Privacy policy

For the protection the personal data of clients and other persons, the Law Office Mlinac (hereinafter: "LOM") has aligned its business operations with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter: "Regulation") and the Act on the Implementation of GDPR (Official Gazette Narodne novine 42/18).

In this Privacy Policy LOM, as a data controller, provides details on the collection and processing of personal data which it carries out while providing services, as well as on the terms of use of this website. LOM processes personal data in accordance with the principles of personal data processing prescribed by the Regulation and in accordance with applicable regulations.

For the purposes of this Privacy Policy, the following terms have the following meanings:

  • ‘data subject’ is an identified or identifiable natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
  • ‘processing’ means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
  • ‘personal data’ means any information relating to an identified or identifiable natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
  • ‘recipient’ means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not. However, public authorities which may receive personal data in the framework of a particular inquiry in accordance with Union or Member State law shall not be regarded as recipients;
  • ‘controller’ means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law;

This Privacy Policy applies to all data subjects whose personal data is processed by LOM, and especially to data subjects:

  • who contact LOM in person at the address office, by post, by e-mail, by phone or via social networks;
  • whose data is necessary for the purpose of performing legal services (for example, counterparties as natural persons, witnesses in court proceedings, etc.);
  • who submit a cover letter or job application to LOM and who are employees of LOM;
  • who visit the website of LOM.

Purpose of processing and categories of personal data

LOM only processes personal data when one of the legal bases set out in Article 6 of the Regulation exists. For example, LOM processes personal data if this is necessary for the performance of a contract to which the data subject is party, i.e. for providing stipulated services, or in order to take steps at the request of the data subject prior to entering into a contract; for compliance with a legal obligation to which LOM as the controller is subject; the data subject has given consent to the processing of personal data, etc. If the personal data are processed on the basis of consent, the data subject shall have the right to withdraw his or her consent at any time; however, this shall not affect the lawfulness of processing based on consent before its withdrawal.

The categories of personal data of data subjects that are collected and processed in individual cases depend on the purpose of the processing, for example:

  • for the purpose of communicating with the data subject, data such as first and last name, telephone and cell phone number, e-mail address, etc. are collected;
  • for the purpose of establishing a business relationship and carrying out our business activities or providing agreed legal services on the basis of contracts, powers of attorney, etc., as well as for billing the services, information such as first and last name, address, personal identification number (OIB), VAT No., IBAN etc. are collected;
  • for the purpose of initiating and conducting proceedings before competent authorities, including courts, for drawing-up documents, for representation in general and legal consulting of our clients, various personal data of third parties may also be collected (e.g. the debtors of our clients, the counterparties of various contractual and non-contractual relationships, witnesses in proceedings, etc.), such as first and last name, address, personal identification number (OIB), etc. depending on the case and the nature of the processing in question;
  • for the purpose of fulfilling the obligations prescribed by applicable regulations regarding the performance of our business activities and the management of our company, as well as the submission of prescribed personal data to supervisory and other competent authorities, such as the Agency for Personal Data Protection, the Tax Administration, the State inspectorate, the Office for the Prevention of Money Laundering, etc., data such as first and last name, address, personal identification number (OIB), origin of the money, etc. are collected;
  • for the purpose of concluding and performing employment agreements, payment of salaries and other material benefits, acting in accordance with applicable labour regulations, data about employees are collected, such as first and last name, date of birth, personal identification number (OIB), address of permanent/temporary residence, telephone and cell phone number, e-mail address, identity card number and issuer and date of issue, IBAN of the account and bank, profession, professional qualification and education, etc.;
  • for the employment purpose, personal data such as first and last name, address of permanent/temporary residence, telephone and/or cell phone number, e-mail address, profession, professional qualifications and training, previous employment, information on completed training, training courses, certificates, photos, etc. are collected;
  • for the purpose of using the website cookies are collected (see below).

LOM does not use automated means to carry out the processing of personal data, including profiling from Article 22 point 1 and 4 of the Regulation.

Recipients

The collected personal data are not transferred to third countries; however, they may be forwarded to third parties in cases where this is determined by mandatory rules (e.g. at the request of a court or a competent authority) or when LOM has engaged a subcontractor to perform certain tasks as the processor (e.g. IT service provider, accounting service provider, etc.).

Measures to protect personal data

LOM takes appropriate technical and organizational measures to protect personal data from unauthorized access, modification, loss, theft or any other violation and misuse. The mentioned measures include, e.g. obliging all subcontractors to protect personal data, establishing and updating measures to prevent unauthorized use of IT systems, updating programs (software) and antivirus protection, preventing unauthorized persons to access to physical documents and media for storing personal data in electronic form, etc.

Personal data retention period

Personal data is kept for as long as it is necessary to fulfil the legal purpose for which it was collected, after which it is permanently deleted or anonymized, and at the latest until the expiration of the deadlines prescribed by the applicable regulations.

Rights of data subjects

The data subjects are entitled to the following rights:

  • Right of access to personal data of the data subject processed by LOM and information regarding the mentioned processing prescribed by the Regulation;
  • Right to rectification of inaccurate personal data concerning him or her, including the right to have incomplete personal data completed;
  • Right to erasure personal data concerning him or her without undue delay if the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed as well as in other cases provided by the Regulation;
  • Right to restriction of processing if one of the conditions prescribed by the Regulation is met;
  • Right to data portability, i.e. the right to receive the personal data concerning him or her in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from the LOM, if the processing is based on consent or if it is necessary for the performance of a contract to which the data subject is party or if it is necessary to take steps at the request of the data subject prior to entering into a contract, when the processing is carried out by automated means
  • Right to object to the processing of his/her personal data, i.e. right to report that he/she suspects that his/her personal data rights have been violated which the data subject can exercise by contacting LOM via the contact data published on this web site or by contacting a supervisory authority.

Cookies

This website uses cookies. A cookie is a small text file containing information about a users' activities and preferences and is stored on their device when they visit websites. A cookie usually consists of several pieces of information: Internet domain of origin, user ID, expiry date of the cookie and security tokens. Cookies usually store user preferences related to a website, such as preferred language or address. Certain information stored by cookies are also used to track user preferences for the purpose of improving services, targeted marketing, etc. When visiting the same website again using the same device, the browser sends the cookie and the information stored in the cookie to the website which generated it (first-party cookie) or another website to which the cookie relates (third-party cookie). This enables the website to display information tailored to your needs.

The following cookies are used on the website of LOM:

  • necessary (technical, essential) cookies – cookies without which the website cannot function or its functioning would be accompanied by significant difficulties, and which as such cannot be deactivated; therefore, the use of this type of cookies does not require your consent. However, they can be deactivated in the Internet browser settings on your device, but in this case some parts of the website will not work. These cookies do not store any information that could be used to identify a user.
  • functional cookies – improve the functions and personalization by saving the selections and adjustments made during visits of the website. These cookies are used to store, for example, the selection of the preferred language. These cookies can be deactivated.
  • analytic (statistic) cookies – collect information about how visitors use the website, for example which pages visitors visit most often, for the purpose of internal research on possible ways to improve the service provided to all users. The information collected by these cookies are anonymous and are used to improve the functions of the website. These cookies can be deactivated.

Kindly note that functional and analytical cookies can be rejected (turned off) during the first visit to the website, and later again enabled by selecting "Cookie Settings" in the menu at the bottom of the webpage.

Additional information

For more information about the processing of personal data carried out by LOM, please contact us using the contact information published on this website.