Cookie rules and privacy policy

1.1. Data Controller

HOTEL KORSAL- EMTEZE d.o.o., Stubička ulica 99, 10000 Zagreb, OIB: 41182066034 (short name: HOTEL KORSAL)

Contact email: [email protected]

Contact phone: +385 20 715 722

1.2. Protection of personal data

As the data controller, HOTEL KORSAL protects your privacy and only processes personal data that is necessary for the purpose for which it was collected, such as name, surname, OIB, date of birth, telephone number, e-mail address, postal address, citizenship, age, gender or any other information that relates to you personally, or that can be considered personal data and is necessary for a specific purpose. We collect and process personal data fairly, legally and transparently and ensure their accuracy, completeness, timeliness and security.

1.3. Purpose of data collection

We collect and process data in order to respond to your request or perform the requested service.

Data that we collect and process

Data that we may collect through business communication for the purpose of performing our services are:

  • identification data of the respondent (e.g. name and surname, OIB, identification document number)
  • contact data (e.g. address of residence/residence, telephone number, e-mail address)
  • other data (e.g. citizenship, age, gender, etc.).

1.4. Period in which personal data will be stored

We will store your personal data indefinitely, i.e. for the periods prescribed by the laws and regulations in force in the Republic of Croatia, for the period specified in the consent or until the withdrawal of the signed consent via a request for withdrawal of consent.

1.5. Sharing and transfer of information

We do not share your personal data with third parties or transfer it to other countries. We will only disclose your personal data to third parties expressly stated in the consent or to third parties expressly prescribed by laws and regulations in force in the Republic of Croatia.

1.6. Rights of the data subject

Right of access – you can request information about whether your personal data is being processed, and if it is being processed, you have the right to request access and information about the processing.

Right to rectification – you have the right to obtain from us, without delay, the correction of inaccurate and the completion of incomplete personal data.

Right to erasure – you have the right to request the deletion of your personal data. In the event of justification of the request and if we are not obliged by law to store the data, the data will be deleted without undue delay. If there are reasons that prevent or limit us from complying with the request, we will inform you about this as soon as possible in the response to the request.

Right to restriction of processing – you have the right to request from us the restriction of the processing of your personal data if you contest the accuracy of the data (for a period enabling us to verify the accuracy of the personal data), if the processing is unlawful and you oppose the erasure of the data, if you have objected to the processing of your data and if we no longer need the data and we can delete it, but you need it for the establishment, exercise or defence of legal claims and therefore you want us to continue to store it. You have the right to restrict the processing of your personal data where it is based on our legitimate interest.

Right to withdraw consent – in the event that we process data on the basis of consent, you can withdraw the same consent at any time without affecting the lawfulness of the processing that was based on consent.

Right to complaint and objection – you have the right to file a complaint and objection regarding the processing of personal data with a supervisory authority. In the Republic of Croatia, you can file a complaint with the Personal Data Protection Agency (AZOP).

For all inquiries about your personal data that we possess or process, please contact us at:

HOTEL KORSAL- EMTEZE d.o.o., Stubička ulica 99, 10000 Zagreb or via email:

[email protected]

  1. General information for visitors to this website

2.1. Cookies

Your browser partially stores cookies on your computer’s hard drive. These are text files that you can delete at any time. Most web browsers automatically accept cookies. You can also change your browser settings individually.

You can set your browser to inform you about the placement of cookies and to decide on a case-by-case basis whether to accept or generally disable the acceptance of cookies. If you do not accept cookies, the functionality of our website may be limited.

The following cookies are stored after your session:

  • pid: This is a cookie that is only set if you come from a partner website that has a link to HOTEL KORSAL. Only the partner identification number is stored. Duration: 30 days
  • first: This is a cookie that is generated during your first visit to our website. The content is the URL of the page from which you came to us, if you previously clicked on a link on an external website that directs you to our website. Duration: 90 days

These cookies are used to monitor the success of marketing campaigns. Without making this data available, we are not able to analyze marketing campaigns and manage them appropriately. The processing of this data is therefore based on Article 6, Paragraph 1, Sentence 1, Letter f) of the General Data Protection Regulation. HOTEL KORSAL follows the legal basis of evaluating the success of its advertising campaigns and, accordingly, monitoring them. Since the data processed here is of persons who have expressed an interest in our offers and services, it cannot be assumed that the fundamental rights of the persons concerned are restricted.

  • lng: This is a cookie in which the language of the client is stored. Duration: one year
  • cookieconsent_status: This is a cookie that is set as soon as you have accepted the use of cookies. This means that the notification is not displayed every time you visit the page again. Duration: one year
  • seen_on: This cookie is used if you have reached our property or travel description via one of our advertisements on another website and it is then set there. The code of the respective website from which you came to our website is stored. If you make a reservation, the reservation page will decide on the basis of the cookie whether the code for so-called conversion tracking should be executed. In this way, we can determine which advertisements then result in a reservation. However, no personal data is referenced. Duration: 30 days
  • XSRF-TOKEN: This cookie serves to protect data changes by third parties. This cookie is not bound to a fixed duration and is set again each time the page is called up.

These cookies serve to improve the user-friendliness of our website. The processing of this data is therefore based on Article 6, Paragraph 1, Sentence 1, Letter f) of the General Data Protection Regulation. RESTAURANT HOTEL MONIKA has a legitimate interest in its own services being evaluated by customers for quality assurance purposes in order to increase sales. Since the data of persons who have expressed their interest in our offers and services is processed here, it cannot be assumed that the fundamental rights of the persons concerned are restricted.

