Privacy Policy

We are committed to protecting your privacy. This notice describes how we collect and use your personal data. It also describes the rights you have and control you can exercise in relation to it.

DATA CONTROLLER

Personal data is collected by Čačić & Partners law firm with headquarters in Zagreb, Andrije Hebranga 27, PIN: 66676476512 (“Law Firm”).

Law Firm acts as a data controller within the meaning of the General Data Protection Regulation (EU) 2016/679 (“GDPR”).

This Privacy Policy (“Policy”) gives an insight into our procedures regarding the collection and processing of personal data and the terms of use of our website.

DATA COLLECTION

We will collect the following personal data:

  • Contact information: your name, position, role, company or organisation, telephone (including mobile phone number where provided) as well as email and postal address;
  • Business information: data identifying you in relation to matters on which you instruct us or in which you are involved;
  • Your logon ID and password: for access to client services or platforms;
  • Information from public sources: e.g. LinkedIn and similar professional networks, directories or internet publications;
  • Information in connection with investigations or proceedings: where this is necessary to conduct the investigation or proceedings;
  • Attendance records: to record your attendance at our offices for security purposes;
  • Subscriptions/preferences: when you subscribe to receive legal briefings, updates or newsletters as well as consent preferences to help us identify which materials you are interested in receiving;
  • Events data: attendance at and provision of feedback forms in relation to our events;
  • Supplier data: contact details and other information about you or your company or organisation where you provide services to the Law Firm;
  • Social media: posts, Likes, tweets and other interactions with our social media presence;
  • Technical information: [when you access this website and our technology services being IP address, browser type and version (e.g. Internet Explorer, Firefox, Safari etc.), time zone setting, browser plug-in types and versions, operating system you are using (e.g. Vista, Windows XP, MacOS, etc), device type, hardware model, MAC address, unique identifiers and mobile network information];
  • Online data: [when you access this website and our technology services, information about your visit including URL clickstream to, through and from our website (including date and time), information about your network as such as information about devices, nodes, configurations, connection speeds and network application performance; pages viewed or searched for, page response times, download errors, length of visits and interaction information (such as scrolling, clicks, mouse-overs) and whether you click on particular links or open our emails].   

Law Firm does not collect personal data about your online activities across third party websites or online services.

  • Criminal record data: where permitted by national law and appropriate to do so, such as existence of prior criminal offences (or confirmation of clean criminal record)

The above data will be provided to us by you, your employer, the company or organisation who is our client or screening providers who assist us with our legal obligations to conduct under anti-money laundering, sanctions screening and regulatory checks.

Law Firm will not collect Personal Data unless you voluntarily provide it to us, except for certain Personal Data collected through the information systems and programs used for the operation of our website, whose transmission is necessary for the use of internet communication protocols and will not require more information than necessary for performing certain activity. If you do not want to provide us with Personal Data (except Personal Data relating to the use of internet communication protocols that are usually collected when visiting the website), you can still access our website, but you will not be able to send us your CV’s or contact us.

Please do not send us confidential information until we have confirmed in writing that we represent or act for you or your company or organisation.  Unsolicited emails from non-clients do not establish a lawyer-client relationship.  They may not be privileged and, therefore, may be disclosed to others. 

HOW WE USE YOUR PERSONAL DATA

We use your personal data for the following purposes:

  • Service provision: providing legal advice;
  • Business relationship: managing and administering our relationship with you, your company or organisation including keeping records about business contacts, services and payments so we can customise our offering for you, develop our relationship and target our marketing and promotional campaigns;
  • Communication: sending emails, newsletters and other messages to keep you informed of legal developments, market insights and of our services, when you contact us via the contact form or via e-mail, when we process your job application;
  • Client legal compliance: client due diligence (under anti-money laundering, sanctions screening and other crime prevention and detection laws and regulatory requirements) which may involve automated screening checks to ensure that clients and contacts are genuine and to prevent fraud or crime and we may not be able take instructions if you do not provide the information we need to do these checks;
  • Website monitoring: to check the website and our other technology services are being used appropriately and to optimise their functionality;
  • Site security: to provide security to our offices and other premises (normally collecting your name and contact details on entry to our buildings);
  • Online security: protecting our information assets and technology platforms from unauthorised access or usage and to monitor for malware and other security threats;
  • Regulatory: compliance with our legal and regulatory obligations as a law firm including auditing and reporting requirements;
  • Managing suppliers: who deliver services to us;
  • Legitimate interest: to pursue the legitimate business interests listed in the “Legitimate Interests” section of this policy below.

