Privacy Policy
Last Updated: January 29, 2026
This Privacy Policy explains how CreativeStar, IT services, owned by Renata Horvat ("we", "us", "our") collects, uses, and protects personal data when you visit or use this website.
We are committed to protecting your privacy and processing personal data in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and the Croatian Act on the Implementation of the General Data Protection Regulation.
1 Data Controller
Data Controller: Renata Horvat
For any privacy-related questions, you may contact us using the email address above.
2 Personal Data We Collect
We may collect the following categories of personal data:
a) Data you provide directly
- Name and surname
- Email address
- Any information you voluntarily submit via contact forms or direct email inquiries.
b) Data collected automatically
- IP address (anonymized)
- Browser type and version
- Device information
- Pages visited and time spent on the website
- Referring URL
This data is collected through analytics and cookies (see section 7).
3 Purposes of Processing
We process personal data for the following purposes:
- Responding to inquiries and communication requests.
- Providing requested information or services (quotes, project consultations).
- Improving website performance and user experience.
- Website security and technical maintenance.
- Statistical analysis (where consent has been given).
4 Legal Basis for Processing
Personal data is processed on one or more of the following legal bases:
- Consent – when you accept cookies or voluntarily submit data via contact forms.
- Contractual necessity – when processing is required to respond to a service inquiry or perform a requested service before entering into a contract.
- Legitimate interest – for website security and improvement of services.
- Legal obligation – where processing is required by applicable Croatian laws (e.g., storage of invoices).
5 Data Retention
We retain personal data only for as long as necessary:
- Inquiries via contact form/email: up to 12 months after the last communication, unless a business cooperation is established.
- Business documentation (Invoices): 11 years, as required by the Croatian Accounting Act and General Tax Act.
- Analytics data: up to 14 months.
6 Recipients of Personal Data
Your personal data may be shared only with trusted service providers:
- Website hosting providers (IT service).
- Analytics and performance monitoring tools (e.g., Google).
- If applicable, legal authorities if required by law.
We do not sell, rent, or trade your personal data with third parties.
7 Cookies and Analytics
This website uses cookies to ensure proper functionality and to analyse website usage.
- Necessary cookies: Required for the website to function.
- Analytics cookies: Used only after obtaining your consent via the cookie banner.
You can modify your cookie preferences at any time through your browser settings.
8 Transfers Outside the EU
When using tools like Google Analytics, data may be processed outside the EU. Such transfers are safeguarded by Standard Contractual Clauses (SCCs) approved by the European Commission or adequacy decisions.
9 Your Rights
Under the GDPR, you have the following rights:
- Right of access, rectification, or erasure ("right to be forgotten").
- Right to restriction of processing or data portability.
- Right to withdraw consent at any time.
To exercise your rights, contact us at: screatives.info@gmail.com
If you believe your rights have been violated, you have the right to lodge a complaint with the supervisory authority:
Agencija za zaštitu osobnih podataka (AZOP)
Selska cesta 136, 10000 Zagreb, Croatia
Web: www.azop.hr
10 Data Security
We apply appropriate technical and organisational measures to protect your data. While we strive for maximum security, no method of transmission over the internet is 100% secure.
11 Changes to This Privacy Policy
We reserve the right to update this policy. Any changes will be published on this page with an updated revision date.