Legal information
Name of the service provider:
MENDOTA INVEST, nepremičninska družba, d.o.o.
Registered seat of the service provider: Tivolska cesta 50, 1000 Ljubljana
Authority keeping the registry in which the service provider is registered: District Court Ljubljana
Registration number of the service provider: 8323984000
Tax number of the service provider: SI 23767707
Name, registered seat and contact details of the webhosting service provider:
HUMANFROG d.o.o.
Registered seat of the webhosting provider: Dunajska cesta 5, 1000 Ljubljana
Authority keeping the registry in which the service provider is registered: District Court Ljubljana
Registration number of the service provider: 6375758000
Tax number of the service provider: SI 98518003
Disclaimer
The information contained on this website is of a general nature and provided for informational purposes only. Whilst MENDOTA INVEST, nepremičninska družba, d.o.o. has used reasonable endeavours to ensure that the information on this website is materially correct, MENDOTA INVEST, nepremičninska družba, d.o.o. makes no guarantee or warranty in this regard. The information contained herein might not necessarily be comprehensive, complete, accurate or up to date, and may change without notice. On the basis of the above, any visitors to this website should not rely on the information contained herein as statements or representations of fact, but must satisfy themselves by inspection, searches, enquiries, surveys or otherwise as to their accuracy. MENDOTA INVEST, nepremičninska družba, d.o.o. cannot be held responsible for any loss or damage, including without limitation, direct, indirect or consequential loss or damage, or any loss of profits resulting from direct or indirect actions based upon the content of this website. The images shown and references to design, architecture, use and areas of the properties indicated on this website are approximate only and subject to the necessary planning, building regulations and/or other consents to be obtained, and therefore such information is subject to change without notice and cannot be deemed and relied on as final and accurate. The content of this website (including any information, illustration, photos, design, etc.) is subject to copyright protection, and any unauthorised use thereof shall qualify as an infringement of the applicable laws.
PRIVACY POLICY
www.emonika.si
Date of publication: 04. 03. 2024
1. Preamble
The objective of this privacy policy (“the Policy” hereafter) is to establish the principles and policy of the data protection and processing carried out by MENDOTA INVEST, nepremičninska družba, d.o.o. (registered seat: Tivolska cesta 50, 1000 Ljubljana; company registration number: 8323984000; “the Company”, “we” or “us” hereafter), the owner of the website https://emonika.si (“the Website” hereafter). The Company expresses its commitment to be bound by this Policy.
The Policy sets out the principles of the processing of the personal data provided by the users of the Website and provides information for the data subjects on the processing of their personal data.
A user is any legal or natural person who uses or visits the Website. By using the Website, the user confirms that he/she agrees to this Policy.
When establishing the provisions of the Policy, we paid particular attention to the provisions of Regulation 2016/679 of the European Parliament and of the Council (the General Data Protection Regulation, or “GDPR”) and other laws applicable to the protection of personal data (Personal Data Protection Act -ZVOP-2 (Official Gazette of Republic of Slovenia no. 163/22) and Electronic Communication Act- ZEKom-2 ((Official Gazette of Republic of Slovenia no. 130/22 and 18/23 – ZDO-1O)) and the personal data protection rules and internal acts of the Company.
2. The data controller
The Company processes your personal data and, as a data controller, is liable for their lawful processing. You can contact us using the contact details provided below:
Name of the company: MENDOTA INVEST, nepremičninska družba, d.o.o.
Postal address: Tivolska cesta 50, 1000 Ljubljana
Company registration number: 8323984000
Email address: info@emonika.si
Website: https://emonika.si
Phone number: 059 377 780
3. Data processors
Data processors are liable for their lawful processing of data. The data processors are the following companies:
- HUMANFROG d.o.o. (as main data processor)
- Monday.com (as main data processor)
- Mailchimp
Personal data is transferred to third countries and international organisations through the use of data processors such as Monday.com, Mailchimp, Facebook, Google, and LinkedIn. While we do not have individual data processing contracts with these entities, we rely on their commitment to maintaining data protection standards in accordance with applicable regulations, including the GDPR.
It is important to note that some of these third-party service providers may have servers located outside the European Economic Area (EEA). By using our services, you acknowledge and consent to the transfer of your personal data to these locations.
