Home / Privacy Policy
Legal

Privacy Policy

Last updated: 17 May 2026

1. Who we are

This website (indeloop.hr) is operated by:

Indeloop d.o.o.
Slavonska avenija 22 G
10000 Zagreb, Croatia
Email: info@indeloop.hr
Phone: +385 1 2481-300

2. What this policy covers

This Privacy Policy explains how Indeloop d.o.o. (“we”, “us”, “Indeloop”) collects, uses, stores, and protects personal data when you visit our website or interact with us through forms, email, or other means. It is written to comply with the EU General Data Protection Regulation (GDPR) and the Croatian Personal Data Protection Act.

3. Information we collect

3.1 Information you provide

  • Contact forms — name, email address, company name (optional), topic, and message you write.
  • Newsletter signup — email address only.

3.2 Information collected automatically

  • Cookies — only essential cookies (language preference, session). See section 4.
  • Cookie consent log — when you click “Accept” on the cookie banner, we store a timestamp, your consent choice, language, a hashed IP address (HMAC-SHA256, irreversible), and a partial user-agent string.
  • Server access logs — IP address, browser, request time. Standard for any web server; logs are retained 30 days for security purposes and not used for tracking individuals.

4. Cookies

We use only essential cookies. We do not load Google Analytics, Facebook Pixel, LinkedIn Insight Tag, or any other tracking script. The cookies we set:

  • indeloop_cookie_consent — remembers your choice on the cookie banner (365 days).
  • pll_language — your preferred language (Polylang).
  • PHPSESSID — server session.
  • wpcf7_* — short-lived session cookies for contact form protection.
  • wordpress_logged_in_* — only for logged-in administrators.

No tracking, no advertising, no analytics cookies.

5. How we use information

  • To respond to inquiries you submit through contact forms.
  • To send the newsletter when you subscribe (max once per quarter).
  • To prevent abuse and maintain site security.
  • To comply with legal obligations.

We do not use your information for automated decision-making or profiling.

6. Sharing with third parties

We do not sell, rent, or trade your personal information. We share data only with:

  • Email service provider — to deliver newsletter and contact form responses (subject to their own privacy policies).
  • Web hosting provider — server-level storage of all site data.
  • Legal authorities — when required by law or court order.

7. Data retention

  • Contact form submissions — kept for 12 months after the inquiry is resolved.
  • Newsletter subscriptions — until you unsubscribe.
  • Cookie consent log — last 500 entries (oldest entries are automatically pruned).
  • Server access logs — 30 days.

8. Your rights under GDPR

You have the right to:

  • Access — request a copy of personal data we hold about you.
  • Rectification — correct inaccurate or incomplete data.
  • Erasure (“right to be forgotten”) — request deletion of your data.
  • Restriction — limit how we process your data.
  • Portability — receive your data in a machine-readable format.
  • Objection — object to specific uses of your data.
  • Withdraw consent — at any time, without affecting prior lawful processing.
  • Lodge a complaint — with the Croatian supervisory authority AZOP.

To exercise any right, email info@indeloop.hr with the subject “Privacy request”. We respond within 30 days.

9. Security

We use TLS (HTTPS) encryption for all data transmission. Server-side data is protected by access controls and regular security updates. We follow industry best practices but cannot guarantee absolute security of internet transmissions.

10. Children’s privacy

Our site is not directed at children under 16. We do not knowingly collect data from children. If you believe a child has provided us data, contact us so we can remove it.

11. International transfers

Data is stored within the European Economic Area (EEA). If at any point we transfer data outside the EEA, we use Standard Contractual Clauses or equivalent safeguards.

12. Changes to this Policy

We may update this Policy from time to time. Significant changes will be announced on the homepage. The “Last updated” date at the top reflects the most recent revision.

13. Contact

For any privacy-related question, contact:

Indeloop d.o.o. — Data Privacy
Email: info@indeloop.hr
Postal: Slavonska avenija 22 G, 10000 Zagreb, Croatia