Who is the controller of personal data?

The controller of personal data, as defined by the EU General Data Protection Regulation (GDPR) and applicable national legislation on data protection, is:
ACRO CONNECTION d.o.o., Stadionska ulica 4, 1000 Ljubljana, registration number 9850724000, VAT number 83318291.

Purpose of the Privacy Policy of ACRO CONNECTION d.o.o.

This Privacy Policy governs the collection, storage, and processing of personal data of course participants that ACRO CONNECTION d.o.o. obtains during every customer purchase.

Collection, Storage, and Processing of Personal Data

ACRO CONNECTION d.o.o. collects, stores, and processes only the data necessary for the provision and execution of services (e.g., issuing invoices) and essential communication with course participants.
Personal data is obtained through the submission of a registration form for one of the offered classes. The scope of collected data depends on the format of the training.
For online courses, the controller collects, stores, and processes the following personal data:
• Full name
• Email address (used as username)
• Password (in encrypted form)

ACRO CONNECTION d.o.o. is not responsible for the accuracy, completeness, or currency of the data entered by the participants themselves.

Data Retention Period

ACRO CONNECTION d.o.o. stores the participant’s personal data only for as long as necessary to fulfill the purpose for which the data was collected and further processed (i.e., until the end of a specific course).
After the purpose ceases or upon written revocation by the individual, the data will be permanently deleted or physically destroyed.

Sharing Personal Data with Third Parties

The controller does not share collected personal data with third parties unless required to do so by applicable law.

Cookies

The controller’s website, www.acro-connection.com, uses cookies to enhance the user experience of its visitors.

Security

ACRO CONNECTION d.o.o. is committed to safeguarding participants’ personal data by implementing reasonable physical, organizational, and electronic measures to secure collected data.
Despite diligent efforts, unauthorized access may occur. In such cases, the data controller will notify the affected participant via email as soon as possible, but no later than within three (3) working days of discovering the breach.
Participants are also responsible for protecting their personal data by creating secure usernames and passwords and using appropriate software (antivirus) protection for their devices.

Upon visiting the official website, general non-personal data (e.g., number of visits, average time spent on the site) is automatically recorded. These data are used solely to improve the content and usability of the site and are not subject to further processing.

Changes to the Privacy Policy

ACRO CONNECTION d.o.o. reserves the right to update or modify the provisions of this Privacy Policy. The updated or amended provisions will take effect the day after they are published on the official website www.acro-connection.com.

Additional Explanations Regarding the Privacy Policy

For further questions related to this Privacy Policy, you can contact: [email protected]