Privacy Policy

Last updated: 15 January 2026

Introduction

NovaTerrace d.o.o. ("we," "our," or "us") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website novaterrace.world or engage with our services. Please read this privacy policy carefully to understand our practices regarding your personal data and how we will treat it.

Data Controller Information

The data controller for the purposes of the General Data Protection Regulation (GDPR) and other applicable data protection laws is:

NovaTerrace d.o.o.
Celovška cesta 92
1088 Ljubljana, Slovenia
Registration Number: 5142387457
VAT Number: SI51487932
Email: privacy@novaterrace.world
Phone: +386 12505567

Data Collection

The data we collect depends on how you interact with our services. We may collect personal information in the following situations:

  • When you visit our website and use our services
  • When you contact us through our contact forms or email
  • When you subscribe to our newsletter or marketing communications
  • When you engage with our content or participate in our events
  • When you provide feedback or reviews about our services

Types of Personal Data

The categories of personal data we may collect include:

  • Contact Information: Name, email address, phone number, postal address
  • Professional Information: Company name, job title, industry, business requirements
  • Communication Data: Records of correspondence, enquiries, and feedback
  • Technical Data: IP address, browser type, device information, operating system
  • Usage Data: Website navigation patterns, pages visited, time spent on pages
  • Marketing Data: Communication preferences, interests, and engagement metrics

How We Use Your Information

We process your personal data for the following purposes, based on legitimate legal grounds under GDPR:

  • Service Provision: To provide and deliver our recurring revenue strategy services
  • Communication: To respond to your enquiries and provide customer support
  • Business Development: To understand your business needs and develop tailored solutions
  • Marketing: To send relevant information about our services (with your consent)
  • Website Improvement: To analyse website usage and improve user experience
  • Legal Compliance: To comply with applicable laws and regulatory requirements
  • Security: To protect our systems and prevent fraud or misuse

Legal Basis for Processing

Our legal basis for processing your personal data includes: (a) your consent where explicitly given; (b) performance of a contract or pre-contractual measures; (c) compliance with legal obligations; and (d) our legitimate business interests, provided these do not override your fundamental rights and freedoms.

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about the cookies we use, please refer to our Cookie Policy.

Data Sharing and Disclosure

We may share your personal data in the following circumstances:

  • Service Providers: With trusted third-party vendors who assist in providing our services
  • Professional Advisers: With lawyers, accountants, and other professional advisers
  • Business Transfers: In connection with mergers, acquisitions, or business restructuring
  • Legal Requirements: When required by law or to protect our legal rights
  • Consent: With your explicit consent for specific purposes

We do not sell, rent, or lease your personal information to third parties for their marketing purposes without your explicit consent.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including:

  • Contact Enquiries: Up to 3 years from last contact
  • Client Data: For the duration of our business relationship plus 7 years for legal and tax purposes
  • Marketing Data: Until you withdraw consent or up to 2 years of inactivity
  • Website Analytics: Up to 26 months as per Google Analytics retention settings

After the retention period expires, we will securely delete or anonymise your personal data unless we are required to retain it for legal or regulatory purposes.

Your Rights

Under the GDPR and applicable data protection laws, you have the following rights regarding your personal data:

  • Right of Access: Request copies of your personal data
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data in certain circumstances
  • Right to Restrict Processing: Request limitation of processing in specific situations
  • Right to Data Portability: Request transfer of your data to another organisation
  • Right to Object: Object to processing based on legitimate interests or for marketing purposes
  • Right to Withdraw Consent: Withdraw consent for processing where applicable

To exercise any of these rights, please contact us using the contact information provided below. We will respond to your request within one month, though this may be extended in complex cases.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, secure data storage, access controls, and regular security assessments. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

International Data Transfers

Your personal data is primarily processed within the European Economic Area (EEA). If we transfer your data outside the EEA, we ensure appropriate safeguards are in place, such as adequacy decisions, standard contractual clauses, or other approved transfer mechanisms under GDPR.

Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you become aware that a child has provided us with personal information, please contact us immediately, and we will take steps to remove such information from our systems.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website with a new "last updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Privacy Officer
NovaTerrace d.o.o.
Email: privacy@novaterrace.world
Phone: +386 12505567
Address: Celovška cesta 92, 1088 Ljubljana, Slovenia

Supervisory Authority

If you believe we have not handled your personal data in accordance with this Privacy Policy or applicable data protection laws, you have the right to lodge a complaint with the relevant supervisory authority. In Slovenia, this is the Information Commissioner (Informacijski pooblaščenec Republike Slovenije).