top of page
Privacy Policy

Geolux is committed to protect client's data, in accordance with the best business practices and valid Croatian and European regulations, including General privacy policy based on Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27th, 2016. The main purpose of this Act is to provide interested parties with all the necessary information on how to process and protect personal information and the rights that clients have regarding its processing.
We are always trying to transparently inform our clients about what we need to know regarding their personal information and whether we will store it and for how long. That way they can decide for themselves for which purpose we can use their personal information.
If you want to delete the personal information we stored please inform us by sending an e-mail.



This policy applies to all personal information collected and stored by Geolux and its authorized partners.
A client is considered a person who has requested a service or a service offer from Geolux.
Personal data is any data relating to an individual whose identity has been identified or can be identified (Article 4 of the General Data Protection Regulation).
The data processing means any procedure or set of procedures that are performed on personal data or personal data sets (Article 4 of the General Data Protection Regulation).



The data is processed by applicable laws about personal data processing and by best business practices of data protection, i.e. we perform legal, fair, and transparent processing.


Processing following the purpose of data collection
The collected data is processed only per the purpose for which the data was collected.


Limitation of the data amount
We collect and process only those data that are necessary to achieve the purpose of processing.


Data accuracy
Special attention is paid to the accuracy of the collected data. A client has at any time the right to inspect data and correct his/her data.


Limitation of processing data and its retention
The data is processed and stored only for as long as it is necessary to fulfill the purpose for which it is collected or as required by the applicable regulations.


Security of personal data
We attach the greatest possible attention to personal data security.



Following the General Data Protection Regulation, the client has the following rights:


The right of access to data

A client is entitled to receive confirmation that we are processing his/her personal data and, if processed, he/she is entitled to receive the following information: information about the purpose of processing, the category of personal data we are processing, the recipients or categories of recipients of the data we are processing, the predicted period in which the data will be stored or criteria for determining that period, the right to request rectification, deletion and limitation of data processing, the right to file a complaint to the supervisory body, an automated decision-making system information such as profile design, protection measures if the data are transferred to a third country.


The right to correction and deletion
A client has the right to obtain correction of incorrect data.
A client has the right to obtain deletion of the data unless the data is necessary for the purpose for which they are collected or needs to be kept in accordance with the applicable legal regulations.

The right to processing limitation
A client has the right to obtain a limitation of data processing, under the conditions defined in the General Data Protection Regulation.


The right to data portability
A client has the right to receive the information he has submitted in a structured, standard and machine-readable format, and to transfer them to another processing manager without restriction.


The right to objection
A client has at all times the right to object to the processing of personal data.
A client has at all times the right to direct marketing complaints, in which case the data will no longer be used for this purpose. 



To protect personal data of our clients we use the best business practices in the field of tourism and information-communication technologies. We continually adjust our internal processes to achieve the optimal level of personal data protection. We use different organizational measures and technical means to protect the user’s data from unauthorized access, change, loss, theft, or other misuse of data.


A client can realize his/her rights under the General Data Protection Regulation by submitting a request to the electronic mail address

If the client suspects a violation of his/her data, he/she may file a claim to the
The client can also file a claim to the Personal Data Protection Agency.



The Privacy Policy comes into force and begins to apply on the date of publication and is available on the website. The clients will be informed on time, including through publication on the website, about possible changes and amendments in the Privacy Policy. A client has the right to disclose personal data, deletion of data, and the limitation of personal data processing no later than the date of application of the General Data Protection Regulation.

bottom of page