Croadria Travel Agency - PRIVACY POLICY

^{Privacy Policy}

^{Personal dana protection}

Travel agency Croadria, craft for tourism and catering, OIB: 77038187588, in further text Croadria, www.croadria-peljesac.com, info@croadria-peljesac.com croadria.orebic@gmail.com respects privacy and rights of users of our website and in this statement we explain the purpose and means of personal data processing, as well as protection of individuals regarding personal data processing and rules related to the free movement of personal data in accordance with the General Data Protection Regulation (EU) 2016/679.

^{When you visit our site}

we collect information about your IP address, Internet browser you use when visiting our website, sites you visit and actions you take when searching our sites. Cookies store certain data primarily to improve our customer service. The above mentioned data is available to our employees who will not disclose them to anyone. All data is automatically deleted.

^{When booking accommodation}

we require the following information: your email address, your name and surname, your home country, your phone number and in exceptional cases some additional information if required. This data is available to our employees who use them only to complete the booking and statistics work and to our partners (facility owners) you have booked with. We keep the data for up to three months from the date of your departure from the facility.

^{If you book accommodation directly}

we ask for your card information which we forward to the online shopping service provider. We do not store card data. The online credit card payment service provider keeps them in accordance with the law.

If you pay the deposit by bank transfer your bank account and home address information will be available on our bank statement.

Payments by Monri

Confidentiality of your information is protected and secured by using latest TLS encryption. Pages for web payment are secured by using Secure Socket Layer (SSL) protocol with 128-bit data encryption. SSL encryption is a data coding procedure for prevention of unauthorized access during data transfer. This enables a secure data transfer and prevents unauthorized data access during communication between user and Monri WebPay Payment Gateway and vice versa. Monri WebPay Payment Gateway and financial institutions exchange data by using their virtual private network (VPN) which is also protected from unauthorized access. Monri Payments is PCI DSS Level 1 certified payment service provider. Credit card numbers are not stored by Merchant and are not available to unauthorized personnel.

^{If you have given your consent}

because you want to receive our newsletter we will have your e-mail address to which we will send information about promotions and offers. In the e-mail we send you the possibility of unsubscribing, which will prevent your e-mail adress from receiving our news. Your e-mail is available to our employees who access it with special passwords and who use it exclusively for these purposes. Your e-mail is stored with us until you click unsubscribe option in your e-mail.

^{We will disclose personal information}

only if required to do so by law or a court order. Please note that due to legal regulations we are obliged to keep some data in a form, manner and period not defined by this Statement.

All questions regarding your personal data and requesting access to your personal data can be requested at info@croadria-peljesac.com. The Data Protection Officer is Meri Kapiteli.

If you have them you can file complaints about our response at www.azop.hr

Orebic, May 18, 2018