Privacy Policy

Welcome to the Privacy Policy for the www.smartcat.io website owned by SmartCat d.o.o. Novi Sad.

This Privacy Policy applies to all personal data collected through the www.smartcat.io website, that is collected and processed by SMARTCAT d.o.o. Novi Sad, having its registered seat at Železnička 30, 21000 Novi Sad.

SmartCat as a data controller, collects and processes personal data relating to interactions on the Website and use of the tools and features of the www.smartcat.io website (as defined in Section 2).

Since we take your privacy very seriously, we are committed to ensure that your privacy is protected. This Privacy Policy describes the type of information SmartCat collects, what is the purpose of collection and process of your personal data, how we store them and what rights you have in relation to it. Therefore, we strongly urge you to read this Privacy Policy very carefully and make sure that you fully understand and agree with it. If there are any terms in this Privacy Policy you do not agree with, please discontinue to use www.smartcat.io website and our Services.

We believe in full transparency, which is why we keep our Privacy Policy simple and easy to understand. However, if you have any concerns, please contact us at dpo@smartcat.io.

Terminology

The following terminology applies to these Use of Terms:

1. “Client”, “User”, “You”, “Your” or “Data Subject” refers to any natural person that shares personal data with us;
2. “Cookies” refers to small pieces of data stored on your device (computer, mobile or any other device). This information is used to track your use of the www.smartcat.io website and to compile statistical reports on website activity. For further information about the use of cookies and how you can manage them, please read our Cookie Policy, available at __.
3. “Consent” refers to your explicit, freely given, informed and unambiguous consent on the processing of personal data. Persons who are 15 years of age or older may give free consent to the processing of their personal data.
4. “Controller” or “Data Controller” refers to the SmartCat d.o.o. Novi Sad, that determines the purposes and means of the processing of personal data;
5. “EEA” refers to the European Economic Area;
6. “EU” refers to the European Union;
7. “GDPR” refers to the EU General Data Protection Regulation available at https://eur-lex.europa.eu/eli/reg/2016/679/oj;
8. “Personal Data Protection Act” and “PDPA” refers to the Act on Personal Data Protection of the Republic of Serbia (“Official Gazette of Republic of Serbia”; no. 87/2018);
   “Privacy Policy” refers to this Privacy Policy;
   “SmartCat“, “We”, “Us”, or “Our” refers to SmartCat d.o.o. Novi Sad and any of its affiliates;
   “Personal Data”, “Personal information” or “Data” refers to information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, either directly or indirectly (such as name, identification number, location data, URL address, or any other identifier to physical, physiological, genetic, mental, economic, cultural or social identity of that natural person). Therefore, data about a company or any legal entity is not considered to be personal data but registering on behalf of a legal entity may include sharing personal data. For example, the information in relation to one-person companies may constitute personal data where it allows the identification of a natural person. The rules also apply to all personal data relating to natural persons in the course of professional activity, such as the employees of a company or organization, business e-mail addresses like firstname.surname@company.com
9. “Processor”, “Data Processors” refers to any natural or legal person who processes the data on behalf of the Data Controller. We may use the services of various service providers in order to process your data more effectively.
10. “Processing” or “Data processing” refers to any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
11. “Website” refers to our website www.smartcat.io;
12. “Service” refers to services, features, software, Website;
13. “Supervisory authority” refers to an independent public authority that is authorized for the protection of your personal data in your country;
14. “Third party” refers to a natural or legal person, other than you and us, who is authorized to process personal data;
15. “USA” refers to the United States of America.

Controller

SmartCat is a company registered and existing under the laws of the Republic of Serbia, having its seat at Železnička 30, 21000 Novi Sad, Republic of Serbia, registration number: 21137685 which, as a controller, determines the purposes and means of the processing of your personal data. Controller is responsible for your personal data.

Application of this policy

This Privacy Policy applies to:

1. all individuals who visit our Website;
2. all individual who contact us/send request and inquiries via Website;
3. all individuals who engage our services and become our client;
4. all individuals who subscribe to our Newsletter.

What personal data do we collect?

1. Information you voluntarily provide us in your inquiry and/or by contacting us;
2. Information we collect through the use of cookies in accordance with our Cookie Policy;
3. Information automatically collected; and
4. Information you provide

We collect your personal data that you provide to us voluntarily when you contact us through Contact Form or by sending us inquiry at info@smartcat.io, we may receive your e-mail address, content of the messages or attachments you may send to us and any other personal data you voluntarily choose to provide us.

