Data Controller
DitoBit d.o.o., Ravnice 5, 10431 Sveta Nedelja, Croatia is the data controller for all processing described here. You can reach us at (+385) 99 780 4790 or info@ditobit.com.
Ditobit. Privacy Policy
This Privacy Policy complies with the EU General Data Protection Regulation and explains how DitoBit d.o.o. collects and uses personal data on www.ditobit.com and while delivering our services.
Data We Collect
We collect identification and contact data, authentication data for client portals, payment and invoicing data, usage data from our website, and any project assets shared with us. We do not intentionally collect special category data unless our client specifically instructs us to do so and provides the legal basis.
Legal Bases and Purpose
We process personal data to perform a contract with you, to comply with EU or Croatian legal obligations, to pursue legitimate interests such as securing our network, and on the basis of your consent for marketing or optional analytics cookies. We only use automated decision making for basic fraud prevention checks and it does not produce legal effects.
Retention
We store project data for the duration of the contract and for up to five years afterward to protect our legal interests. Accounting documents are stored for eleven years as required by Croatian law. Anonymised analytics are retained for up to twenty four months.
Sharing and Transfers
We share personal data only with service providers that support hosting, email, analytics, payments, or customer support. Each provider is bound by a written data processing agreement. If data leaves the European Economic Area, we rely on an adequacy decision or on EU Standard Contractual Clauses. We never sell personal data.
Your Rights
You can request access, correction, deletion, restriction, or portability of your personal data, and you may object to processing based on our legitimate interest or withdraw consent at any time. We respond to every request within one month. If you believe processing is unlawful you can lodge a complaint with the Croatian Personal Data Protection Agency or with your local EU authority.
Security
We apply encryption in transit and at rest where feasible, enforce access controls based on the principle of least privilege, and regularly test our infrastructure. If a personal data breach occurs we notify affected users and the competent supervisory authority in line with GDPR timelines.
Contact
Contact info@ditobit.com or call (+385) 99 780 4790 for any questions about this Policy or to exercise your rights. We may update this Policy as laws evolve, and any significant change will be highlighted on this page with a new effective date.