PRIVACY AND DATA SECURITY POLICY

dafineneziri.com’s Website Privacy and Data Security Policy ensure that the data received by interested parties and users when they visit our site, subscribe to the newsletter, fill out the registration forms, access the courses and in connection with other activities, services, features or resources we make available on the website will remain under the sole control of dafineneziri.com and completely safe. Our mission is to be able to contact and offer to our users’ Products that dafineneziri.com has to offer.

Should the website contain links to third-party websites, dafineneziri.com is not responsible for their content, privacy policies, or data collection practices. You are encouraged to review their policies before providing any personal information.

DATA CONTROLLER

Please note that the controller of your Data is dafineneziri.com (“Controller”). If you have any questions concerning processing your Data please contact us under the following address:

  • Email
  • Address
TYPE OF DATA

dafineneziri.com does not collect personal data without prior notice. In case it collects through different forms as mentioned above through the Website shall collect the data as found below:

  1. Data collected upon interaction with the website:
  • name and the surname;
  • phone number and email address;
  • company name;
  • any data included in messages you send;
  • uploaded files;
  • account information (if user accounts are provided);
  • Data collected automatically:
  • IP address;
  • browser type and version;
  • device type;
  • operating system;
  • referring URL;
  • pages viewed;
  • time spent on each page;
  • access times and dates;
  • approximate location (city level);
  • Cookies and tracking data.

hereinafter (“Data”).

The controller does not knowingly collect or process personal data from individuals under 16 years of age.

If you believe the controller has collected such data, please contact the controller, and it will be removed promptly.

PURPOSES OF PROCESSING

The Data gathered shall be used from dafineneziri.com for:

  • website functionality;
  • analysis and research;
  • communication;
  • offering Products or information;
  • legal and compliance.

The Data shall be used only by our staff.

LEGAL BASIS FOR PROCESSING

dafineneziri.com processes your personal data under the following legal grounds:

  1. Consent – When you submit forms, subscribe, or accept cookies.
  2. Legitimate Interest – For analytics, security, website performance, and improving services.
  3. Contractual Necessity – If you purchase or request a service from the controller.
  4. Legal Obligation – When required by law.

In the event that consent is withdrawn to any processing, the lawfulness of the processing carried out previously will not be affected.

SAFETY MEASURES

dafineneziri.com understands the utmost importance of the value of the Data of its Clients/Users and implements all measures for ensuring the safety and non-compromising of such Data, being fully compliant with legal standards. In this regard, dafineneziri.com implements rigorous security measures for physical and online Data collected, ensuring that the Data is not compromised by any action or inaction on our part.

The information which is collected is an important part of our work, and guarding such information with the highest security standards is one of the pillars of our work. Similar to the safety of the Data, with the same high standards, dafineneziri.com ensures that the information provided is processed accurately, efficiently, and confidentially.

dafineneziri.com maintains strict data security protocol for all data, including but not limited to:

  • Restricted access to the data to pre-identified employees of dafineneziri.com, all fully trained and under legal responsibility for guarding and protecting all data;
  • Password-protected access to network operations and restricted access to network operation to pre-defined managers;
  • Secured transfer of all data and limited access to such data only to predefined managers;
  • Advanced monitoring system by the Supervisors of the work of employees.

dafineneziri.com maintains also a strict network data security protocol for all data, including but not limited to measures such as:

  • Regular backup of Data and stored offsite in a secure, fireproof facility;
  • Protection of local area network by a firewall;
  • Password protected work-stations;
  • Secure Socket Layer (SSL) encryption to protect data transmitted between your device and our servers;
  • Encrypted passwords;
  • Installation of network intrusion detection systems;
  • Data anonymization, where feasible.


Each employee is trained in security protocols and undertakes strict legal liability for all aspects of data security and personal data protection.

DATA RETENTION PERIODS

The controller keeps the Data only as long as necessary for:

  • Providing its services;
  • Legal requirements;
  • Resolving disputes; and
  • Analytics and internal reporting.

Retention periods:

  • Contact form submissions: 24 months
  • Analytics data: 26 months;
  • Cookies: 12 months;
  • Account data: until account deletion.
DATA SHARING

The controller does not sell or trade Data.

The controller may share Data with:

  • Service providers;
  • Security and anti-fraud tools;
  • Marketing tools;
  • Legal authorities.

Third-party services may include:

  • Google Analytics;
  • Google Fonts;
  • Cloudflare;
  • Hosting provider;
  • Email service provider (SMTP, newsletter tools).

All third-party partners comply with data protection regulations.

INFORMATION ABOUT YOUR RIGHTS

Your rights in connection with the processing of your personal data are as follows:

You may object to the processing of your personal data at any time – without giving reasons. The objection may relate to the purpose of processing which you submitted. The objection will not affect the activities performed to date.

You may request that your data be erased, without giving reasons. The request to erase your data will not affect the activities performed to date.

You may request that the processing of your personal data be restricted, either for a specific period or within a specific scope. This request will not affect the activities performed to date.

You may request that your personal data be corrected or rectified.

You may request that your personal data held by the controller be transferred to another entity. To this end, please contact us stating the name and address of the entity to which we are to transfer your data and their scope; that is, which of your data we are to transfer. The transfer will take place electronically once you have confirmed this request. The request has to be confirmed to keep your data secure and to ensure that the request comes from an authorised person.

You may request information on the extent of our processing of your personal data if you wish.

You have the right to lodge a complaint with the controller.

You will hear from us concerning the measures we have taken within a month of filing a request.

INTERNATIONAL TRANSFER

The Data collected may be transferred outside your country into another country in which an entity cooperating with the controller maintains tools for processing Personal Data in cooperation with the Controller. Adequate protection of the processed Personal Data outside the EEA is guaranteed by the use of external data processing agreements based on standard contractual clauses that meet the requirements of the GDPR.

CHANGES TO THE POLICY

dafineneziri.com has the discretion to update this privacy policy at any time. When such occurs, we will post a notification on the main page of our website, and revise the updated date at the bottom of this page. We encourage Users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. You acknowledge and agree that it is your responsibility to review this privacy policy periodically and become aware of modifications.

APPLICABLE LAW

Collection of personal data on the Website, processing, and storage of such personal data shall be treated in accordance with the applicable legal framework in the Republic of Kosovo. By inclusion of the personal data in the Websites forms, under user permission, the User acknowledges and accepts the processing and storage of such personal data for purposes allowed by law.