Privacy Policy

Introduction

vexantilozarqentium.top d.o.o. ("we", "our", or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, and protect your personal information when you visit our website vexantilozarqentium.top or use our fitness studio retention automation services.

As a company registered in Slovenia and operating within the European Union, we comply with the General Data Protection Regulation (GDPR) and other applicable data protection laws. This policy applies to all personal data we process about you.

Data Controller Information

The data controller for your personal information is:

Data We Collect

We collect and process various types of personal data depending on how you interact with our website and services. The data we collect includes the following categories:

Information You Provide Directly

• Contact information (name, email address, phone number)
• Company information (fitness studio name, business details)
• Communication preferences and enquiry details
• Any information you provide in contact forms or correspondence

Information Collected Automatically

• Website usage data (pages visited, time spent, click patterns)
• Technical information (IP address, browser type, device information)
• Cookies and similar tracking technologies (see our Cookie Policy for details)
• Referral sources and marketing campaign data

Service-Related Data

• Fitness studio operational data (when using our services)
• Member engagement metrics and analytics
• System usage and performance data
• Support and communication records

How We Use Your Information

We process your personal data for various purposes based on different legal grounds under GDPR. Here's how we use your information and the legal basis for each purpose:

Service Delivery (Contract Performance)

• Providing fitness studio retention automation services
• Processing enquiries and responding to communications
• Managing customer accounts and service delivery
• Technical support and system maintenance

Legitimate Business Interests

• Improving our website and services through analytics
• Developing new features and service enhancements
• Conducting business analysis and market research
• Fraud prevention and security monitoring

Consent-Based Processing

• Marketing communications and promotional materials
• Newsletter subscriptions and industry updates
• Personalised advertising and remarketing campaigns
• Optional analytics and performance tracking

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

Our website uses various types of cookies including necessary cookies for basic functionality, analytics cookies for understanding user behaviour, and marketing cookies for advertising purposes. For detailed information about our use of cookies, please refer to our Cookie Policy.

Data Sharing and Disclosure

We may share your personal data with third parties in the following circumstances:

• Service Providers: Trusted third-party companies that help us operate our business (hosting, analytics, customer support)
• Legal Requirements: When required by law, regulation, or legal process
• Business Protection: To protect our rights, property, or safety, or that of our customers
• Business Transfers: In connection with any merger, acquisition, or sale of company assets

We ensure that all third parties we work with provide appropriate safeguards for your personal data and comply with applicable data protection laws.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected and to comply with legal obligations. Our data retention periods are based on:

• Customer Data: For the duration of our business relationship plus 7 years for accounting and legal purposes
• Marketing Data: Until you withdraw consent or request deletion
• Website Analytics: Up to 26 months for Google Analytics data
• Communication Records: Up to 3 years for customer service purposes

After the retention period expires, we securely delete or anonymise your personal data unless we are required to retain it for longer by law.

Your Rights

Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you
• Right to Rectification: Request correction of inaccurate or incomplete data
• Right to Erasure: Request deletion of your personal data in certain circumstances
• Right to Restrict Processing: Request limitation of how we process your data
• Right to Data Portability: Request transfer of your data to another service provider
• Right to Object: Object to processing based on legitimate interests or for marketing purposes
• Right to Withdraw Consent: Withdraw consent for consent-based processing at any time

To exercise any of these rights, please contact us at [email protected] or +386 45375838. We will respond to your request within one month of receipt.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Our security measures include:

• Encryption of data in transit and at rest
• Regular security assessments and updates
• Access controls and staff training
• Secure hosting and infrastructure
• Regular backups and disaster recovery procedures

While we strive to protect your personal data, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but commit to notifying you of any significant data breaches as required by law.

International Data Transfers

As we operate primarily within the European Union, your personal data is generally processed within the EU/EEA. However, some of our service providers may be located outside the EU/EEA. When we transfer personal data outside the EU/EEA, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions for countries with appropriate data protection levels
• Other appropriate safeguards as required by GDPR

Children's Privacy

Our services are not directed at children under the age of 16, and we do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without parental consent, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. When we make significant changes, we will notify you by email (if you have provided your email address) or by posting a notice on our website.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your personal data. The "Last updated" date at the top of this policy indicates when it was last revised.

Contact Us

If you have any questions about this Privacy Policy, our data practices, or wish to exercise your rights, please contact us using the following information:

You also have the right to lodge a complaint with the Slovenian Information Commissioner (Informacijski pooblaščenec) or your local data protection authority if you believe we have not handled your personal data appropriately.