The SNT Drama Ljubljana recognises the importance of privacy and is committed to protecting your personal data in compliance with applicable laws. To this end, the internal rules and procedures have been applied and technical and organisational measures put in place to provide the appropriate legal safeguards in processing personal data and to exercise the rights of data subjects.
This Personal Data Protection Policy contains information on the processing of personal data at SNT Drama Ljubljana, Erjavčeva cesta 1, 1000 Ljubljana, firstname.lastname@example.org, which is also the controller of your personal data: what personal data we collect, why we collect it and how we use it. For any further information pertaining to the processing of your personal data or the exercise of your rights, please contact our Data Protection Officer (DPO), Andreja Mrak: email@example.com.
WHAT PERSONAL DATA WE PROCESS AND HOW WE OBTAIN IT
1. Personal data we obtain from you
Personal data you provide to us when you fill out our online forms at drama.si, make contact by phone and e-mail or submit otherwise. This concerns the information that you provide when you subscribe to our e-newsletters, subscriptions or other theatre activity, order any services and products, participate in discussions or use other social media features on our website. The information that you provide may include your name, mailing address, e-mail address, contact phone number, employment situation (unemployed, retired, student, primary or secondary school student), work address, title or position, company name, VAT ID, payment amount and the products or services ordered.
Personal data we collect from you. Each time you visit the drama.si website, the following information will be automatically collected: IP address (anonymised), internet browser type and version, operating system, URL of the page visited, the precise date and time of each visit on the website and your mouse tracking history.
A cookie is a small text file that requires authorisation to be saved on your computer’s hard drive and can be reused. Cookies allow you to register to our website or to our services, and adapt how the website is displayed. This is because the online application can customise its activities to fit your needs and preferences by collecting and storing your information. A cookie does not give us any access to your computer or any information about you, other than the information you opt to share with us. This is because you can accept or decline cookies. However, if your web browser automatically accepts cookies, you may change your settings to block them.
HOW IS YOUR PERSONAL DATA PROCESSED
The personal data you provide is processed for the following purposes:
Personal data you provide will not be shared with third parties outside our organisation or other organisations and/or unauthorised parties. We have data processing agreements with partner companies who provide smooth running of our business (IT service providers, software application providers) in compliance with applicable legal requirements, our internal rules and procedures and appropriate legal safeguards to protect personal data. Our partner companies may only process personal data in compliance with the purposes as defined in agreements and may only act according to our instructions.
Personal data we collect from you is used:
HOW LONG WE KEEP YOUR PERSONAL DATA
We ensure that personal data collected to make contracts or to accomplish other contractual obligations is retained for the period of ten years after the termination of the contract or ten years after the termination of personal data processing or ten years after the proceedings initiated to recover unpaid obligations have been concluded. Other personal data is retained for as long as it is relevant for the purposes for which it was collected. Personal data processed only on the basis of your consent is retained for the period of five years from your withdrawal of consent, unless your legitimate interests or fundamental rights and freedom outweigh the need to do so; in that case, the data is processed only until your consent has been withdrawn.
WHERE WE STORE YOUR PERSONAL DATA
Personal data collected from you will be processed and stored within the European Economic Area (“EEA”). It will only be transferred to the USA if you share your data on social networks (more about this in the section “Sharing personal data on social networks”), or if you consent to have statistical and marketing cookies saved on your computer’s hard drive (more about this in the section “Cookies”). They will be processed by employees who work with us, including our partner companies or the employees of our partner companies who have an agreement with us or are bound by professional secrecy. This includes staff involved in, among other things, complying with contractual obligations, processing your payment information and providing support services. By submitting your personal data, you agree to such transfer, storage or processing. We have taken all the necessary measures to ensure that your data is processed securely and in compliance with applicable laws and our internal rules.
Transferring information on the Internet is not entirely safe. While we strive to protect your personal data, we cannot guarantee its security; any transfer is at your own risk. However, once your data is received, rigorous procedures and security measures will be adopted to prevent unauthorised access.
