without unfair terms. In the case of personal data processing of a child below the age of 16, the user consent in the manner described above is provided by the parent or legal representative of the child.
We advise that all personal data processing may only be used by people who are 16 years of age. The use of the system and the tools and the resulting data processing of users below this age limit are prohibited without the proper user consent of the parent or legal representative. If, however, such data is processed, we will discontinue it as soon as we know it and the data of such a person will be deleted.
Forwarding Your personal information
Your personal data we collect for the purpose of realizing the contract or for legal reasons, forwarded to the following categories of recipients: airline companies, shipping companies and other carriers, hotels, other hotel providers, business partners whose programs we sell, insurance companies, travel/tourist guides, congress organizers, law enforcement bodies, supervisory authorities, and others.
Finally, we may disclose Your information to any other person you have been asked to disclose to them or if You have consented to the disclosure.
Retention of data
We will not retain Your information longer than is necessary to fulfill the purpose for which we collect this personal information unless this is our legal obligation. We will keep Your personal information for a period of up to 11 years, counting from the date of receipt of the personal data, unless the statutory regulations foresee a long period of custody.
Protection of information
We apply the appropriate administrative, technical, and organizational protection measures to protect Your personal information that is under our control from unauthorized or unlegal access, collection, use, disclosure, copying, redrawing or making available. All the information You give to us is kept on secure servers. We educate Your employees regarding the protection of personal data and procedures and allow only authorized employees access to Your personal information. We also take the necessary steps to ensure that any service provider involved in the processing of Your personal information on our behalf undertakes technical and organizational measures to protect such personal information.
International transfer of Your personal data to third countries outside the EEA may be made only for the realization of the travel contract, a package tour or related travel arrangement or requested services. However, we undertake appropriate protection by requiring that Your personal data remain protected in accordance with this Statement.
Update of this Personal Data Protection Statement
From time to time, we can update this Personal Data Protection Statement in response to changes in laws, technology or business development. When we update the Statement, we will take appropriate steps to notify You, in accordance to the importance of the change we have made. You can check the last updated date at the top of this Statement.
Your rights of data protection
You have the following data protection rights: If you want to access, correct, update, or request the deletion of Your personal data, or object to the processing of Your personal information, ask us to restrict the processing of Your personal data or require the transferability of your personal information, you can do it at any time through the contact of our Personal Data Protection Officer: firstname.lastname@example.org
If we collect and process Your personal information with Your user consent, You can withdraw it at any time. Your withdrawal of consent will not affect the legitimacy of each processing we have taken before Your withdrawal, nor will it have an impact on the processing of Your personal data carried out in accordance with the legal basis of processing, other than those to which You have agreed.
We will respond to all requests that come from our customers, with the desire to protect the rights of our service users to protect their data, in accordance with the applicable legislation on data protection that is in use.
Information on this Personal Data Protection Statement
If You have any questions or complaints about this Privacy Statement or the use of Your personal information, You can contact us:
• via e-mail at: email@example.com
• in written form via regular mail at the address of the head office: A.T.I. d.o.o., Zadarska 15, 52100 Pula, Croatia
A complaint about our collection and use of your personal information can be sent to the supervisory body responsible for monitoring the implementation of regulations on data protection in the Republic of Croatia: Croatian Personal Data Protection Agency , Martićeva 14, HR - 10 000 Zagreb, Tel. 00385 (0) 1 4609-000, Fax. 00385 (0) 1 4609-099, e-mail: firstname.lastname@example.org