Privacy Policy

1. Introduction

Semicolon d.o.o. ("we", "us", "our", "Company") operates the Operitivo platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

We are committed to protecting your personal data and respecting your privacy. This policy is compliant with the General Data Protection Regulation (EU) 2016/679 ("GDPR").

2. Data Controller

The data controller responsible for your personal data is:

3. Information We Collect

Information You Provide

• Account Information: Name, email address, password, phone number
• Business Information: Business name, address, VAT number (OIB), IBAN
• Client Data: Information about your clients that you enter into the system
• Financial Data: Invoice and payment information
• Communication Data: Messages you send through the platform

Information Collected Automatically

• Usage Data: Pages visited, features used, time spent on pages
• Device Information: Browser type, operating system, device type
• Log Data: IP address, access times, referring URLs
• Cookies: See our Cookie Policy for details

4. How We Use Your Information

We use your personal data for the following purposes:

5. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

6. Data Sharing

We may share your data with:

Service Providers

• Cloud hosting providers (EU-based)
• Email service providers
• Payment processors

Legal Requirements

• Croatian Tax Administration (for fiscalization)
• FINA (for eRacun processing)
• Law enforcement when required by law

Business Transfers

In the event of a merger, acquisition, or sale, your data may be transferred.

We do NOT sell your personal data to third parties.

7. International Data Transfers

Your data is primarily stored within the European Union. If we transfer data outside the EU, we ensure appropriate safeguards are in place:

• Standard Contractual Clauses (SCCs)
• Adequacy decisions by the European Commission

8. Your Rights (GDPR Articles 15-22)

You have the following rights regarding your personal data:

1. Right of Access (Art. 15): Request a copy of your personal data
2. Right to Rectification (Art. 16): Request correction of inaccurate data
3. Right to Erasure (Art. 17): Request deletion of your data ("right to be forgotten")
4. Right to Restriction (Art. 18): Request limitation of processing
5. Right to Data Portability (Art. 20): Receive your data in a structured format
6. Right to Object (Art. 21): Object to processing based on legitimate interests
7. Right to Withdraw Consent (Art. 7): Withdraw consent at any time

To exercise these rights, contact us at: info@operitivo.com

We will respond within 30 days of receiving your request.

9. Data Security

We implement appropriate technical and organizational measures to protect your data:

• Encryption in transit (TLS/SSL)
• Encryption at rest
• Access controls and authentication
• Regular security assessments
• Employee training on data protection

10. Cookies

We use cookies and similar technologies. For detailed information, please see our Cookie Policy.

11. Children's Privacy

Our Service is not intended for individuals under the age of 16. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

13. Supervisory Authority

If you believe we have violated your data protection rights, you have the right to lodge a complaint with the Croatian Personal Data Protection Agency (AZOP):

14. Contact Us

For questions about this Privacy Policy or to exercise your rights: