Privacy Policy

Last updated: 14 January 2026.

Renqovaris j.d.o.o. processes personal data in accordance with Regulation (EU) 2016/679 (GDPR), the Croatian Act on the Implementation of the General Data Protection Regulation (OG 42/2018) and the sectoral rules applicable to crowdfunding service providers in Croatia.

1. Data controller

The data controller is Renqovaris j.d.o.o., Ulica grada Vukovara 271, 10000 Zagreb, OIB: 47129365084. Privacy contact: privacy@renqovaris.com. Users who wish to contact the Data Protection Officer may write to dpo@renqovaris.com.

2. Categories of data we process

We process data you provide directly (first name, last name, email, phone number, message content), data generated through use of the site (IP address, browser identifier, navigation history within our domain) and, where applicable for project participants, data required for identity verification and for compliance with anti-money-laundering obligations.

3. Purposes and legal basis

We use data to respond to your enquiries (Art. 6(1)(b) GDPR), to comply with legal obligations (Art. 6(1)(c) GDPR), to protect legitimate interests such as platform security and abuse prevention (Art. 6(1)(f) GDPR) and, only with your consent, for marketing communication and analytics (Art. 6(1)(a) GDPR).

4. Retention periods

Contact form data is kept for up to 24 months from the last communication. Accounting documentation is kept for 11 years in line with Croatian tax rules. Data created as part of anti-money-laundering obligations is kept for 10 years after the end of the business relationship.

5. Recipients and international transfers

We may share data with carefully selected processors — hosting providers within the EU/EEA, customer support tools, Google Ireland Limited for advertising and measurement (with your consent) and competent authorities where required by law. When data is transferred outside the EEA, we apply the European Commission's Standard Contractual Clauses.

6. Your rights

You have the right of access, rectification, erasure, restriction, portability and objection. You may withdraw consent at any time, without affecting the lawfulness of prior processing. You can lodge a complaint with the Croatian Personal Data Protection Agency (AZOP) in Zagreb, Selska cesta 136.

7. Security

We apply technical and organisational measures, including encryption of data in transit (TLS 1.3), access control based on least-privilege principles, regular security updates and annual independent infrastructure reviews carried out by a third party based in Croatia.

8. Changes to the policy

We may update this policy from time to time. Material changes will be announced on the site at least 14 days before they take effect and, where applicable, communicated via email.

For any questions regarding this document please contact info@renqovaris.com.