For your convenience, you can review the privacy policies and compliance information of these service providers by following the links below:
- Monday.com Privacy Policy: https://monday.com/trustcenter/privacy
- Mailchimp Privacy Policy: https://mailchimp.com/legal/
- Facebook Data Policy: https://www.facebook.com/privacy/policy/
- Google Privacy & Terms: https://policies.google.com/privacy?hl=en-US
- LinkedIn Privacy Policy: https://www.linkedin.com/legal/privacy-policy
The processing of personal data by the main data processor is governed by a contract according to Article 28 of GDPR.
4. The purposes for which the personal data are processed, the legal basis for processing and the retention period
In the course of the operation of the Website, we collect the following type of information about our visitors: aggregate statistical data used to track site usage.
A.) VISITING THE WEBSITE
Purpose: Whenever you visit the Website, the web server of the hosting provider automatically stores the related log files. The web server hosting the Website records the Website visit data and aggregate statistical data, which is used to monitor the usage of Website.
A software analysing website hits runs on the Website and receives the following automatically generated data of our visitors:
- IP address of the visitor;
- date of the visit;
- data of the visited sites;
- type of browser used;
- preferences of the visitor.
The Website records these data. According to the provisions of the GDPR, the IP-address of the visitor qualifies as personal data.
Legal basis: The purpose of these procedures is to ensure network and information security, i.e. to enable the detection and prevention of unauthorised access that may compromise the availability, integrity and confidentiality of any stored or transmitted personal data and the security of related services accessible through these networks and systems. Such processing is necessary for the performance of the Company's tasks.
Retention period: The retention period of web server log files is limited to 60 days.
B.) E-NEWSLETTERS, PROMOTIONAL BROCHURES AND OFFERS
Purpose: When subscribing to the newsletter, in addition to your IP number, your first name, surname, email address and telephone number that you enter in the online form, as well as the date and time of your subscription, are processed. The Company processes this data for the sole purpose of sending newsletters, promotional brochures and offers concerning the Company's activities – in particular current projects, available apartments and commercial premises and other news – and for subscribing to tours of the premises. The above-mentioned notifications are sent exclusively by email. To arrange a tour of the premises and/or to prepare a quotation, the sales team can also contact you on the telephone number provided when you fill in and submit the contact form.
Legal basis: We process personal data (name, surname, email address and telephone number) on the basis of the individual's valid consent (Article 6(a) of the Regulation). When completing the online registration form, which can be accessed at https://emonika.si or Instant forms on Meta, you indicate that you consent to the use of your data by the Company for the purposes set out above, and that you are aware that you may unsubscribe from receiving the newsletter at any time. To do so, please click on the unsubscribe link in the email sent to you. If you do not confirm that you agree to the above in two steps (entering your email address and clicking on the confirmation message), the Company will not send you any notifications to your email address, nor will it collect or process your personal data. This is because the Company uses an opt-in system for registration, which means that it only sends emails to people who have explicitly agreed to receive email notifications.
Retention period: If you do not unsubscribe from the newsletter, we will keep your email data until the end of the Emonika project, which is expected to be in 2027. You can unsubscribe from the newsletter at any time by clicking on the unsubscribe link in the email you receive.
5. Your rights and your right to remedies
Your rights as a data subject in connection with the processing of your personal data
Right to information and access to personal data
You are entitled to obtain from the Company confirmation as to whether your personal data are being processed and, where that is the case, to access this personal data and the following information:
- the purposes of processing;
- the categories of personal data concerned;
- recipients or categories of recipient to whom the personal data have been or will be disclosed (in particular the data processors);
- the envisaged period for which the personal data will be stored;
- your rights in relation to the processing of your personal data;
- where the personal data was not collected from you, any available information as to their source(s);
- information regarding automated decision-making.
Under the applicable legislation we provide the information on the processing of your personal data free of charge. We respond to your request in writing within a month. However, if such a request is manifestly unfounded or excessive, in particular because of its repetitive character, the Company may either, taking into account the administrative costs of providing the information or communication or taking the action requested:
- charge a reasonable fee; or
- refuse to act on the request.
If, after paying the fee, it turns out that the processing was unlawful, or upon your request we are obliged to correct your data, we will reimburse you the fees already charged.
If, despite our best efforts to protect your personal data, someone unlawfully gains access to, changes, transmits, publishes, erases, destroys or causes unintended erasure or injury to your personal data or otherwise processes them unlawfully, we, upon your request, will inform you about the conditions of the incident, including the date, any possible effects and our measures to prevent or to mitigate the consequences.
-
Right to rectification
If the data we process are not correct, we will rectify them upon your request without undue delay. You are also entitled to have incomplete personal data completed, including by means of providing a supplementary statement.
