PRIVACY POLICY

 

Updated on March 2023. 

 

Please note that this Privacy Policy applies to personal data that is collected and processed relating to interactions on the Bloomberg Events App (as defined in the Definitions section of the Bloomberg Adria Events App Terms of Use) by the following joint data controllers: 

• If you fill in the registration form for the event organized in the Republic of Serbia, Bosnia and Herzegovina or North Macedonia, the data controller is Arena News Channels d.o.o. Beograd, Vladimira Popovića no. 6, floor M, office B 31-35, Novi Beograd, the Republic of Serbia, CIN: 21501859, TIN: 111558155 (hereinafter: "Arena News"); 

• If you fill in the registration form for the event organized in the Republic of Croatia, the data controller is HD-WIN ARENA SPORT d.o.o., Radnička cesta 180, Zagreb, the Republic of Croatia, CIN: 02679825 TIN:75150106632 (hereinafter: “HD-WIN”); 

• If you fill in the registration form for the event organized in the Republic of Slovenia, the data controller is Arena sport d.o.o., Šlandrova ulica no. 4b, Ljubljana, the Republic of Slovenia, TIN: SI49768913 (hereinafter: “Arena sport”); 

 

(collectively “Data controllers”, “Controllers”, "we" or "us"). 

This Privacy Policy describes how Data controllers use and protect any information that you give us. All the terms in the Privacy Policy apply equally to all the Controllers unless otherwise specified. 

We believe in full transparency, which is why we keep our Privacy Policy simple and easy to understand. 

We strongly urge you to read this Privacy Policy and make sure that you fully understand and agree with it. If you do not agree to this Privacy Policy, please do not access or otherwise use the Website and Events App. 

Any capitalized but undefined term in this Privacy Policy shall have the meaning given to it in the Definitions section of the Bloomberg Adria Events App Terms of Use. 

 

1. ​​​DEFINITIONS 

2. DATA CONTROLLER  

3. WHAT DATA DO WE COLLECT ABOUT YOU AND WHEN? 

4. PERSONAL DATA WE PROCESS 

5. WHAT DO WE NOT DO? 

6. PERSONAL DATA SECURITY 

7. WITH WHOM DO WE SHARE YOUR PERSONAL DATA? 

8. INTERNATIONAL TRANSFER OF YOUR PERSONAL DATA 

9. HOW LONG DO WE KEEP YOUR DATA? 

10. YOUR RIGHTS 

11. CHANGES TO PRIVACY POLICY 

 

 

1. DEFINITIONS 

 

	When we say "consent" we mean your explicit consent on the processing of personal data. Persons who are 16 years of age or older may give free consent to the processing of their personal data.
	When we say "cookies" we mean small pieces of data stored on your device (computer or mobile device). This information is used to track your use of the Website and to compile statistical reports on website activity. For further information about the use of cookies and how you can manage them, please read our Cookie Policy.
	When we say "Data controller“ we mean the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
	When we say "Data Processors" or "processor" we mean any natural or legal person who processes the data on behalf of the Data Controller. In addition, we may use the services of various service providers to process your data more effectively. In such cases, they are either our processors or sub-processors.
	When we say "Data Subject", "you" or "your" or we mean any natural person that shares personal data with us via Events App.
	When we say “Law” we mean 1) the General Data Protection Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (“GDPR”) and/or Law on Personal Data Protection of the Republic of Serbia (Official Gazette RS, no. 87/2018) (“Law on Personal Data Protection”), as well as other applicable regulation regarding the data protection.
	When we say "processing" we mean any operation or set of operations which is performed on personal data or sets of personal data. This includes activities such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
	When we say "personal data" or "data" we mean any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, either directly or indirectly. Therefore, data about a company or any legal entity is not considered to be personal data but registering on behalf of a legal entity may include sharing personal data. For example, the information in relation to one-person companies may constitute personal data where it allows the identification of a natural person. The rules also apply to all personal data relating to natural persons in the course of professional activity, such as the employees of a company or organization, business e-mail addresses like "firstname.surname@company.com". This Privacy Policy does not apply to information from which no individual can reasonably be identified (anonymized information).
	When we say „Special categories of personal data“ we mean personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation.

 

 

2. DATA CONTROLLERS 

 

Data controllers determine the purposes and means of the processing of personal data. Data controllers are responsible for your personal data. The purpose of data processing is the reason why we process your personal data. The table in Section 4 of the Privacy Policy presents the purposes and legal basis for data processing. In such cases, Data controllers are responsible for your personal data. 

In relation to all questions related to the processing of your personal data, as well as in case of any ambiguities regarding your rights please contact us at: ​dpo@bloombergadria.com​  

 

 

3. WHAT DATA DO WE COLLECT ABOUT YOU AND WHEN? 

 

We may collect and receive information about you in various ways: 

(i) Information you provide through the use of the Bloomberg Events App (for example, by registering for an event). 

