Privacy policy

This Privacy Policy describes how the company Sinhro (hereinafter referred to as “we” or “the controller”) collects, uses, and protects your personal data in accordance with applicable legislation, including the Personal Data Protection Act, the General Data Protection Regulation 2016/679 (GDPR), and other relevant regulations.

Data controller

The data controller is Sinhro d.o.o. (Tehnološki park 21, 1000 Ljubljana, Registration No. 2296390000, VAT ID SI38628767), a company providing solutions for mass and targeted mobile and online communication (primarily in the B2B market). For any questions regarding the processing of personal data, you can contact us at [email protected].

Data we process

We generally collect and process the following types of data:

  • Contact details: Name, surname, email address, phone number, and company information (business address).
  • Content you provide: Messages and inquiries sent via contact forms or email.
  • Automatically collected data: Information collected when you visit our website (IP address, cookies, browser and device data).

Purpose and legal basis for data processing

Your data is processed for the following purposes:

  • Communication and responding to inquiries regarding our services.
  • Contract conclusion and execution (e.g., B2B cooperation).
  • Sending informational and marketing messages, where we have your consent or a legitimate interest (e.g., existing business relationships).
  • Optimizing and ensuring the security of our website.
  • Compliance with legal obligations, if required by authorities.

The processing of personal data is based on:

  • Your consent (e.g., when filling out a contact form).
  • Contractual obligations.
  • Legitimate interest (e.g., improving the user experience and business communication).
  • Legal obligations (where data processing is required by law).

Data storage and security

Your data is stored in secured systems within the European Union and is kept only for as long as necessary to fulfill the purpose of processing or as required by law. We apply appropriate technical and organizational measures to minimize the risk of unauthorized access or disclosure.

Data sharing

We do not share your personal data with third parties unless:

  • You have given explicit consent.
  • It is necessary to provide our services (e.g., IT infrastructure maintenance).
  • It is required by law or requested by competent authorities.

We do not routinely exchange personal data with parent or subsidiary companies, as we currently have none.

International data transfers

Data is generally processed within the EU/EEA. If data is transferred to a third country, we ensure adequate safeguards (e.g., Standard Contractual Clauses) in compliance with GDPR, ensuring the same level of data protection.

Data accuracy and updates

To maintain data accuracy and relevance, we may periodically verify whether your information is still valid or ask you to update it. We encourage you to inform us of any changes in your personal data.

Your rights as a data subject

You have the right to:

  • Access your personal data.
  • Rectify inaccurate or incomplete data.
  • Request deletion of data, where permitted by law.
  • Restrict processing.
  • Request data transfer to another controller.
  • Withdraw consent (where processing is based on consent), without affecting prior lawful processing.
  • Object to processing, if based on legitimate interest.

If you believe your data protection rights have been violated, you have the right to file a complaint with the Information Commissioner.

Changes to this privacy policy

Any updates to this policy will be published on our website. In the case of major changes, we may notify you via email or another appropriate method.

Contact information

For additional information or to exercise your data protection rights, contact us at:
[email protected]

Last updated: March 11, 2025