Privacy policy

The policy applies to all personal data of users that we collect and process, directly or through our partners. Personal data is any data relating to a natural person whose identity has been established or can be established, directly or indirectly. Data processing is any action performed on personal data, such as the collection, storage, use, insight and transfer of personal data.

This Policy does not apply to anonymous data. Anonymous data is data that cannot be linked to a specific individual.

Xiphos d.o.o. respects the privacy of its users and visitors to its websites.

Xiphos d.o.o. may, in accordance with the law, collect certain user data obtained during the use of the website via cookies, which do not contain personal data, and IP addresses that are automatically recorded in the access records. They serve to make the website work optimally. It is possible to block cookies, after which you will still be able to browse the site, but some of its features will not be available to you.

Your data will be processed for the purpose of providing information about our offers, news and events and for the purpose of registering seminar participants. All emails have the option to unsubscribe from the recipient list.

Information we collect: Name, E ‐ mail, Phone / Cell Phone Number, Company Name, IP Address, and other information you share with us.

We collect personal data for a specific and lawful purpose:

  • Registration for events (seminars, workshops ()
  • Send notifications about events, offers, useful information and tools
  • Performing contracted services

We do not further process personal data in a manner that is not in accordance with the purpose for which they were collected, unless otherwise prescribed by law or based on the consent of the user.

In accordance with the General Data Protection Regulation (GDPR), at your request, you will be given access to all your personal data at our disposal, the method of processing and the possibility of restricting the processing, modification or deletion of the same.

The protection of the privacy of your data is permanent, and Xiphos d.o.o. take all measures necessary to protect them in accordance with the applicable regulation and good practices. We process personal data in a secure manner, including protection against unauthorized or unlawful processing and against loss.

Protecting your personal information means that:

  • we will not use your information for any purpose other than that stated or agreed here
  • we will not give your contact and personal information to any third party
  • your contact and personal data may be disclosed to a third party only at your request (right of transfer) or with a court order
  • you can unsubscribe from the email list at any time.

We collect only those personal data that are voluntarily provided to us. We do not condition access to our site by submitting data, and we do not ask you to disclose more data than is really necessary to execute the ordered services and products.

Data retention time

We store and process personal data only for as long as is necessary for the execution of a certain legitimate purpose, unless the applicable regulations provide for a longer period of storage for a particular purpose. In the case of giving consent to receive notifications and useful information, we keep the data until the consent is withdrawn. In case of registration for events and trainings, where there is no consent for further communication and sending notifications and useful information, we keep the data for a maximum of six months, and in case you ask us to delete it, it will be deleted immediately. After that, the data is permanently deleted or anonymized.

Processing of personal data outside the EU

We process the User’s personal data within the European Union and the USA, the relationship regarding the protection of privacy is regulated by international agreements between the EU and the USA.

From the services where the data is potentially located in the USA, we use:

MS Office 365 and OneDrive for Business – Office system where documents and e-mail are stored. Through their privacy policies, it is defined that their servers are in the EU, but potentially some data can end up in the US as well.

Google drive for Business – A system for storing documents and e-mail.

Kartra – a system for automating marketing and communication with customers.

Legality of processing

The Company will process your data in a lawful and secure manner. If you believe that the Company is handling your data in an illegal manner and you cannot resolve it in cooperation with the Company, you have the right to file a complaint with the Supervisory Body (Agency for Personal Data Protection).

Date of the latest version of the policy: 10.03.2020.


Copyright © 2020. ≈ Xiphos d.o.o.