Privacy Policy and Data Protection

Legal information


EnergoControl Zagreb d.o.o.

Kovinska 30

10000 Zagreb



OIB: 50886883079


Bank name: Zagrebačka Banka Zagreb

IBAN: HR1423600001101620194


Phone number : 01/3436-333

E-mail: info@energocontrol.hr


The full name of the legal entity: ENERGOCONTROL ZAGREB društvo s ograničenom odgovornošću




All contents of this site (images, videos, texts, documents) are subject to copyright / unesi EnergoControl Zagreb d.o.o. Content is not allowed to be copied without written consent. The basis of the site is based on the WordPress platform that is subject to GPL licensing, the WordPress theme was made by order EnergoControl Zagreb d.o.o.



Privacy policy


Using EnergoControl Zagreb d.o.o. web pages is possible without any personal data; However, if a visitor wants to use the company's special services through our web site, personal data processing may become necessary. If processing of personal data is necessary and there is no legal basis for such processing, we generally accept the consent of the visitor.


Processing of personal data, such as the name, address, email address or phone number of the data bearer, is always in accordance with the General Data Protection Regulation (GDPR) and in accordance with the specific protection of data regulations applicable to the EnergoControl Zagreb d.o.o. With this statement of data protection, our company wants to inform the public about the nature, scope and purpose of the personal information we collect, use and process. Further, data applicants have been informed about this right through this privacy statement.


As a controller, EnergoControl Zagreb d.o.o. has implemented numerous technical and organizational measures to ensure full protection of personal data processed through these web sites. However, Internet-based data transfers can mostly have the security gaps, so absolute protection may not be guaranteed. For this reason, each subject of data is free to transfer personal information to us through alternative means, e.g. by phone.

The Declaration of Data Protection EnergoControl Zagreb d.o.o. is based on the terms used by the European legislator for the enactment of the General Data Protection Regulation (GDPR). Our data protection statement should be legible and understandable to the general public, as well as to our customers and business partners. To ensure this, we want to start by explaining the terminology used.



In this Privacy Statement we use, among other things, the following terms:


Personal information

Personal data includes all data relating to an identified or recognizable physical person ("data subject"). An identified physical person is one that can be identified directly or indirectly, in particular by calling an identifier such as name, identification number, location information, online identifier or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that physical person.


Data subject

The data subject is any physical person identified or recognizable, whose personal data is processed by the controller responsible for the processing.



Processing is any action or set of procedures that are performed on personal data or personal data sets, whether it is automated - such as collecting, capturing, organizing, structuring, storing, adapting or modifying, retrieving, transmitting, spreading or otherwise by making available, updating or combining, restricting, deleting or destroying.


Restriction of processing

The processing limitation refers to stored personal data with a goal to limiting their processing in the future.



Profiling means any form of automated personal data processing consisting of the use of personal data to assess certain personal aspects relating to a physical person, in particular for the analysis or prediction of aspects related to the workplace of a physical person at work, economic situation, health, personal preferences, interests, reliability, behavior, location, or movement.



Pseudonymization is a data management and de-identification procedure by which personally identifiable information fields within a data record are replaced by one or more artificial identifiers, or pseudonyms. A single pseudonym for each replaced field or collection of replaced fields makes the data record less identifiable while remaining suitable for data analysis and data processing.


Controller or Controller Responsible for Processing

The controller or controller responsible for processing is a physical or legal person, a body of public authority, agency or other body which alone or together determines the purposes and means of processing personal data; where the purposes and means of such treatment are laid down by Union or Member State law, a controller or special criteria for its appointment may be provided for by Union or Member State law.



A processor is a physical or legal person, a body of public authority, agency or other body that processes personal data on behalf of a controller.


The recipient

The recipient is a physical or legal person, body of public authority, agency or other body to which personal data are disclosed, whether or not they are a third party. However, public authorities which may receive personal data within a specific examination in accordance with the law of the Union or a Member State shall not be considered recipients; the processing of such data by such public bodies must comply with the applicable data protection rules in accordance with the purpose of the processing.


Third Party

A third party is a physical or legal person, public body, agency or body that is not a subject, a controller, a processor, and a person supervised by a supervisor or a processor authorized to process personal data.



The consent of the data subject is any freely given, specifically, informed and unambiguous indication of the wishes of the data subject by which he, by means of a statement or by affirmative actions, signifies consent to the processing of personal data relating to him.

Controller for the purposes of the General Data Protection Regulation (GDPR), other data protection laws applicable in the EU Member States and other data protection provisions:

EnergoControl Zagreb d.o.o.

Kovinska 30

10000 Zagreb


Phone: 01/3436-333

Email: info@energocontrol.hr

Web: https://energocontrol.hr

The Personal Data Protection officer is:

First and last name: Martin Lončar

EnergoControl Zagreb d.o.o.

Kovisnka 30

10000 Zagreb


Phone: 01/3436-333

Email: info@energocontrol.hr

Web: https://energocontrol.hr

Any data subject can at any time contact our data protection officer with any questions and suggestions regarding data protection.

We collect information about you when you fill out any of the forms on our website or by submitting queries. Web site usage was collected using cookies.

If you are under the age of 16, you must obtain parental consent before filling out any form on our website.

When submitting a form on our website, we use the third-party software provider for automated data collection and processing. The Provider will not use your information for any purpose and will only keep it in accordance with our Privacy Policy.

Cookies are text files placed on your computer to collect standard information about internet records and visitor behavior information. This information is then used to monitor the use of a visitor's web site and to create statistical site activity reports.

