Privacy Policy

1. Introduction

FusionArchitect d.o.o. ("we", "our", or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website fusionarchitect.pro or use our business continuity financial planning services.

We are the data controller for the purposes of the General Data Protection Regulation (GDPR) and Croatian data protection laws. Our registered office is located at Heinzelova ulica 58, 20090 Dubrovnik, Croatia (Registration Number: 952387416).

2. Data We Collect

The data we collect depends on how you interact with our services. We may collect the following types of personal information:

Personal Information

• Name, email address, phone number, and postal address
• Company name and business information
• Financial information relevant to our services
• Communication preferences and contact history

Technical Information

• IP address, browser type, and device information
• Website usage data and analytics information
• Cookies and similar tracking technologies
• Log files and access records

3. How We Use Your Information

We process your personal data for the following purposes based on legitimate legal grounds under GDPR:

Service Delivery

• Providing business continuity financial planning services
• Communicating about your projects and consultations
• Processing payments and managing client accounts
• Delivering reports and recommendations

Business Operations

• Improving our services and website functionality
• Conducting market research and analysis
• Complying with legal and regulatory requirements
• Protecting against fraud and security threats

4. Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our use of cookies, please refer to our Cookie Policy.

5. Data Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except in the following circumstances:

• Service providers who assist us in operating our business (under strict confidentiality agreements)
• Legal authorities when required by law or to protect our rights
• Business transfers in the event of merger, acquisition, or asset sale
• With your explicit consent for specific purposes

6. Data Retention

We retain your personal data for as long as necessary to fulfil the purposes outlined in this Privacy Policy, comply with our legal obligations, resolve disputes, and enforce our agreements. Specific retention periods include:

• Client records: 7 years after the end of the business relationship
• Marketing data: Until you withdraw consent or 3 years of inactivity
• Website analytics: 26 months (Google Analytics default)
• Legal compliance data: As required by applicable laws

7. Your Rights

Under the GDPR and Croatian data protection laws, you have the following rights regarding your personal data:

• Right of access: Request copies of your personal data
• Right to rectification: Request correction of inaccurate data
• Right to erasure: Request deletion of your personal data
• Right to restrict processing: Request limitation of data processing
• Right to data portability: Request transfer of your data
• Right to object: Object to processing based on legitimate interests
• Right to withdraw consent: Withdraw consent for consent-based processing

To exercise these rights, please contact us using the information provided in the "Contact Us" section below.

8. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication procedures
• Staff training on data protection practices
• Incident response and breach notification procedures

9. International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure adequate protection through:

• European Commission adequacy decisions
• Standard contractual clauses approved by the European Commission
• Binding corporate rules or certification schemes
• Your explicit consent for specific transfers

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

11. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us using the following contact information:

12. Supervisory Authority

You have the right to lodge a complaint with the Croatian Personal Data Protection Agency (AZOP) if you believe we have not complied with data protection laws: