At NOMAGO d.o.o., we are aware of the significance and importance of the protection of the personal data that you entrust to us, which is why we carefully store and manage your personal data.
This privacy policy refers to the processing of personal data at the company NOMAGO d.o.o. and provides information the company’s clients and visitors to the company’s website about the purposes of processing, the types of personal data we process, the rights we guarantee and the basis of personal data processing.
The company NOMAGO d.o.o. processes personal data in accordance with the provisions of Regulation (EU) 2016/697 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation or GDPR), national legislation and the latest guidelines and standards for personal data protection.
In order to provide you with an adequate user experience and to be able to cooperate with you appropriately, we will ask you for certain personal data. We will always ask you to provide only those personal data that are indispensable for us, so that we can, according to your wishes, cooperate with you and use them in accordance with the purpose for which they were given. We are obliged to process the personal data which you entrust to us lawfully and fairly, therefore we will never use your personal data for other purposes, which are not compatible with the processing purposes for which your personal data were collected.
The GDPR regulation, adopted by the European Union, dictates high standards of personal data protection, which determine how your data are collected, stored, allowing you access to them, as well as to request erasure and much more. In accordance with the legislation and our awareness of the importance of this field, we have prepared explanations on the protection of your data and the rights you have as a data subject. Before providing your consent to the collection or processing of your personal data, please read this explanation carefully.
Contact details of the data controller
Full name of the Controller | NOMAGO storitve mobilnosti in potovanj, d.o.o. |
Registered office | Vošnjakova ulica 3, 1000 Ljubljana |
Tax number | SI 52398790 |
Registration number | 5143373000 |
Phone number | 01 431 77 00 |
Website |
Data Protection Officer
Contact details of the Data Protection Officer (DPO)
Phone number: 01 431 77 00
E-mail: dpo@nomago.si
Personal data are any information relating to a particular or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, national identification number, location data, or by one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
The controller processes the following types of personal data for precisely determined and predetermined purposes:
Your personal data are processed by the company only:
The company NOMAGO d.o.o. processes personal data for the purpose of the conclusion and performance of a contract or on the basis of a request imposed by legislation in force for the following purposes:
PURPOSE | DESCRIPTION |
Conclusion of a contract: Purchase, tickets for transportation, purchase of a monthly or an annual ticket. | We will process your data for the purpose of fulfilling the contractual obligation to carry out transportation on the basis of a daily, monthly or annual ticket. |
Issuance of an invoice for the service performed | We will process your personal data in accordance with legal requirements for the purposes of issuing an invoice for the service performed. |
Reservation of excursions, travel, accommodation | We will process your personal data for the purpose of making reservations for excursions, travel and accommodation. |
Supporting clients in the reservation process and resolving potential issues | We process your personal data on a contractual basis for the purpose of resolving potential issues that arise during the performance of the contract in connection with the performance of contractual obligations, and for the purpose of providing support to clients during transport or with regard to accommodation. |
Prevention and identification of misuse and actions that have the characteristics of a criminal offense | Your personal data are processed by the company for the purpose of preventing misuse and identifying actions that have the characteristics of a criminal offense and reporting data to competent authorities and services (prosecutor's office, police...) |
PURPOSE | PERSONAL DATA AND RETENTION PERIOD | DESCRIPTION |
Improving security and preventing breaches of the company's information systems | IP address | The company processes your personal data for the purpose of preventing breaches of the company's information systems, attacks on the company's websites and identifying critical points in the company's information system, as well as improving information security in the company. |
Use of cookies on company websites | Necessary cookies Storage period: during the use of the company's websites, or until receipt of the withdrawal of consent to the use of cookies. | In order to ensure the smooth functioning of the website, the company uses cookies, based on item (f) of the first paragraph of Article 6 of the General Regulation. Cookies allow us to adapt the website to your needs and make it easier for you to use, to provide you with content that is important to you, and not to provide you with content that is not important to you or that is inappropriate. By using the website, you agree to the use of necessary cookies. Necessary cookies are necessary for websites to function; we do not store your personal data in them, and they are used for the normal and proper functioning of websites. We use optional cookies, which are necessary for the functioning of various interfaces, based on your consent. |
