LEGAL PAGE

Privacy Policy

1. Introduction

DIGITAL CONTROL d.o.o. ("Digital Control", "we", "us", "our") is committed to protecting the personal data of individuals who interact with our website at https://digitalcontrol.me/ (the "Website") and our services.

This Privacy Policy describes what personal data we collect, how we use it, on what legal basis, and what rights you have in relation to your data.

This policy applies to data collected through the Website and any business communication initiated through it. It should be read together with our GDPR & Data Protection Statement and Cookie Policy.

2. Information We Collect

We may collect the following categories of personal data:

  • Contact information — name, email address, phone number, company name, job title, provided when you contact us via the Website or submit a form
  • Communication data — messages and inquiries you submit through our contact or process discovery forms
  • Newsletter subscription data — email address and consent record when you subscribe to our newsletter
  • Usage data — pages visited, time on site, traffic source, device and browser type, collected via analytics tools (see our Cookie Policy)
  • Technical data — IP address (anonymized where possible), browser type, operating system

We do not intentionally collect sensitive categories of personal data (such as health, financial, or biometric data) through the Website.

3. How We Use Your Information

We use the personal data we collect for the following purposes:

  • Responding to business inquiries and communications
  • Generating preliminary process documentation through our Process Discovery Tool
  • Evaluating potential business collaboration
  • Sending newsletters and business updates where consent has been given
  • Analyzing Website performance and visitor behavior to improve our services
  • Complying with legal obligations

We do not use personal data for automated decision-making that produces legal or similarly significant effects.

4. Legal Basis for Processing

We process personal data on the following legal bases under the General Data Protection Regulation (GDPR):

  • Legitimate interests — for B2B communication, lead qualification, and responding to business inquiries
  • Consent — for newsletter subscriptions and optional analytics tracking
  • Contractual necessity — where a formal engagement or agreement has been established
  • Legal obligation — where required by applicable law

Where we rely on legitimate interests, we have assessed that our interests are not overridden by your rights and freedoms given the B2B nature of our activities.

5. Data Sharing

We do not sell personal data to third parties.

We may share data with the following categories of recipients:

  • Service providers — hosting providers (Hetzner Online GmbH), email marketing platforms (Mailchimp), analytics providers (Google Analytics), and CRM systems, all operating under contractual data processing agreements
  • Professional advisors — legal, accounting, or compliance advisors where necessary
  • Regulatory authorities — where required by law

All service providers are selected on the basis of their compliance with applicable data protection law, including GDPR requirements for international transfers where applicable.

6. Data Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, destruction, or alteration. These measures include:

  • Encrypted communication (HTTPS) for all Website traffic
  • Role-based access controls limiting access to personal data
  • Secure hosting infrastructure within the European Union
  • Periodic review of security measures

Despite these measures, no transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but commit to responding promptly to any security incidents.

7. Data Retention

We retain personal data only for as long as necessary for the purposes described in this policy:

  • Website inquiry data: maximum 24 months from last meaningful interaction, unless a contractual relationship is established
  • Newsletter subscription data: until consent is withdrawn
  • Legal obligation data: as required by applicable law

After the applicable retention period, data is securely deleted or anonymized.

8. Your Rights

Under applicable data protection law, you may have the following rights in relation to your personal data:

  • Right of access — request a copy of the personal data we hold about you
  • Right to rectification — request correction of inaccurate or incomplete data
  • Right to erasure — request deletion of your data, subject to legal retention requirements
  • Right to restriction of processing — request that we limit how we use your data
  • Right to object — object to processing based on legitimate interests
  • Right to withdraw consent — withdraw consent at any time where processing is based on consent
  • Right to data portability — receive your data in a structured, machine-readable format
  • Right to lodge a complaint — with the competent supervisory authority

To exercise any of these rights, please contact us using the details below. We will respond within applicable statutory deadlines.

9. Contact

For any questions, requests, or concerns relating to this Privacy Policy or our data processing practices, please contact us:

DIGITAL CONTROL d.o.o.
Knjaza Danila 78A
81000 Podgorica
Montenegro
Email: info@digitalcontrol.me

For data protection-related requests, please use the subject line: "Privacy Request".

We may update this Privacy Policy from time to time. Material changes will be reflected by an updated effective date. We encourage you to review this policy periodically.