Privacy Policy

Last updated: 1st January 2026

1. Introduction

This Privacy Policy explains how sarnovekil.top d.o.o. ("we", "our", or "us") collects, uses, and protects your personal information when you visit our website sarnovekil.top or use our restaurant inventory forecasting services. We are committed to protecting your privacy and ensuring transparency about our data practices.

2. Data Controller Information

The data controller for your personal information is:

• Company: sarnovekil.top d.o.o.
• Registration Number: 8521479638
• VAT Number: SI96257428
• Address: Celovška cesta 149, 1031 Ljubljana, Slovenia
• Email: [email protected]
• Phone: +386 17250063

3. Data Collection

We collect various types of personal data to provide and improve our services. The data we collect includes information you provide directly to us and information collected automatically when you use our website:

3.1 Information You Provide

• Contact Information: Name, email address, phone number, company name
• Communication Data: Messages sent through our contact forms, emails, or phone calls
• Service Data: Information about your restaurant operations, inventory needs, and service requirements
• Account Information: If you create an account, we collect login credentials and profile information

3.2 Information Collected Automatically

• Website Usage Data: Pages visited, time spent on site, click patterns, and navigation behaviour
• Technical Data: IP address, browser type, device information, operating system
• Cookie Data: Information collected through cookies and similar tracking technologies

4. How We Use Your Information

We use your personal data for various legitimate business purposes. How we use your information depends on how you interact with our services and the preferences you express:

4.1 Service Provision

• Providing restaurant inventory forecasting services and support
• Processing and responding to your enquiries and service requests
• Creating and managing your account and service access
• Delivering customer support and technical assistance

4.2 Communication and Marketing

• Sending service updates, technical notices, and important announcements
• Providing information about new features and service improvements
• Sending marketing communications about our services (with your consent)
• Responding to your questions and providing customer support

4.3 Business Operations

• Improving our website functionality and user experience
• Conducting analytics to understand how our services are used
• Preventing fraud and ensuring the security of our systems
• Complying with legal obligations and regulatory requirements

5. Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use, please refer to our Cookie Policy.

6. Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

• Consent: When you have given clear consent for us to process your personal data for specific purposes
• Contract: When processing is necessary for the performance of a contract with you
• Legitimate Interests: When we have a legitimate business interest in processing your data
• Legal Obligation: When we need to comply with legal or regulatory requirements

7. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following limited circumstances:

• Service Providers: With trusted third-party service providers who assist us in operating our website and providing services
• Legal Requirements: When required by law, court order, or government authorities
• Business Transfers: In connection with a merger, acquisition, or sale of business assets
• Protection: To protect our rights, property, or safety, or that of our users or others

8. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected and to comply with our legal obligations. Our retention periods vary depending on the type of data:

• Contact Information: Retained for 3 years after last contact or until you request deletion
• Service Data: Retained for the duration of our service relationship plus 7 years for business records
• Website Analytics: Retained for 26 months in accordance with Google Analytics standards
• Marketing Data: Retained until you withdraw consent or for 2 years of inactivity

9. Your Rights

Under GDPR, you have several rights regarding your personal data. You can exercise these rights by contacting us at [email protected]:

• Right of Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Request limitation of how we use your data
• Right to Data Portability: Request transfer of your data to another service
• Right to Object: Object to processing based on legitimate interests or direct marketing
• Right to Withdraw Consent: Withdraw consent for data processing at any time

10. Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and authentication procedures
• Employee training on data protection practices
• Secure hosting and backup procedures

11. International Data Transfers

As we are based in Slovenia (EU), your data is primarily processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as adequacy decisions or standard contractual clauses approved by the European Commission.

12. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly.

13. Contact Information

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us:

• Email: [email protected]
• Phone: +386 17250063
• Post: sarnovekil.top d.o.o., Celovška cesta 149, 1031 Ljubljana, Slovenia

14. Supervisory Authority

You have the right to lodge a complaint with the relevant supervisory authority if you believe your data protection rights have been violated. In Slovenia, the supervisory authority is:

Information Commissioner of the Republic of Slovenia
Website: www.ip-rs.si

15. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the new Privacy Policy on our website and updating the "Last updated" date. We encourage you to review this policy periodically.

16. Governing Law

This Privacy Policy is governed by the laws of Slovenia and the European Union, including the General Data Protection Regulation (GDPR). Any disputes arising from this policy will be subject to the jurisdiction of Slovenian courts.