Market research, analytics and improving our services | Logs, website users’ IP addresses, users’ navigation on websites. Cookies required for basic Google Analytics. Data are processed anonymously. Storage period: The data we process for the purpose of market research and improvement of our services will be processed exclusively until the cessation of the purpose of carrying out market research and establishing important facts for the improvement of our services. | We use your personal data for the purpose of performing analyses in order to improve our services, to determine potential errors in our systems and websites, to determine the effectiveness of our websites and to ensure a better quality of services and website functioning. The company carries out general statistical data processing (basic Google Analytics) regarding the general behavior of customers and their orders. For this purpose, the company processes the data of natural persons in such a way that it is not possible to identify them. |
Promotional activity and trading of products and services with existing clients | Name and surname, phone number, address, e-mail address Storage period: We will retain data for the purpose of trading with existing clients for as long as is necessary for the realization of the purposes of conducting marketing and trading activities, i.e. until we receive the withdrawal of your consent to the processing of personal data for the purpose of trading. | The activity of trading and promotion in relation to existing clients includes primarily:
|
Determining the geolocation of buses and application users in order to ensure the service of detailed monitoring of bus arrivals and departures at bus stops and the current location of buses in the NOMAGO Intercity application. Resolution of complaints and compensation requests submitted by travelers. | Geolocation of buses Location data of your mobile device, Phone number Storage period: The data are stored for 5 years from the procedure for the period of consideration of the clients’ complaints or compensation requests, i.e. until the conclusion of the initiated legal proceedings. | The company NOMAGO d.o.o. makes it possible for you to use the Intercity application to track the geolocation of buses using your mobile device in order to ensure the service of detailed monitoring of bus arrivals and departures and tracking the current bus location. Data on your bus location will also be used in the event of a complaint or compensation claim. You decide for yourself in the application whether you will allow the application to track your geolocation. |
PURPOSE | PERSONAL DATA AND STORAGE PERIOD | DESCRIPTION |
processing of personal data for customization of web content and communication | Name and surname, IP address, address, e-mail address, telephone number Storage period: Until the receipt of the withdrawal of consent to the processing of your personal data, i.e. the request for erasure. | The company NOMAGO d.o.o., with your consent, uses your personal data to monitor the use of the website. The data collected on the basis of your consent are primarily intended for customized communication with you and improvement of our services. We use these data to try to ensure that, for example, we do not notify pensioners about student IDs and that we do not invite international travelers to camper trailers on the Croatian. We also try to identify which parts of our offer are not being visited because they may not be sufficiently visible on the website. |
Informing customers about news, advertising activities and selling products and services to individuals who are not clients of the company | Name and surname, IP address, address, e-mail address, telephone number Storage period: We will retain data for the purpose of trading for as long as is necessary to realize the purpose of advertising and trading activities, i.e. until we receive the withdrawal of your consent to the processing of personal data for the purpose of trading. | The activity of trading with and advertising in relation to the existing clients includes primarily:
|
The company NOMAGO d.o.o. will obtain your personal data:
The personal data obtained from you either when using the NOMAGO d.o.o. websites, or on the basis of your express consent, will be stored in an electronic or physical collection of personal data (depending on the form of the personal data obtained). The collections are adequately protected by technical, organizational and logical-technical measures. Only persons authorized by the company NOMAGO d.o.o. have access to the collections of personal data.
The personal data that you digitally forward to us are stored on servers at the company's headquarters, and may also be stored at the companies whose software we use. For example, the provider of an e-mail communication software tool stores data on the addressees. The company Nomago d.o.o. cooperates exclusively with the leading providers of such software tools, and before each instance of cooperation we agree, i.e. ensure that the providers of software tools do not have any right to access the data. We also check whether they have adequately organized data protection mechanisms, as well as whether there is assurance that they will never use any of our clients’ data.
The nature of our business is such that, in certain cases, we have to share your personal data with other contractual processors and controllers whom we cooperate with.
NOMAGO d.o.o. works only with verified contractual processors, who guarantee adequate protection of your personal data, with a guarantee of appropriate technical and organizational measures, and process your personal data in compliance with the General Data Protection Regulation.
