The protection of your privacy is very important to us. We therefore proceed with all data processing procedures (e.g. collection, processing and transmission) in accordance with the legal regulations of European and Croatian data protection law.
When you interact with us, we receive information about you, whether over the phone or via email communication or on our website or social media on which you follow us. Depending on your personal interaction with us, different types of information are collected and stored. At this point, we would like to explicitly point out that we will at no time sell your personal data or pass it on to third parties for advertising purposes.
In order to fulfil your order of products on our website, we need to collect some personal information, mainly about your identity (name, surname, telephone number, address, e-mail, etc.). This information is used to create a customer profile for you, to which we can assign your order and through which we can organise delivery of products you order on our website. Certain data from this set can be shared due to legally prescribed guidelines and for the purpose of contract processing/fulfilment of the contract. Failure to provide personal data would mean that the contract could not be concluded.
In the case of general enquiries, the data of your enquiry (name, contact details, content of the enquiry, history of previous contacts with us) communicated by you via the contact form online, by e-mail or by telephone will be processed by us for customer care (pre-contractual measures). Your data will be deleted by us 3 years after your last enquiry unless there is a legal obligation to store the data.
you have given us permission, we will keep in touch with you via any means of communication we have collected during your contact with us in order to inform you about our services.
Social media: If you follow Pitter GmbH on social media, the social media provider (Facebook, Instagram, Google review) is responsible for the collection, storage and use of your data. We have access to the analytics tools they provide (e.g. demographic data) which we use for information purposes. We can also view any information you share through the platforms. However, we will not use or store this information without your consent. Please be aware of the privacy policies of each social media platform.
What security measures have we put in place to protect your information? We have taken a variety of security measures to reasonably and adequately protect personal information.
We use standard SSL encryption technology when collecting and transmitting data through our websites. Personal data is transmitted via SSL encryption, recognisable by the lock symbol in the browser and the addition "https://" in the address bar.
When communicating by e-mail, we cannot guarantee complete data security.
However, we would like to point out that data transmission on the Internet (e.g. when communicating by e-mail or website) can have security gaps. Complete protection of data against access by third parties is not possible.
The following declaration gives you an overview of which of your data is requested on our websites, in which way data is used and passed on by us, in which way you can obtain information about the information given to us and which security measures we take to protect your data.
Who is your contact person (data controller) for your data protection concerns?
The person responsible within the meaning of the data protection regulations for all data processing processes carried out via our websites is:
Pitter putnička agencija d.o.o.
Telephone: 023 / 384-631
We have not appointed a data protection officer, as we do not meet the legal requirements for such an appointment.
Please direct any enquiries on the subject of data protection and the assertion of data subject rights (cf. below) to the aforementioned address.
What data do we need from you to use our websites? What data is collected and stored during use?
Personal data is any information relating to an identified or identifiable natural person ("data subject"), such as your name, address, telephone number, date of birth, bank details and IP address.
As a matter of principle, we collect and use personal data of our users only insofar as this is necessary for the provision of a functional website as well as our content and services. The collection and use of our users' personal data regularly only takes place with the user's consent. An exception applies in those cases in which it is not possible to obtain prior consent for factual reasons and the processing of the data is permitted by legal regulations.
When using our websites, the following data is logged, whereby the storage serves exclusively internal system-related and statistical purposes, so-called usage data:
- Origin (country and city)
- Operating system of the user
- Device (PC, tablet PC or smartphone)
- Browser used and all add-ons used
- Resolution of the computer
- Source of visitors (Facebook, search engine or referring website)
- Which files were downloaded?
- Which videos were watched?
- Were advertising banners clicked?
- Where did the visitor go? Did he click on other pages of the portal or did he leave it completely?
- How long did the visitor stay?
This data is also stored in the log files of our system. This data is not stored together with other personal data of the user.
The legal basis for the temporary storage of the data and the log files is Art. 6 para. 1 lit. f GDPR.
The temporary storage of the IP address by the system is necessary to enable delivery of the website to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session.
The storage in log files is done to ensure the functionality of the website. In addition, we use the data to optimise the website and to ensure the security of our information technology systems. An evaluation of the data for marketing purposes does not take place in this context.
These purposes are also our legitimate interest in data processing according to Art. 6 para. 1 lit. f GDPR.
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.
In the case of storage of data in log files, this is the case after seven days at the latest. Storage beyond this period is possible. In this case, the IP addresses of the users are deleted or alienated so that an assignment of the visiting client is no longer possible.
The collection of data for the provision of the website and the storage of the data in log files is absolutely necessary for the operation of the website. Consequently, the user has no possibility to object.
On our website, we offer users the opportunity to make an order of products, request a nautic shop or service offer, send a charter or investment enquiry or a general enquiry, or subscribe on the charter newsletter. The data is entered in the respective input mask and transmitted to us and stored. The following data is processed in each case:
- First name
- Street / No.
- Telephone number
- Bank account number
The legal basis for the processing of the data is Art. 6 para. 1 lit. b GDPR - fulfilment of a contract to which the user is a party or the implementation of pre-contractual measures.
The data will be deleted as soon as they are no longer required for achieving the purpose for which they were collected and there are no statutory retention obligations to the contrary.
This is the case for the fulfilment of a contract or the implementation of pre-contractual measures when the data is no longer required for the implementation of the contract. Even after the conclusion of the contract, there may be a need to store personal data of the contractual partner in order to comply with contractual or legal obligations.
You can exercise your rights regarding personal data stored about you at any time by contacting us at the address given above.
If the data is required for the fulfilment of a contract or for the implementation of pre-contractual measures, early deletion of the data is only possible insofar as contractual or legal obligations do not prevent deletion.
On our website we have a contact form for you to conveniently contact us electronically and send us your request. We only collect your name, address, telephone number and e-mail address via the contact form. Your IP address is also stored at the time you send the message:
Your consent is obtained for the processing of the data as part of the sending process and reference is made to this data protection declaration.
Alternatively, it is possible to contact us via the e-mail address provided. In this case, the user's personal data transmitted with the e-mail will be stored.
We will only use your data to process your request and may contact you for this purpose using the contact details provided. We do not use this data for advertising purposes or pass it on to third parties.
The legal basis for the processing of the data is Art. 6 para. 1 lit. a GDPR if the user has given his consent.
The legal basis for the processing of data transmitted in the course of sending an e-mail is Art. 6 para. 1 lit. f GDPR. If the e-mail contact aims at the conclusion of a contract, the additional legal basis for the processing is Art. 6 para. 1 lit. b GDPR.
The processing of the personal data from the input form is solely for the purpose of processing the contact. In the case of contact by e-mail, this also constitutes the necessary legitimate interest in processing the data.
The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the input mask of the contact form and those sent by e-mail, this is the case when the respective conversation with the user has ended. The conversation is ended when the circumstances indicate that the matter in question has been conclusively clarified.
The additional personal data collected during the sending process will be deleted after a period of seven days at the latest.
The user has the option of revoking his or her consent to the processing of personal data at any time by contacting the contact details provided above. If the user contacts us by e-mail, he / she can object to the storage of his personal data at any time. In such a case, the conversation cannot be continued.
All personal data stored in the course of contacting us will be deleted in this case.
How is my data used and, if applicable, passed on to third parties and for what purpose?
We use the personal data you provide to answer your enquiries, to process your order of products, services or for the purpose of the technical administration of our websites.
Your personal data will only be passed on or otherwise transferred to third parties if the transfer is necessary for the purpose of processing the contract or for billing purposes or for collecting the fee, or if you have expressly consented to this. In addition, we are entitled to pass on personal data for collection purposes and reserve the right to exchange data with protection organisations of the economy; this, of course, only if the legal requirements for this are met.
Occasionally we will ask you to provide information anonymously as part of surveys. We need this information to make our offer more interesting for you and to be able to keep our information up to date. These surveys are of course voluntary, your information will be collected anonymously and treated confidentially. An identification of users is excluded.
Disclosure in cases ordered by law
We would like to point out that we are entitled to provide information about data in individual cases on the order of the competent authority, insofar as this is necessary for the purposes of criminal prosecution, for the prevention of danger by the police authorities of the federal states.
Booking system NauSYS
In order to give you the possibility to always be informed about the availability of our charter yachts, we and our contracting partners use the booking system NauSYS (Selska 90a, Sigma centar, 2nd floor, 10 000 Zagreb, Croatia) on our website.