HOW WE PROTECT YOUR PERSONAL DATA
Technical and organisational measures are in place to ensure the safety of your data. Specifically, the premises, equipment and system and/or application software (including input and output units) are protected. The traceability of processing, efficient blocking, destruction and deletion and, if possible, anonymisation, pseudonymisation and encryption of personal data are ensured. The on-going confidentiality, integrity, availability, and resilience of processing systems and services, the ability to restore the availability and access to personal data in a timely manner in the event of security incident are ensured. We implement processes for regular testing, assessing and evaluating of the effectiveness of technical and organisational measures, including training of staff involved in processing operations to ensure the lawfulness of processing. Our staff who handle your personal data are obliged to protect it with due care. All our partner companies also conclude an agreement to that effect.
SHARING PERSONAL DATA VIA SOCIAL NETWORKS
The drama.si/en website contains integrated social media buttons from Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, USA, XING, operated by XING AG, Dammtorstraße 30, 20354 Hamburg, Germany, Facebook Inc., 1601 South California Avenue, Palo Alto, CA 94304, USA and Instagram Inc., 181 South Park Street, Suite 2, San Francisco, CA 94107, USA. The share buttons are identified by their logo and adapted in compliance with the protection of personal data.
Only if and when you hit a share button on the drama.si/en website, a direct link is established between your browser and a server of a particular operator of each social network. As stated by the operators of social media, no personal data is obtained from social media, unless you hit a share button. Such data, including the IP address, is only obtained and processed for registered members. If you do not want your visit to the drama.si website to be entered into any of your social media accounts, log out.
Please, note that social media operators do not inform us on the content of the data submitted or their use in the social media. Further information pertaining to the use of data by social media can be found in their data protection policies.
You can unsubscribe from receiving our notifications and information and request correction, deletion, restriction of processing, transfer of or access to your personal data at any time by contacting firstname.lastname@example.org. Furthermore, we guarantee to respect all other areas of your privacy in compliance with applicable laws and the internal rules of the SNT Drama Ljubljana.
It is always possible to lodge a complaint with a supervisory authority against our decision on your request.
In the event of a personal data breach, the SNT Drama Ljubljana will immediately implement all internal and external procedures and measures (including technical and organisational) to protect the rights of the data subject. The supervisory authority and the data subject will also be informed in the manner and under the terms laid down by the applicable laws.
AMENDMENTS AND ADDITIONS TO THIS POLICY
Any amendments and additions to this policy will be posted on this website and, where appropriate, also sent to you by e-mail.
ANY FURTHER QUESTIONS?
Any questions, comments and requests pertaining to this policy are welcome. Please, send them to email@example.com.
Table: List of cookies
Strictly necessary cookies enable basic operations, such as website navigation and access to the safe areas of the website. As website does not function properly without these cookies, they do not require your consent.
|Cookie name||Service provider|
|Storage period||Purpose (description)|
|cc_analyitics||Drama||Slovenija||1 year||Used to store the user’s decision regarding cookies for analytics monitoring.|
|cc_social||Drama||Slovenija||1 year||Used to store the user’s decision regarding cookies for social media.|
Cookies for statistics monitoring allow the owners of websites to understand the way the visitors use their website by anonymously collecting and reporting user information behaviour.
|Cookie name||Service provider||Country||Storage period||Purpose (description)|
|_ga||Google Analytics||USA||2 years||Used to generate statistical data on how the visitor uses the website.|
|_gat||Google Analytics||USA||1 day||Used to throttle request rate.|
|_gid||Google Analytics||USA||1 day||Used to generate statistical data on how the visitor uses the website.|
Advertising cookies used for tracking users on the website. Their purpose is to serve ads that are relevant and interesting to an individual user.
|Cookie name||Service provider||Country||Storage period||Purpose (description)|
|NID||USA||6 months||It stores your recent searches, your previous interactions with the advertiser’s ads or search results, and your visits to the advertiser’s website.|
|IDE||Doubleclick||USA||1 year||Designed to monitor your interactions with ads on the domain in question and prevent you from being shown the same ads too many times.|
|DSID||Doubleclick||USA||10 days||Used to integrate your activity across multiple devices if you have previously signed in to a Google Account on another device. This matches the ads you see on different devices and monitors conversion events.|