The provider will not forward your personal data to unauthorized third parties.
Contractual processors may process personal data only within the framework of the controller's instructions and may not use personal data to pursue any personal interests.
The controller strives every day to ensure the adequate security of personal data processing, which is why they constantly update and upgrade security systems to ensure secure personal data processing. Your personal data are protected against loss, destruction, unauthorized disclosure and access by unauthorized persons throughout the whole period of processing.
In the event of travel or transportation to third countries, NOMAGO d.o.o. will also have to forward your data to third countries to various contractual processors, such as accommodation providers (hotels, apartments), transportation providers (airlines) and others.
The company NOMAGO d.o.o. always cooperates with providers in third countries who guarantee adequate protection of personal data.
The company NOMAGO d.o.o. guarantees you the following personal data protection rights:
1. Right to withdraw consent
In the event that you, as an individual, have given consent to the processing of personal data for one or more personal data processing purposes, you have the right to withdraw your consent at any time.
After receiving the withdrawal of your consent for one or more processing purposes, the controller will immediately stop processing your personal data for that purpose.
The withdrawal of consent to the processing of personal data does not affect the lawfulness of the processing of personal data concerning you until your withdrawal or the use of such personal data for the purposes determined by law or a contract.
2. Right to access personal data concerning you that are processed
You have the right to receive confirmation from the controller as to whether personal data concerning you are being processed, as well as access to personal data concerning you and the following information: purpose of processing, type of personal data concerning you, users of your personal data, intended period of storage of personal data, source of personal data.
3. Right to have inaccurate personal data concerning you rectified
At any time, you have the right to request the controller to rectify or complete incorrect or incomplete personal data concerning you.
The controller will notify you of the rectification of your personal data without delay.
4. Right to restriction of personal data processing
You have the right to request that the controller restrict the processing of your personal data in case of their inaccuracy, illegality, cessation of the purpose of processing or submission of a complaint.
5. Right to erasure of personal data (“right to be forgotten”)
You have the right to request that the controller erase the personal data concerning you that they process without undue delay.
In case of erasure of personal data on the basis of your request, the controller will inform you about the deletion.
6. Right to object
In addition to the right to withdraw consent, you may, in case your personal data are used for information purposes or direct trading, request in writing the cessation of the use of your data for this purpose at any time. In the event of an objection to processing for trading purposes, the controller will immediately cease the processing of personal data for trading and information purposes.
7. Right to data portability
You have the right to have the personal data concerning you that are processed by the controller directly transferred from the controller to another controller, when technically feasible.
You can exercise all of the aforementioned rights from this statement on the basis of a request to exercise a particular right. You can submit a request to exercise your rights in physical or electronic form. A request to exercise rights by mail is sent to the address NOMAGO, storitve mobilnosti in potovanj, d.o.o., Vošnjakova ulica 3, 1000 Ljubljana, or to the e-mail address: info@nomago.si, or dpo©nomago.si.
In the event of a personal data breach, you have the right to lodge a complaint against the controller with the competent supervisory authority at the address: Informacijski pooblaščenec, Zaloška 59, 1000 Ljubljana or at: gp.ip@ip-rs.si.
Despite the great effort to protect data, unfortunately, there is no complete protection. There is always the possibility that a particularly serious breach of our IT systems or an unpredictable error could jeopardize the protection of your personal data.
In case of a threat to the protection of your personal data and in the event that it is likely that such a threat to the protection of personal data could cause a great risk to your rights and freedoms, we will notify you thereof without delay.
In case of a threat to the protection of personal data, we will notify the competent authority without undue delay, and no later than 72 hours after becoming aware of the threat to the protection of your personal data.
We reserve the right to adjust or update the personal data protection statement without prior notice in accordance with changes in legislation. The current version published here is valid every time.
Any change to this privacy policy will be published on this website.
Version: 2.0 of 17 September 2019
NOMAGO, storitve mobilnosti in potovanj, d.o.o.
Vošnjakova ulica 3
1000 Ljubljana
e-mail address: info@nomago.si
phone: +386 1 431 77 00
Back to nomago.si