Please bear in mind that, we may ask you to provide with additional information (such as name, surname, telephone number etc.) so we could process your inquiry. Also, if the content of your inquiry is related to the engaging us, we may ask you to provide any other personal information necessary for us to provide our Services.

Information we collect through the use of cookies in accordance with our Cookie Policy

By using the cookies you agreed with, we may collect some of your personal data. Please read our Cookies Policy to see how we use them. We use analytic tools to help us measure traffic and usage trends for the Service. These tools collect information sent by your device or our Service, including the web pages you visit, add-ons, and other information that assists us in improving the Service. We collect and use this analytics information with analytics information from other users so that it cannot reasonably be used to identify any particular individual user.

Information we collect automatically

Technical Data. The information we collect automatically may include information like your IP address, device type, unique device identification number, browser type, broad geographic location (e.g. country or city-level location) and other technical information. We automatically collect that information when you visit, use or navigate our Website. This information does not reveal your specific identity (like your name or contact information), and is primarily needed to maintain the security and operation of our Website, and for our internal analytics and reporting purposes.

Your Usage Data. We collect and record data and sessions about how you are accessing and using the smartcat.io web application. Such information may include personal data.

Mobile Device Access. We may request access or permission to some of the features from your mobile device (such as microphone, calendar, camera, contacts, reminders, SMS messages, storage etc.). If you wish to change our access or permissions, you may do so in your mobile device’s settings.

Why do we collect personal data?

Purpose

1. To process inquiries and request you sent us via the contact form or by mailing at info@smartcat.io.
2. To respond and improve services to you.
3. If you send us an inquiry, we will collect data you decide to share with us.
4. By using cookies we collect some of your personal data to help us measure traffic and usage trends for the Service, to enable proper functionalities of features and tools at the Website, and to improve our Services.
5. Provision of our Services to existing and new clients
6. By subscribing to our Newsletter

Legal Basis

1. To process inquiries and request you sent us via the contact form or by mailing at info@smartcat.io. To respond and improve services to you.
2. If you send us an inquiry, we will collect data you decide to share with us.
3. By using cookies we collect some of your personal data to help us measure traffic and usage trends for the Service, to enable proper functionalities of features and tools at the Website, and to improve our Services.
4. Provision of our Services to existing and new clients
5. By subscribing to our Newsletter

What we do not do?

SmartCat will never:

1. Sell any kind of personal information or data;
2. Disclose this information;
3. Process your personal data and information in any way other than stated in this Privacy Policy.

Processing the personal data

SmartCat is the only processor of your data. We do not engage any natural or legal person to process your data on our behalf and for our account.

Personal data security

We take administrative, technical, organizational and other measures to ensure the appropriate level of security of personal data we process. Upon assessing whether a measure is adequate and which level of security is appropriate, we consider the nature of the personal data we are processing and the nature of the processing operations we perform, the risks to which you are exposed by our processing activities, the costs of the implementation of security measures and other relevant matters in the particular circumstances.

Some of the measures we apply include access authorization control, information classification (and handling thereof), protection of integrity and confidentiality, data backup, firewalls, data encryption and other appropriate measures. We equip our staff with the appropriate knowledge and understanding of the importance and confidentiality of your personal data security.

With whom do we share your personal data?

We will not share your personal data with the third parties, unless:

• You have consented;
• We are legally obliged to share certain information, including personal data, with state authorities, governmental bodies etc;
• With specialist or experts abroad to obtain their competent advices.

SmartCat utilizes external processors for certain processing activities. We use information audits to identify, categorize and record all personal data that is processed outside the company, so that the information, processing activity, processor and legal basis are all recorded, reviewed and easily accessible.

We have strict due diligence procedures and measures in place and review, assess and background check all processors prior to forming a business relationship. We obtain company documents, certifications, references and ensure that the processor is adequate, appropriate and effective for the task we are employing them for.

We audit their processes and activities prior to contract and during the contract period to ensure compliance with the data protection regulations and review any codes of conduct that oblige them to confirm compliance.

This is the list of processors with whom we share your personal data:

International transfer of your personal data and information

We collect your personal data in the Republic of Serbia. We may transfer your data to the countries only:

• To the countries of the EEA;
• To the countries which do not form the EEA but are considered to ensure an adequate level of protection in accordance with the PDPA;
• To the countries which do not belong to those specified under item 1 and 2, but only by applying the appropriate safeguard measure in accordance with the GDPR. For example, in case of transfer of personal data to the USA, we will ensure to have a Data Processing Agreement with the applicable standard data protection clauses.