The data entered there is forwarded exclusively to us and our contracting partners in accordance with the agreements made with the system operators and processed only by us. In the booking systems, only those data are processed and stored that are necessary for the functioning of the system. If this is no longer the case, they are deleted.
The booking system operators act on their own responsibility and are responsible for compliance with the GDPR in their area.
Advertising approach by e-mail (e.g. e-mail newsletter)
On our website you have the option of subscribing to a free newsletter. When you register for the newsletter, your e-mail address is transmitted to Pitter Gesellschaft m.b.H., Raimund-Obendrauf-Straße 30, 8230 Hartberg, Österreich and Pitter putnička agencija d.o.o. will not have access to that personal dana.
For the processing of the data, your consent is obtained during the registration process and reference is made to this data protection declaration.
No data will be passed on to third parties in connection with the processing of data for the dispatch of newsletters. The data is used exclusively for sending the newsletter.
The legal basis for the processing of the data after registration for the newsletter by the user is Art. 6 para. 1 lit. a GDPR if the user has given his consent.
The collection of the user's email address is used to deliver the newsletter.
Pitter d.o.o. is completely aware that children are particularly vunerable group and therefore pays special attention to the protection of their personal data.
Pitter services are not intended for children under the age of 18 years. If we find out that we are processing dana about a child under the age of 18 years without the valid consent of a parent or guardian, we will delete that dana immediately.
When you use our website, a cookie is placed on your computer. What does this mean?
We use so-called cookies on our websites. Cookies are small amounts of data in the form of text information that the web server sends to your browser. These are only stored on your hard drive. Cookies can only be read by the server that previously stored them and receive information about what you have viewed on a website and when. Cookies themselves only identify the IP address of your computer and do not store any personal information, such as your name. The data stored in the cookies is not linked to your personal data (name, address, etc.).
The session ID for the website is stored and transmitted in the cookies.
In this way, the following data can be transmitted:
The following is a list of the data collected. These can be, for example:
- Search terms entered
- Frequency of page views
- Use of website functions
The user data collected in this way is pseudonymised by technical precautions. Therefore, it is no longer possible to assign the data to the calling user. The data is not stored together with other personal data of the user.
You can decide for yourself whether to allow cookies. On the one hand, by changing your browser settings (usually found under "Option" or "Settings" in the menus of the browsers), you have the choice of accepting all cookies, being informed when a cookie is set or rejecting all cookies. On the other hand, you can freely decide via the banner which is displayed when you first call up our websites and which refers to this data protection declaration whether you wish to give us your consent for cookies to be set or whether you wish to reject this.
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. The user's e-mail address is therefore stored for as long as the subscription to the newsletter is active.
The subscription to the newsletter can be cancelled by the user concerned at any time. For this purpose, there is a corresponding link in each newsletter.
This also enables revocation of consent to the storage of personal data collected during the registration process.
By giving your consent via the banner, you agree that we may set cookies on your terminal device and process them for the purposes stated in this data protection declaration.
You can revoke this consent at any time by contacting us at the address given in 1. above. The legality of the data processing carried out on the basis of the consent up to the revocation remains unaffected by this.
The legal basis for the processing of personal data using technically necessary cookies is Art. 6 para. 1 lit. f GDPR.
The legal basis for the processing of personal data using cookies for analysis purposes is Art. 6 para. 1 lit. a GDPR if the user has given his or her consent in this regard.
The user data collected through technically necessary cookies are not used to create user profiles.
Analysis cookies are used to improve the quality of our website and its content. Through the analysis cookies, we learn how the website is used and can thus continuously optimise our offer.
These purposes are also our legitimate interest in processing the personal data according to Art. 6 para. 1 lit. f GDPR.
Use of services for marketing and analysis purposes
We use Google Analytics What does this mean for your data?
As an alternative to installing the browser plug-in, you can prevent the collection of data by Google Analytics, especially in internet browsers of mobile devices, by clicking on the following link: Deactivate Google Analytics.
This will place a so-called opt-out cookie on your device, which will prevent the future collection of your data by Google Analytics when visiting this website.
Please note that if you delete cookies in your browser settings, this may also delete the Google Analytics opt-out cookie and you may have to reactivate it.
We use Google Maps plugins. What does this mean for you?