(ii) Information you decide to provide through getting in touch with us via events@bloombergadria.com or other publicly available email address. 

(iii) Information we collect through the use of cookies in accordance with our Cookie Policy (for example, your time zone). 

 

The processing of your data is always limited to what is necessary for the purposes for which the data is collected. 

If we obtain your consent to process your personal data for one purpose and we need to use them for a different purpose (in accordance with Section 4), we will require your prior consent to use your data for a different purpose. 

 

4. PERSONAL DATA WE PROCESS 

 

DATA WE COLLECT	PURPOSE	LEGAL BASIS	RETENTION
Name and last name, E-mail, E-mail CC, Profesional title, Mobile phone, Company, City, State, Country, Industry, Job Function, whether you are a Bloomberg Adria Subscriber	Registering for the Bloomberg Event in accordance with the Bloomberg Adria Events App Terms of Use.	Processing is necessary for the performance of the Agreement (as defined in the Bloomberg Adria Events App Terms of Use). Without providing such information the User may not register for the Bloomberg Event.  Please note that some Events are available only to Bloomberg Adria Subscribers. Thus, if you apply for those Events, we will need to check whether you are Bloomberg Adria Subscriber and information related to your subscription (such as your email used for the Bloomberg Adria Subscription).	Unless a specific retention period prescribed under the applicable law applies, we will retain this information for 6 years in accordance with the Bloomberg Adria Events App Terms of Use. This information is necessary for us to comply with local accounting, tax, financial and other regulations.
Confirmation of attendance at an event (where applicable)   Special requirements for meals in terms of allergies (where applicable)  Photo for accreditation (for VIP guests)  For VIP guests (optional): Transport information, escort	For the purpose of finalizing your registration for the Bloomberg Event, we may ask you to confirm your attendance, or to provide special requirements for meals, or we may ask for additional information if you are a VIP guest (as defined in the Bloomberg Adria Events App Terms of Use).	Processing is necessary for the performance of the Agreement (as defined in the Bloomberg Adria Events App Terms of Use). Without providing such information the User may not finalize its registration for the Bloomberg Event.  We process optional information of VIP guests based on your consent. You are not obliged to provide this information and it will not affect your registration. However, without this information we will not be able to offer you additional services for VIP guests. In any case, you can withdraw your consent at any time.	Unless a specific retention period prescribed under the applicable law applies, we will retain this information for 2 years in accordance with the Bloomberg Adria Events App Terms of Use.  If the processing is based on your consent, we keep the information until you withdraw your consent.
Name and surname, Name of the editorial office, Media house, Identification number, Confirmation from the media company the journalist/reporter works for	For the purpose of accreditation of journalist/reporters participating at an event, we collect personal data as described in the first column.	Processing is necessary for the performance of the Agreement (as defined in the Bloomberg Adria Events App Terms of Use).	Unless a specific retention period prescribed under the applicable law applies, we will retain this information for 6 years in accordance with the Bloomberg Adria Events App Terms of Use.
Billing information for paid ticketed events    such as name, address, bank account and payment card details, invoice information.	When registering for Bloomberg Events in accordance with the Bloomberg Adria Events App Terms of Use, this information is being collected by a third-party processor.	Processing is necessary for the performance of the Agreement (as defined in the Bloomberg Adria Events App Terms of Use).	We keep only the last four digits of the credit card number under billing info until such Agreement is terminated and for the period necessary to comply with the applicable financial and tax accounting and other statutory obligations in accordance with the applicable law.
Additional Data    i.e., data you decide to share with us.	If you send us an inquiry or otherwise request support, we will collect data you decide to share with us.	Processing of personal data is either necessary to provide a Service or part thereof, or the processing is based on your consent.	If the processing is based on your consent, we keep the information until you withdraw your consent or for one year, whichever date comes first.
Device information	We may collect information about your device such as Internet Protocol (“IP”) addresses, log information, error messages, device type, and unique device identifiers. For example, we may collect IP addresses from you as part of our registration and security features.	Processing of personal data is either necessary to provide a Service or part thereof, or the processing is based on your consent.	If the processing is based on your consent, we keep the information until you withdraw your consent or for one year, whichever date comes first.
Email address    If you decide to sign up for our newsletter, we use your email address.	This newsletter allows us to inform you of the upcoming events, webinars, educations, and Company news.	If you are registering on behalf of a Company, the processing is based on our legitimate interest.  If you are registering as an individual in your personal capacity, the processing is based on your consent. You have the right to withdraw your consent at any time, without affecting the lawfulness of the processing based on consent prior to such withdrawal.   You may unsubscribe from receiving a newsletter from us. If you wish to do so, simply follow the instructions found at the end of each email.	We may use your email for this purpose until you object to the processing i.e. unsubscribe from the Newsletter.
Email address used for registering for Bloomberg Events	In order to fulfill its contractual obligations to notify the Users of the amendments and changes of the Agreement, or changes and cancellations of the events (as defined in Bloomberg Adria Events App Terms of Use), we will send notifications to your email address.	Processing is necessary for the performance of the Agreement (as defined in Bloomberg Adria Events App Terms of Use).	Until the Agreement is terminated in accordance with Bloomberg Adria Events App Terms of Use.
Information necessary for identification	To allow Data Subjects to exercise their rights in accordance with this Privacy Policy, as defined in Section 10.	Processing is necessary for compliance with a legal obligation which the controllers are subject to.	We keep this information for a period of one year.
Photographs and video recordings made at some of our events.	These recordings serve our public relations work as part of our mission and our goal of informing the public. The photographs and video recordings made at the event may be published for this purpose in the press, on the internet, in social media or in one of our publications.	Processing is based on our legitimate interest. If you do not wish to be photographed or recorded, please do not hesitate to inform the photographer on site.	We keep this information for a period of 6 years, unless a specific retention period prescribed under the applicable law applies.