How long do we keep your personal data?

We keep your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless otherwise required or permitted by law.

The period for which we store your personal data depends on a particular purpose for the processing of personal data within the use of our Website.

In determining data retention periods, we take into consideration local laws, contractual obligations, and the expectations and requirements of our customers and suppliers. We securely delete or destroy it when we no longer need your personal information, or when you request us to delete your information. For example, in the event that you unsubscribe from our Newsletter, your personal data will be erased automatically.

Your rights relating the personal data protection

1 Right of Access

You can send us a request for a copy of the personal data we hold about you.

We have ensured that appropriate measures have been taken to provide such in a concise, transparent, intelligible and easily accessible form, using clear and plain language. Such information is provided in writing free of charge. It may be provided by other means when authorized by the Data Subject and with prior verification as to the subject’s identity.

We will provide you with the information about what type of personal data we collect, what is the purpose of collecting and processing, how we store them and for how long, with whom we share it, about your right to complain to the supervisory authority.

Information is provided to the Data Subject at the earliest convenience, but at a maximum of 30 days from the date the request was received. Where the retrieval or provision of information is particularly complex or is subject to a valid delay, the period may be extended by two further months where necessary.

2 Right to Correction of Your Personal Data

If the personal data we have about you is incorrect, you have the right to request that we correct those data. Where notified of inaccurate data by the Data Subject, we will rectify the error within 30 days and inform any third party of the rectification if we have disclosed the personal data in question to them.

3 Right to Be Forgotten or Right to Erasure

You have the right to request from us that your personal data is deleted in certain circumstances including:

• The personal data are no longer needed for the purpose for which they were collected;
• You withdraw your consent (where the processing was based on consent);
• You object to the processing and no overriding legitimate grounds are justifying us processing the personal data;
• The personal data have been unlawfully processed; or
• To comply with a legal obligation.

However, this right does not apply where, for example, the processing is necessary:

• To comply with a legal obligation; or
• For the establishment, exercise or defense of legal claims.

4 Right to Restriction of Processing

If the accuracy of the personal data is contested, you consider the processing is unlawful but you do not want it erased, we no longer need the personal data but you require it for the establishment, exercise or defense of legal claims or you have objected to the processing and verification, you can exercise your right to the restriction of processing.

5 Controller’s obligation related to the rectification, erasure of personal data or restriction of processing

We will communicate that we have done any rectification or erasure of personal data or restriction of processing to all recipients to whom we have disclosed your personal data, unless this proves impossible or involves disproportionate effort. We will also notify you about those recipients, if you request that.

6 Right to Withdraw the Consent

If you have provided your consent to the collection, processing and transfer of your personal data, you have the right to fully or partly withdraw your consent. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose(s) to which you originally consented, unless there is another legal ground for the processing and unless otherwise we are obliged by the applicable law.

7 Right to Lodge a Complaint

• If you have any concerns or requests in relation to your personal data and its protection, please contact us at dpo@smartcat.io and we will respond within 30 days.
• If you are unsatisfied with how we process your data, you may contact the competent supervisory authority.
• In case you believe that we are processing your personal data contrary to the applicable law, you have the right to lodge a complaint with the supervisory authority located where you reside or work or where the alleged infringement took place.

8 Right to block or opt-out the Cookies

By using the cookies you agreed with, we are allowed to collect some of your personal data. Processing is based on your consent you explicitly gave by accepting our Cookies Policy and allowing the usage of cookies. You have the right to withdraw your consent at any time, without affecting the lawfulness of the processing based on consent prior to such withdrawal. You may block or opt-out any of the cookies used, in accordance with our Cookies Policy. If you choose to remove or to reject cookies, this could affect certain features, tools or services of our Website.

Changes to Privacy Policy

We reserve the right to change Privacy Policy from time to time at our sole discretion. If we make any changes, we will publish the new Privacy Policy on our Website.

Where you have previously consented to our Privacy Policy, your continued use of the Website after we make changes is deemed to be acceptance of the updated rules.

Contact Us

If you have any questions or comments regarding our Privacy Policy and/or rights related to the personal data protection, please get in touch with us at dpo@smartcat.io.