HR / EN

Privacy Policy

Last updated: June 2025.

Također dostupno na hrvatskom.

DeFratta Winery (hereinafter "we", "our", "DeFratta") is committed to protecting your privacy. This document explains what data we collect, why we collect it and how we use it.

1. Data Controller

DeFratta Winery
Ul. Glavica 31, 52465 Tar, Croatia
Email: info@defratta.hr
Tel: +385 99 444 0725

2. Data We Collect

Our website collects only the minimum technical data required for the site to function:

  • Technical browser data (IP address, device type, browser) — collected automatically by servers for security and statistical analysis
  • Cookies — for the technical functioning of the site and visitor analytics (with your consent)
  • Data you voluntarily provide via contact (name, email, message)

3. Purpose and Legal Basis for Processing

  • Technical operation of the site — legitimate interest (Art. 6(1)(f) GDPR)
  • Visitor analytics — your consent (Art. 6(1)(a) GDPR)
  • Responding to enquiries — performance of a contract or legitimate interest

4. Cookies

We use cookies for the following purposes:

  • Necessary cookies — remembering age verification and your cookie preference. Do not require consent.
  • Analytical cookies — measuring site visits (Google Analytics). Used only with your consent.

You can manage cookies through your browser settings or through our consent banner on your first visit.

5. Sharing Data with Third Parties

We do not sell or transfer your personal data to third parties for commercial purposes. Data may be processed by:

  • Hosting service providers (processing within the EU)
  • Google LLC (Google Analytics) — with IP address anonymisation enabled

6. Data Retention

We retain data for as long as necessary to fulfil the purpose for which it was collected, and for a maximum of 3 years. Analytical data is retained according to the service provider's terms.

7. Your Rights

Under the GDPR, you have the right to:

  • Access your personal data
  • Rectification of inaccurate data
  • Erasure of data ("right to be forgotten")
  • Restriction of processing
  • Data portability
  • Object to processing
  • Withdraw consent at any time

To exercise your rights, contact us at info@defratta.hr. You also have the right to lodge a complaint with the Croatian Personal Data Protection Agency (AZOP), azop.hr.

8. Data Security

We implement technical and organisational measures appropriate to the risk. The site uses HTTPS protocol for secure data exchange.

9. Policy Updates

We may update this policy from time to time. The date of the last amendment is always shown at the top of this document. We recommend checking periodically.

← Back to home