Privacy Protection Policy

This Privacy Policy gives you an insight in the information about how we collect and process your personal data through your use of our website or other subdomains, as well as through the purchase of our services or products, through your subscription to our e-mail list or by participating in prize competitions or contests that we organize.

By sharing your persona data with us, you confirm that you are older than -16 years of age.

Rhea savjetovanje d.o.o. (hereinafter: we, us, or our) is the Data Controller, responsible for the processing of your personal data.

Full name of the legal entity: Rhea savjetovanje društvo s ograničenom odgovornošću

Address: Rhea savjetovanje d.o.o., Buzinski prilaz 36a, HR-10000 Zagreb

Pursuant to legal provisions, it is necessary to keep your information accurate and up to date. Therefore, please let us without delay if your personal data changes. You can inform us via e-mail at

Personal data means any information that identify, or based on which it is possible to identify, a natural person. This does not include anonymous information. We distinguish the following types of your personal data:

Communication data – such data includes any type of communication you may send us, regardless of whether you do so by using our website contact form, e-mail, SMS, or social networks (messages, comments or posts). We use this information for the purpose of communicating with you.

Clients’ data – data pertaining to any purchase of products and/or services, such as your name, title, billing address, delivery address, telephone number, contact details, purchase information and information about your card’s number. We process this information to deliver you products and/or services you have purchased, and to keep records of such transactions. Our lawful basis for this processing is the execution of the contract between you and us and/or undertaking relevant actions, at your request, necessary to enter into the contract.

User data – data on how you use our website and any online service, as well as data that you disclose on our website or through online services. We use this information to manage our website and publish content that is relevant for you, to ensure the security of our website, perform backup of our website and/or databases, and to enable the publication and administration of our website, other online services and businesses. Our lawful basis for this processing is our legitimate interest in the proper management of our website and our business.

Technical data – data about your use of our website and online services, such as your IP address, login data, information about your internet browser, duration of your visit on our website, consulting of pages and navigation instructions, information about the number of your visits to our website, time zone settings and other technologies on the devices you use while visiting our website. The source of this data is our analytics tracking system.

We process this data to analyse your use of our websites , to manage and protect our business and website, create relevant website content and advertisements for you, and study and understand the effectiveness of our advertising activities. Our lawful basis for this processing is our legitimate interest in enabling us to properly manage our website and our business and to ensure the growth of our business.


Marketing data – including data about your preferences when our marketing is in question, and your communication preferences. We process this data to allow your participation in our promotional activities, such as contests, discounts, gifts, to provide you with the appropriate content of the website and the advertisements addressed to you and to be able to measure or understand the success of our advertising. Our lawful basis for this processing is the consent from relevant data subjects to study how customers use our products and/or services, with the aim of improving and developing them, i.e. to grow our business and to decide on our marketing strategies.

We may use clients data, user data, technical data and marketing data to provide you with relevant website content and advertisements (including Facebook and other display advertisements) and to measure or understand the effectiveness of the advertising we targeted for you. Our lawful basis for this processing is the consent from relevant data subjects , to ensure growth of our business. We may also use this information to send other marketing communications that we may address to you about relevant products and services, such as online courses, books, live broadcasts such as webinars, live events, conferences, consultations and mentoring services. The lawful basis for this processing is your consent.

We do not collect sensitive data about you. Sensitive data means data that includes details about your racial or ethnic origin, political opinion, religion, or belief, genetic or health condition, or sexual orientation. We do not collect data on criminal convictions or criminal offenses either. Where we are required to collect personal information pursuant to the law or to the terms of a contract between you and us, and you do not provide us with those data based on our request, we may not be able to execute the contract (for example, deliver products or services to you). Should you do not provide us with the requested information, we may decide to cancel your order for a product or service. However, should we still deliver it, we will notify you in a timely manner. We will only use your personal data for the purpose for which it was collected or for a reasonably similar purpose, if necessary. In the event when we need to use your data for a new purpose that is not related to the old one, we will notify you and explain the lawful basis for processing.

We can use your personal details without your knowledge or consent when this is prescribed by the law. We do not use automated decision-making process or any kind of automated profiling.

