Privacy & Cookie Policy

Last Updated: April 25, 2025

1. Introduction

Welcome to Brand Bits d.o.o. (“we,” “our,” or “us”). We respect your privacy and are committed to protecting your personal data. This Privacy & Cookie Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (the “Site”).

This policy applies to information we collect:

  • On this website
  • In email, text, and other electronic communications
  • Through mobile and desktop applications you download from this website

Please read this policy carefully to understand our practices regarding your personal data and how we will treat it. If you do not agree with our policies and practices, your choice is not to use our Site.

2. Who We Are

Company Name: Brand Bits d.o.o.
Address: Slavonska avenija 20 M, 10000, Zagreb, Hrvatska
Email: hello@brandbits.hr
Phone: +385911111166
OIB (Croatian Tax ID): 30762030422
MBS: 081285310
Established: December 2, 2019
Director: Azra Lojo

We are a data controller registered in Croatia and are responsible for your personal data under the General Data Protection Regulation (GDPR) and Croatian Law on Implementation of the General Data Protection Regulation.

3. Information We Collect

We may collect several types of information from and about users of our Site, including information submitted through our contact form (Your Name, Phone Number, Email, and Message), as well as:

Personal Data

Information that identifies you personally, such as:

  • Name
  • Email address
  • Phone number
  • IP address and other online identifiers
  • Any other information you choose to provide through our contact form or direct communication

Non-Personal Data

Statistical or aggregated information that does not directly identify you, such as:

  • Browser type and version
  • Operating system
  • Referral source
  • Length of visit
  • Site navigation paths
  • Information about the timing, frequency, and pattern of your use

4. How We Collect Your Information

We collect information:

  • Directly from you when you provide it to us (e.g., when signing up for newsletters, purchasing products, or contacting us)
  • Automatically as you navigate through the site (using cookies, web beacons, and other tracking technologies)
  • From third parties, such as business partners and analytics providers

5. Cookies and Other Tracking Technologies

What Are Cookies

Cookies are small data files placed on your device when you visit a website. We use cookies to:

  • Ensure the website functions properly
  • Understand and save user preferences
  • Track site usage and compile aggregate data about site traffic
  • Improve our website and services

Types of Cookies We Use

Necessary Cookies:
Required to enable the basic features of this site, such as providing secure log-in or adjusting your consent preferences. These cookies do not store any personally identifiable data. You cannot opt out of these cookies.

Our necessary cookies include:

  • PH_HPXY_CHECK (Session cookie): Used to save information about the current session
  • wpEmojiSettingsSupports (Session cookie): WordPress sets this cookie when a user interacts with emojis on a WordPress site
  • cookieyes-consent (1 year): Set to remember users’ consent preferences
  • __cf_bm (1 hour): Set by Cloudflare, used to support Cloudflare Bot Management
  • wordpress_test_cookie (Session cookie): Set by WordPress to determine whether cookies are enabled

Functional Cookies:
Functional cookies help perform certain functionalities like sharing the content of the website on social media platforms, collecting feedback, and other third-party features

  • wordpress_[hash]
  • wordpress_sec_[hash]
  • wordpress_logged_in_[hash]
  • wp-settings-0
  • wp-settings-time-0
  • wordpressuser_[hash]
  • wordpresspass_[hash]
  • wp-postpass_[hash]

Cookie Management

Most web browsers allow control of cookies through browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org.

6. How We Use Your Information

We use information that we collect about you or that you provide to us:

  • To present our Site and its contents to you
  • To respond to your inquiries submitted through our contact form
  • To provide you with information about our services
  • To carry out our obligations and enforce our rights
  • To notify you about changes to our Site or services
  • To improve our Site, services, and customer service
  • To protect against fraud or misuse
  • In any other way we may describe when you provide the information
  • For any other purpose with your consent

7. Legal Basis for Processing

Under GDPR and Croatian law, we must have a legal basis for processing your personal data. We rely on the following legal bases:

  • Consent: Where you have given clear consent for us to process your personal data for a specific purpose
  • Contract: Where processing is necessary for the performance of a contract with you
  • Legal Obligation: Where processing is necessary for compliance with a legal obligation
  • Legitimate Interests: Where processing is necessary for our legitimate interests or those of a third party

8. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

9. Disclosure of Your Information

We may disclose personal information that we collect or you provide as described in this privacy policy:

  • To our subsidiaries and affiliates
  • To contractors, service providers, and other third parties who support our business
  • To fulfill the purpose for which you provide it
  • For any other purpose disclosed by us when you provide the information
  • With your consent

We may also disclose your personal information:

  • To comply with any court order, law, or legal process
  • To enforce or apply our terms of use and other agreements
  • If we believe disclosure is necessary to protect the rights, property, or safety of our company, our customers, or others

10. Data Transfers

We are based in Croatia, but your data may be processed outside of Croatia and the European Economic Area (EEA). Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by implementing at least one of the following safeguards:

  • Standard Contractual Clauses
  • Privacy Shield (for transfers to the United States, where applicable)
  • Binding Corporate Rules

11. Your Data Protection Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data, including:

  • Right to access your personal data
  • Right to rectification of inaccurate personal data
  • Right to erasure of your personal data
  • Right to restriction of processing of your personal data
  • Right to data portability of your personal data
  • Right to object to processing of your personal data
  • Right to withdraw consent at any time

To exercise any of these rights, please contact us using the details provided in the “Contact Us” section.

12. Children’s Privacy

Our Site is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If you are under 16, do not use or provide any information on this Site. If we learn we have collected or received personal information from a child under 16 without verification of parental consent, we will delete that information.

13. Data Security

We have implemented measures designed to secure your personal information from accidental loss and from unauthorized access, use, alteration, and disclosure. However, the transmission of information via the internet is not completely secure. We cannot guarantee the security of your personal information transmitted to our Site.

14. Changes to Our Privacy Policy

We may update our privacy policy from time to time. If we make material changes to how we treat our users’ personal information, we will notify you through a notice on the Site home page or via email. The date this privacy policy was last revised is identified at the top of the page.

15. Contact Us

If you have any questions or concerns about this privacy policy or our privacy practices, please contact our Data Protection Officer at:

Azra Lojo
Brand Bits d.o.o.
Slavonska avenija 20 M, 10000, Zagreb, Hrvatska
Email: hello@brandbits.hr

You have the right to make a complaint at any time to the Croatian Personal Data Protection Agency (AZOP), the Croatian supervisory authority for data protection issues (https://azop.hr/).

16. Additional Information for Croatian Users

In accordance with Croatian Law on Implementation of the General Data Protection Regulation:

  • We are registered with the Croatian Personal Data Protection Agency
  • We maintain records of processing activities as required by Article 30 of the GDPR
  • In the event of a personal data breach, we will notify the Croatian Personal Data Protection Agency within 72 hours
  • We conduct data protection impact assessments where required

17. WordPress-Specific Information

As we use WordPress for our website, please note:

  • WordPress may place additional cookies for functionality
  • We use WordPress plugins that may collect data as described in their respective privacy policies
  • Comments left on our site may be checked through an automated spam detection service
  • User data submitted through forms on our site is stored in the WordPress database