Privacy policy.
We respect your privacy. In this document we explain which personal data we collect, why we process it, how we protect it, and what rights you have as an individual.
1. Data controller
The controller of personal data in accordance with the General Data Protection Regulation (GDPR) and the Slovenian Personal Data Protection Act (ZVOP-2) is:
- Softbase d.o.o.
- Spodnje Preloge 95, 3210 Slovenske Konjice, Slovenia
- Registration number: 1227157000
- VAT ID: SI96644842
- Phone: +386 (0)2 707 41 30
- Email: info@softbase.si
2. Which personal data we process
On softbase.si we process only the personal data you provide yourself and the technical data generated by visiting the website.
2.1 Data you provide
- When you contact us by phone or email: name, phone number, email address and the content of your message.
- When you arrange a meeting with us: in addition to the above, also company name and information about the processes you want to discuss.
2.2 Technical data when visiting the site
- IP address (anonymised where possible), browser user agent and operating system.
- Date and time of visit, pages viewed, source of arrival.
- Data collected by cookies (see chapter 7).
3. Purpose and legal basis of processing
| Purpose | Legal basis (GDPR) |
|---|---|
| Responding to inquiries and communicating with clients | Art. 6(1)(b) — performance of a contract or measures prior to entering into a contract |
| Statistical monitoring of traffic and site improvements | Art. 6(1)(a) — consent (analytical cookies) |
| Displaying embedded maps | Art. 6(1)(a) — consent |
| Fulfilment of statutory obligations (accounting) | Art. 6(1)(c) — legal obligation |
4. Retention periods
- Correspondence (email, inquiry messages): stored for up to 3 years after the last communication, unless the law requires otherwise.
- Accounting documents: stored for the statutory periods (up to 10 years).
- Analytical data (Google Analytics): stored for up to 14 months, then automatically deleted.
- Cookies: see the table in chapter 7 for individual periods.
5. Whom we share data with
We do not sell personal data and we do not pass it on to third parties for their own purposes. In certain cases it may be processed by our contractual processors:
- Google Ireland Limited — Google Analytics and Google Maps services (EU headquarters).
- Hosting provider — server infrastructure for the website.
- Email service provider — for receiving and sending email.
We have data processing agreements concluded with all processors in accordance with Art. 28 GDPR.
6. Transfer to third countries
As a US company, Google may also process data outside the European Economic Area. The transfer is based on Standard Contractual Clauses of the European Commission and additional safeguards (e.g. IP anonymisation in Google Analytics).
7. Cookies
The softbase.si website uses cookies — small text files that are stored in your browser when you visit. We distinguish between essential cookies, which are required for the site to function, and optional cookies, which are loaded only after your consent.
| Cookie | Provider | Purpose | Duration |
|---|---|---|---|
softbase-cookie-consent | softbase.si (essential) | Stores your cookie consent | Persistent (browser local storage) |
_ga, _ga_* | Google Analytics (analytical) | Distinguishes users and sessions, traffic statistics | up to 14 months |
| Google Maps cookies | Google Maps (functional) | Displays embedded maps | up to 6 months |
You can withdraw or change your consent at any time by clicking in the footer.
8. Your rights as an individual
Under the GDPR you have the following rights:
- Right of access — obtain confirmation of whether we process your data, and access to it.
- Right to rectification of inaccurate or incomplete data.
- Right to erasure (»right to be forgotten«) in cases provided for by law.
- Right to restriction of processing.
- Right to data portability in a structured, commonly used and machine-readable format.
- Right to object to processing.
- Right to withdraw consent at any time, without affecting the lawfulness of processing prior to the withdrawal.
You can exercise your rights by writing to info@softbase.si or calling +386 (0)2 707 41 30. We will respond to your request within one month at the latest.
9. Data protection
We protect personal data with technical and organisational measures — encrypted connection (HTTPS), access controls, backups, and regular system updates. Access to data is granted only to employees who need it to perform their tasks.
10. Changes to the policy
This policy may be updated from time to time due to changes in legislation or business processes. The current version is always published on this page. Significant changes will be specifically marked with the update date in the document header.