Privacy policy

Privacy Policy pursuant to Articles 13–14 of EU Regulation 2016/679 (GDPR)

This Privacy Policy explains how cqclandia.com collects, uses, and protects personal data of users visiting the website, in compliance with Regulation (EU) 2016/679 (“GDPR”).

1. Data Controller

The data controller is Venis Izobrazevanja d.o.o., registered office at Lokarjev drevored 1, 5270 Ajdovščina, Slovenia.

2. Types of Data Collected

While browsing the website, non-personal technical data (e.g., IP address, browser type, operating system, visited pages) are collected through web analytics tools.
When the user submits the contact form, voluntarily provided data (name, email address, and message content) are collected.

When registering for courses, additional personal data are collected as needed for administrative purposes (e.g., name, surname, date of birth, address, driving licence number, contact details, and copies of required documents).

3. Purpose and Legal Basis of Processing

Personal data provided via the contact form are processed solely to respond to user requests and, if requested, to provide information about the services offered.
Data collected through the registration form are used exclusively for managing CQC course applications and fulfilling related legal or administrative obligations.
The legal basis for processing is the user’s consent, expressed by voluntarily submitting the form. In some cases, processing is necessary to perform pre-contractual measures.
Providing data is optional, but failure to do so may prevent us from responding.

4. Data Retention

Personal data are retained only for as long as necessary to provide a response and for a maximum of 6 months from receipt, unless otherwise required by law.

5. Statistical Analysis and Third-Party Cookies

This website uses Google Analytics, a web analytics service provided by Google LLC, which collects anonymous data about traffic and user behavior. These data do not allow direct user identification and are used to improve site performance and content.
Information collected may be transferred to servers located outside the EU, such as in the United States. Google ensures adequate data protection standards.

More details:

• Google Privacy Policy
• Google Terms of Service
• Deactivate Google Analytics

The legal basis for this processing is the legitimate interest of the controller to improve the website. Tracking cookies can be disabled through browser settings.

6. Spam Protection

To protect the contact form from spam, the website uses WP Armour, an invisible anti-spam system that does not collect personal data or require user action.

7. Cookies

The website uses technical cookies for proper operation and third-party cookies (e.g., Google Analytics) for statistical purposes. Users can control, limit, or disable cookies via their browser settings. Some site functions may not work properly without cookies.
For more details, please refer to our Cookie Policy.

8. Data Recipients

Collected data are not sold or shared. They may be processed by third parties providing technical support (e.g., hosting providers, email services), acting as data processors under GDPR confidentiality and security obligations.

9. User Rights

Users have the right to access, rectify, or delete their personal data, object to processing, or request restriction. Requests can be sent to the email address provided on the website.
Users also have the right to lodge a complaint with the competent Supervisory Authority — the Information Commissioner of the Republic of Slovenia (https://www.ip-rs.si).

10. Changes to this Policy

This policy may be updated at any time. Updates will be published on this page with the date of the latest revision.
Last update: 11 November 2025