Privacy Policy

Avant.Si d.o.o.
Poslovna Cona A 49
4208 Šenčur
386 Slovenija
with VAT ID: SI50709329 and registration no.: 5655048000
(hereinafter referred to as the "provider" or "processor")

respects the privacy of all subscribers and service users and is committed to protecting personal data in accordance with applicable legislation, including the General Data Protection Regulation (GDPR) and relevant national regulations.

With the Privacy Policy, the provider aims to explain which personal data are collected, why they are processed, how long they are stored, and what rights subscribers have in relation to them.


1. DATA PROTECTION STATEMENT

All information about which personal data are processed, for what purpose, in what way, and in accordance with which legal basis, is available on the page .

The Data Processing Agreement is also available for download (PDF). The subscriber can download it to their device, print it, and sign it if necessary, if they need the agreement in such a form.


2. PURPOSE OF DATA COLLECTION AND LEGAL BASIS

The subscriber understands and agrees that by using the provider's websites (which includes the use of forms) or by ordering services from the provider via websites, email, telephone, or otherwise, the subscriber's personal data are processed.

This is necessary for proper communication between the provider and the subscriber and for providing the subscriber with access to the subscriber center, where they manage the ordered services. Otherwise, the execution of contractual services in accordance with generally accepted practices is not feasible, therefore accepting these terms is considered as entering into a personal data processing agreement and as consent to the collection and processing of personal data, in accordance with data protection legislation.

The provider processes the subscriber's personal data exclusively for lawful and defined purposes:

  • for the execution of contractual services: i.e., for registration and management of domains, issuance of SSL certificates, providing server or web solutions, etc.,
  • for compliance with legal obligations: e.g., retention of accounting data,
  • for the purpose of executing contractual services: ensuring the security of the provider's systems, preventing abuse,
  • for the purpose of executing contractual services: informing about changes in services or terms for the execution of services, ensuring high quality of services and their improvements,
  • for the purpose of executing contractual services: communication with subscribers or users and providing user or technical support in ordering, using, and terminating services,
  • based on the subscriber's consent, when it comes to processing that is not necessary for the execution of the contract (e.g., sending promotional messages).

3. DATA COLLECTION

3.1. COLLECTION OF PERSONAL DATA

Defined in Data Protection Statement (point no. 1).


3.2. COLLECTION OF WEBSITE VISITOR DATA

With the web analytics software solution, the provider collects certain data about the hardware and software of the user's device. This data may also include the IP address of the internet connection, the type of operating system, the type of web browser, access time, movements on the website, and the referring website (eng. referer). The provider needs this data for analyzing website visits and usage patterns and they are not linked to the personal data of subscribers or users.

All data, except for cookies, are stored by the provider permanently or until revocation. Session cookies, which are necessary for the operation of certain technical solutions (e.g., for logging into the subscriber center), are stored by the provider only for the duration of the use of a particular service, after which they are automatically and permanently removed.


4. DATA SECURITY

To protect personal data, the provider uses appropriate technical and organizational measures. These are:

  • 24/7 monitored physical access to data centers,
  • 24/7 monitored physical access to business premises,
  • use of encrypted connections (SSL, VPN),
  • appropriate data backup policy,
  • appropriately limited access to personal data for only duly authorized persons,
  • regular monitoring and updating of security mechanisms.

The provider continuously implements security measures and updates security mechanisms that protect personal data and other information from unauthorized access, loss, destruction, or alteration.

The provider also requires its subcontractors to strive for and pursue appropriate technical and organizational security measures.


5. DATA RETENTION PERIOD

The provider stores the subscriber's personal data for as long as necessary to fulfill the purposes for which they were collected (described in point 2).

The retention period for personal data may vary depending on the applicable legislation in a specific area (e.g., tax legislation, accounting legislation, legislation on the prevention of money laundering and terrorist financing, etc.). If the applicable legislation specifies retention periods for personal data, the provider deletes the personal data after the expiration of the legally prescribed mandatory period.


5.1. PAYMENT METHODS

In accordance with the legislation, the provider is obliged to retain data on the business relationship and individual transactions for 10 years after the conclusion of the business relationship or individual transaction.


6. DATA TRANSFER

The provider transfers data exclusively to the extent necessary to provide services or to fulfill legal obligations.

This may include transferring data to:

  • technology partners for domain registration or SSL certificate issuance,
  • accounting and legal services,
  • competent state authorities when required by legislation.

All third parties are contractually bound to protect personal data and to act in accordance with applicable legislation.


6.1. DATA TRANSFER TO THIRD COUNTRIES

The provider stores the subscriber's personal data within the EU and in areas recognized by the EU as having an adequate level of security (source: https://commission.europa.eu/law/law-topic/data-protection_en).

The provider generally does not transfer users' personal data to third countries. In the event that the provider's contractual partners are from third countries and the provision of their services may involve the processing of personal data, the provider enables this by observing the conditions set by Regulation (EU) 2016/679 (which may include entering into an appropriate data processing agreement or other protective measures).

Due to the nature and manner of using the service, certain personal data of users may be transferred to third countries in certain cases (e.g., the use of electronic payment methods - credit cards, Paypal, etc.).


7. DISCLAIMER OF LIABILITY

Since the provider offers links to other, independent websites and platforms that are not directly connected to the provider's information system, the provider cannot assume responsibility for data protection on these websites or platforms.

The provider uses all appropriate technical and organizational procedures in pursuit of the goal of preventing access to data or disclosure of data by unauthorized persons as much as possible, to ensure proper use of data and to maintain data integrity. Despite this, due to the unpredictability of online networks (internet) as a medium (e.g., undiscovered or undocumented software security flaws or force majeure), the provider cannot completely rule out the possibility of data misuse.


7.1. DATA ACCURACY

The subscriber is responsible for the accuracy of the data entered, as the provider does not have an effective and lawful method to verify personal data. Accurate data is a mandatory basis for the possibility of executing ordered services and for ensuring appropriate user and technical support in using the services.


8. SUBSCRIBER'S RIGHTS

In accordance with the legislation, the subscriber has the right to access personal data that are subject to processing by the provider, the right to correct or edit these data, and the right to delete data (which may also be called the right to be forgotten), when the conditions for this are met.

The provider provides the subscriber with the possibility to view data and the possibility to export, edit, and delete them in the subscriber center, which every subscriber has access to.

The provider reserves the right to charge a reasonable fee for any additional work in the case of requests that are not in accordance with the legislation or requests that it deems not properly justified or excessive, or to refrain from performing contractual services.

If the subscriber has any questions or objections regarding the processing of their personal data, they can communicate this to the provider via the contacts published on the provider's website.

The subscriber can also file a complaint with the data protection supervisory authority. In the Republic of Slovenia, this authority is exercised by the Information Commissioner.


9. EMAIL NOTIFICATIONS

The option to subscribe to promotional email notifications is always available to the subscriber on the provider's websites and during the service ordering process. If the subscriber does not wish to receive promotional email notifications, it is sufficient not to select this option.

If the subscriber wishes to unsubscribe from receiving promotional email messages from the provider, they can do so at any time in several ways: by clicking on the unsubscribe link present in promotional email messages or by editing settings in the provider's subscriber center.


10. COOKIES

Cookies are small files that websites save on the user's device upon visiting.

The cookie policy (eng. cookies) is available on the page .


11. CONTACT

The provider is available for any potential questions regarding the privacy policy and data processing.

The provider's contact details are available on the page .


Date of last modification: 6. 8. 2025