Privacy policy
Introduction
THE GARDEN COLLECTIVE d.d, Slavonska Avenija 26/1, Zagreb (hereinafter: TGC), attaches particular importance to the protection of personal data and privacy (hereinafter: privacy protection) of its users in accordance with applicable regulations and best European practice. Privacy protection of TGC users is an integral part of our services and products and an important factor in user experience.
Through the User Privacy Protection Policy of TGC (hereinafter: Policy) we want to provide our users with clear information about the processing and protection of their personal data at TGC and enable them simple supervision and management of their personal data.
The Policy does not diminish the rights and does not establish obligations for users in relation to the processing of personal data, which users have on the basis of applicable regulations and possible contractual provisions on personal data protection. The Policy is a unilateral legally binding act of TGC.
Contents:
Scope of Application
Principles of Personal Data Processing
How We Collect Personal Data
What Types of Personal Data We Collect
For What Purposes We Use Collected Personal Data
Who to Contact
Amendments, Supplements and Transitional Provisions of the Policy
Application of the Policy
1. Scope of Application
The Policy applies to all personal data of TGC users that TGC collects, uses or otherwise processes. Personal data is any data relating to a natural person whose identity is established or can be established, directly or indirectly (hereinafter: data or personal data). Data processing is any action performed on personal data, for example collection, recording, storage, use, transfer of personal data and access to personal data.
The Policy does not apply to anonymous data. Anonymous data is data that has been modified so that it cannot be linked to a specific natural person or cannot be linked without disproportionate effort and therefore, in accordance with applicable regulations, is not considered personal data.
The Policy applies to TGC's services and products that include personal data processing.
TGC is the data controller in relation to the personal data of its users within the meaning of applicable personal data protection regulations.
The Policy primarily applies to natural persons - customers and suppliers of TGC (hereinafter Users) and/or those interested in the above (hereinafter: Potential Users)
2. Principles of Personal Data Processing
2.1. Trust We want to be a reliable partner to Users in protecting their privacy and justify the trust they have shown us. We also want to be completely transparent and clear regarding the processing of Users' personal data. This is, among other things, the purpose of this Policy. Users can always contact us with a request to change personal data relating to them or with a declaration of will about which purposes they want, or do not want, their data to be processed for.
2.2. Legality and Best Practice When processing personal data, we act in accordance with the law, but at the same time we strive to apply higher standards and best European practice.
2.3. Limited Purpose of Processing We collect and process personal data only for a specific and lawful purpose and do not further process them in a manner inconsistent with the purpose for which they were collected, unless otherwise prescribed by law or based on user consent.
2.4. Data Minimisation We always use only User data that is appropriate and necessary to achieve a specific lawful purpose, and not more data than that.
2.5. Processing in Anonymous Form Whenever possible and justified, we use data in anonymous form. Data in anonymous form is primarily considered anonymous data.
2.6. Integrity and Confidentiality We process personal data in a secure manner, including protection from unauthorised or unlawful processing and from accidental loss, destruction or damage (e.g. access to Users' personal data is only available to authorised persons who need it to perform their job, and not other employees).
2.7. Quality of Personal Data We attach great importance to the quality of the data we process. The personal data we process must be accurate, complete and up-to-date to ensure maximum data protection for Users and prevent possible misuse. That's why it's important for us that the User notifies us of any data change immediately or as soon as possible.
2.8. Limited Storage Time We store and process Users' data only as long as necessary to achieve a specific legitimate purpose, unless applicable regulations prescribe a longer or shorter retention period for a specific purpose or in other cases expressly prescribed by law.
3. How We Collect Personal Data
We collect data primarily directly from the User or Potential User, in such a way that they provide it to us.
We collect data that is created automatically when the User uses TGC's services and/or products.
A precondition for any collection of Users' personal data is the existence of an appropriate legal basis based on law.
4. What Types of Personal Data We Collect
We collect only the data that is necessary to achieve a specific lawful purpose.
5. For What Purposes We Use Collected Personal Data
TGC collects and processes (hereinafter: uses) user data primarily for the purposes of concluding and executing a contract between the User and TGC. This particularly includes the use of data to verify the User's identity, the User's creditworthiness, provide the contracted service, calculate and collect costs, deliver ordered products/services, contact the User if necessary in connection with service provision, and other actions related to concluding and executing a contract in accordance with the law.
6. Who to Contact
The User can exercise their rights regarding personal data by contacting TGC's registered office address.
7. Amendments, Supplements and Transitional Provisions of the Policy
The Policy enters into force and begins to apply to new Users on the day of publication.
8. Application of the Policy
These terms of use apply from 27 January 2026 until revocation by TGC.