Data protection and privacy rules are a basic document that describes the purpose and goals of collecting, processing and managing personal data, as well as ensuring an appropriate level of data protection (hereinafter: ‘Rules’). In order to ensure fair and transparent processing, MERCENARY provides you with clear information about the processing and protection of personal data that it collects and processes, and enables simple monitoring and management of personal data and consents.
The rules were formed in accordance with the current regulations, Regulation (EU) 2016/679 of the European Parliament and Council – General Data Protection Regulation – GDPR and the Law on the Implementation of the General Data Protection Regulation (Official Gazette 42/18) .
MERCENARY has appointed a data protection officer who can be contacted by e-mail at firstname.lastname@example.org or by post at Mercenary, C/O Jakob Mølbjerg, Ottrupgård , 9520 Skörping.
DATA WE COLLECT
1.1. While visiting our websiteYou can visit our website without providing any information about yourself. In this case, we will collect technical access data that your browser will automatically transmit to our server(s) when browsing our website. Access data includes the following information:
– time and date of access.
– the address of the website you accessed and are accessing.
– content of the request (addresses and names of requested files).
– information about the used browser and operating system (versions, language settings) .
– online identification data (eg IP address, device identification, session IDs) .
– error messages, where applicable (if the requested content cannot be displayed) .
– the last visited page where you were redirected to our site via a link.
When visiting our website, your access data will be automatically stored in the log files of our server(s) and subsequently anonymized by shortening or deleting your IP address. After this procedure, it will no longer be possible to draw conclusions about your person based on the server log file.
On your first visit to our website, you will independently select the level of cookies you want to store on your computer and thus fully manage the process of using cookies.
You can review and delete the cookies used in your browser’s security settings. You can configure your browser settings according to your preferences and, for example, refuse to accept third-party cookies or any cookies at all.
1.3. When you contact usWe will collect the communication data you fill in when you contact us via the contact form on our website, by e-mail, telephone or otherwise. Depending on the channel you use, this may include e.g. contact details (e.g. email address or phone number) and the content of your message. Telephone conversations with MERCENARY’s customer service are not recorded, nor are any other conversations sent to MERCENARY phone numbers.
If you check the box to receive the newsletter, you will be sent an automatic double opt-in email from the Mailchimp service to confirm the saving of this data in our contact database. We will also use the offers provided by social networks such as Facebook and Instagram to interact with our customers. Please note that EMPLOYERS have no influence over the terms of service of social networks or their data processing policies. Therefore, be sure to check the personal data you submit to us via social networks.
1.4. When you sign up to receive the newsletterIf you signed up for the MERCENARY newsletter, we will save your data (e-mail address) that you provided for this purpose in order to send the newsletterr.
You can unsubscribe from our newsletter at any time. To unsubscribe, please use the unsubscribe link at the bottom of each newsletter.
WAYS OF USING COLLECTED DATA
2.1. Website visitWhen you visit and browse the website, we will process access data, server log files and cookies that are collected in this context in order to make our website, its contents and the functionalities you use available to you, and to ensure the stability and security of our IT system and databases.
The legal framework for the legality of data processing when visiting websites is Regulation (EU) 2016/679 of the European Parliament and Council – General Data Protection Regulation – GDPR, Article 6, paragraph 1, subparagraph f – processing necessary for the purposes of legitimate interests – technical availability of the website.
2.2. Customer support and communication within the relationship with existing customersWe process your data with the aim of providing user support in the use of websites. This may include the following, for example:
– processing your requests that you have directed to our customer service
– service communications of a non-commercial nature (eg security information and technical support)
2.5. Internal marketing research, optimization and offer improvementBefore use, we will anonymize the information by removing all personal information, eg replacing your name and other information suitable for identification with random information.
In this way, we can measure which devices our users generally use and from which regions our website is accessed. The collected data helps us continuously optimize the existing offer and develop new functionalities and services.
