Privacy terms - Sonja Šmigoc - professional artist

PRIVACY POLICY

DEFINITIONS

Privacy Policy

The Privacy Policy is an internal act of Sonja Šmigoc (hereinafter: the Processor) and applies to all legal relationships between it and the service clients (hereinafter: the Controller). This act defines the rights and obligations of the Processor and the Controller in managing and processing personal data of individuals.

Personal data

Personal data means any information relating to an identified or identifiable natural person. An identified person is one whose personal data is determined and processed in accordance with the purposes defined by the Controller. An identifiable person is one who can be directly or indirectly identified, and whose personal data may be processed in accordance with the purposes defined by the Controller.

Data subject

A data subject is any natural person whose personal data is processed on a legal or contractual basis between the Controller and that individual, or on the basis of explicit consent given by the individual to the Controller.

Controller

The Controller determines the purposes and means of processing within the scope of its registered activity and/or statutory powers. The data subject is informed in advance of who the Controller of personal data is and who processes their data.

Processor

The Processor processes personal data of individuals on behalf of the Controller, according to its instructions, within the lawful purposes and methods of processing.

Sub-processor

A Sub-processor processes personal data of individuals on behalf of and according to the instructions of the Processor, within the lawful purposes and methods of processing.

Processing

Processing of personal data means any operation or set of operations performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.

Restriction of processing

Restriction of processing means the marking of stored personal data with the aim of limiting their processing in the future.

Profiling

Profiling means any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to a natural person, in particular to analyze or predict aspects concerning that natural person’s performance at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movements.

Pseudonymization

Pseudonymization means the processing of personal data in such a way that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organizational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.

Consent of the data subject

The consent of the data subject means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.

Personal data breach

A personal data breach means a security breach that results in accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data transmitted, stored, or otherwise processed.