Privacy Policy

The controller of your personal data is: Roventaris d.o.o. Ulica grada Vukovara 271 10000 Zagreb, Croatia OIB (Tax ID): 92847361058 Email: privacy@roventaris.com For all questions regarding the processing of your personal data, you can contact us at the above email address.

We collect the following categories of personal data: • Identification data: name you provide in the contact form • Contact data: email address • Communication data: content of messages you send us through the contact form • Technical data: IP address, browser type, operating system, language settings, date and time of access • Usage data: information about how you use our website, including pages visited and visit duration • Cookie data: data collected through cookies and similar technologies, as described in our Cookie Policy

We process your personal data for the following purposes: • Responding to your inquiries: When you send us a message through the contact form, we use your data to respond to your inquiry. Legal basis: performance of pre-contractual measures at your request (Art. 6(1)(b) GDPR). • Website improvement: We use analytical data to understand user behaviour and improve website functionality. Legal basis: our legitimate interest (Art. 6(1)(f) GDPR). • Marketing and advertising: With your consent, we use marketing cookies to display relevant advertisements. Legal basis: consent (Art. 6(1)(a) GDPR). • Legal obligations: We may process your data for compliance with applicable laws and regulations. Legal basis: legal obligation (Art. 6(1)(c) GDPR).

We retain your personal data only for as long as necessary to fulfil the purpose for which it was collected: • Contact form data: 12 months from the last communication • Analytics data: 26 months from collection • Marketing cookies: according to the periods stated in the Cookie Policy • Accounting data: in accordance with legal retention periods (up to 11 years) After the retention period expires, data is deleted or anonymised.

Under the General Data Protection Regulation (GDPR), you have the following rights: • Right of access: You have the right to request information about whether we process your personal data and, if so, to access that data. • Right to rectification: You have the right to request correction of inaccurate personal data. • Right to erasure: You have the right to request deletion of your personal data under certain conditions. • Right to restriction: You have the right to request restriction of the processing of your data. • Right to data portability: You have the right to receive your data in a structured, commonly used, machine-readable format. • Right to object: You have the right to object to the processing of your data based on legitimate interest. • Right to withdraw consent: If you have given consent, you have the right to withdraw it at any time. To exercise your rights, contact us at: privacy@roventaris.com

We may share your personal data with the following categories of recipients: • Google LLC (Google Ads, Google Analytics) — for analytics and advertising, based on your consent • Hosting service providers — for website technical infrastructure • Competent authorities — when required by law We do not sell your personal data to third parties. All our partners are bound by appropriate data processing agreements.

Some of our service providers may process your data outside the European Economic Area (EEA). In such cases, we ensure appropriate safeguards, such as the European Commission's standard contractual clauses or adequacy decisions.

We implement appropriate technical and organisational measures to protect your personal data from unauthorised access, loss, destruction, or alteration. This includes encryption of data in transit (SSL/TLS), regular system updates, and restricted access to data.

If you believe that the processing of your personal data is contrary to the GDPR, you have the right to file a complaint with the competent supervisory authority: Croatian Personal Data Protection Agency (AZOP) Selska cesta 136, 10000 Zagreb www.azop.hr azop@azop.hr

We reserve the right to amend this Privacy Policy. Any changes will be published on this page with an updated date. We recommend regularly reviewing this page.