The legal framework for the legality of processing this type of data is Regulation (EU) 2016/679 of the European Parliament and Council – General Data Protection Regulation – GDPR, Article 6, paragraph 1, indent f – processing necessary for the purposes legitimate interests – improving the functionality of the website and the quality of the offer.
Therefore, we cannot determine which user profiles are associated with a particular user. This means that we can neither determine nor determine how you use our website based on the data collected by Google. In addition, Google uses the privacy protection for the EU-US Privacy Shield (LINK: https://www.privacyshield.gov/) in case personal data is sent to the USA in exceptional cases. Google therefore guarantees European data privacy principles when processing data in the USA.
You can opt out of Google web analytics at any time using one of the following options: < br class="">– you can set your browser to block Google Analytics cookies
– you can adjust your Google ad settings in Google
– you can install an opt-out plugin at the following link: opting out of the Google Analytics service
The legal framework for the legality of processing this type of data is Regulation (EU) 2016 /679 of the European Parliament and Council – General Data Protection Regulation – GDPR, Article 6, paragraph 1, indent f – processing necessary for legitimate interests – analysis of how users use the website.
3.2. FacebookFor marketing purposes, our website uses so-called conversion and retargeting tags (Facebook pixels) of the social network Facebook, services of Facebook Inc, 1601 Willow Road, Menlo Park, California 94025, USA (‘Facebook’). We use Facebook pixels to analyze the general use of our websites and the effectiveness of Facebook ads (‘conversion’). We also use Facebook pixels to show you customized ads based on your interest in our products (‘retargeting’). For this purpose, Facebook processes data collected on our websites through cookies and similar technologies.
Facebook can send data collected in ovom context for analysis to a server located in the USA where the data is stored. Facebook uses privacy protection for the EU-US area in the event that personal data is sent to the USA, the so-called Privacy Shield (LINK: https://www.privacyshield.gov/)
If you have registered on Facebook and set the privacy settings of your Facebook account, Facebook can additionally connect the data collected about your visit to our website to your Facebook account and use it to place targeted Facebook ads. You can review and change the privacy settings of your Facebook profile at any time.
If you opt out of data processing by Facebook, Facebook will only display general Facebook ads that have not been selected on the basis of data collected about you.
If you have a Google Account, Google may, depending on your Google Account settings, link your web browser and application history to your Google Account and use data from your Google Account to customize ads. If you do not want this link to your Google account, you must log out of your Google account before accessing our website.
You can at any time opt out of the processing of personal data for customized online ads on the Google advertising network using one of the following options:
– Google ad customization settings (LINK: https://www. support.google.com/ads/answer/7029158)
– you can install the free Google opt-out plugin (LINK: http://www.google.com/settings/ads/plugin) for the Firefox browser, Internet Explorer or Chrome (does not work for mobile browsers)
– You can opt out of tailored Google ads and ads provided by many other service providers participating in the ‘Your Online Choices’ initiative at http:// www.youronlinechoices.eu
Please note that if you opt out of tailored advertising, Google only displays general ads that are not selected based on your collected access data.
CASES IN WHICH WE WILL SHARE PERSONAL DATAIn principle, we will only share your data if:
– you have expressly consented to this in accordance with Article 6, paragraph 1, indent a, Regulation (EU) 2016/679 of the European Parliament and of the Council – General Regulation on data protection – GDPR
– sharing is necessary according to article 6 paragraph 1 indent f in order to establish, exercise or defend legal claims, and there is no reason to assume that you have an overriding legitimate interest in not sharing your data
– sharing is necessary to comply with a legal obligation from Article 6 paragraph 1, subparagraph c or e, General Data Protection Regulation GDPR, especially if we are required to provide information to a public body
– sharing is permitted by law and necessary under Article 6 paragraph 1, subparagraph b General Data Protection Regulation, GDPR in order to perform a contract with you or take actions according to your request before entering into a contract.
Some of the data processing described here may be performed by external service providers acting on our behalf. The service providers mentioned in this document may include, computer centers that store and maintain our websites and databases, IT service providers that maintain our business systems, as well as consulting companies.
If and to the extent that we share data with our service providers, this data may only be used for the purpose of performing their services. The processing of your data by contractual service providers will take place within the framework of the processing and execution of your order in accordance with Article 28 of Regulation (EU) 2016/679 of the European Parliament and of the Council – General Data Protection Regulation – GDPR. Contract service providers are carefully selected business partners. They are contractually bound by our instructions, implement appropriate technical and organizational measures to protect the rights of data subjects and are subject to regular supervision by us.
HOW LONG WILL IT BEYOU STORE YOUR DATAUnless otherwise stated herein, your data will only be stored for as long as is necessary to fulfill our contractual or legal obligations or the purpose for which the data was originally collected or for as long as we have a legitimate interest in storing such data.
In all other cases, your personal data will be deleted, except for data that we have to keep in accordance with legal retention periods. However, in such cases we will limit data processing, i.e. your data will only be used in accordance with legal obligations.
Normally, your order and payment information and other information, if applicable, are subject to legal retention obligations, so we are required to retain such information for up to ten years.
Even if the data is not subject to legal retention obligations, we may refrain from deleting your data in cases permitted by law and instead limit its processing. This can be applied especially in those cases in which this data can be requested for further processing of the contract or for the exercise of rights or for the purpose of legal defense. The duration of the processing limitation will depend on the legal limitation periods.
YOUR RIGHT TO DATA PROTECTIONYou can contact our data protection officer at any time to exercise your legal data protection rights described below (contacts above in the introductory text).
You always have the right to receive information about our processing of your personal data. When providing such information, we will explain the data processing process and provide you with an overview of your personal data that we store.
If any of the data we have stored is incorrect or no longer current, you have the right to request correction of the data.
You can also request data deletion. If deletion is not possible in exceptional cases due to other legal provisions, the data will be blocked so that it is only available for the stated legal purpose.
You can also restrict data processing, for example, if you believe that the data we store is inaccurate.
You have the right to data transfer, i.e. upon your request, we will provide you with a digital copy of the personal data you have given us.
You also have the right to file a complaint with a data protection supervisory authority. The competent supervisory body is the Personal Data Protection Agency, Martićeva 14, 10000 Zagreb, e-mail: email@example.com.
THE RIGHT TO WITHDRAW CONSENT AND THE RIGHT TO OBJECTIf you wish to exercise your right of withdrawal or objection below, send a notification to the Data Protection Officer at the contact information provided in the introductory part of the text.
7.1. Withdrawal of consent (consent)Article 7 paragraph 3 of the General Data Protection Regulation GDPR (EU) 2016/679 gives you the right to withdraw any consent (consent) you have previously given. This means that in the future we will no longer continue data processing that was based on your consent. Withdrawal of your consent will not affect the lawfulness of processing based on consent prior to its withdrawal.
7.2. Objection to the processing of your dataIf we process your data on the basis of legitimate interests in accordance with Article 6 paragraph 1, subparagraph f of the General Data Protection Regulation GDPR (EU) 2016/679, you have the right, based on Article 21, to object to the way your data is processed if there are reasons for this arise from the specifics of your situation or if the objection is directed against direct advertising.
DATA SECURITYWe use all appropriate technical measures to ensure data security, and in particular to protect your data from risks during data transmission, as well as from unauthorized access by third parties. These measures will be adjusted from time to time in accordance with the latest developments. In order to secure the personal data you enter on our website, we use a secure transport protocol (SSL) that encrypts your data during transmission.
CHANGES TO DATA PROTECTION AND PRIVACY RULES (GDPR)We will update the data protection and privacy rules periodically, when adapting to new versions of the website or when there are changes in the legal regulations. Material changes will be documented in this document, and if necessary, we will secure the consent of our users.
Date of last modification: 19.02.2023.