 

5. WHAT DO WE NOT DO? 

 

Data controllers will never: 

• Sell any kind of personal information or data. 

• Disclose this information to marketers or third parties not specified in Section 7. 

• Process your data in any way other than stated in this Privacy Policy. 

 

6. PERSONAL DATA SECURITY 

 

Data controllers take the privacy and security of their users’ personal information seriously. We maintain administrative, technical, and physical safeguards designed to protect your information’s security, confidentiality, and integrity.  

Upon assessing whether a measure is adequate and which level of security is appropriate, we consider the nature of the personal data we are processing and the nature of the processing operations we perform, the risks to which you are exposed by our processing activities, the costs of the implementation of security measures and other relevant matters in the particular circumstances. 

Some of the measures we apply include access authorization control, information classification (and handling thereof), protection of integrity and confidentiality, data backup, firewalls, data encryption and other appropriate measures. We equip our staff with the appropriate knowledge and understanding of the importance and confidentiality of your personal data security. 

We protect personal information you provide online in connection with your registration for the Bloomberg Event App. Access to your own personal information is available through a password selected by you. This password is encrypted while transmitted from your browser to our servers and while stored on our systems. To protect the security of your personal information, never share your password to anyone. Please notify us immediately if you believe your password has been compromised. 

Whenever we save your personal information, it’s stored on servers and in facilities that only selected controllers’ personnel and our contractors have access to. We encrypt all data that you submit through the Website during transmission using Transport Layer Security (TLS) in order to prevent unauthorized parties from viewing such information. Remember – all information you submit to us by email is not secure, so please do not send sensitive information in any email to controllers. We never request that you submit sensitive or personal information over email, so please report any such requests to us by sending an email to ​events@bloombergadria.com​. 

 

7. WITH WHOM DO WE SHARE YOUR PERSONAL DATA? 

 

Data controllers utilize external processors for certain processing activities. We use information audits to identify, categorize and record all personal data that is processed outside the company, so that the information, processing activity, processor and legal basis are all recorded, reviewed and easily accessible. 

We have strict due diligence procedures and measures in place and review, assess and background check all processors prior to forming a business relationship. We obtain company documents, certifications, references and ensure that the processor is adequate, appropriate, and effective for the task we are employing them for. 

We audit their processes and activities prior to contract and during the contract period to ensure compliance with the data protection regulations and review any codes of conduct that oblige them to confirm compliance. 

This is the list of processors with whom Arena News shares your personal data: 

 

PROCESSOR	ROLE	SEAT
Google, Inc.	Analytics	USA
VBS solutions doo Beograd	Software provider and maintenance	Serbia
Tenfore doo Beograd	Payment processor	Serbia

 

This is the list of processors with whom HD-WIN shares your personal data: 

 

PROCESSOR	ROLE	SEAT
Google, Inc.	Analytics	USA
VBS solutions doo	Software provider and maintenance	Serbia

 

This is the list of processors with whom Arena sport shares your personal data: 

 

PROCESSOR	ROLE	SEAT
Google, Inc.	Analytics	USA
VBS solutions doo	Software provider and maintenance	Serbia

 

We may also share your personal data with our outside accountants, legal counsels, and auditors. 

Moreover, we may disclose your personal information to third parties: 

• if we are under a duty to disclose or share your personal data in order to comply with any legal obligation; 

• to prevent and detect fraud or crime; 

• in response to a subpoena, warrant, court order, or as otherwise required by law. 

