Privacy notice

In our Privacy Notice, you can learn the following: which types of data we process, why we do it, what is the legal basis for this, who can access the data and which rights belong to you pursuant to the General Data Protection Regulation.

1. Controller

Faktograf – Association for the Informed Public,
Ulica Franje Petračića 6, 10000 Zagreb,
VAT ID no.: 68491626000
Data protection officer: [email protected]

2. Data collection and processing

In the following text we list the processing we perform within the work of Faktograf as an association. You can read more about processing related to the work of the faktograf.hr medium in the  Privacy Notice on the medium’s website.

Membership

The data required for membership in the association

• Type of data: name, PIN (OIB), date of birth, date of joining the association, membership category, date of membership termination
• Legal basis:

1. 1. Act on Associations
   2. Consent – in the event that the person consents for us to keep the data for a longer period

• Retention period:

1. 1. One year after membership termination
   2. Until the consent is revoked

Membership fee

The data required for payment of the membership fee

• Type of data: name and surname, address, IBAN
• Legal basis: The data required for the execution of the contractual relationship
• Retention period: one year after membership termination

Job applications and open applications

Sending CVs and data necessary for employment as part of job applications and open applications

• Type of data: Name and surname, Phone number, City and country, e-mail address, work experience, data on previous education
• Legal basis:

1. 1. Data necessary for entering into a labour contract
   2. Consent – in the event that the person wants us to keep the data for a longer period

• Retention period:

1. 1. 60 days from recruitment end
   2. 2 Until the consent is revoked

3. What are the data subject’s rights and how to exercise them

Faktograf’s data subjects have the possibility of exercising the following rights:

• Access to personal data
• Correction of inaccurate data
• Data portability
• Deletion of personal data
• Processing limitation
• Objecting to the processing of personal data

You can request to exercise these rights by:

• sending an e-mail to our data protection officer: [email protected]
• sending a request to the physical address: Ulica Franje Petračića 6, 10000 Zagreb

You can also write to the e-mail address of our officer regarding all other inquiries related to the collection and processing of data by the company Ljudomat.

We will reply to all requests within the legal deadline of 30 days.

You can submit your complaint against a certain processing to the competent body for personal data protection: Croatian Personal Data Protection Agency to the address: Selska cesta 136, 10 000 Zagreb; e-mail address: [email protected]

4. Relationship with the recipients and the processors

We forward your personal data to other recipients only when required by the law, i.e. in the event of a reasonable request by an authorised public body (e.g. to courts).

We use the Google Workspace set of tools for cooperation, cloud services and productivity. This is why Google LLC is the processor for the following processing: Readers’ inquiries, readers’ commendations, threats records, monthly appeals tracker. Google’s privacy policy: https://policies.google.com/privacy

Our webmaster and hosting company, with whom we have signed special data processing agreements, may have access to certain processing related to the website and mail.

5. Data processing security

We use appropriate organisational and technical measures in order to protect personal data from loss, theft, as well as unauthorised usage, use or modification.

The Faktograf Association has named an external expert as data protection officer and has completed the education on the rights and obligations prescribed by the General Data Protection Regulation.

Last changed on: 20 July 2022