Privacy policy

1. General information

This Privacy Policy explains how Apartments Bego ("we", "us", "our") collects, uses, stores, and protects personal data when you use this website, send an enquiry, request a booking, contact us directly, or otherwise interact with our accommodation offer.

We process personal data in accordance with Regulation (EU) 2016/679 (GDPR) and the Croatian Act on the Implementation of the General Data Protection Regulation. In Croatia, compliance with personal data protection rules is supervised by the Croatian Personal Data Protection Agency (AZOP).

2. Data controller

Controller:
Apartments Bego
Basaričekova 50, 51260 Crikvenica, Croatia
apartmani.bego@gmail.com
+385 98 327998

If Apartments Bego operates through a registered legal entity or sole trade different from the public-facing name, that full legal name can be added here.

3. What personal data we may collect

Depending on how you use the website, we may collect:

• name and surname
• email address
• phone number
• dates of stay
• number of guests
• selected apartment or location
• message content and enquiry details
• booking-related details needed to respond to your request
• technical usage data such as IP address, browser type, device information, page visits, and similar website interaction data
• cookie-related data, where applicable

Under the GDPR, personal data means any information relating to an identified or identifiable natural person, and website operators must inform users what categories of personal data they process.

4. Why we process your data

We may process personal data for the following purposes:

• to respond to enquiries and booking requests
• to communicate with guests before, during, or after a stay
• to provide accommodation-related information and support
• to manage reservations and related administration
• to comply with legal, tax, accounting, or regulatory obligations
• to maintain website security, functionality, and performance
• to improve the website and user experience
• to manage cookies and similar technologies, where applicable

These purposes reflect the GDPR requirement that personal data be collected for specified, explicit, and legitimate purposes.

5. Legal bases for processing

Depending on the situation, we process personal data on one or more of the following legal bases:

• performance of a contract or steps prior to entering into a contract, for example when you send a booking enquiry or request availability
• compliance with a legal obligation, for example where record-keeping, accounting, or reporting duties apply
• legitimate interests, for example to protect website security, prevent misuse, and improve service quality
• consent, where required, for example for non-essential cookies or similar technologies

These are recognized legal bases under Article 6 of the GDPR.

6. Cookies and similar technologies

This website may use cookies and similar technologies for essential functionality, security, performance, embedded content, and, where enabled, analytics or other non-essential tools.

Under EU and Croatian rules, cookies or similar technologies that are strictly necessary for the requested service may be used without consent, while non-essential cookies generally require prior user consent. In Croatia, cookie-related compliance is supervised by AZOP within the relevant legal framework.

If you use a cookie banner or consent tool on the site, users should be able to manage their preferences there.

7. Who may receive personal data

We may share personal data only where reasonably necessary, for example with:

• website hosting and technical support providers
• email and communication service providers
• booking or channel-management platforms, where relevant
• payment, accounting, or legal service providers, where applicable
• analytics, map, or embedded content providers, if such tools are enabled
• competent authorities where required by law

We do not sell personal data to third parties.

The GDPR requires controllers to be transparent about categories of recipients of personal data.

8. International transfers

If any service provider used through this website processes data outside the European Economic Area, appropriate safeguards should be used where required under the GDPR.

This section depends on your actual technical setup. If all tools and providers remain within the EEA, international transfer wording can stay minimal.

9. How long we keep personal data

We keep personal data only for as long as necessary for the purpose for which it was collected, including:

• while responding to an enquiry
• during the booking and stay process
• for a reasonable follow-up period
• for as long as required by accounting, tax, legal, or regulatory obligations
• until consent is withdrawn, where processing is based on consent

The GDPR requires that personal data not be kept longer than necessary for the purposes for which it is processed.

10. Your rights

Under the GDPR, you may have the right to:

• request access to your personal data
• request correction of inaccurate or incomplete data
• request deletion of personal data in certain circumstances
• request restriction of processing
• object to certain processing
• request data portability where applicable
• withdraw consent at any time where processing is based on consent
• lodge a complaint with the competent supervisory authority

These rights are explained in the GDPR and also by AZOP in its public guidance for data subjects.

11. How to exercise your rights

If you would like to exercise your rights or ask a question about how your personal data is processed, please contact us at:

Apartments Bego
Basaričekova 50, 51260 Crikvenica, Croatia
apartmani.bego@gmail.com
+385 98 327998

12. Right to lodge a complaint

If you believe your personal data has been processed unlawfully, you have the right to lodge a complaint with the Croatian Personal Data Protection Agency (AZOP), which is the supervisory authority responsible for monitoring the application of the GDPR in Croatia. AZOP currently lists its contact address as Ulica Metela Ožegovića 16, HR-10000 Zagreb, with azop@azop.hr and +385 (0)1 4609-000.

13. Data security

We take reasonable technical and organizational measures to protect personal data against unauthorized access, misuse, accidental loss, disclosure, or destruction. The GDPR requires controllers and processors to implement appropriate security measures having regard to the risks involved in the processing.

14. Third-party websites and services

This website may contain links to third-party websites or services, including booking platforms, maps, social media pages, or embedded content. If you choose to use those services, your data may also be processed under the privacy rules of those providers. We are not responsible for the privacy practices of third-party websites or services.

15. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our website, services, legal obligations, or data processing practices. The latest version will always be published on this page.

16. Contact

If you have any questions about this Privacy Policy or how we process personal data, please contact us at:

Apartments Bego
Basaričekova 50, 51260 Crikvenica, Croatia
apartmani.bego@gmail.com
+385 98 327998