Privacy Policy
Effective date: 01.01.2026
1. Data Controller
This website is operated by:
Molonta Heritage Estate
Represented by Mr. Nikša Metković
Molunat 6, 20215 Gruda
OIB / Company ID: 05083887612
Email: info@molontaheritageestate.com
Molonta Heritage Estate acts as the Data Controller in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR).
2. What Personal Data We Collect
We may collect the following personal data when you use our website or contact us:
a) Information you provide voluntarily
-
Full name
-
Email address
-
Phone number
-
Requested stay dates
-
Number of guests
-
Any additional information you include in your inquiry
b) Information collected automatically
When visiting our website, we may collect certain technical data through analytics tools:
-
IP address (anonymized where applicable)
-
Device type and browser information
-
Pages visited
-
Time spent on the website
-
Referral source
3. Purpose of Data Processing
We process your personal data for the following purposes:
-
Responding to inquiries
-
Managing reservations and communication
-
Improving website functionality and user experience
-
Analyzing website performance through analytics tools
We do not sell, rent, or trade personal data to third parties.
4. Legal Basis for Processing
We process your data based on:
-
Your consent (when submitting an inquiry form)
-
Our legitimate interest (website analytics and business improvement)
-
Legal obligations (where applicable under Croatian law)
5. Data Retention
Personal data is retained only as long as necessary to:
-
Respond to inquiries
-
Fulfill booking-related obligations
-
Comply with legal requirements
After this period, data is securely deleted or anonymized.
6. Data Sharing
We may share data with trusted service providers strictly for operational purposes, including:
-
Website hosting providers
-
IT support services
-
Analytics providers (e.g., Google Analytics)
All third-party providers process data in compliance with applicable data protection laws.
7. International Data Transfers
Some analytics services (such as Google Analytics) may process data outside the European Economic Area (EEA). In such cases, appropriate safeguards are implemented in accordance with GDPR requirements.
8. Your Rights
Under GDPR, you have the right to:
-
Access your personal data
-
Request correction of inaccurate data
-
Request deletion of your data
-
Restrict processing
-
Object to processing
-
Withdraw consent at any time
-
Lodge a complaint with a supervisory authority
In Croatia, the supervisory authority is:
Croatian Personal Data Protection Agency (AZOP)
www.azop.hr
To exercise your rights, please contact us at:
[insert contact email]
9. Cookies
This website uses cookies to ensure proper functionality and improve user experience.
Non-essential cookies (such as analytics cookies) are only activated with your consent.
For more details, please see our Cookie Policy.
10. Data Security
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, misuse, alteration, or loss.
11. Updates to This Policy
We reserve the right to update this Privacy Policy when necessary. The latest version will always be available on this page.