Privacy Policy

This Privacy Policy is based on the General Data Protection Regulation (GDPR) and other laws governing the privacy of the individual and clarifies what personal data we collect, how we process, use and protect it, for what purposes, and Your rights related to Your data.

 

The privacy of individuals and the protection of personal data are fundamental human rights. It is our duty to protect the privacy of the individuals whose personal data we process and store. The data we collect is a responsibility and must be collected and processed only when necessary. 

 

KNIGHTX d.o.o. (Ltd.) adheres to the following principles in order to protect the privacy of our employees, associates, clients, and end users: 

  •     we do not collect more personal data than is necessary; 
  •     we do not use personal data for purposes not listed; 
  •     we do not store personal data if it is no longer needed; 
  •     we never sell, borrow or distribute or publicly disclose personal data; 
  •     we do not send personal data to third parties without Your knowledge; 
  •     we do not use any automated processing and decision-making, or profiling; 
  •     we continuously ensure that personal data is securely stored. 

 

This Privacy Policy, as well as our website, is designed to ensure a high level of protection of Your personal data and Your privacy, and will be continuously updated and improved. After reading this Privacy Policy, if You have any questions about the protection of personal data or want to share Your ideas and recommendations, please contact us via e-mail: gdpr@knightx.com.

 

This Privacy Policy was updated on October 1, 2022.

 

Best regards,
KNIGHTX

 

 

DATA CONTROLLER 

 

KNIGHTX d.o.o. (Ltd.) is in the role of Data Controller in relation to the personal data we collect and continue to process. The role of the Data Controller is to determine the purpose and methods of processing personal data and take care of ensuring all security measures for Your privacy. Our official name and information: 

 

KNIGHTX d.o.o.
Zadarska 3
HR-31000 Osijek 
OIB (VAT ID): 40390242131 

 


PERSONAL DATA WE COLLECT 

 

In accordance with the GDPR and other laws governing the protection of personal data, we collect only those personal data that are necessary to fulfill our legal and contractual obligations. 

We may collect personal data for several purposes, such as the selection process, employment, and other law obligations, legitimate interest, consent, etc., but never without Your knowledge or a proper legal basis.

 


SECURITY OF PERSONAL DATA 

 

When KNIGHTX collects information about You, we ensure that Your personal information is protected from accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access to personal information that is transferred, stored, or otherwise processed. This is done through appropriate technical and organizational measures to ensure the security, integrity, and confidentiality of personal data. 

 

We collect and process personal data in a way that ensures adequate security and confidentiality in their processing and enables the effective application of data protection principles, reducing the amount of data, the scope of their processing, the storage period, and their availability. We take all appropriate technical and organizational safeguards to prevent accidental or unlawful destruction, loss, alteration, unauthorized use, disclosure, or access to data. 

 

All employees of the Data Controller, as well as Data Processors, are obliged to keep personal data by signing a confidentiality statement.

 


PUTTING ON THE USE OF PERSONAL DATA 

 

We provide access to Your personal data only to external collaborators who act as Data Processors, and who act based on our explicit instructions and through concluded contracts that ensure a high level of protection of your personal data. These business associates are obliged to strictly observe the obligation of confidentiality in accordance with the obligations of the General Data Protection Regulation, with this Policy, with the contracts we have concluded with them, which detail the handling of personal data, so they are unable to process Your personal data without our account and pass it on to third parties. Granting access to personal data to other legal or natural persons is always limited to the extent necessary to achieve the purpose for which the data were collected and is carried out in accordance with applicable regulations. Your personal data will not be passed on to third parties for direct marketing purposes unless You give Your consent. In certain circumstances, when we are bound by the relevant regulations to the extent necessary to achieve the established purpose, we have a legal obligation to pass on Your personal data. The legal obligation may arise from national or EU law. 

