- The data controller
- Scope of the Privacy Policy and types of data processed
- Why the data is processed, the legal basis and information on how long the data is kept
- Use of cookies
- Organizational and technical measures for data processing
- Your rights
- Data Protection Agency, Selska cesta 136, 10 000 Zagreb
- E-mail: azop@azop.hr
- Fax number: 01/ 46-090-99
- www.azop.hr
- Information about data recipients, categories of recipients, data transfers to third countries and international organizations
- Policy Update
GigfreQ, obrt za digitalno umrežavanje glazbenika, suvl. Iva Štefančić i Vedrana Štefančić,
Rijeka, Šetalište trinaeste divizije 22
Kontakt e-mail: iva.stefancic@gmail.com
This Privacy Statement applies to the processing of personal data through the website gigfreq.com domain. We collect your personal data through the operation of the website, i.e. input by Musicians and clients, and we process them through collection, storage, delivery, recording, structuring and other processing methods. The list of personal data that we process includes, but is not limited to:
E-mail,
The name and scope of the musician's service,
data obtained through input,
User's unique identifier
Activity data such as agreement to Terms, option selection, interest in certain content (data history of certain activities contains identifying data such as IP address, time of activity, operating system and others)
We will not create your profiles.
We do not intend to knowingly process special categories of your personal data. If we notice that you have disclosed to us some of your personal data that fall into a special category, we will warn you to delete this data, because we do not apply appropriate organizational and technical measures for working with such data.
We publish the data that we collect and use for the purpose of providing our service to Musicians, Clients and other interested persons publicly on the portal.
When we communicate with you via email or in another way, we do so through several legal bases; use of the newsletter service through consent or legitimate interest, communication necessary for the operation of the platform through a contractual obligation, when we respond to your inquiry about rights through a legal obligation.
Based on the contract with you, we use your personal data in order to provide our service, for example to show the search results of freelance Musicians to Clients or potential clients. If a user of the portal, for example a musician, has entered your personal data, we will process them based on legitimate interest (for example, if you are in a picture published by a Musician). We can also use the data that we process on the basis of the contract with you to improve the service of our portal based on legitimate interest (for example, if we notice that there is a need on the market for Musicians who offer services for weddings, we can inform the existing Musician in a targeted manner that it would be good to expand his own offer)
On the basis of legitimate interest, we use your personal data to ensure the security, integrity and availability of services on the portal and to check whether the Terms have been met. For example, to check whether our service is available, whether restrictions are violated in publicly published data on the portal, etc.
We process your personal data until the purpose of the processing is fulfilled; for example, we keep the information about your consent for the duration of the given consent, we keep the information about the withdrawal of consent when applicable for the duration of the contract with you. After the end of the contractual relationship, we no longer use your personal data, but we may subsequently process the minimally necessary set of data if there is a legal obligation, the need to fulfill legal requirements or other applicable legitimate interests mentioned above (for example, we can contact you with news via newsletter until you unsubscribe).
After the end of the purpose, we delete your data, with the final moment of deletion occurring when the back-up of data with our Data processors stops. For example We delete your data from the card after 180 days of inactivity, and MailerLite keeps your personal data for 30 days after permanent deletion. We will not further process your personal data for purposes different from the one for which they were collected without first providing you with more information about that other purpose, especially respecting your rights, purpose and legal basis for data processing.
For the purposes of the GigfreQ portal, cookies or text files are used, which are placed on your computer by our Data processors of IT and communication solutions and which are necessary for their functioning. These are, for example, session cookies for filling out forms, authentication, security cookies for detecting failed login attempts. These cookies are necessary for the functioning of the individual service and cannot be turned off. The GigfreQ portal does not use cookies for personalizing the functioning of the site, usage analytics, opening emails, etc., and we have deactivated these options with our Executors.
You can read more about how our Data processors use cookies and collect your data when they are not acting as our Data processors in their privacy policies in the section Information about data recipients, categories of recipients, data transfers to third countries and international organizations.
Watch out! If you do not want your personal data to be used for the purposes described in the privacy policies of Google and MailerLite services or those privacy policies are not clear enough, do not sign up or use our newsletter or portal.
GigfreQ has taken appropriate technical measures to protect your personal data, which includes the use of secure and unique access passwords, email authentication, antivirus protection, encryption, protection against unauthorized access, copying, modification and deletion, SSL protocol. Organizational measures; establishment of the Privacy policy and Terms, conclusion of a contract on the processing of personal data with Data processors-providers of iIT-communication solutions Google and MailerLite, ensuring access to data on a need-to-know basis, employee confidentiality statements, employee education on data protection.