Giving Personal Data is voluntary, but any refusal to provide such data may disable Law Firm to enter into contract with you, respond to your requests, provide you with legal services, receive and process your application, comply with the legal obligations under which the Law Firms is subject, carrying out data analytics or communicating with you in certain situations.

LEGAL GROUNDS FOR USING PERSONAL DATA

When you provide your Personal Data or when we receive your Personal Data, we will limit the processing of Personal Data for purposes for which they have been collected in accordance with this Policy.

We will process your personal data because:

  • you have given us consent: for example where you share details for particular purposes;
  • this is necessary to comply with legal or regulatory obligations: for example anti-money laundering and mandatory client screening checks or disclosure to law enforcement.
  • this is necessary to deal with legal claims
  • processing is necessary for our legitimate business interests or those of a third party:  provided this does not override any interests or rights that you have as an individual. Our legitimate interests are listed in the next section.

LEGITIMATE INTERESTS

We have legitimate business interests in:

  • providing legal services;
  • managing our business and relationship with you or your company or organisation;
  • understanding and responding to inquiries and client feedback;
  • understanding how our clients use our services and websites;
  • identifying what our clients want and developing our relationship with you, your company or organisation;
  • improving our services and offerings; 
  • enforcing our terms of engagement and website and other terms and conditions;
  • ensuring our systems and premises are secure;
  • developing relationships with business partners;
  • ensuring debts are paid;

RECIPIENTS

We share your information as with others as follows:

  • Suppliers: who support our business including IT and communication suppliers, outsourced business support, accounting services that are subject to the appropriate contractual obligation of confidentiality, persons authorised by the Law Firm for the processing of Personal Data, subject to the corresponding legal obligation of confidentiality; Law Firm associates, who are subject to the appropriate contractual obligation of confidentiality. Our suppliers have to meet minimum standards as to information security and they will only be provided data in line with their function;
  • Law enforcement bodies and our regulators: or other competent authorities in accordance with legal requirements or good practice;
  • Appropriate parties in the event of emergencies: in particular to protect health and safety of our clients, staff and organisations;
  • Your company or organisation: in relation to us providing legal services;
  • Screening service providers: so that we can comply with legal obligations in relation to the prevention or protection of crime, ant-money laundering, sanctions screening and other required checks;

TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES

Law Firm does not transfer Personal Data to third countries.

DATA RETENTION

We generally keep your information as needed to provide our legal services and to deal with claims.  We will retain your information as necessary to comply with legal, accounting or regulatory requirements (e.g. at least 11 years, according to the Accounting Act, 10 years in accordance with Law on Attorneys and 5 or 10 years in accordance with the Anti Money Laundering and Terrorism Financing Act).

YOUR RIGHTS

  • Access: you are entitled to ask us if we are processing your data and, if we are, you can request access to your personal data.  This enables you to receive a copy of the personal data we hold about you and certain other information about it;
  • Correction: you are entitled to request that any incomplete or inaccurate personal data we hold about you is corrected;
  • Erasure: you are entitled to ask us to delete or remove personal data in certain circumstances. There are also certain exceptions where we may refuse a request for erasure, for example, where the personal data is required for compliance with law or in connection with claims;
  • Restriction: you are entitled to ask us to suspend the processing of certain of your personal data about you, for example if you want us to establish its accuracy or the reason for processing it;
  • Transfer: you may us to help you request the transfer certain of your personal data to another party;
  • Objection: where we are processing your personal data based on a legitimate interest (or those of a third party) and you may challenge this.  However, we may be entitled to continue processing your information. You also have the right to object where we are processing your personal information for direct marketing purposes;
  • Automated decisions: you may contest any automated decision made about you where this has a legal or similar significant effect and ask for it to be reconsidered.
  • Consent: where we are processing personal data with consent, you can withdraw your consent.

