Privacy Policy
This Privacy Policy explains how Solutions Architects HR d.o.o. ("SA-HR", "we", "us") collects, uses, and protects personal data when you use our website, services, or the software platforms we operate for our clients.
We are committed to handling personal data in accordance with the EU General Data Protection Regulation (GDPR) and Croatian data protection law. This policy gives you a plain-language summary of what we do with your data and how you can exercise your rights.
Who is the data controller?
Solutions Architects HR d.o.o., registered in Croatia, is the data controller for personal data collected through this website and through direct commercial relationships.
- Registered seat: [Registered seat]
- OIB: [OIB]
- Email: info@sarchitectshr.com
- Phone: +385 95 344 7570
When we operate software platforms on behalf of clients (for example, the Solera Management Console used by a hotel or restaurant), SA-HR acts as a data processor on behalf of that client, who remains the data controller for their own end-users. A separate Data Processing Agreement governs that relationship.
What data we collect
When you contact us
If you fill in a form, send an email, or message us through the on-site assistant, we process the contact details and message content you provide (typically name, email, phone, company, and the content of your enquiry).
When you visit the website
We collect basic technical information through our hosting provider and analytics tooling, such as IP address, browser type, device, referring page, and pages viewed. This is used in aggregate form to understand site performance and fix problems.
When you use a platform we operate
Our clients may ask us to host and run business software on their behalf. In that case, we process whatever data the client configures us to store (for example, booking details, customer contact, internal notes). We do not use this data for our own purposes.
Why we process your data — legal basis
- To respond to enquiries and fulfil contracts — legal basis: contract performance (Art. 6(1)(b) GDPR).
- To operate and secure our website — legal basis: legitimate interest (Art. 6(1)(f) GDPR).
- To comply with tax, accounting, and legal obligations — legal basis: legal obligation (Art. 6(1)(c) GDPR).
- To send you occasional updates (if you opt in) — legal basis: consent (Art. 6(1)(a) GDPR), which you can withdraw at any time.
How long we keep your data
We keep personal data only for as long as we need it for the purpose it was collected, or as required by law:
- Enquiries that don’t lead to a project: up to 12 months.
- Client project records: for the duration of the engagement and up to 10 years afterwards for tax/accounting purposes as required by Croatian law.
- Website analytics: typically 14 to 26 months depending on the setting.
- Platform data we process on behalf of clients: retained per the client’s instructions; deleted on contract termination per our DPA.
Who we share data with
We use a small number of reputable third-party service providers to run our business. All are bound by data protection obligations and (where applicable) EU Standard Contractual Clauses. Categories include:
- Cloud hosting and infrastructure providers.
- Email and communication platforms.
- Payment processors (for invoicing and subscriptions).
- Analytics providers (in anonymised or aggregated form where possible).
We do not sell, rent, or trade personal data. We disclose data to public authorities only when legally required.
International transfers
Some of our providers are based outside the European Economic Area (EEA). Where that is the case, transfers are protected by appropriate safeguards such as the EU Standard Contractual Clauses and (where relevant) supplementary technical measures.
Your rights under GDPR
You have the right to:
- Access the personal data we hold about you.
- Correct inaccurate data.
- Request erasure (“right to be forgotten”) where applicable.
- Restrict or object to certain processing.
- Receive your data in a portable format.
- Withdraw consent at any time, where consent is the legal basis.
- Lodge a complaint with the Croatian Personal Data Protection Agency (AZOP) — azop.hr.
To exercise any of these rights, email info@sarchitectshr.com. We will respond within 30 days.
Security
We apply industry-standard technical and organisational measures to protect personal data, including encryption in transit, access controls, regular backups, and vetting of our service providers. No system is perfectly secure, but we take this seriously.
Children
Our services are not directed to children under 16 and we do not knowingly collect data about them. If you believe a child has provided us with personal data, contact us and we will delete it.
Changes to this policy
We may update this policy from time to time. When we do, we’ll change the “last updated” date at the top and, for material changes, notify active clients by email.