We use so-called retargeting or remarketing technologies on our websites What does this mean?
On our websites, we use technologies for so-called retargeting or remarketing. This is a tracking method in the field of online marketing in which visitors to a website are marked and then addressed again on other websites with targeted advertising. We use this new technology to make our offer even more attractive and to inform you about current offers that you have already viewed in our online shop and to recall them.
Technically, depending on the retargeting service, either an additional cookie is stored on your computer or cookies already set in your browser (cf. 8.) are used, which usually anonymously identify you or your computer or your browser as an Internet user via the so-called cookie ID and log your surfing behaviour, in particular which of our websites you have accessed. The cookie can then be read and evaluated by the targeting providers with whom we cooperate (see below). This means that you will also be shown advertisements for our products or recommendations for comparable products from third-party providers, e.g. as personalised advertising banners, on other websites.
In the case of Facebook remarketing, so-called web bugs fulfil a similar function to cookies, which, however, are not noticeable to you as a user of our websites. Web bugs or "clear GIFs" are small GIF files approximately 1*1 pixel in size that can be hidden in other graphics, e-mails or similar. Web bugs send your IP address, the Internet address (URL), the time at which the web bug was viewed, your browser type, and previously set cookie information to a web server.
The data collected about your surfing behaviour via cookies or web bugs cannot be used to identify you personally as a visitor to our websites. We only use the data to improve our services and to evaluate user behaviour on our websites (e.g. reactions to promotions); we do not use the data in any other way or pass it on to third parties. This data is anonymous and not linked to any personal data on your computer or to any database.
To prevent web bugs on our websites, you can use tools such as webwasher, bugnosys or AdBlock. To prevent web bugs in our newsletter, please set your mail programme so that no HTML is displayed in messages. Web bugs are also prevented if you read your emails offline. Without your explicit consent, we will not use web bugs to collect unnoticed personal data about you or to transmit such data to third-party providers and marketing platforms.
Google AdWords Remarketing
On our websites we use Google AdWords Remarketing, a service of Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043 USA ("Google"). With the help of this service, we can show you advertising messages, e.g. interesting product offers, on the websites of other providers who also use these services from Google ("partners" in the Google Display Network). This is done using cookie technology (see 8.).
For this purpose, Google stores a small file with a sequence of numbers (so-called cookie ID) in your browser in order to remember you as a visitor to our websites and to collect further anonymous data on the use of our websites. The cookie ID is stored by us and is only used to uniquely identify your browser and not to identify you personally. Personal data about you is not collected or stored via these services.
We also use Google Remarketing across devices. This means that if, for example, you start your shopping in our online shop on your smartphone and finish it on your laptop, we can also reach you with the aforementioned personalised advertising messages on the other device you use. However, this will only happen if you have consented to Google linking your web and app browsing history to your Google Account and using information from your Google Account to personalise ads you see on the web. In this case, Google uses the data of these logged-in users together with Google Analytics data to create and define target group lists for cross-device remarketing. To support this feature, Google Analytics collects Google-authenticated IDs of these users. This data from Google is temporarily linked to our Google Analytics data to build our audiences.
Please check your Google account privacy settings to prevent Google from linking your web and app browsing history to your Google account.
On our websites, we also use "Custom Audiences" for retargeting and remarketing purposes, a service provided by Facebook Inc, 1601 S. California Ave, Palo Alto, CA 94304, USA ("Facebook"). With the help of this service, we can target you with advertising by displaying so-called Facebook ads for visitors to our websites when they visit the social network Facebook.
For this purpose, we have implemented so-called remarketing pixels from Facebook on our websites. These are code snippets which are able to identify your browser type via the browser ID - the individual fingerprint of your browser - and to recognise that you have visited our websites and what exactly you have looked at on our website. When you visit our websites, a direct connection to Facebook's servers is established via the pixel. Facebook is able to identify you by means of your browser ID, as this is linked to other data about you stored by Facebook for your user account. Facebook will then deliver individualised ads from us tailored to your needs on your Facebook chronicle or elsewhere on Facebook.
We ourselves are not able to identify you personally via the Facebook pixel, as apart from your browser ID, no other personal data is stored by us via Facebook's remarketing pixel.
You can deactivate the use of Facebook Remarketing by clicking on the corresponding link in the box highlighted in grey further down in this section. To do this, you must be logged in to your Facebook account.