If you want to exercise any of these rights, please contact set out in this Policy below, in writing at the relevant email address.

You also have a right to file a complaint with a Croatian Personal Data Protection Agency as the data protection supervisory authority. 

COOKIES

We use cookies that identify your browser. They collect and store information when you visit our website about how you use it through which it is possible to record your use of the website, as well as provide you with a better service and experience when browsing and for analytics. The personal data we collect through these technologies will also be used to manage your session.

For more information about cookies and how we use them, please see our: Cookie Policy

CONNECTION TO THE OTHER WEBSITES

Our website may contain links to other websites that are not owned, managed, or maintained by the Law Firm. The personal data that you provide through these websites is not subject to this privacy notice and the treatment of your personal data by such websites is not our responsibility. 

If you follow a link to any other websites, please note that these websites have their own privacy notices which will set out how your information is collected and processed when visiting those sites.

SECURITY PRACTICES

We will hold your information securely in line with physical, technical and administrative security measures. However, the transmission of information via the internet is not completely secure. Although we will take reasonable measures to protect your personal information, we cannot guarantee the security of your information transmitted and any transmission is at your own risk.

COMPETENT LAW/JURISDICTION

All questions related to our website and this Policy are governed by Croatian law. You agree that in connection with the procedure pertaining to this website and this Policy will be exclusive and local jurisdiction of the courts in the Republic of Croatia. We do not warrant or imply that our content/materials on our website are suitable for use outside the Republic of Croatia.

CHANGES AND UPDATES OF THE POLICY

Law Firm reserves the right to amend or update this Policy at any time and without prior notice. Please check from time to time any changes or updates to our policies that will be posted here with updated effective date on the first page of the Policy if any changes or updates are made.

CONTACT INFORMATION

If you have any questions or comments regarding this Policy,  or you if you want to exercise any of your rights you can contact us through our online form available at www.cacic.hr, by e-mail info@cacic.hr, or by phone +385 1 4854 777.

Privacy Policy

We are committed to protecting your privacy. This notice describes how we collect and use your personal data. It also describes the rights you have and control you can exercise in relation to it.

DATA CONTROLLER

Personal data is collected by Čačić & Partners law firm with headquarters in Zagreb, Andrije Hebranga 27, PIN: 66676476512 (“Law Firm”).

Law Firm acts as a data controller within the meaning of the General Data Protection Regulation (EU) 2016/679 (“GDPR”).

This Privacy Policy (“Policy”) gives an insight into our procedures regarding the collection and processing of personal data and the terms of use of our website.

DATA COLLECTION

We will collect the following personal data:

  • Contact information: your name, position, role, company or organisation, telephone (including mobile phone number where provided) as well as email and postal address;
  • Business information: data identifying you in relation to matters on which you instruct us or in which you are involved;
  • Your logon ID and password: for access to client services or platforms;
  • Information from public sources: e.g. LinkedIn and similar professional networks, directories or internet publications;
  • Information in connection with investigations or proceedings: where this is necessary to conduct the investigation or proceedings;
  • Attendance records: to record your attendance at our offices for security purposes;
  • Subscriptions/preferences: when you subscribe to receive legal briefings, updates or newsletters as well as consent preferences to help us identify which materials you are interested in receiving;
  • Events data: attendance at and provision of feedback forms in relation to our events;
  • Supplier data: contact details and other information about you or your company or organisation where you provide services to the Law Firm;
  • Social media: posts, Likes, tweets and other interactions with our social media presence;
  • Technical information: [when you access this website and our technology services being IP address, browser type and version (e.g. Internet Explorer, Firefox, Safari etc.), time zone setting, browser plug-in types and versions, operating system you are using (e.g. Vista, Windows XP, MacOS, etc), device type, hardware model, MAC address, unique identifiers and mobile network information];
  • Online data: [when you access this website and our technology services, information about your visit including URL clickstream to, through and from our website (including date and time), information about your network as such as information about devices, nodes, configurations, connection speeds and network application performance; pages viewed or searched for, page response times, download errors, length of visits and interaction information (such as scrolling, clicks, mouse-overs) and whether you click on particular links or open our emails].   