 


COOKIES 

 

The website https://knightx.com/ uses the so-called cookies. Cookies are small text files placed on Your hard drive, which help to provide customization of the Internet browser interface. There are several types of cookies, such as technical, analytical, marketing, etc. Our site uses only technical cookies (necessary cookies, cannot be excluded) that are necessary for the functioning of the website. Functional, analytical, or marketing cookies, which You should enable by an active affirmative response, are not used by our website. 

 


STORAGE PERIOD OF PERSONAL DATA 

 

We process Your personal data until the purpose of the processing of personal data is fulfilled. After the cessation of the purpose for which they were collected, we no longer use Your personal data, and they remain in our storage system, and we keep them as required by legal regulations on the preservation of archives. 

 


YOUR RIGHTS 

 

To exercise Your rights listed below, You may contact us in writing or by email using the contact information provided on our website: 
    a. RIGHT OF ACCESS Your personal data, 
    b. RIGHT TO CORRECT Your personal data, 
    c. RIGHT TO DELETE Your personal data, 
    d. RIGHT TO RESTRICT the processing of Your personal data, or 
    e. THE RIGHT TO OBJECT to the processing of Your personal data.

 

    a. The right of access to personal data 
KNIGHTX, as the Data Controller, undertakes on the basis of a written request of the user, which may be in the form of e-mail, to provide access to personal data processed about them, to inform about the purpose of personal data processing, the type of personal data processed, the recipients or categories of recipients to whom personal data have been or will be disclosed, the estimated time period for processing or the criteria used to determine that period. 

 

    b. The right to correct inaccurate data 
KNIGHTX, as the Data Controller, will enable the correction of inaccurate personal data in each individual case when it is determined that the collected personal data about the user are inaccurate or there has been a change in user data. 

 

    c. The right to delete personal data 

KNIGHTX will delete the user's personal data in the following cases: 
a) when the personal data of the user are no longer necessary to fulfill the purpose of processing, ie termination of the purpose of processing unless a special law prescribes the period of storage of personal data (for example, when a special law prescribes how data is stored permanently); 
b) when the user withdraws consent as a legal basis for data processing, and there is no other legal basis for data processing; 
c) when the user objects to the processing of data (see more under the heading Right to object) 
d) when personal data have been illegally processed; 
e) where personal data must be deleted in order to fulfill legal obligations under European Union law or the law of the Member State to which the Data Controller is subject; 

 

    d. The right to restrict data processing 

KNIGHTX will limit the processing of personal data in cases where the user disputes the accuracy of the data when the processing is illegal, and the user opposes the deletion of data and instead seeks to restrict their use; when the Data Controller no longer needs personal data for processing, but the user requests data for the realization of legal requirements, as well as in the case when the user objects to the processing of personal data, including the creation of user profiles. 

 

    e. The right to object  
The user has the right to object to the processing of personal data relating to him if the data is not processed on the basis of legal basis of the Data Controller. In this case, KNIGHTX, as the Data Controller, will stop processing personal data. 

 


CONTACT INFORMATION 

 

If You have any questions regarding the processing of Your personal data, You can contact us via e-mail: gdpr@knightx.com

 


RIGHT TO COMPLAIN TO THE COMPETENT AUTHORITY 

 

You can lodge a complaint directly with the competent supervisory authority at any time, especially in an EU country where You have Your habitual residence, place of work, or the place of the alleged breach; if You believe that our processing of Your personal data is illegal. 

 

Direct contacts of the competent supervisory body in the Republic of Croatia are: 
PERSONAL DATA PROTECTION AGENCY (AZOP) 
Selska cesta 136 
HR-10 000 Zagreb 
Phone: +385 1 4609 000 
Fax: +385 1 4609 099 
E-mail: azop@azop.hr 
Web: http://www.azop.hr 

 


IMPROVING PRIVACY POLICY 

 

We regularly update the Privacy Policy to ensure that it is accurate and up-to-date, and we reserve the right to change its content if we deem it necessary. You will be informed about all changes in a timely manner via our website or in another appropriate way, in accordance with the principle of transparency.