Privacy policy
How Poliklinika Jakić collects, uses, retains and protects your personal data, and the rights you have under the General Data Protection Regulation (GDPR).
Introductory provisions
In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (Official Journal of the European Union L 119, 4.5.2016, p. 1, hereinafter: the General Data Protection Regulation), which has been in full application since 25 May 2018 in the Republic of Croatia and all Member States of the European Union, as well as the Act on the Implementation of the General Data Protection Regulation (Official Gazette no. 42/18), the Labour Act (Official Gazette NN 93/14 and 127/17), the Occupational Health and Safety Act (Official Gazette NN 71/14, 118/14 and 154/14), and in accordance with the legal framework for the protection of personal data in the Republic of Croatia and the European Union and the best European practice, POLIKLINIKA Dr. Jelena Jakić d.o.o., entered in the court register at Trgovački sud u Zagrebu (hereinafter: Poliklinika Jakić), as the controller of personal data of users of its services and customers, has drawn up this Personal Data Privacy Policy.
The Privacy Policy is a unilaterally binding legal act based on the fundamental principles of personal data processing, which governs which user data is collected, how such data is processed, and for what purposes it is used. The Policy also informs service users and/or customers of their rights in connection with the collection and further processing of personal data.
The Policy is based on the following processing principles: the principle of lawfulness, transparency and best practice, the principle of limited processing and data minimisation, the principle of accuracy and completeness of personal data, the principle of storage limitation, the principle of integrity and confidentiality, the principle of accountability, the principle of trust and fair processing, the principle of purpose (purpose of processing), and the principle of processing in an unnamed (anonymised) form.
At any time, users may submit a request to amend, supplement and/or update the data relating to them, as well as withdraw any consent given and request that further processing of personal data be discontinued.
Data controller and contact
The party responsible for processing personal data is the data controller, whose contact details regarding personal data protection are listed below:
Methods of data collection
We collect personal data in three main ways:
Directly from users themselves, whereby users provide the data to Poliklinika Jakić as the data controller to the extent that is essential for the provision of the relevant services, sales, or any other connection between the user and poliklinika-jakic.hr. The customer – user may provide the data verbally or in writing at the head office, by e-mail sent to one of the e-mail addresses, or via the poliklinika-jakic.hr website.
From other publicly available sources of data on companies and natural persons within companies, on internet portals, telephone directories containing such data and other publicly available services, used only for the purposes for which they were initially collected.
Automatically when you visit the internet (web) site, applications and portal, where the data in question is data associated with network identifiers (internet protocol addresses and cookie identifiers, such as Google Analytics for tracking user and/or customer interaction).
The network identifiers in question may leave traces which, in combination with other identifiers and information provided by internet service servers, may be used to identify the user and/or customer. Poliklinika Jakić continuously takes care to collect only the necessary scope of personal data required to achieve the purpose laid down by law.
Types of personal data collected
The quantity, or scope, of personal data that Poliklinika Jakić collects depends on the type of service we provide to our users and/or customers, as well as on the legal basis on which we collect the data.
The data most commonly provided by the Customer – User includes:
- full name;
- address;
- personal identification number (OIB);
- telephone and/or mobile contact number;
- e-mail contact details;
- identity card details;
- bank account and card number details for the purpose of settling payment obligations.
Purpose of collection and further processing
Poliklinika Jakić collects and further processes the personal data of users and/or customers for the purpose of concluding and performing contracts, completing purchases or service interventions on equipment, delivering ordered products, providing advice and assistance with the use of products, providing appropriate additional and/or extended warranties for products, resolving complaints from users and/or customers, and other actions related to the conclusion and performance of contracts in accordance with the applicable regulations.
Processing of personal data for the above-mentioned purposes constitutes a necessity and a legal basis for concluding the contract. Should the user and/or customer refuse to provide essential data, Poliklinika Jakić will not be able to conclude a contract and/or undertake certain actions related to the performance of the concluded contract.
Data on prospective users
Poliklinika Jakić also collects data on prospective users and/or customers of its services and/or products. This data includes basic information (full name, e-mail address), as well as the interests of prospective users and/or customers who get in touch with a request to be informed about and/or offered certain products and services.
Where personal data is processed and stored
Poliklinika Jakić processes the personal data of Users – Customers in the Republic of Croatia.
The data is processed in such a way that all or part of the information about Customers – Users – Data Subjects is stored in the databases of the data controller.
Technical and organisational protection measures
Technical and integral data protection. The data controller implements technical and organisational measures to ensure an appropriate level of security.