Law Firm does not collect personal data about your online activities across third party websites or online services.

  • Criminal record data: where permitted by national law and appropriate to do so, such as existence of prior criminal offences (or confirmation of clean criminal record)

The above data will be provided to us by you, your employer, the company or organisation who is our client or screening providers who assist us with our legal obligations to conduct under anti-money laundering, sanctions screening and regulatory checks.

Law Firm will not collect Personal Data unless you voluntarily provide it to us, except for certain Personal Data collected through the information systems and programs used for the operation of our website, whose transmission is necessary for the use of internet communication protocols and will not require more information than necessary for performing certain activity. If you do not want to provide us with Personal Data (except Personal Data relating to the use of internet communication protocols that are usually collected when visiting the website), you can still access our website, but you will not be able to send us your CV’s or contact us.

Please do not send us confidential information until we have confirmed in writing that we represent or act for you or your company or organisation.  Unsolicited emails from non-clients do not establish a lawyer-client relationship.  They may not be privileged and, therefore, may be disclosed to others. 

HOW WE USE YOUR PERSONAL DATA

We use your personal data for the following purposes:

  • Service provision: providing legal advice;
  • Business relationship: managing and administering our relationship with you, your company or organisation including keeping records about business contacts, services and payments so we can customise our offering for you, develop our relationship and target our marketing and promotional campaigns;
  • Communication: sending emails, newsletters and other messages to keep you informed of legal developments, market insights and of our services, when you contact us via the contact form or via e-mail, when we process your job application;
  • Client legal compliance: client due diligence (under anti-money laundering, sanctions screening and other crime prevention and detection laws and regulatory requirements) which may involve automated screening checks to ensure that clients and contacts are genuine and to prevent fraud or crime and we may not be able take instructions if you do not provide the information we need to do these checks;
  • Website monitoring: to check the website and our other technology services are being used appropriately and to optimise their functionality;
  • Site security: to provide security to our offices and other premises (normally collecting your name and contact details on entry to our buildings);
  • Online security: protecting our information assets and technology platforms from unauthorised access or usage and to monitor for malware and other security threats;
  • Regulatory: compliance with our legal and regulatory obligations as a law firm including auditing and reporting requirements;
  • Managing suppliers: who deliver services to us;
  • Legitimate interest: to pursue the legitimate business interests listed in the “Legitimate Interests” section of this policy below.

Giving Personal Data is voluntary, but any refusal to provide such data may disable Law Firm to enter into contract with you, respond to your requests, provide you with legal services, receive and process your application, comply with the legal obligations under which the Law Firms is subject, carrying out data analytics or communicating with you in certain situations.

LEGAL GROUNDS FOR USING PERSONAL DATA

When you provide your Personal Data or when we receive your Personal Data, we will limit the processing of Personal Data for purposes for which they have been collected in accordance with this Policy.

We will process your personal data because:

  • you have given us consent: for example where you share details for particular purposes;
  • this is necessary to comply with legal or regulatory obligations: for example anti-money laundering and mandatory client screening checks or disclosure to law enforcement.
  • this is necessary to deal with legal claims
  • processing is necessary for our legitimate business interests or those of a third party:  provided this does not override any interests or rights that you have as an individual. Our legitimate interests are listed in the next section.

LEGITIMATE INTERESTS

We have legitimate business interests in:

  • providing legal services;
  • managing our business and relationship with you or your company or organisation;
  • understanding and responding to inquiries and client feedback;
  • understanding how our clients use our services and websites;
  • identifying what our clients want and developing our relationship with you, your company or organisation;
  • improving our services and offerings; 
  • enforcing our terms of engagement and website and other terms and conditions;
  • ensuring our systems and premises are secure;
  • developing relationships with business partners;
  • ensuring debts are paid;

RECIPIENTS

We share your information as with others as follows:

  • Suppliers: who support our business including IT and communication suppliers, outsourced business support, accounting services that are subject to the appropriate contractual obligation of confidentiality, persons authorised by the Law Firm for the processing of Personal Data, subject to the corresponding legal obligation of confidentiality; Law Firm associates, who are subject to the appropriate contractual obligation of confidentiality. Our suppliers have to meet minimum standards as to information security and they will only be provided data in line with their function;
  • Law enforcement bodies and our regulators: or other competent authorities in accordance with legal requirements or good practice;
  • Appropriate parties in the event of emergencies: in particular to protect health and safety of our clients, staff and organisations;
  • Your company or organisation: in relation to us providing legal services;
  • Screening service providers: so that we can comply with legal obligations in relation to the prevention or protection of crime, ant-money laundering, sanctions screening and other required checks;

TRANSFER OF PERSONAL DATA TO THIRD COUNTRIES

Law Firm does not transfer Personal Data to third countries.

DATA RETENTION

We generally keep your information as needed to provide our legal services and to deal with claims.  We will retain your information as necessary to comply with legal, accounting or regulatory requirements (e.g. at least 11 years, according to the Accounting Act, 10 years in accordance with Law on Attorneys and 5 or 10 years in accordance with the Anti Money Laundering and Terrorism Financing Act).

YOUR RIGHTS

  • Access: you are entitled to ask us if we are processing your data and, if we are, you can request access to your personal data.  This enables you to receive a copy of the personal data we hold about you and certain other information about it;
  • Correction: you are entitled to request that any incomplete or inaccurate personal data we hold about you is corrected;
  • Erasure: you are entitled to ask us to delete or remove personal data in certain circumstances. There are also certain exceptions where we may refuse a request for erasure, for example, where the personal data is required for compliance with law or in connection with claims;
  • Restriction: you are entitled to ask us to suspend the processing of certain of your personal data about you, for example if you want us to establish its accuracy or the reason for processing it;
  • Transfer: you may us to help you request the transfer certain of your personal data to another party;
  • Objection: where we are processing your personal data based on a legitimate interest (or those of a third party) and you may challenge this.  However, we may be entitled to continue processing your information. You also have the right to object where we are processing your personal information for direct marketing purposes;
  • Automated decisions: you may contest any automated decision made about you where this has a legal or similar significant effect and ask for it to be reconsidered.
  • Consent: where we are processing personal data with consent, you can withdraw your consent.

If you want to exercise any of these rights, please contact set out in this Policy below, in writing at the relevant email address.

You also have a right to file a complaint with a Croatian Personal Data Protection Agency as the data protection supervisory authority. 

COOKIES

We use cookies that identify your browser. They collect and store information when you visit our website about how you use it through which it is possible to record your use of the website, as well as provide you with a better service and experience when browsing and for analytics. The personal data we collect through these technologies will also be used to manage your session.

For more information about cookies and how we use them, please see our: Cookie Policy

CONNECTION TO THE OTHER WEBSITES

Our website may contain links to other websites that are not owned, managed, or maintained by the Law Firm. The personal data that you provide through these websites is not subject to this privacy notice and the treatment of your personal data by such websites is not our responsibility. 

If you follow a link to any other websites, please note that these websites have their own privacy notices which will set out how your information is collected and processed when visiting those sites.

SECURITY PRACTICES

We will hold your information securely in line with physical, technical and administrative security measures. However, the transmission of information via the internet is not completely secure. Although we will take reasonable measures to protect your personal information, we cannot guarantee the security of your information transmitted and any transmission is at your own risk.

COMPETENT LAW/JURISDICTION

All questions related to our website and this Policy are governed by Croatian law. You agree that in connection with the procedure pertaining to this website and this Policy will be exclusive and local jurisdiction of the courts in the Republic of Croatia. We do not warrant or imply that our content/materials on our website are suitable for use outside the Republic of Croatia.

CHANGES AND UPDATES OF THE POLICY

Law Firm reserves the right to amend or update this Policy at any time and without prior notice. Please check from time to time any changes or updates to our policies that will be posted here with updated effective date on the first page of the Policy if any changes or updates are made.

CONTACT INFORMATION

If you have any questions or comments regarding this Policy,  or you if you want to exercise any of your rights you can contact us through our online form available at www.cacic.hr, by e-mail info@cacic.hr, or by phone +385 1 4854 777.