1. Personal Data Controller
The data controller is:

POGO MTECH d.o.o.
Trebež 53, 8253 Artiče, Slovenia
E-mail: info@pogo-mtech.com

This Privacy Policy describes how POGO MTECH Ltd. collects, uses, stores and protects the personal data of individuals.

2. Purpose and scope of the processing of personal data
We store and process personal data for the following purposes:
- keeping in touch with customers and business partners,
- processing enquiries and preparing tenders,
- email updates on products, promotions and events,
- marketing information and sales promotion,
- customer profiling to offer personalised content and products in emails and on websites,
- sales and after-sales activities (service, warranty, complaints),
- Compliance with legal obligations (accounting, archiving, etc.).

When you send an email, you can make a note of:
- message displays (openings),
- clicks on links in messages you receive.

This information is used solely for the statistical analysis of the effectiveness of our messages and to tailor the content of future messages. Based on the data recorded and the profiles created we do not carry out automated decision-making, which would have legal effects for the individual.

3. Types of personal data we process
For the purpose of information and business communication, we may store the following data:
- Name,
- surname,
- email address,
- the name of the organisation or company,
- telephone number (if provided),
- gender (if provided),
- information on interest in specific products or services,
- information on the messages received (opens, clicks, unsubscribes).

We can also process additional customer data:
- your billing address,
- delivery address,
- details of the products ordered,
- information on complaints, service and warranty claims.

4. Methods of obtaining personal data
We collect personal data:
- via forms on our website (e.g. newsletter sign-up, enquiry, contact forms),
- direct communication by email, phone or at trade fairs/events,
- through advertising campaigns (e.g. Facebook/Meta Lead Ads), where the user provides their email address,
- from existing business contacts where the individual has expressed an interest in our products or services,
- by importing data from other systems or legally obtained contact lists where individuals have previously consented to receive notifications or where there is a legitimate business interest.

We collect personal data with the explicit consent of individuals or on the basis of an existing business relationship and legitimate interest (e.g. processing enquiries, informing existing customers).

5. Legal basis for processing
We process personal data on the following legal bases:
- Consent (assent) - to subscribe to our newsletter and receive marketing notifications.
- Contractual relationship - the processing of data is necessary for the preparation of the offer, conclusion and performance of the contract (purchase of machinery, servicing, warranty).
- Legitimate interest - processing of existing customers' data for the purpose of basic information and support (customer service, information on security updates, etc.) and to improve our services.
- Legal obligation - e.g. keeping invoices and other documents in accordance with applicable law.

Consent to marketing communications may be given by an individual cancel at any time, without affecting the lawfulness of the processing prior to revocation.

6. Storage of and access to personal data
Personal data is used exclusively by authorised employees in the following departments of the company:

- sales,
- Marketing,
- customer support,
- the company's management,
- accounting (within the limits of legal obligations).

We store personal data in electronic form in our information systems and in the systems of contractual processors (e.g. email marketing platform provider) with whom we have entered into appropriate contracts for the processing of personal data.

7. Retention period
We keep personal data about individuals:

- until withdrawal of consent or to a request for erasure where the processing is based on consent,
- for as long as necessary to fulfil the purpose for which the data are processed (e.g. performance of a contract, warranty periods, servicing),
- in accordance with legal deadlines where retention is mandatory (e.g. invoices, contracts).

8. Individual rights
Any individual may, at any time, make a request concerning his or her personal data:
- See your personal data,
- Correction inaccurate or incomplete personal data,
- complete deletion personal data (“right to be forgotten”) where the legal conditions are met,
- restriction of processing,
- data transmission to another operator,
- withdrawal of consent for processing where the processing is based on consent, without prejudice to the lawfulness of the processing before revocation,
- objection processing based on legitimate interest.

You can send your request to: info@pogo-mtech.com.
We will respond to your request as soon as possible, and at the latest within the statutory deadline.

9. Right of appeal
If the data subject considers that his or her rights relating to the protection of personal data have been infringed, he or she may lodge a complaint with the supervisory authority:
Information Commissioner of the Republic of Slovenia
Zaloška cesta 59, 1000 Ljubljana
Website: https://www.ip-rs.si

Before that, the individual can always contact us directly, and we will do everything in our power to resolve any misunderstandings amicably.

10. Use of cookies and web analytics
We may use cookies and similar technologies on our websites to:
- website performance and display,
- saving user settings,
- basic visit statistics (e.g. Google Analytics or similar tools),
- display personalised content and ads.

More detailed information about cookies, types of cookies and their retention period is provided in a separate document Cookie Policy, which is published on our website. The user can control and, if desired, restrict or disable cookies in the settings of their browser or via the cookie notice displayed.

11. Protection of personal data
We use appropriate organisational and technical measures to ensure the security of personal data, including:
- limit access to personal data to authorised persons,
- protecting premises and IT equipment,
- keeping your software up to date and using security solutions,
- data backups,
- contracts with external processors who are subject to data protection obligations.

In the event of a breach of the security of personal data which may result in a high risk to the rights of individuals, we will notify the supervisory authority and, where appropriate, the individuals concerned, in accordance with applicable law.

12. Updates to the Privacy Policy
The Privacy Policy was published at the time of the website's launch and is updated from time to time without changing the basic structure.