For more information, visit www.aboutcookies.org or www.allaboutcookies.org


You can set your browser to not accept cookies, and the above mentioned webpages tell you how to remove cookies from your browser. Please note that some of the features on our website may not work because of that.


Cookies can be "First Party", set by us or "Third Party" - set by another company to perform that function, such as Google Analytics or our advertising cookies. Some of these third parties use their own anonymous cookies to track the number of people who saw a particular ad or track how many people have ever seen. Companies that generate these cookies have their own privacy policy and do not have access to read or write these cookies. These organizations can use their cookies to anonymously target advertising on other web sites, based on your visit to this site.



Our use of cookies


We use the following cookies:


-  Strictly necessary cookies: help the website to work and improve the look and feel of the web site. They also help improve navigation on our website and allow you to return to the pages you have previously visited. This type of cookie only lasts for the duration of a visit to the web site. When you leave the website, they are automatically deleted.


-  Analytical Cookies: Allow us to recognize and count the number of visitors and to see how visitors move on our website when they are used. This helps us improve the way our website works, so that users find it easier to find what they are looking for and what they are interested in.




The table below explains the cookies we use and why:





Strictly necessary Cookies

The name of the cookie

Where it is used



All areas of the site

User cookie session that lasts until the Internet browser closes.


All areas of the site

A Google cookie to save user settings and Google Maps information.


All areas of the site

User cookie session that lasts until the Internet browser closes.



Analytical Cookies

The name of the cookie

Where it is used


_ga, _gid

Google Analytics, all areas of the site

Used to distinguish a user. Allows us to recognize which pages are popular, estimate the size of the audience, and sample usage, and we better understand how the website is used.

On this website, the controller integrated the Google Analytics component. Google Analytics is a web analytics service. Web analytics collects and analyzes site visitor behavior data. The web analytics service collects, among other things, information about the site that the person came from (referrer), which subpages were visited, or how often and by what time viewed the subpages. Web analytics is mainly used to optimize a website and to conduct cost analysis and use of internet advertising.

The Google Analytics component operator is Google Inc., 1600 Amphitheater Pkwy, Mountain View, CA 94043-1351, United States.

The purpose of the Google Analytics component is to analyze traffic on our web site. Google collects collected data and information, among other things, to evaluate the use of our web site and provide online reports that show activity on our web site and provide other services related to the use of our web site for us.

Google Analytics puts a cookie on the information technology system of the respondent. The cookie definition is explained above. The cookie is used to store personal information, such as access time, the place where access is made and the frequency of visits to our site by the subject. Every visit to our web site, such personal information, including the Internet access IP address that uses the data subject, will be transmitted to Google in the United States. These personal information is stored by Google in the United States. Google may transfer this personal information collected through a technical process to third parties.

The data subject can, as noted above, at any time prevent cookies from being placed on our web site by matching the web browser used, thereby permanently denying cookies. Such adaptation to the web browser used would also prevent Google Analytics from setting up a cookie on the subject's information technology. In addition, cookies that Google Analytics already uses can be deleted at any time via an Internet browser or other software program.

In addition, the data subject has the ability to complain about the data collection generated by Google Analytics, which is related to the use of this web site, as well as processing this data by Google and the ability to prevent it. For this purpose, the data subject must download the additional browser under https://tools.google.com/dlpage/gaoptout and install it. This browser add-on speaks Google Analytics through JavaScript, so that all data and information about website visits is not transmitted to Google Analytics. Installing browser add-ons is considered a Google complaint. If the entity's information system is later deleted, formatted, or newly installed, the data subject needs to reinstall the browser plugins to disable Google Analytics. If an additional browser has unlocked the data subject, or any other person attributable to your authority, or is disabled, you can reinstall or re-enable browser plug-ins.

Additional information and applicable Google data protection provisions can be downloaded at https://www.google.com/intl/en/policies/privacy/ and http://www.google.com/analytics/terms/us. html Google Analytics is additionally explained at the following link: https://www.google.com/analytics/


What is a request for access to data?


This is your right to request a copy of the information we hold about you. If you want a copy of some or all of your personal information, send us an e-mail to: info@energocontrol.hr or write to us: Martin Lončar, Energocontrol d.o.o., Kovinska 30, 10000 Zagreb. 


We will reply to your request within 30 days of receiving your request.


We want to make sure your personal information is accurate and up to date. You may request that we correct or remove the information you believe to be incorrect by e-mail to: info@energocontrol.hr or writing to the above address.



Data transfer


You also have the right to receive the personal information you have provided, in a structured, standard format, and in a machine readable format, and have the right to transfer this data to another controller without delay from the current controller if:


(a) The processing is based on a consent or contract, and


(b) The processing is carried out by automated means.



Right to delete (Right to be forgotten)


If you want us to completely delete all of the information pertaining to you, please send us a request to delete the data in the following ways:


Email: info@energocontrol.hr


In written form: Martin Lončar, Energocontrol d.o.o., Kovinska 30, 10000 Zagreb. 

Our web site contains links to other web sites. This privacy policy only applies to this web site. energocontrol.hr is not responsible for the content and privacy policy of other websites.

If you consider that your personal information is processed in a manner that does not meet GDPR, you have the right to file a complaint with the competent supervisory authority. The supervisory body will inform you of the progress and outcome of your appeal. The Supervisory Authority in the Republic of Croatia is the Personal Data Protection Agency.

We regularly review our privacy policy and post all updates to this web site. This privacy policy was last updated 23.5.2018