Privacy Policy

Last Modified June 2025

Privacy Policy (VAS)

Controller. Vujanović Advisory Services D.O.O. (“VAS”, “we”) is the data controller.

Scope. This policy covers personal data collected via our website and services, in line with GDPR and Serbian Personal Data Protection Act.

What we collect.

  • Identity & contact data (name, email, phone).
  • Usage & technical data (cookies, logs, device/browser).

How we collect.

  • Forms, registrations, service use.
  • Voluntary feedback/surveys.
  • Cookies and similar tech.

Why we process (legal basis).

  • Provide and support services (contract).
  • Communicate and respond (legitimate interest/contract).
  • Improve user experience and site performance (legitimate interest).
  • Personalization/marketing where applicable (consent).

Sharing & transfers.

  • Trusted processors (hosting, analytics, communications) under DPAs.
  • If data leaves the EEA/Serbia, we use GDPR-standard safeguards (e.g., SCCs).

Retention.

  • Keep only as long as needed for stated purposes, then delete or anonymize.

Security.

  • Technical and organizational controls to mitigate unauthorized access, loss, or misuse.

Your rights.
Access, rectification, erasure, restriction, portability, objection, and withdrawal of consent (where used). You can lodge a complaint with the Serbian Commissioner for Information of Public Importance and Personal Data Protection.

Cookies.

  • We use necessary and performance cookies. Manage preferences in your browser; details available in our Cookie Notice.

Changes.

  • We’ll update this policy as needed and signal material changes on this page.

Contact.
Data Protection: bozidar@vas.rs