We may collect data directly from you (e.g., if you fill a form in our website or send us an e-mail). If you visit our website, we may automatically collect certain data about you by using cookies and similar technologies. Another potential source of data is third parties, such as analytics services like Google, which are registered outside the European Union, advertising networks such as Facebook, which is also registered outside the European Union, or providers of technical, payment or delivery services. We may also obtain and collect data from publicly available sources such as electronic registers and databases.

The lawful basis for processing of your personal data to communicate with you for marketing purposes is your consent. In line with current laws and regulations and taking into consideration the upcoming legislations changes discussed ad EU level (see: Regulation on Privacy and Electronic Communications ), we will be allowed to approach you for communication/marketing purposes if: 1. you have concluded a purchase agreement with us, or requested information about our products and/or services; 2. you gave consent to receive marketing notices from us and have not, in the meantime, unsubscribed from the list of receipt of such notices. Pursuant to the GDPR and other relevant EU and domestic laws and regulations, if you are not a physical person (e.g., company, enterprise, joint venture, etc.), we can send you e-mails without your consent, unless you requested us not to contact you for such purposes. However, you can always unsubscribe from our mailing list. Before we disclose your personal information to any third party, for their marketing purposes, we shall acquire your express consent.

You can at any time request from us or a third party to stop sending you marketing communications. You can do this either by using the unsubscribe link from the list at the bottom of each email we send you, or by sending an email to If you unsubscribe from the list for receiving emails for marketing purposes, this un-subscription does not apply to personal information we have collected based on other transactions, such as purchases, orders, and similar.

We will disclose your information to the public only with your express consent. There may occur the possibility for us to share your data with the following parties: – IT or administrative service providers – Professional advisers such as lawyers, bankers, auditors or insurers – Authorities requesting reports on processing procedures from us – Third parties such as copywriters or customer services – Third parties to which we sell, transfer or merge part of our business or our assets. All third parties to whom we may transfer your data are bound to respect the security of your personal data and to process them in accordance with the law. We allow third parties to process your personal data only and exclusively for defined purposes and in accordance with our instructions.

Countries outside of Economic European Area (EEA) not always ensure the same level of protection of personal data. Therefore, the European laws and regulations prohibit the transfer of personal data outside of EEA, except in cases when such transfer fulfils certain requirements. Some of our third-party service providers are registered outside the EEA, therefore the processing of your personal data constitutes a transfer of data outside the EEA. However, whenever we transfer your data outside the EEA, we ensure an adequate level of protection in the processing of such data, according to relevant EU and local laws and regulations. We guarantee the implementation of the necessary safeguards including at least one of the following security measures: protection of personal data. – If we use the services of service providers, in certain cases we enter into contracts or codes of conduct or they may use certified mechanisms approved by the European Commission, which ensure the same protection of personal data as in the European Union. -. – We may ensure the necessary level of protection through Binding Corporate Rules applying to the receiving party outside of the EEA, including the USA. Unless the lawful basis of the transfer are legal grounds or legitimate interest, your consent will be required. You can withdraw this consent at any time. If none of the above security measures is available, we may request authorisation to the relevant Supervisory Authority or suspend/terminate the transfer.


We continuously improve our system for collecting and processing personal data, to ensure our compliance with regulations, but also to ensure the security of your data. To this end, we use appropriate physical and technical data protection measures and monitor the development of technical features, as well as the guidelines of the bodies of the Republic of Croatia and of the European Union, which are competent in the field of protection of personal data. In order to set the necessary safeguards and ensure an adequate level of protection of your personal data, we enter into specific Data Processing Agreement with third parties providing services necessary to our business functions (e.g.: website , e-mailing database, etc.) ensuring the same level of care and protection provided by our company. Also, unauthorized penetration to our systems are possible, but we do everything in our power to make our website as secure as possible and to prevent intrusions, but also to reduce the risks that may arise in the event of intrusions, and we apply the same measure to the entire personal database we store in our system.

We will retain your personal data for as long as necessary to fulfil the purpose for which those were collected, including for the purposes of complying with legal, accounting or reporting requirements. When assessing and deciding for how long we will retain data, we take into consideration their volumes, nature and sensitivity, potential risks of damage from unauthorized use or disclosure, purpose of processing and whether they can be accessed in other ways. For tax purposes, we will retain the data required by the tax laws and for the period prescribed for such purpose. In some cases, we may pseudonymize and/or, where possible, anonymise your data, such as for research or statistical purposes. In such cases, we may use this information indefinitely, without further need to notify you.

