Privacy policy

Politika privatnosti za korisnike internet stranice https://www.zslaw.rs/

Ova politika privatnosti poslednji put je izmenjena 06.08.2020. godine, u Beogradu.

---

Advokatsko ortačko društvo Živković Samardžić, sa sedištem u Beogradu, ul. Makedonska 30, matični broj: 57320150, PIB: 107890869 (u daljem tekstu: „Rukovalac“), a koje ima svojstvo Rukovaoca u smislu Zakona o zaštiti podataka o ličnosti („Službeni glasnik“, br. 87/2018, u daljem tekstu: ZZPL), odnosno kao lice koje organizuje i odgovorno je za obradu podataka o ličnosti, ovim putem obaveštava posetioce internet stranice http://www.zslaw.rs/, čiji se podaci obrađuju (u daljem tekstu: Posetioci), o svim bitnim aspektima obrade podataka o ličnosti u skladu sa važećom regulativom:

UVODNE NAPOMENE:

• Ovom Politikom privatnosti uređuje se prikupljanje i obrada podataka u okviru internet stranice AOD Živković Samardžić: https://www.zslaw.rs/. Interakcijom i korišćenjem bilo koje funkcije internet stranice https://www.zslaw.rs/, ili pripadajuće pod-stranice, smatraće se da ste pročitali ovu Politiku privatnosti, da ste se upoznali sa svim njenim odredbama i da je bez ikakvih primedbi, prigovora i rezervi prihvatate.
• Izrazi upotrebljeni u okviru ove Politike imaju značenja propisana važećim Zakonom o zaštiti podataka o ličnosti (“Sl. glasnik RS”, br. 87/2018), u daljem tekstu: ZZPL), a u slučaju potrebe i drugim zakonima koji uređuju specifične odnose, pojave, pojmove i njihovo značenje.
• Štrikliranjem checkbox-a, odnosno klikom na dugme “Prihvatam”, ili drugačije označenog dugmeta sa suštinski istom funkcijom, u pop-up prozoru koji se novim korisnicima internet stranice https://www.zslaw.rs/ prikazuje prilikom prve posete internet stranici, samatraće se aktivnom, voljno učinjenom radnjom u cilju konstituisanja važećeg pravnog osnova za prikupljanje i obradu podataka na način i u svrhe opisane u ovoj Politici privatnosti. Rukovalac će biti u mogućnosti da dokaže, putem elektronskog zapisa (log), ili na drugi način, da je lice na koje se podaci odnose učinilo pomenutu aktivnu, voljnu radnju kojom je potvrdilo da je upoznato i da se slaže sa ovom Politikom privatnosti.
• Navedeni elektronski zapis (log) smatraće se pravno valjanim i dovoljnim dokazom o datoj saglasnosti, u smislu člana 15 stav 1 ZZPL.
• Ova Politika privatnosti može biti izmenjena u bilo koje vreme, s tim da će se učinjena promena vidno predočiti na naslovnoj internet stranici http://www.zslaw.rs/. U tom slučaju, od lica na koja se podaci odnose zatražiće se da daju novu saglasnost za obradu ličnih podataka, shodno učinjenim izmenama ove Politike privatnosti.
• Pravila koja regulišu prikupljanje ličnih podataka putem Kolačića (Cookies), biće predstavljena, u okviru zasebne Politike kolačića. Pravila koja se odnose na davanje saglasnosti na Politiku privatnosti u okviru predviđenog pop-up prozora, kao i čuvanje i dokazna forma i snaga elektronskog zapisa (log), ali i način izmene i obaveštavanja lica na koja se podaci odnose o učinjenim izmenama, u potpunosti će se primenjivati i na upotrebljene Kolačiće.
• Za sva dodatna pitanja koja se odnose na pravila i odredbe ove Politike privatnosti, možete se obratiti putem mejl adrese: office@zslaw.rs i/ili slanjem upita na adresu AOD Živković Samardžić, Makedonska 30, Beograd.

