 |
 |
 |
PRIVACY POLICY
Notification on the Processing of Personal Data through this Website
This privacy policy provides information on the collection and processing of personal data through this website, www.tsi.hr, as well as on processing based on our legitimate interest. For any additional information, please contact us using the provided contact details.
DATA CONTROLLER
TSI Ltd. for technical consulting and services
Headquarters: Slavka Tomašića 5, Rijeka
Tax ID: 68599012239
Contact:
Phone: +385 51 734 225
Email: job@tsi.hr
DATA PROTECTION OFFICER (DPO)
Contact: feralis@feralis.hr
INFORMATION ON DATA PROCESSING
Purpose of personal data collection
Personal data may be collected through this website for the purpose of responding to inquiries or requests, for the purpose of job applications, and for the purpose of improving the functionality of the features of these websites (cookies). The collected data will not be used for any other purposes.
Categories of personal data
The following categories of personal data may be collected through this website:
• Identification data (e.g., user's name);
• Contact data (e.g., user's email);
• Data required for the purpose of job applications (e.g., CV);
• Data about the use of this website (cookies);
• Other data provided by you via messages.
Legal basis for personal data processing
This website processes personal data on the following legal grounds:
- Execution of the contract/service
Data is processed to enable the execution of the requested service or to take steps prior to providing the requested service, based on your request (e.g., responding to your query or request). The data collected for the purpose of responding to an inquiry or request and for the purpose of job applications is considered necessary data. That is, such data processing is necessary in order to execute the requested service or to take actions prior to providing the requested service, which makes the processing lawful in accordance with the provisions of the General Data Protection Regulation. Please note that if the necessary data is not provided, we will not be able to fulfill your request.
- Legitimate interests
Data is processed based on our or third parties' legitimate interests, unless your interests, rights, and freedoms override these interests (e.g., video surveillance)
LEGITIMATE INTERESTS
Personal data may, in certain situations, be processed based on an established legitimate interest. When we base processing on this ground, you have the right to object to such processing. However, we note that processing cannot be restricted or suspended if there are compelling legitimate reasons for such processing that override the interests, rights, and freedoms of the data subject, or if such processing is necessary for the establishment, exercise, or defense of legal claims. The processing we carry out based on legitimate interest is as follows:
VIDEO SURVEILLANCE – The purpose of video surveillance processing is to protect individuals and property. The retention period for video recordings is up to 72 hours, and in the case of an incident, up to 6 months. If the recordings are required as evidence in judicial, administrative, arbitration, or other proceedings, a longer retention period may apply. Other recipients of the video surveillance recordings may be authorized authorities upon request, when necessary for the execution of official procedures.
The collected data is not processed for other purposes.
INTERNET COOKIES
GENERAL TERMS
What are cookies?
Cookies, also known as HTTP cookies, are small text files stored on a user’s device (such as a computer, mobile phone, or tablet) when visiting a website. These cookies allow the website to remember the user's actions and preferences over time. When the user revisits the same website, the cookies are sent back to the web server, enabling the website to recognize the user and provide a personalized experience.
What information can cookies store?
Cookies can store different types of information related to the user and how they use a particular website, such as identification data, user preferences, shopping cart content on e-commerce websites, login data, user activities on the website, user interests for content and ads personalization, session duration, and security or authentication data. Cookies enhance user experience and enable personalized services.
Purpose of cookies
The purpose of cookies is to optimize and improve the user experience when visiting websites.
Cookie categories by function:
I Technical cookies
(always active) – Necessary for the functioning of the website and cannot be disabled. These cookies do not store information that can identify you.
II Functional cookies
(can be disabled) – Enable improved functionality and personalization of the website.
III Statistical cookies
(can be disabled) – Track visits and traffic sources to measure and improve website performance.
IV Marketing cookies
(can be disabled) – Track users across websites to display targeted ads.
HOW TO DISABLE COOKIES
You can manage non-essential cookies on this website in the control panel. Additionally, you can accept or reject some or all cookies by adjusting your browser settings. For more information on how to change cookie settings in common browsers, visit the following links:
ADDITIONAL INFORMATION ON DISABLING COOKIES
Some browsers allow you to navigate the website in "incognito" mode, limiting the amount of data stored on your computer and automatically deleting persistent cookies set on your computer or mobile device when you end your browsing session. There are also many third-party applications you can add to your browser to block or manage cookies. You can also delete cookies that were previously set in your browser by selecting the option to clear your browsing history and enabling the option to delete cookies. For more detailed information about cookies and how to adjust your browser settings, you can visit the following links:
DATA COLLECTED THROUGH SOCIAL MEDIA
The pages and profiles managed by us on social media platforms (LinkedIn, etc.) are always under the exact name of the Company.
Personal data about our contacts, which we collect through the use of these platforms, is used solely for responding to inquiries or comments, and the data is not processed or stored for any other purpose.
RECIPIENTS OF PERSONAL DATA
The collected personal data may be shared with providers of information and communication solutions and services who act as our data processors. These processors provide reasonable guarantees and have implemented appropriate technical and organizational measures to ensure adequate data protection and compliance with the requirements of the General Data Protection Regulation. A data processing agreement/contract has been established with these processors based on Commission Implementing Decision (EU) 2021/915 on standard contractual clauses between the data controller and the processor as a specific part of the contract. This agreement/contract outlines in detail how personal data should be handled, ensuring that they cannot process personal data without our instructions or share it with third parties. Personal data is not shared with third parties for direct marketing purposes.
DATA RETENTION PERIOD
Personal data that you provide for the purpose of responding to inquiries and requests will be processed only until the purpose for which they were collected is fulfilled. Once that purpose is achieved, the data will no longer be processed. Personal data processed based on our legitimate interest will be processed as long as such interest exists or until the processing is restricted or completely suspended based on your objection. However, under certain circumstances, personal data may remain in our storage system without being processed when we are required to do so by legal obligations.
SECURITY OF PERSONAL DATA PROCESSING
We collect and process personal data in accordance with the General Data Protection Regulation (GDPR) in a manner that ensures appropriate security and confidentiality during processing. Our goal is to enable the effective application of data protection principles, reduce the volume of data, the scope of their processing, the retention period, and ensure their availability. To this end, we have implemented appropriate technical and organizational measures to ensure a level of security that is commensurate with the risks associated with data processing and the nature of the personal data being protected. In implementing these measures, we have carefully considered the characteristics and costs to achieve an optimal balance between data protection and practical applicability. We regularly review all data processing activities that may pose a risk to the rights and freedoms of individuals. We have taken appropriate protective measures to ensure that personal data is safeguarded against accidental or unlawful destruction, accidental loss, alteration, unauthorized disclosure, or access. We are particularly focused on protecting data in cases where personal data is transmitted over networks and to prevent possible unlawful forms of processing.
EXERCISING RIGHTS
Right of Access
At any time, you may request confirmation of whether your personal data is being processed and detailed information about the processing, particularly regarding its purpose, the type/categories of personal data being processed, including access to your personal data, the recipients or categories of recipients, and the anticipated period for which the personal data will be stored.
Right to Rectification
We ensure the right to rectification, and you can request the correction of inaccurate personal data or the completion of incomplete personal data without undue delay.
Right to Erasure
You have the right to request the deletion of your personal data. If the request is justified and we are not required by legal regulations to retain the data, we will delete the data without unnecessary delay.
Right to Restriction of Processing
You have the right to request the restriction of processing of your personal data in cases provided for by the General Data Protection Regulation. We particularly emphasize that you can restrict processing based on legitimate interest as the legal basis for processing.
Right to Object
You have the right to object to the processing of your personal data in all cases provided for by the General Data Protection Regulation. We particularly highlight that you can object to processing based on legitimate interest as the legal basis for processing and restrict or completely prohibit the processing.
Right to Lodge a Complaint
If you believe that your personal data has been processed in violation of your rights under the General Data Protection Regulation, you have the right to lodge a complaint with the supervisory authority, the Croatian Personal Data Protection Agency, located at Ulica grada Vukovara 54, Zagreb.
CONTACT INFORMATION
For any additional information regarding the processing of personal data or to exercise your rights, please contact us through our Data Protection Officer or use other available contact methods.
We will process your request within 30 days from the moment you are successfully identified. We will provide a response in the usual electronic format, unless you explicitly request otherwise.
ADDITIONAL INFORMATION
This privacy policy is regularly reviewed, supplemented, and updated to always reflect the actual state of personal data collection and processing through this website. We encourage you to regularly check for such changes to stay fully informed about our privacy practices and data processing activities. In case of changes that may affect your rights as a data subject or significantly alter the previous notice on processing, especially if there are changes to the purposes of processing, data disclosure, or transfers to third countries, a notification of these changes will be displayed in a pop-up window when you visit this website. This is to ensure that all our users are informed of any significant changes.
Last updated: March 2025.