Privacy Policy 

Last updated: November 2025

This Privacy Policy explains how Cautela Pros d.o.o (“we”, “us”, “our”) collects, uses, and protects your personal data when you visit https://slovenianresidency.com (“the Website”) or contact us through the Website.

We respect your privacy and are committed to protecting your personal data in accordance with the General Data Protection Regulation (GDPR) and applicable Slovenian and EU laws.

1. Data Controller

Cautela Pros
Verovškova ulica 55a,
1000 Ljubljana, Slovenia
VAT ID: 65282558
Reg. no.: 2332884
info@slovenianresidency.com

If you have any questions regarding this Policy or your personal data, contact us at the email above.

2. What Personal Data We Collect

We only collect the data necessary to operate the Website and respond to inquiries. This includes:

a) Data provided by you

When using the contact form:

  • Name

  • Email address

  • Message content

  • Any additional information you voluntarily provide

b) Automatically collected data

When you visit the Website, certain technical information is automatically collected:

  • IP address

  • Browser type and version

  • Device information

  • Pages viewed

  • Time spent on pages

  • Referrer URL

This data is collected via cookies and analytics tools.

3. How We Use Your Data

We process your personal data for the following purposes:

a) Responding to your inquiry (contact form)

Legal basis:

  • Legitimate interest (Art. 6(1)(f) GDPR): to respond to inquiries and provide requested information.
    OR

  • Consent (Art. 6(1)(a) GDPR), if you actively agree via checkbox.

Your data is not used for marketing or shared with third parties for advertising.

b) Website operation and security

  • Ensuring proper functioning of the Website

  • Protecting against abuse and attacks

  • Debugging and technical optimization

Legal basis:

  • Legitimate interest (Art. 6(1)(f) GDPR)

c) Analytics

We use anonymised or pseudonymised analytics data to understand how visitors use the Website and improve user experience.

Legal basis:

  • Consent (via cookie banner)

4. Cookies

Our Website uses cookies to function correctly and to analyse visitor behaviour. Cookies are stored on your device unless you disable them in your browser.

We use the following categories:

a) Necessary cookies

Essential for the operation of the Website and security features.
These do not require consent.

Cookie wordpress_test_cookie
Duration Session
Description Checks if cookies are enabled in the browser.

Cookie cookieyes-consent
Duration 1 year
Description Stores the user’s cookie consent preferences.
 
Cookie cookielawinfo-checkbox-*
Duration 1 year
Description Remembers consent for each cookie category (necessary, analytics, etc.).

c) Analytical cookies

Used to measure traffic, visitor behaviour, and performance.
Require consent.

Cookie _ga
Duration 2 years
Description Used to distinguish unique users.
 
Cookie _ga_*
Duration 2 years
Description Used to persist session state for GA4.
 
Cookie _gid
Duration 24 hours
Description Counts and tracks page views.
 
Cookie _gat
Duration 1 minute
Description Throttles request rate to Google Analytics.

d) Advertising cookies

We do not use advertising cookies on this Website.

5. Cookie Consent

When you visit the Website for the first time, a cookie banner (CookieYes) will appear.
You can:

  • Accept all cookies

  • Reject non-essential cookies

  • Customize your preferences
    You may withdraw consent at any time via the cookie settings link in the footer.

6. Data Retention

We retain personal data only for as long as necessary:

  • Contact form submissions: up to 12 months, unless longer retention is required for legal or operational reasons.

  • Analytics data: according to Google Analytics retention settings (typically 14 months).

  • Server logs: typically 30–90 days for security purposes.

After expiry, the data is deleted or anonymized.

7. Data Sharing

We do not sell or share personal data with third parties for marketing purposes.

Data may be shared with:

  • Website hosting provider

  • Email service providers

  • Analytics providers (e.g., Google)

  • IT security services

All processors operate under GDPR-compliant agreements.

8. Data Transfers Outside the EU

Some tools (e.g., Google Analytics) may transfer data outside the EU (e.g., to the United States).
These transfers are protected by:

  • Standard Contractual Clauses (SCCs), or

  • Other GDPR-approved safeguards.

9. Your Rights Under GDPR

You have the following rights:

  • Right of access – request your personal data

  • Right to rectification – correct inaccurate data

  • Right to erasure (“right to be forgotten”)

  • Right to restrict processing

  • Right to object

  • Right to data portability

  • Right to withdraw consent (when processing is based on consent)

To exercise your rights, contact us at:
[[Insert contact email]]

We may need to verify your identity before processing your request.

10. Security Measures

We apply appropriate technical and organizational measures to protect your data, including:

  • HTTPS encryption

  • Secure hosting

  • Access control

  • Regular updates

  • Limited access to personal data

However, no system is 100% secure. We take all reasonable steps to protect your data.

11. Links to External Websites

The Website may contain links to external sites.
We are not responsible for their privacy practices or content.
We recommend reading their privacy policies separately.

12. Updates to This Policy

We may update this Privacy Policy to reflect legal changes or improvements to our services.
The latest version will always be available on this page.