1. KOJE PODATKE PRIKUPLJAMO I OBRAĐUJEMO?

Rukovalac može prikupljati različite kategorije podataka o ličnosti, koje se koriste u različite svrhe i sa različitim pravnim osnovom. Uobičajeno, radi se o setu podataka koji omogućava identifikaciju lica čiji se podaci obrađuju, stupanje u komunikaciju sa licem čiji se podaci obrađuju ili koji su neophodni za pružanje konkretne usluge na zahtev tog lica, odnosno za ispunjenje zakonom propisanih obaveza Rukovaoca, u šta spadaju:

• Ime, prezime i e-mail adresa koje je lice ostavilo u cilju dobijanja Newsletter-a, ostvarivanja poslovnog kontakta, kao i prilikom postavljanja upita u za to predviđenoj rubrici;
• Podaci o licima zainteresovanim za zaposlenje u AOD Živković Samardžić, koji se prikupljaju kroz rubriku “Join Us”, dostupnu na naslovnoj stranici, odnosno slanjem ličnih podataka i radne biografije (CV) na imejl adresu job@zslaw.rs i to:
  • Ime i prezime,
  • E-mail,
  • Ostali podaci koje kandidat svojevoljno podeli kroz kontakt poruku ili kroz svoj CV;
• Podaci prikupljeni elektronskim putem o identifikaciji posetioca (IP adresa i sl.);
• Podaci prikupljeni putem kolačića koje je korisnik omogućio, odnosno sa čijom upotrebom se saglasio, a koji su opisani u zasebnoj Politici kolačića.

Lični podaci prikupljaju se samo u meri u kojoj su neophodni za ostvarivanje konkretne svrhe.

Na internet stranici AOD Živković Samardžić postoje linkovi ka stranicama AOD Živković Samardžić na društvenim mrežama (Twitter, Linkedin). Na sve podatke koje prilikom Vaše posete prikupljaju navedene platforme, kao i na sve podatke koje svojevoljno ostavite na navedenim društvenim mrežama, primenjuju se, pored ove Politike privatnosti, i pravila koja su propisale navedene platforme (Terms of Service / Terms of Use, Privacy Policy, Cookie Policy).. AOD Živković Samardžić ne može se smatrati odgovornim za bilo koji vid nezakonite upotrebe ličnih podataka, učinjen od strane kompanija u čijem su vlasništvu, odnosno pod čijom se kontrolom nalaze društvene mreže. Politike privatnosti navedenih platformi možete pronaći na sledećim linkovima:

• https://twitter.com/en/privacy
• https://www.linkedin.com/legal/privacy-policy

2. KOJI JE PRAVNI OSNOV OBRADE?

Pravni osnov obrade ličnih podataka predstavlja slobodna i informisana saglasnost lica na koja se podaci odnose, odnosno njihov pristanak za svrhe određene u ovoj Politici privatnosti, u skladu sa članom 12 stav 1 ZZPL.

Obrada se može vršiti radi izvršavanja obaveza iz ugovornog odnosa, odnosno pripreme za zaključenje ugovora. Rukovalac, kao ugovorna strana, nudi različite vrste usluga pravnim licima, preduzetnicima, fizičkim licima, itd. U postupku zaključenja i izvršavanja obaveza iz ugovornog odnosa, Rukovalac obrađuje podatke o ličnosti. Takođe radi ostvarivanja svojih prava, po osnovu usluga koje pruža, kao i radi uspostavljanja poslovnog odnosa, Rukovalac prikuplja i obrađuje određene podatke o ličnosti. Ovo se posebno odnosi na slanje prijava za posao i upita putem internet stranice https://www.zslaw.rs/ i naznačenih službenih imejl adresa.

U posebnim situacijama, prikupljanje i obrada ličnih podataka može biti neophodna u cilju ostvarivanja legitimnih interesa rukovaoca, ili treće strane, pod uslovima i uskladu sa članom 15 stav 6 ZZPL. Pre prikupljanja i obrade ličnih podataka lica na koja se podaci odnose na osnovu legitimnih interesa rukovaoca, ili treće strane, ukoliko do toga dođe, u skladu sa članom 15 stav 6 ZZPL rukovalac će sprovesti procenu legitimnog interesa na osnovu tripartitnog testa:

1. Test svrhe (identifikovanje legitimnog interesa);
2. Test neophodnosti (da li je obrada podataka neophodna);
3. Test balansiranja (odmeravanja legitimnih interesa rukovaoca i lica na koja se podaci odnose).

