Last updated: March 09, 2026
1.Introduction
This Privacy Policy describes how Isatis d.o.o. (“Company”, “we”, “our”, or “us”) collects, uses, and protects personal data when you visit our website https://isatis.com/ or interact with us.
We process personal data in accordance with the General Data Protection Regulation (GDPR) and applicable local data protection laws ( The Law on Personal Data Protection of Bosnia and Herzegovina).
By using this website, you acknowledge that you have read and understood this Privacy Policy.
2. Definitions
For the purposes of this Privacy Policy:
Personal Data – Any information relating to an identified or identifiable natural person.
Processing – Any operation performed on Personal Data, including collection, storage, use, disclosure, or deletion.
Data Subject – An identifiable individual whose personal data is processed.
Controller – The entity determining the purposes and means of processing personal data.
Processor – A third party processing personal data on behalf of the Controller.
3. Data Controller
For the purposes of the GDPR and data protection laws, the data controller responsible for your personal data is:
Isatis Software Solutions
Kralja Tvrtka 12
71000 Sarajevo
Bosnia and Herzegovina
Email: dpo@isatis.com or info@isatis.com
4. Scope of this Policy
This Privacy Policy applies to personal data collected:
- through our Website
- through email or other direct communication
- through business relationships with clients or partners
- through the use of our services
This policy does not apply to third-party websites linked from our Website.
5. Personal Data We Collect
We may collect and process the following categories of personal data:
5.1 Information Provided by You
When you contact us or interact with our Website, we may collect: Name, email address and information included in messages or inquiries.
5.2 Automatically Collected Information
When you visit our Website, we may automatically collect: IP address, browser type and version, device information, pages visited, date and time of visit, referring URLs and interaction data.
5.3 Cookies and Similar Technologies
We use cookies and similar tracking technologies to improve website functionality and analyze usage patterns. Further details are available in our Cookie Policy.
6. Legal Basis for Processing Personal Data
We process personal data only when we have a lawful basis under the GDPR, including:
Legitimate Interest – Processing necessary for our legitimate business interests, such as: responding to inquiries, improving our Website and maintaining security.
Consent – Where required by law, we process personal data based on your consent, including non-essential cookies and marketing communications.
Contractual Necessity – Processing necessary for entering into or performing a contract.
Legal Obligation – Processing required to comply with legal obligations.
7. Purpose of Processing
We may use personal data for the following purposes:
- responding to contact requests
- providing information about our services
- managing business relationships
- improving our Website and services
- ensuring security and preventing fraud
- complying with legal requirements
8. Data Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. However, we may share personal data with trusted third parties including:
- hosting providers
- cloud infrastructure providers
- IT support providers
- analytics providers
- legal and professional advisors
These third parties are required to process personal data in accordance with applicable data protection laws and contractual obligations.
9. International Data Transfers
If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are implemented, including: Standard Contractual Clauses (SCC), Adequacy decisions issued by the European Commission and other lawful mechanisms under GDPR.
10. Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, and reporting requirements. Once the retention period expires, personal data will be securely deleted or anonymized.
11. Security of Personal Data
We implement appropriate technical and organizational measures designed to protect personal data against:
- unauthorized access
- accidental loss
- destruction or alteration
- unauthorized disclosure
These measures include secure hosting environments, access control, and internal security policies.
12. Your Rights Under GDPR
Under the GDPR, you have the following rights:
Right of Access – You may request confirmation whether we process your personal data and obtain a copy.
Right to Rectification – You may request correction of inaccurate or incomplete data.
Right to Erasure (“Right to be Forgotten”) – You may request deletion of personal data where legally applicable.
Right to Restriction of Processing – You may request restriction of processing in certain circumstances.
Right to Data Portability – You may request transfer of your personal data in a structured format.
Right to Object – You may object to processing based on legitimate interests.
Right to Withdraw Consent – You may withdraw consent at any time where processing is based on consent.
Requests can be submitted to: dpo@isatis.com
13. Complaints
If you believe your personal data has been processed unlawfully, you have the right to lodge a complaint with the relevant data protection authority in your country.
14. Third-Party Services
Our Website may contain links to third-party websites or services. We are not responsible for their privacy practices. We encourage you to review the privacy policies of any external websites you visit.
15. Updates to This Policy
We may update this Privacy Policy from time to time to reflect legal, technical, or business developments. The updated version will always be available on this page.
16. Contact
If you have any questions regarding this Privacy Policy or our data protection practices, please contact us:
Isatis Software Solutions
Kralja Tvrtka 12
71000 Sarajevo
Bosnia and Herzegovina
Email: dpo@isatis.com