Finally, personal information may be disclosed or transferred as part of, or during negotiations of, a merger, consolidation, sale of our assets, as well as equity financing, acquisition, strategic alliance or in any other situation where personal information may be transferred as one of the business assets of each controller. 

We do not have a list of all third parties we share your data with, as this would be dependent on your specific use of our Services. However, if you would like further information about who we have shared your data with, or to be provided with a list specific to you, you can request this by writing to ​events@bloombergadria.com ​ 

 

8. INTERNATIONAL TRANSFER OF YOUR PERSONAL DATA 

 

We may transfer your personal data to countries other than the one you reside in. In these cases, we will transfer your personal data only: 

1. To the countries within the EEA; 

2. To the countries which do not form the EEA but are considered to ensure an adequate level of protection; 

3. To the countries which do not belong to those specified under item 1. and 2, but only by applying the appropriate safeguard measure (for example, European Commissions Standard Contractual Clauses) in accordance with the Law.  

Data controllers use servers located in the Republic of Serbia. 

 

9. HOW LONG DO WE KEEP YOUR DATA? 

 

The period for which we store your personal data depends on a particular purpose for the processing of personal data, as explained in detail in Section 4 of this Privacy Policy. We retain personal data for as long as we reasonably require it for legal or business purposes. In determining data retention periods, we take into consideration the applicable law (see Section 21 of the Bloomberg Adria Events App Terms of Use), contractual obligations, and the expectations and requirements of our Users. When we no longer need personal information, or when you request us to delete your information, where this is legal, we will securely delete or destroy it. 

However, as an exception to the retention periods in Section 4 of this Privacy Policy the data may be processed to determine, pursue, or defend claims and counterclaims. 

 

10. YOUR RIGHTS 

 

As a Data Subject whose personal information we hold, you have certain rights under the Law. This part of the Privacy Policy aims to give you a general understanding of these rights.  

 

Right of Access  

 

You can send us a request for a copy of the personal data we hold about you. 

We have ensured that appropriate measures have been taken to provide such in a concise, transparent, intelligible, and easily accessible form, using clear and plain language. Such information is provided in writing free of charge. It may be provided by other means when authorized by the Data Subject and with prior verification as to the subject’s identity. 

Information is provided to the Data Subject at the earliest convenience, but at a maximum of 30 days from the date the request was received. Where the retrieval or provision of information is particularly complex or is subject to a valid delay, the period may be extended by two further months where necessary. 

 

Right to Correction of Your Personal Data  

 

 

 

If the personal data we have about you is incorrect, you have the right to request that we correct those data. Where notified of inaccurate data by the Data Subject, we will rectify the error within 30 days and inform any third party of the rectification if we have disclosed the personal data in question to them. 

 

 

Right to Be Forgotten or Right to Erasure  

 

You have the right to request from us that your personal data is deleted in certain circumstances including: 

• The personal data are no longer needed for the purpose for which they were collected; 

• You withdraw your consent (where the processing was based on consent); 

• You object to the processing and no overriding legitimate grounds are justifying us processing the personal data;  

• The personal data have been unlawfully processed; or 

• To comply with a legal obligation. 

However, this right does not apply where, for example, the processing is necessary: 

• To comply with a legal obligation; or 

• For the establishment, exercise, or defense of legal claims. 

 

Right to Restriction of Processing  

 

 

If the accuracy of the personal data is contested, you consider the processing is unlawful, but you do not want it erased, we no longer need the personal data but you require it for the establishment, exercise or defense of legal claims or you have objected to the processing and verification, you can exercise your right to the restriction of processing. 

 

Right to Withdraw the Consent  

 

If you have provided your consent to the collection, processing, and transfer of your personal data, you have the right to fully or partly withdraw your consent. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose(s) to which you originally consented unless there is another legal ground for the processing. 

 

Right to Lodge a Complaint 

 

If you have any concerns or requests in relation to your personal data, please contact us at ​events@bloombergadria.com​ and we will respond as soon as possible but not later than within 30 days. 

If you are unsatisfied with how we process your data, you may contact the competent supervisory authority. 

In case you believe that we are processing your personal data in violation of the Law, you have the right to lodge a complaint with the supervisory authority located in the country where you reside or work or where the alleged infringement took place.  

 

11. CHANGES TO PRIVACY POLICY 

 

We reserve the right to change Privacy Policy from time to time at our sole discretion. If we make any changes, we will publish the new rules on this web page and, if we have your email, we may notify you directly. 

Where you have previously consented to our Privacy Policy, your continued use of the Bloomberg Events App after we make changes is deemed to be acceptance of the updated rules.