-
Right to erasure
The Company erases your personal data without delay, if:
- the personal data are no longer necessary in relation to the purpose of sending the newsletter;
- the personal data have been unlawfully processed;
- the personal data have to be erased for compliance with a legal obligation concerning the Company;
- the person exercising parental authority over a child under 16 has not consented to the processing;
- where the Company has made the personal data public.
You are also entitled to request the erasure of your personal data by withdrawing the consent you previously gave to us. However, in such cases we may refuse to further provide you with certain services and/or certain services will not be available to you hereinafter.
Instead of erasing your personal data we can restrict them if you request this, or if it can be assumed that erasure would have an impact on your legitimate interests. We do not process restricted data for the purposes set out above. We only process restricted data for purposes that exclude the possibility of erasure.
-
Right to restriction of processing
Data processing may be restricted if:
- you contest the accuracy of the personal data, for a period enabling the Company to verify the accuracy of the personal data;
- the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead;
- the Company no longer needs your personal data for the purposes of the processing, but you require them for the establishment, exercise or defence of legal claims;
- you have objected to processing, pending the verification whether the legitimate grounds of the Company override yours.
For the duration of the evaluation of your objection, but not for more than 5 days, the Company suspends the processing of your data, assesses the merits of your objection and makes a decision, about which the Company informs you without delay.
If the objection is justified, the Company restricts your data, i.e. it can only be processed if
- you consent to the processing;
- your data is necessary for enforcing your legal claims;
- processing becomes necessary in order to the defend the rights of a natural or a legal person; or
- processing is ordered by law in the public interest.
If you requested your personal data to be restricted, the Company will notify you prior to the lifting of the restriction.
-
Right to data portability
You have the right to receive the personal data which you provided to the Company in a structured, commonly used and machine-readable format (e.g. .doc or .pdf), and have the right to transmit those data to another controller without hindrance from the Company.
-
What happens and what can you do if we reject your request?
If the Company rejects your request for the correction, restriction or erasure of your personal data, within 1 month of receiving your request we will inform you in writing why we could not comply with your request and we will inform you about the possibilities for judicial remedy and that you may submit an appeal to the Information Commissioner. If you agree, we will send our reply via email.
-
What are your rights if you think the data processing is unlawful?
If you have some concerns regarding the lawfulness of the data processing, you have the right to object to it. Your objection should include a request for us to stop processing your data and to erase them.
If you object to the processing of your data, the Company will examine the reasons for your objection within one month and will make a decision, regarding which the Company then notifies you in writing.
If we find your objection to be valid, we stop every data processing operation, restrict the data concerned and inform everyone to whom we transmitted the personal data that is the focus of the objection about both the objection and the measures taken to address it. These recipients should also take the necessary actions for your objection to be fully addressed. If you disagree with our decision or if the Company fails to comply with the abovementioned one-month deadline, you may turn to the courts.
-
What are the legal remedies available to you?
If you find that during the processing of your data the Company breaches the provisions of the GDPR, it is your right as a data subject to lodge a complaint before a supervisory authority. In Slovenia the supervisory authority set up in accordance with section 51 of the GDPR is the Information Commissioner (“the Authority” hereafter).
Accordingly, in the sections below we inform you about complaint procedure of the Authority. However, please note that given the reasons mentioned above, you still have the right to lodge a complaint before any supervisory authority set up by one of the EU member states, not just before the Authority.
-
Notification to the Authority
Compliance with data protection legislation is supervised by the Information Commissioner. If you find that our data processing does not comply with the applicable law, or there is an imminent danger of non-compliance, you can lodge a complaint before the Authority through the following contacts:
Name of the authority: Informacijski pooblaščenec
Postal address: Dunajska cesta 22, 1000 Ljubljana, Slovenija
Email address: gp.ip@ip-rs.si
Phone number: 01 230 97 30For further information regarding data protection go to the website of the Authority: https://www.ip-rs.si/
Please note that in the case of a personal data breach (i.e. a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed), the Company shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the Authority of the personal data breach. If the personal data breach is likely to result in a high risk to the rights and freedoms of data subjects, the Company shall communicate the personal data breach to you as a data subject without undue delay.
-
Judicial proceedings for pursuing claims
In case you consider that your rights as determined by the GDPR, ZVOP-1, ZVOPOKD or any other legal act applicable to the protection of personal data have been violated due to the processing of your data which is not in accordance with these laws, you may request judicial protection before the competent court.
- Automated decision-making
There will be no automated decision-making relevant to the profiling referred to in Article 22(1) and (4).
