Privacy Policy

Welcome to Hope Apartments . We are committed to protecting your personal data and respecting your privacy in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR") and applicable Croatian laws.

By using our website or contacting us regarding accommodation reservations, you agree to the practices described in this Privacy Policy.

1. Data Controller

Hope Apartments

Owner: Nada Zderic

Address: Jedro 18, 21330 Gradac, Croatia

Phone: +385 98 938 4792

Email: reservation@hope-gradac.com

Website: https://hope-gradac.com

We may collect the following information:

• Full name 
• Email address 
• Telephone number 
• Country of residence 
• Arrival and departure dates 
• Number of guests 
• Special requests 

• Full name 
• Date of birth 
• Nationality 
• Type and number of identification document 
• Place of residence 
• Gender 

When visiting our website, we may collect:

• IP address 
• Browser type 
• Device information 
• Pages visited 
• Website usage statistics

We process personal data for the following purposes:

• Responding to inquiries 
• Confirming reservations 
• Providing accommodation services 
• Communicating with guests 

• Registration of guests in the Croatian eVisitor system 
• Accounting and tax obligations 
• Compliance with Croatian tourism regulations 

• Improving website functionality 
• Security monitoring 
• Analytics and performance measurement 

Only where consent has been provided.

You may withdraw consent at any time.

We process personal data under the following GDPR legal bases:

To provide accommodation and reservation services.

To comply with Croatian tourism, tax, and accounting laws.

For website security, fraud prevention, and business administration.

For newsletters and marketing communications where applicable.

We may share data with:

Including:

• eVisitor system 
• Tax authorities 
• Law enforcement authorities where legally required

Service Providers

Such as:

• Website hosting providers 
• IT support providers 
• Booking platforms 
• Payment processors 

All service providers are required to protect personal data in accordance with GDPR.

We retain personal data only for as long as necessary for the purposes for which it was collected, and in accordance with applicable Croatian and EU legal requirements.

Reservation inquiries are retained for up to 24 months.

Reservation records are retained for up to 10 years where required for accounting, tax, and legal obligations.

Guest registration data is retained for the period required under Croatian law and tourism regulations.

Marketing consent records are retained until consent is withdrawn.

Our website may use cookies to:

• Ensure website functionality 
• Improve user experience 
• Analyze website traffic 

You can control cookies through your browser settings.

Where required by law, a cookie consent banner will be displayed.

Under GDPR you have the right to:

Request a copy of your personal data.

Request correction of inaccurate information.

Request deletion of personal data where legally permitted.

Request limitation of data processing.

Receive your data in a structured format.

Object to certain processing activities.

Withdraw consent at any time.

We implement appropriate technical and organizational measures to protect personal data against:

• Unauthorized access 
• Loss 
• Misuse 
• Disclosure 
• Alteration 

However, no internet transmission can be guaranteed as completely secure.

Where third-party service providers are located outside the European Economic Area (EEA), transfers will be protected using:

• European Commission adequacy decisions 
• Standard Contractual Clauses (SCCs) 
• Other GDPR-compliant safeguards 

If you believe your data protection rights have been violated, you may contact:

Croatian Personal Data Protection Agency

Website: https://azop.hr

Address:
Ulica grada Vukovara 54
10000 Zagreb
Croatia