Privacy Policy

Your interest in our Privacy Policy clearly demonstrates how important privacy and the protection of personal data are to you. We greatly appreciate your concern, and we are fully committed to safeguarding your privacy. Protecting your personal data is a priority for us in the conduct and organisation of our business processes.

We respect the confidentiality of your personal data and always act in accordance with the relevant law provisions and other regulations governing the protection of personal data, as well as the provisions of this Privacy Policy.

We hereby inform you that, in the context of comprehensive personal data protection, we have aligned our business operations with all the requirements of Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016, on the protection of individuals concerning the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation or "GDPR"), as well as the corresponding Law on the Implementation of the General Data Protection Regulation (Official Gazette No. 42/2018).

If you live in the European Economic Area (EEA) or Switzerland, Ulpian AI llc, with its registered office at Avenija Dubrovnik 15, Zagreb, Croatia, is the controller and is responsible for the processing of your Personal Data as described in this Privacy Policy.

For any questions related to the processing of your personal data and the exercise of rights provided by the GDPR, you can reach out to us through the following methods:

• In writing, at the address: Avenija Dubrovnik 15, 10 000 Zagreb, Croatia
• By email, at the address: info@ulpian.hr

Account Information
When you create an account with us, we collect information associated with your account, including your name, contact information, account credentials, payment card information, and transaction history.

User Content
When you use our Services, we collect Personal Data that is included in the input or feedback that you provide to our Services.

Communication Information
If you communicate with us through a web-site form or email, we collect your name, email address, phone number, and any other information you provide us and the contents of any messages you send.

Social Media Information
We have pages on social media sites like LinkedIn, Facebook, and X. When you interact with our social media pages, we collect Personal Data that you choose to provide to us, such as your contact details.

Customer Support Information
When you contact us for customer support, feedback, or inquiries, we may collect your name, email address, phone number, and any other information you provide us.

Analytics
We may use Google Analytics that uses cookies to help us analyze how users use our Services and enhance your experience when you use them.

Technical Information
When you visit, use, or interact with the Services, we automatically receive: Log Data (IP address, browser type/settings, date and time), Usage Data (features used, actions taken, time zone, country), Device Information (device name, operating system, browser), and Cookies and Similar Technologies.

We may use Personal Data for the following purposes:

• To provide and maintain our Services
• To improve and develop our Services and new features and conduct research
• To communicate with you, including to send you information or marketing about our Services and events
• To prevent fraud, criminal activity, or misuses of our Services, and to protect the security of our systems and Services
• To comply with legal obligations and to protect the rights, privacy, safety, or property of our users, us, our affiliates, or any third party

We aggregate or de-identify Personal Data so that it can no longer be used to identify you and use this information to analyse the effectiveness of our Services, to improve and add features, to conduct research, and for other similar purposes. We will maintain and use de-identified information in anonymous or de-identified form and we will not attempt to re-identify the information, unless required by law.

We may share your Personal Data with government authorities, industry peers, or other third parties in compliance with the law: (i) if required to do so by law or in the good faith belief that such action is necessary to comply with a legal obligation, (ii) to protect and defend our rights or property, (iii) if we determine, in our sole discretion, that there is a violation of our terms, policies, or the law; (iv) to detect or prevent fraud or other illegal activity; (v) to protect the safety, security, and integrity of our products, employees, or users, or the public, or (vi) to protect against legal liability.

Your Personal Data will be retained solely for the time required to deliver our Service to you, or for other lawful business purposes including dispute resolution, ensuring safety and security, or meeting our legal responsibilities.

How long we retain Personal Data will depend on a number of factors, such as:

• Our purpose for processing the data
• The amount, nature, and sensitivity of the data
• The potential risk of harm from unauthorized use or disclosure of the data
• Any legal requirements that we are subject to

In order to keep effective control over the processing of your personal data, you are entitled to a variety of rights which you may directly exercise with the Data Controller in situations as prescribed by law:

• Right to be informed – You have the right to request confirmation whether personal data concerning you is being processed, the purpose of processing, the categories of data retained, and third parties with whom data is shared.
• Right to rectification – If we process your personal data that is incomplete or inaccurate, you have the right to request correction and/or supplementation.
• Right to erasure – You have the right to request the erasure of your personal data when it is no longer necessary, consent is withdrawn, or data has been unlawfully processed.
• Right to restrict processing – You can request the restriction of processing if you dispute data accuracy, processing was unlawful, or you need the data to assert legal claims.
• Right to object – You have the right to object at any time to processing of personal data based on legitimate interest.
• Right to data portability – You have the right to request your data in a structured, commonly used, and machine-readable format.
• Right to lodge a complaint – You have the right to file a complaint with the Croatian Personal Data Protection Agency (AZOP), Selska cesta 136, Zagreb, azop@azop.hr.

The exercise of the aforementioned rights is entirely free of charge. You can submit your request using our Data Subject Rights Request Form or by contacting us at info@ulpian.hr. A response is provided within 30 days of receiving the request.

Our website may contain links to other websites that are not under our control. We are not responsible for the content, privacy policies, and privacy warnings of any third-party websites or services. We recommend that you familiarize yourself with the privacy settings of those third-party websites when visiting them.

As existing processes for the processing of personal data may change over time and new processes may be implemented, it will be necessary to revise or amend this Privacy Policy. The revised or amended version will be published on our website upon its adoption.