- Automated decision-making
COOKIE POLICY
In order to provide customised services, the Company places small data packets (known as “cookies”) on the user’s computer. The purpose of using cookies is to ensure the highest possible level of operation for a website, to provide customised services and to improve the user experience. The user is able to delete the cookies from their computer and may prohibit the use of cookies by adjusting the settings of their browser. However, by blocking the use of cookies the user acknowledges that the operation of the Website will be incomplete and suboptimal.
Like most web publishers, we aggregate data when users visit the Website, and depending on their functionality we use statistics cookies (also known as performance cookies). By using performance cookies we collect information on how our visitors use the Website (e.g. which and how many sites were visited, on which part of the Website the visitor clicked, how long the sessions were, what kind of error messages the visitor received, etc.), as well as in order to count how many people come to the site, which countries they come from, which pages they view, etc. This is to ensure that we develop the Website (and the available services, functions, etc.) in accordance with the demands of our visitors, so that we are able to provide a high quality, user-friendly experience and better value to our users based on their content consumption patterns. This data collection process does not enable us to discern who you are, only that a computer with a specific number is accessing the web server. These cookies are assigned at random with each newly created visitor session, and are deleted after the visitor leaves the site.
By law, we may store cookies on your device where they are strictly necessary for the operation of the Website. For all other types of cookies we need your permission.
The following cookies are used to ensure that all the functions of the Website work:
- The required cookies make the Website usable by enabling basic functions such as site navigation and access to secure areas of the Website. Without these cookies, the Website will not function properly.
- Statistics cookies are cookies that we need to monitor your visit to the Website in order to improve the user experience.
- Marketing cookies collect information about your visit to the Website on an anonymous basis. The purpose of these is to serve ads that are relevant and interesting to the individual user.
A detailed description of each cookie and the time of its placement can be seen in the following table:
Category I. – Necessary cookies
Name of the cookie | Service | Validity | Description |
---|---|---|---|
cc_cookie | emonika.si | 1 year | The consent cookie is intended to warn users about the use of cookies on the Website. |
XSRF-TOKEN | emonika.si | 2 hours | Cookie intended for security reasons |
emonika_session | emonika.si | 2 hours | Cookie intended for security reasons |
PREF, use_hitbox, VISITOR_INFO1_LIVE, YSC | YouTube | 1 day to 5 years | These cookies are loaded when you watch or share a video. They allow detection of the user’s available bandwidth, count of views and sharing of the clip. |
Td | 1 session | Registers statistical data on users’ behaviour on the Website. Used for internal analytics by the website operator. |
Category II. – Analytical cookies
The name of the cookie | Service | Validity | Description |
---|---|---|---|
_ga | Google Analytics | 2 hours | Completes the registration of a unique identity (ID), which is then used in the creation of statistical data on how the visitor uses the Website. |
Ga_code | Google Analytics | 2 hours | The Google Analytics application uses a cookie to regulate the number of requests. |
Category III. – Marketing and targeted cookies
The name of the cookie | Type | Validity | Description |
---|---|---|---|
Meta Platforms, Inc. | |||
lastExternalReferrer | HTML | Persistent | Detects how the user reached the Website by registering their last URL-address. |
lastExternalReferrerTime | HTML | Persistent | Detects how the user reached the Website by registering their last URL-address. |
_fbp | HTTP | 3 months | Used by Facebook to deliver a series of advertising products. such as real-time bidding from third party advertisers. |
IDE | HTTP | 1 year | Used by Google DoubleClick to register and report the Website user’s actions after viewing or clicking one of the advertiser’s advertisements with the purpose of measuring the efficacy of an advertisement and to present targeted advertisements to the user. |
Pagead/1p-user-list/# | Pixel | 1 session | Tracks if the user has shown interest in specific products or events across multiple websites and detects how the user navigates between sites. This is used for measurement of advertisement efforts and facilitates payment of referral fees between websites. |
_ga | HTTP | 2 years | Used to send data to Google Analytics about the visitor’s device and behaviour. Tracks the visitor across devices and marketing channels. |
_ga_# | HTTP | 2 years | Used to send data to Google Analytics about the visitor’s device and behaviour. Tracks the visitor across devices and marketing channels. |
_gid | HTTP | 1 day | Used to send data to Google Analytics about the visitor’s device and behaviour. Tracks the visitor across devices and marketing channels. |
li_sugr | HTTP | 3 months | Used to store and track a visitor’s identity for marketing purposes. |
UserMatchHistory | HTTP | 30 days | Used to provide ad delivery or retargeting. |