Takođe, u izuzetnim situacijama, obrada može biti bazirana na obavezi izvršavanja zakonskih obaveza Rukovaoca. Rukovalac potpada pod obaveze zakona i drugih propisa koji bliže uređuju poslovne aktivnosti advokatskih kancelarija i pružanje advokatskih usluga. Kada prikuplja podatke radi ispunjenja pravnih obaveza, Rukovalac to čini isključivo u meri u kojoj je to neophodno, a pristup podacima omogućen je samo za to ovlašćenim licima i nadležnim državnim organima, u skladu sa zakonom.

3. U KOJE SVRHE KORISTIMO PODATKE?

Rukovalac koristi podatke u različite svrhe koje su uvek usko vezane za pravni osnov obrade. Tako, osnovna svrha direktnog prikupljanja i obrade ličnih podataka lica na koje se podaci odnose je uspostavljanje komunikacije sa licima koja su zainteresovana za ostvarivanje poslovnog kontakta, odnosno primanje newsletter-a i obrada prijava zainteresovanih kandidata za zaposlenje, a na njihov zahtev. Rukovalac obrađuje podatke o ličnosti u cilju izvršenja obaveza koje ima na osnovu zakona i drugih propisa, u svrhu pružanja različitih vrsta usluga, u svrhu realizacije ugovornih obaveza, u svrhu održavanja ličnog i poslovnog kontakta sa svojim klijentima, kao i u svrhe analize poslovnih rezultata i arhiviranja, u skladu sa zakonom. Za sve dodatne svrhe obrade za kojima se ukaže potreba, lice na koje se podaci odnose biće obavešteno o svim neophodnim informacijama, pre započinjanja takvih radnji obrade, a sama obrada biće bazirana na odgovarajućem pravnom osnovu, u skladu sa zakonom.

4. KO IMA PRISTUP PODACIMA?

U zavisnosti od pravnog osnova i konkretne svrhe, pristup mogu imati sledeće kategorije lica:

• Ovlašćena zaposlena lica u okviru Advokatsko ortačkog društva Živković Samardžić u skladu sa svojim radnim dužnostima i ovlašćenjima, odnosno saradnici sa kojima je zaključen poseban ugovor o saradnji, ugovor o stručnom usavršavanju i sl. Sva lica obavezna su da u pogledu ličnih podataka postupaju u skladu sa svim odredbama ZZPL u pogledu sigurnosti obrade ličnih podataka;
• Nadležni državni organi (Poreska Uprava, Ministarstvo unutrašnjih poslova, inspekcijski i drugi organi uprave, ovlašćeni kontrolni i regulatorni državni organi, nadležni sudovi i tužilaštva, itd.), ako imaju odgovarajuće ovlašćenje za pristup ili drugu vrstu obrade podataka u skladu sa zakonom i to samo u meri u kojoj je to predviđeno zakonom;
• Lica koja su u ugovornom odnosu sa Rukovaocem (Obrađivači podataka) i kojima se poveravaju određene radnje obrade podataka, u skladu sa zakonom propisanim uslovima koji se odnose na bezbednost informacija, obavezu čuvanja tajnosti i ugovornog uređenja prava i obaveza.

5. KOJA PRAVA IMATE U ODNOSU NA ZAŠTITU VAŠIH PODATAKA A KOJE AOD ŽIVKOVIĆ SAMARDŽIĆ, U SVOJSTVU RUKOVAOCA, OBRAĐUJE?

Imate pravo da od Rukovaoca:

• zatražite pristup Vašim podacima o ličnost,
• zahtevate ispravku ili brisanje Vaših podataka o ličnosti ili ograničavanje obrade,
• pravo da prigovorite obradi Vaših podataka,
• pravo da Vaši podaci budu preneti drugim rukovaocima,
• pravo da se obratite nadležnom organu – Povereniku za pristup informacijama od javnog značaja i zaštitu podataka o ličnosti, u slučaju kada sumnjate da postoji nezakonita obrada,
• druga prava propisana važečom regulativom.

