POLIKLINIKA DERMAPLUS FOR DERMATOLOGY AND VENEROLOGY, with its registered office in Zagreb, Kaptol 25, entered in the court register of the Commercial Court in Zagreb under the entity registration number (MBS): 080940607, personal identification number (OIB): 09891009026 (hereinafter: “Data Controller”), takes special care of the security of your personal data that you provide to us by using the website www.poliklinika-dermaplus.hr.
The Data Controller collects the minimum amount of personal data necessary and uses it exclusively for the purpose for which it was collected and about which you have been informed. Similarly, the Data Controller does not share data with third parties without informing you and obtaining your consent. The Data Controller always strives to process and store your data only for as long as necessary for the purposes for which it was collected or as required by applicable law.
1. Data We Collect
The Data Controller collects various types of data to provide its services efficiently, namely (a) data collected from you, (b) data collected about your use of the Publisher’s services, and (c) data collected from third parties.
The Data Controller collects data about your use of the website www.poliklinika-dermaplus.hr, specifically about how and for what purpose the website is used. Such data is necessary to ensure the proper and high-quality functioning of the website, to provide you with quality services, and to comply with our legal obligations and legitimate interests in providing and continuously improving the services we offer you.
During the collection of personal data, certain data may be stored by the Google Analytics platform, which you are informed about in more detail through the Data Controller’s cookie policy.
For more information about the privacy policies of the Google Analytics platform, you can refer to the following link:
https://policies.google.com/privacy?hl=en
Certain services available through our online content allow you to directly contact the Data Controller to make inquiries or book treatment appointments as part of the services provided by the Data Controller. In connection with these services, we may request certain information about you to enable you to use these services and to allow the Data Controller to fulfill your request. In such cases, your personal data is necessary because, without it, the Data Controller cannot process your request. Therefore, you will be presented with a form confirming that you are familiar with the privacy policies, which you must affirmatively acknowledge. For example, in such cases, we may request your email address, first name, last name, phone number, etc. Certain services allow you to communicate with other people. These communications will be transmitted through our systems and stored within them.
In certain situations, the Data Controller collects data about you using other online platforms and sources, which may be combined with other data you make available to us. For example, to provide you with high-quality services tailored to your preferences and interests, the Data Controller uses the Facebook Pixel tool, which tracks your activities on this website and transfers that data to Facebook. As a result, you may receive promotional messages and information via social media tailored to your preferences and interests based on your browsing behavior. This enables you to use services and receive information about services you might not otherwise have been aware of, with the aim of improving your user satisfaction and the quality of services provided by the Publisher. Such tools may be embedded in online content, videos, and emails, allowing servers to read certain types of data from your device, determine when you viewed specific content or an email, and identify the time, date, and IP address of your device. The Publisher and certain third parties use trackers for various purposes, including analyzing service usage and (together with cookies) providing content and advertisements tailored to your needs and interests.
For more information about these tools, you can refer to the following links:
By accessing and using this website, you consent to the use of the described tools and other data on your device. You also consent to the Data Controller and third parties accessing cookies, local storage technologies, and data.
2. Why We Collect Data and Who Has Access to It
Your data is collected and processed for the following purposes:
- For your use of the services;
- To provide services and fulfill your requests;
- To provide you with content and recommendations based on your activities on the website;
- For advertising and sending promotional materials;
- To improve our business and develop the services provided to you;
- To evaluate and analyze activities on this website, our market, users, products, and services;
- To communicate with you;
- To analyze how individuals (including you) use our services and content to improve them and develop new products and services tailored to user preferences;
- For other purposes with your consent.
Your data will not be publicly disclosed. We take special care regarding to whom we provide your data, and we will not share it with third parties for their own independent marketing or business purposes without your consent. In the case of data transfer, we will take all measures to protect the data and, where possible, necessary, and reasonable, pseudonymize it or otherwise make it difficult to link it to you. In exceptional cases, we will strive to fully anonymize your data when we assess that there is a risk to your rights.
The disclosure of your data is possible to entities directly involved in the Data Controller’s operations, which are an integral part of the Data Controller’s business. Furthermore, your data may be shared with trusted and secure business partners whose services and products are an integral part of the services, particularly healthcare services, provided by the Data Controller. An example of such business partners includes laboratories with which the Data Controller collaborates.
If required by law or a decision of an administrative or judicial authority, your data may be disclosed to competent authorities and other parties:
- To comply with the law or respond to mandatory legal processes (such as a search warrant or other court order);
- To verify or achieve compliance with the policies governing our services;
- To protect the rights, property, or safety of users, clients, and the Publisher itself.
The Data Controller uses and continually improves its system for collecting and processing personal data to ensure compliance with legal regulations and, of course, your safety. Reasonable physical and technical data protection measures are employed, and we strive to follow technical advancements and guidelines from authorities responsible for personal data protection, both at the level of the Republic of Croatia and the EU.
3. Use of Cookies
Cookies are small data files stored on your computer, mobile phone, or other devices. HTML5 local storage is a small database located within your browser that websites can use to store data to speed up processing. We may occasionally use both technologies to enhance your user experience.
Cookies have many different functions, such as enabling efficient navigation, storing your preferences, and generally improving your use of our website. Cookies make the interaction between you and our website faster and easier. We use cookies to distinguish you from other website users. This helps us provide you with a good experience when using the website and allows us to improve it. Cookies and other similar technologies, such as local storage, also assist us with authentication to provide you with personalized content.
Below is a list of the specific cookies we use and their purposes:
| Name | Purpose | Retention Period |
| PH_HPXY_CHECK (WordPress) | Necessary for system operation | Until the session expires or the browser is closed |
| _ga (Google Analytics) | These cookies are used to collect data about website usage, such as the pages you visit most frequently. They do not store personal user data but collect aggregated and anonymous data. | 2 years |
| _gid (Google Analytics) | To identify users. | 24 hours |
| _gat_UA-118567594-1 (Google Analytics) | To identify users. | 1 minute |
4. Other
If, despite the content of this privacy and personal data protection statement, certain matters remain unclear, or if you believe that certain details have not been sufficiently explained, feel free to contact our data protection officer with your inquiries. The officer will, within objective possibilities, strive to respond to all inquiries and, in collaboration with our technical services, always aim to provide you with all reasonably available information to ensure you are informed.
Under applicable laws, we are obliged to inform you that you have the right to object to the processing of your personal data, both to the Publisher and to the Croatian Personal Data Protection Agency. At your request, the Data Controller will provide you with information about how your personal data is processed. If the personal data is inaccurate, it will be corrected at your request. In such cases, as well as in other cases provided for by applicable regulations, you may request a restriction on processing.
All your inquiries will be reviewed by our data protection officer, who will strive to respond, if possible, within 30 days, provided your request has a legal basis. The response time depends on the nature of your inquiry and the volume and nature of other potential inquiries. In the case of unreasonable, excessively detailed, frequently repeated, or otherwise unjustifiably burdensome inquiries, the Data Controller reserves the right to charge you a reasonable fee for responding to your inquiry. In the most exceptional cases, the Data Controller may refuse to respond to your inquiry.