The data controller also takes measures to ensure that any individual acting under the authority of the data controller who has access to personal data does not process that data otherwise than on instructions from the data controller.
Taking into account the nature, scope, context and purposes of processing, as well as the risks of varying likelihood and severity for the rights and freedoms of individuals, the data controller implements appropriate technical and organisational measures in accordance with the Security Policies in order to ensure and be able to demonstrate that processing is carried out in accordance with the General Regulation.
Duration of personal data retention
Depending on the purpose and legal basis on which the personal data of users and/or customers is collected, Poliklinika Jakić is in certain cases obliged to retain personal data for the period that is prescribed for the particular purpose by the applicable regulations or until the purpose for which it was collected ceases. Upon expiry of the statutory period requiring the retention of certain personal data, or upon cessation of the purpose, the data is deleted.
In cases where the basis for collecting and processing data is the consent of the user and/or customer, personal data is retained for 10 years.
Data processed on the basis of the consent of the user and/or customer may be deleted prior to the expiry of the said period, where such deletion is requested by the user and/or customer, or where the user and/or customer objects to such processing in writing via the internet through the published e-mail address: info@poliklinika-jakic.hr.
Prize draws
Poliklinika Jakić occasionally organises prize draws, so the data is used to notify winners of the prize they have won.
Direct marketing
The contact details of users and/or customers may be used to send promotional notices about the products and services of Poliklinika Jakić if the Customer – User has given consent. Consent may be withdrawn at any time by sending a request to info@poliklinika-jakic.hr.
Video recordings
Poliklinika Jakić uses surveillance cameras to protect people and property. The recordings are retained in accordance with the applicable regulations and are used solely for the purpose stated in this policy.
Exercising your rights
The user may exercise their rights, if they believe that there has been an irregularity in the processing of their personal data, via the contact details or by e-mail at info@poliklinika-jakic.hr. The user and/or customer has the right to lodge a complaint with the national supervisory authority.
Disclosure to third parties
Poliklinika Jakić discloses the personal data of Customers – Users to third parties (including competent authorities) in the following cases:
- in order to fulfil statutory obligations where such processing is necessary to protect the vital interests of Customers – Users;
- in order to fulfil a contractual obligation, when carrying out work on behalf of the Customer – User for which it is necessary to engage a third party — a processor.
In all cases, the contracts with processors oblige them to comply with the same security and organisational measures as those applied by the data controller.
Processing of personal data in the employment context
The personal data of employees may be collected, processed, used and disclosed to third parties only if so determined by law or if it is necessary for the purposes of exercising rights and obligations arising from the employment relationship, or in connection with the employment relationship.
For the purpose of exercising rights and obligations arising from the employment relationship, the data controller will collect, process, use and disclose to third parties only those personal data that are necessary for the said purpose, and will only disclose such data at the request of the courts and other state or public authorities.
GDPR and cookies
About this cookie policy. This Cookie Policy explains what cookies are and how we use them, the types of cookies we use and the data we collect through cookies, as well as how that information is used and how to control cookie settings. For further information on how we use, store and retain your personal data, please refer to our Privacy Policy.
You can change or withdraw your consent at any time from the Cookie Statement on our website. Learn more about who we are, how you can contact us, and how we process personal data in our Privacy Policy. Your consent applies to the following domain: poliklinika-jakic.hr.
What are cookies? Cookies are small text files that are used to store small pieces of data. They are stored on your device when a website is loaded in your browser. These cookies help us to make the site function properly, make it more secure, provide a better user experience, and understand how the website performs, so that we can analyse what works and where improvements are needed.
How do we use cookies? Like most online services, our website uses first-party and third-party cookies for several purposes. First-party cookies are mainly required for the website to function correctly, and they do not collect any personal data about you.
The third-party cookies used on our website are mainly there to help us understand how the website performs, how you interact with our website, to keep our services secure, to deliver advertisements that are relevant to you, and overall to provide you with a better and improved user experience and help speed up your future interactions with our website.
What types of cookies do we use? A summarised list of cookies by category is provided in the table below:
How to control cookie settings
If, during a browsing session, you decide to change your settings, you can click the "Privacy and Cookie Policy" tab on the screen. This will re-display the consent notice, allowing you to change the settings or withdraw your consent entirely.
In addition, different browsers offer different methods for blocking and deleting the cookies used by websites. You can change your browser settings to block or delete cookies. To learn more about managing and deleting cookies, visit wikipedia.org or allaboutcookies.org.