Privacy Policy

Welcome to EORI Croatia. We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your information when you use our EORI registration services. Our services are provided in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and Croatian data protection laws.

EORI Services d.o.o. Email: info@eori-hrvatska.eu We are the data controller responsible for your personal data collected through our website and services.

We collect the following types of personal data: • Company Information: Company name, tax identification number (OIB), registration number, legal status • Contact Information: Contact person name, email address, phone number, business address, city, postal code, country • Economic Activity Information: Description of your company's main economic activities • Electronic Signature: Digital signature for application verification • Payment Information: Processed securely through Stripe; we do not store your payment card details All data collected is necessary for processing your EORI application with Croatian customs authorities.

We use your personal data for the following purposes: • Processing your EORI number application with Croatian customs authorities • Communicating with you regarding your application status • Sending confirmation emails and official documentation • Providing customer support • Complying with legal obligations • Improving our services We process your data based on: • Contract performance (to provide our EORI registration services) • Legal obligations (customs and tax regulations) • Legitimate interests (improving our services and preventing fraud)

We share your data only with: • Croatian Customs Administration (Carinska uprava): Required for EORI registration • Payment processors (Stripe): For secure payment processing • Email service providers: For sending transactional emails We do not sell, rent, or trade your personal data to third parties for marketing purposes.

We implement robust security measures to protect your data: • End-to-end encryption for all data transmission • Secure servers located within the European Union • Regular security audits and updates • Access controls and authentication measures • ISO 27001 aligned security practices Despite our best efforts, no data transmission over the internet is 100% secure. We cannot guarantee absolute security but strive to protect your data to the highest standards.

We retain your personal data for: • Application data: 7 years (as required by tax and customs regulations) • Communication records: 3 years • Payment records: As required by financial regulations After these periods, your data will be securely deleted or anonymized.

Under GDPR, you have the following rights: • Right to Access: Request a copy of your personal data • Right to Rectification: Request correction of inaccurate data • Right to Erasure: Request deletion of your data (subject to legal retention requirements) • Right to Restrict Processing: Limit how we use your data • Right to Data Portability: Receive your data in a portable format • Right to Object: Object to processing based on legitimate interests • Right to Withdraw Consent: Withdraw consent at any time To exercise these rights, contact us at info@eori-hrvatska.eu

Our website uses essential cookies necessary for the website to function. We do not use tracking cookies or analytics that collect personal data without consent.

Your data is processed and stored within the European Economic Area (EEA). We do not transfer your data outside the EEA.

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on our website and updating the "Last updated" date.

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us: Email: info@eori-hrvatska.eu You also have the right to lodge a complaint with the Croatian Personal Data Protection Agency (AZOP) if you believe your rights have been violated.