If you do not want to be shown advertising generated by the respective targeting service, you can object to the use of retargeting technology on our websites by unsubscribing from the respective targeting service. The corresponding links to the websites of the targeting services cooperating with us are as follows:
- Google AdWords Remarketing
- Facebook Remarketing
Details on data processing by the respective targeting service can be found in the data protection provisions of this service, which we have linked for you above. By clicking on the link, you will receive information on how you can object to the use of targeting services on your computer.
Google AdWords Conversion Tracking
On our websites we use the Google AdWords Conversion Tracking function, a service provided by Google Inc, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA ("Google"). When you click on an AdWords ad placed by Google, a so-called conversion tracking cookie is stored on your computer. This cookie is valid for 30 days and does not contain any personal data, so we cannot identify you personally.
With the help of conversion tracking, we and also Google can recognise which AdWords ads you have clicked on and whether you were redirected to our websites via this ad, provided you visit our websites and the validity of the cookie has not yet expired. We receive our own cookie from Google, which is different from cookies of other customers of this Google service, so that we can only carry out reach measurement with regard to our cookie and not across all websites of customers of the Google service AdWords. The cookie is used to create our own conversion statistics about customers who visit our websites via AdWords ads.
To object to participation in Google AdWords conversion tracking, you must deactivate the storage of Google tracking cookies by selecting the appropriate setting in your browser. You will then not be included in our conversion tracking statistics.
All of the aforementioned services are used for advertising and marketing purposes with the aim of making our offer more attractive. As described above for the individual services, we take your right to data protection seriously in that you can object to all services and we inform you in advance about this data protection notice. The legal basis for the aforementioned data processing operations is Art. 6 (1) lit. f GDPR.
Data subject rights
If personal data is processed by you, you are a data subject within the meaning of the GDPR and you have the following rights against the controller:
Information, correction, restriction of processing and deletion.
You have the right to obtain information free of charge at any time about the data we have stored about you, its origin and recipients, as well as the purpose of the data processing via our websites. In addition, you have the right to correction, deletion and restriction of the processing of your personal data, provided that the legal requirements for this are met.
Right to data portability
You have the right to receive the personal data concerning you that you have provided to us as the controller in a structured, commonly used and machine-readable format. We can fulfil this right by providing you with a csv export of the customer data processed about you.
Right to information
If you have exercised the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to inform all recipients to whom the personal data concerning you has been disclosed of this rectification or erasure of the data or restriction of processing, unless this proves impossible or involves a disproportionate effort.
You have the right against the controller to be informed about these recipients.
Right of objection
You have the right to object at any time, on grounds relating to your particular situation, to the processing of personal data concerning you which is carried out on the basis of Article 6(1)(e) or (f) GDPR ; this also applies to profiling based on these provisions.
The controller shall no longer process the personal data concerning you unless it can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves the purpose of asserting, exercising or defending legal claims.
If the personal data concerning you is processed for the purposes of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purposes of such marketing; this also applies to profiling insofar as it is related to such direct marketing.
If you object to the processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.
You have the possibility, in connection with the use of information society services, notwithstanding Directive 2002/58/EC, to exercise your right to object by means of automated procedures using technical specifications.
Revocability of declarations of consent under data protection law
In addition, you can revoke your consent at any time with effect for the future by contacting us using the contact details below.
Right to complain to a supervisory authority
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your residence, place of work or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the EU General Data Protection Regulation (GDPR).
The supervisory authority to which the complaint has been lodged will inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy under Article 78 of the GDPR.
In Croatia, the supervisory authority is Croatian Personal Data Protection Agency, Selska cesta 136, Zagreb, firstname.lastname@example.org, telephone: 01 4609-000
Through our websites you can access other websites which are not under our responsibility. We have no influence on the nature, content and availability of these sites. A link does not necessarily imply a recommendation or approval of the content expressed therein. In no event will we be liable for any loss or damage, including without limitation, indirect or consequential loss or damage, or any damages whatsoever arising from loss of data or misuse of this website.
In the event that we make significant changes, we will notify you clearly and in a timely manner so that you can review the changes and decide on your own whether or not you will continue use Pitter services. Depending on the type of personal dana processing, the notification will be published on the Pitter website.