2.2. LocalStorage

In order to make our website as easy as possible for you to use, in addition to cookies, we also use the so-called LocalStorage technique (also called “local data” and “local memory”). The data is stored locally in the browser cache, so that it remains available and can be read even after you close the browser window or exit the program – unless you clear the cache. The following information is stored here:

appFileName: The file name of the included JavaScript file is stored here. This is necessary to empty the local storage (and other browser memories) as soon as a new JavaScript file is available. This ensures that the memory in your browser is identical to what we mention in the code,

appFileDate: The date is stored here in parallel with the appFileName. This is primarily intended for monitoring during development, so that we can localize possible errors more quickly in the event of a problem.

navBarFontSize: This is the font size of the main menu. Different languages ​​have different word lengths, so the font size is set dynamically and remembered, so that the main menu is always on one line.

search: Your parameters are stored here.

Using local storage serves to improve usage. The processing of this data is therefore based on Article 6, paragraph 1, sentence 1, letter f) of the General Regulation on the Protection of Personal Data. RESTAURANT HOTEL MONIKA has a legitimate interest in optimizing the simplicity of your presence on the Internet, in order to increase the sale of its products and services. As the data of persons who have expressed their interest in our offers and services are processed here, it should not be assumed that the basic rights of the persons in question are thereby limited.

If you do not want the local storage function to be used, then you can manage this in the settings of your respective browser depending on the platform in the operating system of the application in question.

2.3. Google Analytics

In order to further improve our offer, we collect statistical data on its use. For this purpose, we use the Google Analytics service. This ensures that no connection can be made with the above-mentioned cookies. Google obliges us to provide the following statement:

This website uses Google Analytics, a web analysis service from Google Inc. (“Google”). Google Analytics uses so-called “cookies”, text files that are stored on your computer and enable an analysis of your use of the website. The information generated by the cookie about your use of this website is generally transmitted to a Google server in the USA and stored there. Due to the IP anonymization that we have activated, your IP address will be shortened so that it is not possible to associate you with the user based on the IP address alone. On behalf of the operator of this website, Google will use this information to analyze your use of the website, compile reports on website activities and provide the website operator with further services related to website use and Internet access. The IP address transmitted by your browser to us within the framework of Google Analytics will not be merged with other Google data. You can prevent the storage of cookies by setting your browser software accordingly; however, we would like to point out that in this case you may not be able to use all the functions of this website to their full extent. You can also prevent the collection of data generated by cookies and relating to your use of the website (including your IP address) by Google and the processing of this data by Google by downloading and installing the browser plug-in available under the following link. The current link is http://tools.google.com/dlpage/gaoptout?hl=de.

The collected data is deleted after 26 months.

2.4. Google AdWords

This website uses Google Ads, an online advertising program of Google Inc. In this context, conversion tracking is also used. Google Ads uses a cookie on your computer if you reach our website via a Google ad. The cookie expires after 90 days. The cookie does not have any personal tracking capabilities. If you use our website as a user and the cookie is still active, we and Google can recognize that you have clicked on the corresponding ad and that you have been forwarded to our website. Each Google Ads client has a different cookie. In this way, cookies cannot be tracked across the websites of the Ads clients. The data collected using the conversion cookie can be used to compile statistics on customer conversions. In this way, we as the client know the total number of users who responded to our ads and were forwarded to our website. You do not provide us with any personal data. If you do not agree to the tracking process, you can deactivate the Google Conversion Tracking cookie via your browser. In this case, please use the browser’s Help function. You can find out more information about Google’s data protection provisions at http://www.google.de/policies/privacy/.

2.4. All-In-One Image CAPTCHA plugin

In order to sufficiently take care of data security when submitting forms, we use the All-In-One Image CAPTCHA plugin when registering as a travel agency in the agency application and in the form for the contact service. This serves above all to distinguish whether the entry was made by a real person or whether it is an abuse of machine or automated processing, so that the forms are not filled by robots with spam messages. The service includes sending IP.

2.5. Processing purposes and legal bases for Google services

We use Google Ads services to control and manage the success of our marketing campaigns. This will not be possible without making the data available to us.

Google Analytics is used here for the purpose of obtaining information about the use of our website, so that we can optimize the ease of use of our website.

We use the All-In-One Image CAPTCHA plugin to protect forms from misuse or even hacker attacks, and thus also to protect the security of your personal data.

As an online travel company, we have a legitimate interest in monitoring and managing the success of our marketing campaigns, in obtaining information about the use of our website and in protecting it from misuse, in promoting our products as best as possible and in increasing traffic. This would not be possible without providing the data. The legal basis for data processing here is Article 6(1)(1)(b) of the General Data Protection Regulation.

2.6. Links to other websites

HOTEL KORSAL is not responsible for the content of third parties that can be reached via links from this website. HOTEL KORSAL expressly distances itself from any illegal or ambiguous content.

  1. Facebook Fanpage

If you visit our Facebook Fanpage, your personal data will be included there. If you are logged in, this is your profile data that is provided to Facebook. In any case, this is your IP address and browser information. This data is processed by Facebook Ireland and us as joint controllers. You can read the relevant agreement here:

https://www.facebook.com/legal/terms/page_controller_addendum

The processing is carried out in accordance with Art. 6, Paragraph 1, Subparagraph 1, Point f) of the EU General Data Protection Regulation (our overriding legitimate interests of an economic and communication nature in offering an information and communication channel on social media, here Facebook). All rights, as stated here in the Data Protection Statement, also apply to the Facebook Fanpage.