Privacy
Policy
This
Privacy Policy provides general information about the processing of personal
data when using our application. In order to be able to use the application
continuously, it is necessary to enter certain data known to the user of the same.
For this purpose, application collects only those personal data that are
necessary for regulation i.e. use of parking services. Hence, this Privacy
Policy aims to inform the users of the application regarding:
Þ Reasons for collecting and processing personal data;
Þ Method of collecting and processing personal data;
Þ What personal
data is collected and processed;
Þ Rights and
obligations of users of the application in relation to the collection and
processing of personal data.
Controllers of personal data
that is processed through the
application are the public service providers, i.e. public enterprises that
provide parking services, with which owner of the application has concluded an
agreement.
Personal data processor is the Information Technology Company Nextsense DOO Skopje (hereinafter: Nextsense), with registered office at bul. Partizanski odredi no. 62, Skopje, Republic of
North Macedonia.
As a leader in
digital transformation, Nextsense is a legal entity that provides software solutions
for complete digitization and is dedicated to the protection of personal data
processing and privacy of natural persons. Hence, the way personal data is
processed is in accordance with the provisions of the Law on the Protection of Personal
Data*, i.e. in accordance with the General Data Protection Regulation, as well
as in accordance with the relevant laws.
1. Users without
a user profile (session users)
For these users, application processes the registration plate of a vehicle for which the parking
service is used and the payment via payment card or via SMS. Data is provided by the personal data subject
at his/her own will and under complete control. Personal data
processor does not check the accuracy and reliability of the data provided, nor does it link with
other types of personal data.
2. Users with an
application user profile created
For this type of users, application processes the
following data: e-mail and password of the user, for the purpose of registering
a user profile on the application, as well as vehicle registration plate and
payment card data, for the purpose of better application user functionalities. Of all these data,
mandatory data are those without which the user profile cannot be created, that
is, e-mail and password. Data is provided
by the subject of personal data at his/her own will and
under complete control. Processor does not check the accuracy and reliability of
given data, simply sends a confirmation message to the e-mail, in order to
create a user profile for the user of the application, i.e. sends a
notification about a provided parking service by a public sector institution
that provides parking services, using the application.
For users who use the parking services, location data is
processed only if they want to use the application in that way and while using
the application.
These are the data provided by the personal data subject on his/her own free will, and under their
complete control. Processor does not
check the accuracy and reliability of the data
provided.
Personal
data is collected through the use of the application, depending on the manner
of its use chosen by the user of parking services, i.e. the personal data subject.
Personal
data processing activities related to the use of the application are performed
by the processor's employees who are responsible for the ongoing maintenance
and provision of adequate functionality of the applications, for which there is
an appropriate agreement with the personal data controller, as well as in those
cases if employees, for the purpose of performing their work tasks, need to use
personal data, given after prior consent.
Sharing data with
third parties, for the data provided by the users of the application, is
carried out on the basis of instructions received by the controllers of
personal data collections, if they are in accordance with the law, as well as
on the basis of a request from a court or other competent authority, in a
manner and in a procedure determined by law.
The
data we collect is stored in accordance with the law and the period required for
achieving the purpose of the processing, i.e. in accordance with the guidelines
received from the controllers of the personal data collections, which contain
the data about the users of the application.
The rights regarding personal data processing are:
Þ
refuse to share personal data, and thus not to be able to
use the application;
Þ
receive information about the consequences, if the
personal data subject does not consent to the collection and processing of his/her personal data;
Þ
receive
information about who uses their personal data, if it is processed;
Þ
receive information on how controllers collect and
process personal data;
Þ
receive information about the personal data controller;
Þ
receive information
about the personal data processor;
Þ
receive
information why personal data are being collected and processed;
Þ
other rights
provisioned by law.
For additional information and/or exercising
the right to personal data protection, please contact the personal data
protection officer designated by the personal data controller i.e. by the
public sector institution that provides the specific parking service for the
user.
NextSense takes appropriate security measures to protect against
unauthorized access or unauthorized change, disclosure or destruction of user
data. Those measures include internal reviews of the implementation of
information security policies, including appropriate encryption, as well as
physical security measures such as protection against unauthorized access to
the systems that enable application technical operation.
Nextsence also restricts access to the personal data for
employees.
Information security policies implemented by Nextsense are fully compliant with ISO 27001 and ISO 27701.
When
receiving parking services provided by legal entities authorized to provide
those services and using this application, personal data subject provides his
personal data to the person providing the requested parking services.
Personal data subject undertakes to familiarize himself/herself with the privacy policy of the person providing the
requested service. NextSense is not responsible for any damage caused by the
provision of personal data by the personal data subject to the person from whom
the service is requested.
By
becoming familiar with this policy for the use of which certain personal data
are required, users give their consent that they are informed of all the
conditions for processing personal data, in the manner determined by this
Policy.
If
the subject of personal data considers that the manner in which Nextsense processes personal data violates the provisions
of the Law on the Protection of Personal Data*, he/she can submit a request to
the Agency for the Protection of Personal Data as a supervisory body, in
accordance with Article 97 of the Law on the Protection of Personal Data.
The
request can be submitted through the Agency's website or in any way through the
publicly available contact information.
The
privacy policy will be regularly amended and supplemented in accordance with the
changes and our activities, as well as amendments to the relevant laws.
Version
1.0
25 July 2023