You have the right to access, rectification, erasure, restriction of processing, data portability, and the right to withdraw consent. In exercising your rights, there are exceptions to the realization of rights according to the provisions of the General Data Protection Regulation. For example, in the case of entering into a contractual relationship, there will be no automatic obligation to comply with your right to erase certain personal data.
A complaint and request for information is submitted in writing or electronically to the addresses listed at the beginning of this document. In the case of a complaint or request for information, we may request your participation in security checks (in terms of identity verification) before we comply with the request, during which it will not affect the realization of your right. The deadline for responding to the request is within a month of the request, and if it is complex or a large number of requests have been received in a short period of time, the deadline will be extended for up to two more months with the obligatory notification of the individual.
Right to access data: you can request confirmation whether personal data related to you are being processed and if such personal data are processed, information on access to personal data and information, among other things, about processed personal data, about the purpose of processing, storage period, export to third countries.
Right to deletion ("right to be forgotten"): you have the right to obtain the erasure of personal data related to you without unnecessary delay. We will delete personal data without unnecessary delay if, among other things, personal data are no longer necessary in relation to the purpose of processing, personal data have been processed unlawfully, and in similar situations. If we have publicly posted your photos/videos and if there is such a justified request, we will delete the disputed personal data. If we have posted a photo or other personal data on social media, you have the right to request the erasure of personal data directly from the social network.
Right to correction/supplement: you have the right to request the rectification of inaccurate personal data related to you, and considering the purposes of processing, you have the right to complete incomplete personal data.
Right to restriction of processing: in certain situations when the accuracy of the data is disputed or when you want us not to delete the data or when personal data are no longer needed for the basic purpose but cannot be deleted due to legal grounds, or when you are waiting for the decision of your objection to the processing, you have the right to request that processing be restricted with the exception of storage and some other types of processing;
Right to data portability: you have the right to receive your personal data that you previously provided to us in a structured form and in a commonly used and machine-readable format and if applicable you have the right to transmit these data to another controller without hindrance if the processing will be carried out automatically and based on consent or contract;
Right to withdraw consent: You have the right to withdraw your consent at any time if you provide it for the processing of your personal data. The withdrawal of consent does not affect the legality of processing based on consent before its withdrawal. We will inform you about this before giving consent. Withdrawal of consent is made as simple as its provision.
Right to lodge a complaint with a supervisory authority (Data Protection Agency): If you believe that we are violating regulations related to the protection of your personal data, you can file a complaint with the Data Protection Agency as the competent supervisory authority for the area of personal data protection.
We publish your personal data publicly and disclose it to other users of the portal in the manner regulated by the Terms.
We also forward your personal data to our Data processors, e.g. providers of IT-communication solutions and services. We have selected our Data processors from outside the European Economic Area who have acceded to the EU-US data protection framework which ensures that your personal data can be safely transferred from the EU to US companies without the introduction of additional protection measures data. You can read more about the Framework on the website of the supervisory agency AZOP- https://azop.hr/odluka-o-primjerenosti-eu-sad/.
Our Data processors Google and MailerLite can also process data in third countries, for which they have undertaken to use appropriate protective measures in the corresponding contract. When processing your personal data for our purposes, our Data processors, providers of IT and communication solutions, use your data to a certain extent for their own needs, in which case they act as Data Controllers, which they inform about in their statements and privacy policies. For example, according to their rules and decision, they can check whether GigfreQ uses your data in accordance with their rules of use, they can improve their services and the like. You can read about how your personal data is used for their purposes in their policies and privacy statements.
We use Google solutions to operate the GigfreQ platform https://policies.google.com/technologies/partner-sites We use MailerLite services to send our notifications and newsletters https://www.mailerlite.com/privacy-policy
Your public personal data on the GigfreQ we will publish on social networks in accordance with the Terms of Use. You can read more about how social networks process your personal data in their Privacy Statements:
Instagram: https://privacycenter.instagram.com/policy/
We have the right to change the content of the Policy and other internal documentation depending on whether the types of data we process and the type of processing have changed. In such a case, we will ensure that all the information we provide to you is accurate and up to date through the necessary documentation update.
We will timely distribute notice of all changes and additions via the official website or other means i.e. newsletters.
Last modification - 30.07.2024