Pojedina prava (npr. pravo na brisanje), u određenim situacijama mogu biti podvrgnuta zakonom propisanim ograničenjima, a korišćenjem istih mogu biti izazvane različite pravne posledice, u skladu sa zakonom (npr. nemogućnost daljeg pružanja određenih usluga, obaveza naknade nastale štete, itd.).

6. KAKO SE ŠTITE VAŠI PODACI?

Rukovalac u okviru svoje poslovne organizacije nastoji da primenjuje najviše moguće standarde u oblasti zaštite podataka o ličnosti, te primenjuje sve neophodne organizacione, tehničke i kadrovske mere, uključujući tu, ali se ne ograničavajući na:

• tehničke mere zaštite,
• kontrolu fizičkog pristupa sistemu gde su pohranjeni lični podaci,
• kontrolu pristupa podacima,
• kontrolu prenosa podataka,
• kontrolu unosa podataka,
• kontrolu dostupnosti podataka,
• ostale mere informacione bezbednosti,
• sve ostale mere koje su neophodne za zaštitu podataka o ličnosti.

Svi obrađivači i/ili drugi primaoci podataka o ličnosti su takođe dužni da primenjuju sve propisane mere zaštite, uskladu sa potpisanim ugovorom sa Rukovaocem i zakonom propisanim standardima i obavezama.

7. KOLIKO DUGO SE ČUVAJU VAŠI PODACI?

Rukovalac nastoji da podatke čuva u periodu koji je neophodan da se određena, konkretna svrha obrade ostvari, nakon čega se podaci brišu ili čine neprepoznatljivim (mere anonimizacije). Konkretan period čuvanja, odnosno kriterijumi na osnovu kojih je moguće odrediti isti, zavisi od svrhe u koje se lični podaci obrađuju. Podaci prikupljeni za potrebe newsletter-a čuvaju se do povlačenja date saglasnosti za prijem ove vrste promotivnih poruka i obaveštenja, nakon čega se brišu ili anonimizuju. Podaci o kandidatima za zaposlenje čuvaju se do povlačenja date saglasnosti kandidata, a najduže šest meseci od dana prikupljanja podataka. Podaci prikupljeni za potrebe ostvarivanja poslovnog kontakta, na inicijativu lica na koje se podaci odnose, čuvaju se do povlačenja saglasnosti za obradu ovih podataka. Podaci prikupljeni putem internet pretraživača i kolačića, čuvaju se u rokovima koje predviđaju kolačići prihvaćeni od strane lica na koje se podaci odnose, a kako je opisano u Politici kolačića AOD Živković Samardžić. Podaci prikupljeni prilikom realizovanja pratećih usluga čuvaju se onoliko koliko je to potrebno da se realizuju ugovorne obaveze, kao i u adekvatnom periodu nakon prestanka ugovora radi sprovođenja propratnih radnji i eventualnih obaveza propisanih zakonom.

8. KOME SE MOŽETE OBRATITI ZA VIŠE INFORMACIJA?

U vezi sa svim pitanjima koja se odnose na obradu podataka o ličnosti, možete dobiti putem mejl adrese: office@zslaw.rs i/ili slanjem upita na adresu AOD Živković Samardžić, Makedonska 30, 11000 Beograd.

Na Vaš upit odgovorićemo u najkraćem mogućem roku, u zavisnosti od kompleksnosti samog upita, ali svakao u roku od 30 dana od dana obraćanja lica na koje se podaci odnose, uz mogućnost produženja roka u posebnim situacijama i uz pruženo obrazloženje, u skladu sa zakonom.

9. DODATNE INFORMACIJE

Lični podaci prikupljeni putem internet stranice https://www.zslaw.rs/, ne iznose se iz Republike Srbije, izuzev prilikom eventualne upotrebe kolačića treće strane, za šta se AOD Živković Samardžić ne može smatrati odgovornim. Serveri koji se koriste za transfer podataka nalaze se u okviru zemalja EEA u kojima je obezbeđen primereni nivo zaštite ličnih podataka. Ukoliko se u izuzetnim slučajevima transfer podataka bude obavljao preko servera izvan EEA, za takav transfer podataka vršiće se uz primenjivanje odgovarajućih mera zaštite, u skladu sa zakonom.

U slučaju potrebe da se lični podaci iznesu u drugu državu, odnosno van teritorije Republike Srbije, prenos će biti učinjen u skladu sa svim pravilima koje propisuje važeći ZZPL, a u skladu sa situacijom i potrebom, primeniće se standardne ugovorne klauzule propisane od strane Poverenika za informacije od javnog značaja i zaštitu podataka o ličnosti.

Davanje podataka od strane lica na koja se podaci odnose nije zakonska, niti ugovorna obaveza, prilikom korišćenja mogućnosti koje pruža internet stranica. Nedavanje traženih podataka kao posledicu može povući jedino nemogućnost uspostavljanja traženog kontakta, neophodnog za dalju komunikaciju na ovaj način, odnosno nemogućnost korišćenja usluga koje su dostupne putem internet stranice https://www.zslaw.rs/. Prilikom obrade podataka koji su prikupljeni preko internet stranice, AOD Živković Samardžić, kao Rukovalac, ne koristi bilo kakvo automatizovano donošenje odluka, niti profilisanje lica na koje se podaci odnose.

Internet stranica Rukovaoca koristi skriptu WordFence, radi zaštite integriteta mreže i informacija koje se nalaze na internet stranici. U slučaju da internet stranica Rukovaoca bude predmet pokušaja prevelikog broja pristupa sa iste IP adrese, ili se na drugi način internet stranici pokuša pristupiti u cilju ugrožavanja njenog integriteta i na drugi protivpravan način sa nedopuštenom svrhom, navedena skripta prikuplja određene podatke koji se mogu smatrati ličnim podacima lica koje stranici pokušava da protivpravno pristupi. U ove podatke spadaju IP adresa, podaci o geolokaciji, hostmail i vreme pokušaja pristupa. Pravni osnov za ovakvu vrstu obrade podataka je legitimni interes Rukovaoca, odnosno zaštita internet stranice Rukovaoca i podataka koji se na njoj nalaze, a svrha obrade je sprečavanje i onemogućavanje daljih napada na stabilnost i integritet internet stranice. Prikupljeni podaci mogu biti prosleđeni i nadležnim državnim organima radi obavljanja poslova u njihovoj nadležnosti. WordFence ne prikuplja lične podatke od korisnika koji internet starnicu koriste na uobičajen način. Za više informacija o funkcionisanju WordFence-a, možete pogledati dostupne dokumente na internet stranici: https://www.wordfence.com/. Lice čiji su podaci prikupljeni zadržava prava garantovana važečim ZZPL i ovom politikom s tim da mu, imajući u vidu svrhu obrade ličnih podataka, pojedina prava mogu biti ograničena u skladu sa zakonom.

Privacy Policy for Users of Website http://www.zslaw.rs/

This Privacy Policy was last modified on August 6^th 2020 in Belgrade.

---

Zivkovic Samardzic Law Firm, based in Belgrade, st. Makedonska 30, registration number: 57320150, TIN: 107890869 (hereinafter: “Data Controller“), which has the status of Data Controller in terms of the Law on Personal Data Protection (“Official Gazette”, No. 87/2018, hereinafter: LPDP), i.e. as an entity which organizes and is responsible for the processing of personal data, hereby informs the visitors of the website http://www.zslaw.rs/, whose data are processed (hereinafter: Visitors), on all important aspects processing of personal data in accordance with applicable regulations:

INTRODUCTORY REMARKS:

• This Privacy Policy regulates the collection and processing of data within the website of Živković Samardžić Law Firm: http://www.zslaw.rs/. By interacting and using any function of the website http://www.zslaw.rs/, or the associated sub-site, it will be considered that you have read this Privacy Policy, that you are familiar with all its provisions and that you accept it without any remarks, objections and reserves.
• Terms used within this Policy have the meanings prescribed by the current Law on Personal Data Protection (“Official Gazette of RS”, No. 87/2018, hereinafter: LPDP), and if necessary, other laws governing specific relations, occurrences, concepts and their meaning.
• By ticking the checkbox, i.e. by clicking on the “I Accept” button, or a differently marked button with essentially the same function, in the pop-up window that is displayed to new users of the website https://www.zslaw.rs/ during the first visit to the website, it will be considered an active, voluntarily done action in order to constitute a valid legal basis for data collection and processing in the manner and for the purposes described in this Privacy Policy. The controller will be able to prove, by electronic record (log), or otherwise, that the data subject has committed the said active, voluntary action by which he has confirmed that he is aware of and agrees with this Privacy Policy.
• The mentioned electronic record (log) will be considered legally valid and sufficient proof of the given consent, in the sense of Article 15, paragraph 1 of the LPDP.
• This Privacy Policy can be changed at any time, provided that the change will be clearly displayed on the front page of https://www.zslaw.rs/. In that case, the data subjects will be required to give new consent for the processing of personal data, in accordance with the changes made to this Privacy Policy.
• The rules governing the collection of personal data through Cookies will be presented, within a separate Cookie Policy. Rules related to giving consent to the Privacy Policy within the provided pop-up window, as well as keeping and evidentiary form and power of the electronic record (log), but also the manner of change and informing the data subject about the changes, in full will also apply to used Cookies.
• For all additional questions related to the rules and provisions of this Privacy Policy, you can contact us via e-mail: office@zslaw.rs and / or by sending an inquiry to the address Živković Samardžić Law Office, st. Makedonska 30, Belgrade.

1. WHAT DATA DO WE COLLECT AND PROCESS?

The Data Controller may collect different categories of personal data, which are used for different purposes and with different legal bases. Usually, it is a set of data that allows the identification of the person whose data are processed, communication with the person whose data are processed or which are necessary to provide a specific service at the request of that person, or to meet the statutory obligations of the Data Controller, which include:

• Name, surname and e-mail address left by the person in order to obtain the Newsletter, establish business contact, as well as when making inquiries in the appropriate section;
• Data on persons interested in employment in Živković Samardžić Law Office, which are collected through the section “Join Us”, available on the front page, i.e. by sending personal data and CV to the email address job@zslaw.rs, as follows:
  • Name and surname,
  • E-mail,
  • Other information that the candidate voluntarily shares through the contact message or through his CV;
• Data collected electronically on visitor identification (IP address, etc.);
• Data collected through cookies provided by the user, i.e. with which use he has agreed, and which are described in a separate Cookie Policy;

Personal data is collected only to the extent necessary to achieve a specific purpose.

On the website of  Živković Samardžić Law Office there are links to the pages of Živković Samardžić Law Office on social networks (Twitter, Linkedin). In addition to this Privacy Policy, the rules prescribed by these platforms (Terms of Service / Terms of Use, Privacy Policy, Cookie Policy) apply to all data collected by these platforms during your visit, as well as to all data that you voluntarily leave on these social networks. Živković Samardžić Law Office cannot be held responsible for any type of illegal use of personal data, committed by companies that own or control social networks. You can find the privacy policies of these platforms at the following links:

• https://twitter.com/en/privacy
• https://www.linkedin.com/legal/privacy-policy

2. WHAT IS THE LEGAL BASIS OF PROCESSING

The legal basis for the processing of personal data is the free and informed consent of the data subject, i.e. their consent for the purposes specified in this Privacy Policy, in accordance with Article 12, paragraph 1 of the LPDP.

Processing can be performed in order to fulfill the obligations from the contractual relationship, i.e. preparation for the conclusion of the contract. The Data Controller, as a contracting party, offers different types of services to legal entities, entrepreneurs, individuals, etc. In the procedure of concluding and performing obligations from the contractual relationship, the Data Controller processes personal data. Also, in order to exercise his rights, based on the services he provides, as well as to establish a business relationship, the Data Controller collects and processes certain personal data. This especially refers to sending job applications and inquiries via the website http://www.zslaw.rs/ and the indicated official e-mail addresses.

In special situations, the collection and processing of personal data may be necessary in order to pursue the legitimate interests of the Data Controller, or a third party, under the conditions and in accordance with Article 15 paragraph 6 of the LPDP. Before collecting and processing personal data of data subjects based on the legitimate interests of the Data Controller, or a third party, if any, in accordance with Article 15 paragraph 6 of the LPDP, the Data Controller will conduct an assessment of legitimate interest based on a tripartite test:

1. Purpose test (identification of legitimate interest);
2. Necessity test (whether data processing is necessary);
3. Balancing test (measuring the legitimate interests of the controller and the data subject).

Also, in exceptional situations, processing may be based on the obligation to perform the legal obligations of the Data Controller. The Data Controller falls under the obligations of laws and other regulations that more closely regulate the business activities of law firms and the provision of legal services. When collecting data for the purpose of fulfilling legal obligations, the Data Controller does so exclusively to the extent necessary, and access to the data is provided only to authorized persons and competent state bodies, in accordance with the law.

3. FOR WHAT PURPOSES DO WE USE THE DATA?

The Data Controller uses the data for various purposes that are always closely related to the legal basis of the processing. Thus, the main purpose of direct collection and processing of personal data of data subjects is to establish communication with persons interested in establishing business contact, i.e. receiving newsletters and processing applications of interested candidates for employment, at their request. The Data Controller processes personal data for the purpose of fulfilling obligations under the law and other regulations, for the purpose of providing various types of services, for the purpose of fulfilling contractual obligations, for maintaining personal and business contact with its clients, as well as for analyzing business results and archiving, in accordance with the law. For all additional processing purposes for which there is a need, the data subject will be informed of all necessary information, before starting such processing operations, and the processing itself will be based on the appropriate legal basis, in accordance with the law.

4. WHO HAS ACCESS TO DATA?

Depending on the legal basis and the specific purpose, the following categories of persons may have access:

• Authorized employees within the Zivkovic Samardzic Law Firm in accordance with their work duties and authorizations, i.e. associates with whom a special agreement on cooperation, a contract on professional training, etc. has been concluded. All persons are obliged to act in accordance with all provisions of the LPDP regarding the security of personal data processing;
• Competent state bodies (Tax Administration, Ministry of Interior, inspection and other administrative bodies, authorized control and regulatory state bodies, competent courts and prosecutor’s offices, etc.), if they have the appropriate authorization for access or other type of data processing in accordance with the law, namely only to the extent provided by law;
• Persons who are in a contractual relationship with the Data Controller (Data Processors) and who are entrusted with certain data processing activities, in accordance with the legally prescribed conditions relating to information security, confidentiality and contractual regulation of rights and obligations.

5. WHAT RIGHTS DO YOU HAVE IN RELATION TO THE PROTECTION OF YOUR DATA  WHICH ŽIVKOVIĆ SAMARDŽIĆ LAW OFFICE, AS A DATA CONTROLLER, PROCESS?

You have the right to:

• request access to your personal information,
• request the correction or deletion of your personal data or the restriction of processing, to object to the processing of your data,
• to object to the processing of your data,
• to have your data transferred to other Controllers,
• to contact the competent authority – the Commissioner for Access to Information of Public Importance and Personal Data Protection, in case you suspect that there is illegal processing,
• other rights prescribed by applicable regulations.

Certain rights (e.g. the right to delete), in certain situations may be subject to statutory restrictions, and their use may cause various legal consequences, in accordance with the law (e.g. inability to continue to provide certain services, the obligation to compensate for damage, etc.).

6. HOW IS YOUR DATA PROTECTED?

Within his business organization, the Data Controller strives to apply the highest possible standards in the field of personal data protection, and applies all necessary organizational, technical and personnel measures, including, but not limited to:

• technical protection measures,
• control of physical access to the system where personal data is stored,
• data access control,
• data transfer control,
• data entry control,
• data availability control,
• other information security measures,
• all other measures necessary for the protection of personal data.

All processors and/or other recipients of personal data are also obliged to apply all prescribed protection measures, in accordance with the signed contract with the Data Controller and the standards and obligations prescribed by law.

7. HOW LONG IS YOUR DATA KEPT?

The Data Controller strives to keep the data for the period necessary to achieve a specific purpose of processing, after which the data is deleted or made unrecognizable (anonymization measures). The specific retention period, i.e. the criteria by which it is possible to determine it, depends on the purpose for which personal data are processed. The data collected for the purposes of the newsletter is kept until the withdrawal of consent to receive this type of promotional messages and notifications, after which they are deleted or anonymized. Data on candidates for employment are kept until the withdrawal of the given consent of the candidate, and for a maximum of six months from the day of data collection. Data collected for the purpose of establishing business contact, at the initiative of the data subject, are kept until the withdrawal of consent for the processing of this data. The data collected through the Internet browser and cookies are stored within the deadlines provided by the cookies accepted by the person to whom the data relate, and as described in the Cookie Policy of Živković Samardžić Law Office. Data collected during the implementation of ancillary services are kept as long as necessary to fulfil the contractual obligations, as well as in an adequate period after the termination of the contract in order to carry out accompanying actions and possible obligations prescribed by law.

8. WHO CAN YOU CONTACT FOR MORE INFORMATION?

Regarding all questions related to the processing of personal data, you can get via e-mail: office@zslaw.rs and / or by sending an inquiry to the address Živković Samardžić Law Office, st. Makedonska 30, 11000 Belgrade.

We will respond to your inquiry as soon as possible, depending on the complexity of the inquiry itself, but each within 30 days from the date of addressing the data subject, with the possibility of extending the deadline in special situations and with an explanation, in accordance with law.

9. ADDITIONAL INFORMATION

Personal data collected through the website https://www.zslaw.rs/, are not taken out of the Republic of Serbia, except during the possible use of third party cookies, for which Zivkovic Samardzic Law Office cannot be held responsible. The servers used for data transfer are located within EEA countries where an adequate level of personal data protection is provided. If in exceptional cases the data transfer is performed via a server outside the EEA, such data transfer will be performed with the application of appropriate protection measures, in accordance with the law.

In case of need to transfer personal data to another country, i.e. outside the territory of the Republic of Serbia, the transfer will be made in accordance with all rules prescribed by the applicable LPDP, and in accordance with the situation and need, standard contractual clauses prescribed by the Commissioner for Access to Information of Public Importance and Personal Data Protection will apply.

The provision of data by the data subject is not a legal or contractual obligation, when using the possibilities provided by the website. Failure to provide the requested information as a consequence can only lead to the impossibility of establishing the requested contact, necessary for further communication in this way, i.e. the impossibility of using the services available through the website https://www.zslaw.rs/. When processing the data collected through the website, Živković Samardžić Law Office, as the Data Controller, does not use any automated decision-making, nor profiling of the persons to whom the data relates.

The Controller’s website uses the WordFence script to protect the integrity of the network and the information contained on the website. In the event that the Controller ‘s website is the object of an attempt to access the website too many times from the same IP address, or attempts to access the website in order to compromise its integrity and in another illegal way with an illegal purpose, the script collects certain data that can be considered personal data of the person who is trying to access the site illegally. This data includes IP address, geolocation data, hostmail and access attempt time. The legal basis for this type of data processing is the legitimate interest of the Operator, ie the protection of the Operator’s website and the data contained on it, and the purpose of processing is to prevent and prevent further attacks on the stability and integrity of the website. The collected data may also be forwarded to the competent state bodies for the purpose of performing tasks within their competence. WordFence does not collect personal information from users who use the website in the usual way. For more information on how WordFence works, you can view the available documents at: https://www.wordfence.com/. The person whose data were collected retains the rights guaranteed by the applicable LPDP and this policy, with regards that, having in mind the purpose of personal data processing, certain rights may be limited in accordance with the law.