Pursuant to the EU Regulation on the Protection of Natural Persons with Regard to the Processing of Personal Data and on the Free Movement of Such Data (“GDPR”), you have the right to request access, correction, deletion, restriction of processing, transfer to another controller, and withdrawal of consent. Should you wish to request any of the above, please contact us at Access to your personal data or any of the other activities listed in the first section of this paragraph it is free of charge. However, we have the legal right to charge you a fee or to reject your request, if there are no necessary grounds, or if it is repetitive or excessive. We may ask you for certain information, but only for the purpose of verifying, i.e. certifying your identity, in order to grant you access to your personal data (or perform any other action specified in the first section of this paragraph). This is a security measure to prevent your personal information from being disclosed to unauthorized persons. There is a possibility that we will contact you and ask additional questions, to respond to your request as soon as possible. We will respond to all your lawful requests or inquiries within 30 days, unless this will not be possible due to the type of the request or objective reasons entirely or partially independent from our will, (e.g., natural disasters, force majeure, requests from Authorities, etc.). It may be also possible to extend this deadline if the requests are particularly complex or if you have several inquiries. In any of the above cases, we will notify you in a timely manner. According to the law, we are obliged to inform you that you have the right to file a complaint regarding the collection and processing of your personal data, both to us and to the Supervisory Authority, i.e. the Croatian Agency for Personal Data Protection (AZOP).

These websites may include links to third party websites, plugins, and applications. By using these links or enabling the connection, you may allow a third party to collect or share information about you. We do not control third party websites and are not responsible for their privacy policies. When you leave our website, we advise you to read the Privacy Policy of each page you visit.

You can set your web browser to reject all or part of your cookies or to notify you when web pages set or access cookies. However, if you disable or decline cookies, please note that certain parts of our website may become inaccessible or may not function properly. For more information, see our Cookies Policy, which is available on our website.

We reserve the right to update our Privacy Policy at any moment. You will be informed via email about any related amendment if you are subscribed to our mailing list, here (below in this text) we will also change the date when our Privacy Policy has been updated.

Last update: December 2020.

– – – –

Cookies Policy

What are cookies?
Cookies are data that a website you are visiting stores to your computer, tablet, or mobile phone. Cookies usually store your browsing settings, such as the selected language or address. After you visit the website again, the internet browser sends back cookies that belong to that website. In this way, the website can display information that suits your needs.

Cookies purpose
To ensure proper functioning of the website, further improvements and enhancements of your experiences in visiting it, such website stores a small amount of information (cookies) on your computer.

Data stored by cookies
Cookies can also store personal data (such as your name or email address). However, this data can only be stored if you allow it. It is also important to know that our website cannot access other files on your computer, tablet, or mobile phone. Although the storing and sending of cookies are not visible to you, you can change your internet browser settings to choose whether you want to approve or reject cookies requests, or delete saved cookies automatically when you close your internet browser, etc.

Consent to the storage of cookies
By using the website without changing the settings that would deny consent to the storage of cookies on your computer, tablet or mobile phone, you accept the use and storage of cookies on your computer, tablet or mobile phone. If you do not accept the use and storage of cookies, their storage will be disabled, and you will still be able to browse our website.

Third party cookies
There are several external services that store limited cookies on your computers. These cookies are not set by the website, but some of them serve for the normal functioning of certain features that make it easier for users to access the content. We currently use third party services, such as Facebook and Google Analytics. If you want to prevent some of the services from storing cookies on your computer, you can block them. There are websites to turn off the storage of cookies for various services. You can find out more here:

How to disable cookies
If you wish, you can disable the storage of cookies on your computer, tablet or mobile phone, but blocking all cookies could have a negative effect on the use of many websites, including this one. Cookie settings can be controlled and configured in your internet browser. If you want to delete or disable cookies on your side, you need to update the settings of your internet browser (for information on how to delete and disable cookies, see your internet browser by selecting the help menu).

Last update: December 2020