Gajcom d.o.o. respects the privacy of individuals and processes personal data responsibly, transparently and only for specified and lawful purposes. This policy explains which data we collect, why we use it, to whom it may be disclosed, how long it is retained and which rights you have.
1. Data controller
The controller of personal data is:
Gajcom d.o.o.
Pot heroja Trtnika 45
1000 Ljubljana
Slovenia
Email: info@gajcom.si
For questions about the processing of personal data or to exercise your rights, you can contact us using the details above.
2. Who this policy applies to
This policy applies to website visitors, customers, clients, user account holders, recipients of quotations and newsletters, contact persons at companies and other individuals who contact Gajcom.
3. Personal data we process
Depending on how you interact with us, we may process in particular:
- your first and last name;
- the name of your company or organisation and your position;
- billing and delivery addresses;
- your email address and telephone number;
- your tax identification number and other information required for invoicing;
- information about enquiries, quotations, orders, products and services;
- the content of communications with us;
- graphic files, logos and other attachments you provide to us;
- user account details and order history;
- information about the execution and status of payment transactions;
- delivery and collection information;
- IP address, device type, browser, access time and technical logs;
- information about settings and choices made on the website;
- information about newsletter subscriptions, unsubscriptions and use.
We do not normally request special categories of personal data, such as information about health, political opinions, religious beliefs or trade union membership. Please do not send us such information unless it is necessary and the processing has been appropriately agreed in advance.
4. How we obtain personal data
Most personal data is provided to us directly, for example:
- through an online form or by email;
- when submitting an enquiry or order;
- when registering a user account;
- during telephone or in-person communication;
- when subscribing to newsletters;
- when uploading graphic files or other attachments.
In a business relationship, we may also receive contact details from the company or organisation you represent, from a colleague who includes you in communication or from publicly available business sources where this is necessary for business communication.
5. Purposes and legal bases for processing
Enquiries, quotations and contractual cooperation
We process personal data to prepare quotations, provide advice, process orders, communicate with you, produce and personalise products, issue invoices, arrange delivery, handle complaints and perform other activities necessary to fulfil an order. The legal basis is the performance of a contract or taking steps before entering into a contract.
Legal obligations
We process certain personal data to comply with tax, accounting, consumer protection and other legal obligations.
Legitimate interests
On the basis of legitimate interests, we may process personal data for:
- ensuring the security of the website and information systems;
- preventing misuse, fraud and unwanted messages;
- documenting business communications and agreed arrangements;
- establishing, exercising or defending legal claims;
- improving business processes and customer support;
- basic business communication with existing customers and partners.
When relying on legitimate interests, we consider the balance between our interests and the rights, interests and reasonable expectations of the individual.
Consent
Where processing is based on consent, for example when subscribing to newsletters or allowing non-essential analytics and advertising technologies, you may withdraw your consent at any time. Withdrawal does not affect the lawfulness of processing carried out before consent was withdrawn.
6. Online shop and user account
When you register or use the online shop, we process personal data required to manage your user account, display your order history, prepare your shopping cart, place orders and communicate with you about an order.
Users are responsible for protecting their login details and for ensuring that the information entered in their user account is accurate.
7. Payment services
For online payments, we may use an external payment service provider. The provider may process data required to execute a payment, verify the transaction, prevent misuse and comply with its own legal obligations.
Gajcom may receive information about the execution and status of a transaction where this is necessary to process an order. Processing by the external provider is also governed by that provider's terms and privacy policy.
8. Delivery of orders
To arrange delivery, we may disclose the necessary information, such as your name, address, telephone number and shipment details, to a selected delivery or logistics partner. The partner is selected according to the type, size, destination and other characteristics of the shipment.
9. Newsletters and direct marketing
If you subscribe to our newsletters, we use your email address to send news, offers, information about services and other Gajcom content.
We send promotional electronic communications on the basis of consent or where this is otherwise permitted by applicable law. Every promotional message includes a simple way to unsubscribe.
You may unsubscribe at any time using the link included in a message or by contacting us at info@gajcom.si .
10. Analytics, advertising and cookies
The website uses necessary technologies required for the operation of the website, shopping cart, user account, security functions and storage of selected settings.
With appropriate consent, we may also use analytics and advertising technologies. These technologies help us measure website use, assess advertising effectiveness and improve the user experience.
Details of individual technologies, providers, categories, purposes and periods of use will be provided in a separate Cookie Policy. Cookie settings will be available for review and modification at any time through the relevant link on the website.
11. Protection of online forms
We may use an external security service on certain forms to distinguish ordinary users from automated misuse. This may involve processing technical information about the device, connection and use of the form. Further details will be provided in the Cookie Policy.
12. Recipients and processors
To the extent necessary for a particular purpose, personal data may be disclosed to:
- an external accounting service provider;
- delivery and logistics partners;
- payment service providers;
- hosting, email and information technology service providers;
- website and information system maintenance providers;
- newsletter system providers;
- analytics and advertising service providers where appropriate consent has been given;
- legal, tax and other professional advisers;
- public authorities and other competent bodies where required by law.
Recipients may use personal data only for agreed or otherwise lawful purposes. Where they act as processors, their processing is governed by appropriate contractual obligations.
13. Transfers outside the European Economic Area
Certain providers of information technology, payment, analytics or advertising services may process personal data outside the European Union or European Economic Area.
In such cases, a transfer is made on the basis of a valid adequacy decision, standard contractual clauses or another lawful safeguard. Further information about an individual transfer is available on request or in the documentation of the relevant provider.
14. Retention periods
We retain personal data only for as long as necessary for the purpose of processing or for as long as required by applicable law. When determining a retention period, we consider in particular:
- the duration of the business or contractual relationship;
- the period required to prepare a quotation and fulfil an order;
- statutory retention periods for accounting and tax documentation;
- limitation periods for establishing, exercising or defending claims;
- the period for which consent remains valid;
- security and technical requirements of information systems.
Invoices and related documentation are generally retained for ten years after the end of the year to which they relate, or for longer where required by law.
Newsletter data is retained until you unsubscribe or withdraw your consent. Evidence of consent or its withdrawal may be retained for as long as necessary to demonstrate compliance.
User account data is retained until the account is deleted or for as long as it is required to provide the service. Certain information may continue to be retained after account deletion to comply with legal obligations or to establish, exercise or defend legal claims.
15. Your rights
Subject to applicable law, you may request:
- access to your personal data;
- correction of inaccurate or completion of incomplete data;
- erasure of personal data where the legal conditions are met;
- restriction of processing;
- data portability where the legal conditions are met;
- an objection to processing based on legitimate interests;
- an objection to the use of personal data for direct marketing;
- withdrawal of consent;
- the right to lodge a complaint with the competent supervisory authority.
The right to erasure is not absolute. We may be unable to erase certain information where it must be retained to comply with legal obligations, perform a contract or establish, exercise or defend legal claims.
16. Exercising your rights
You may send your request to info@gajcom.si or by post to Gajcom d.o.o., Pot heroja Trtnika 45, 1000 Ljubljana, Slovenia.
We respond without undue delay and generally no later than one month after receiving a request. For complex or numerous requests, the period may be extended in accordance with applicable law, in which case you will be informed in due time.
Where there is a justified doubt about the identity of the person making the request, we may ask for additional information required to verify that person's identity.
17. Automated decision-making and profiling
Gajcom does not itself use solely automated decision-making that produces legal or similarly significant effects for an individual.
With appropriate consent, analytics and advertising service providers may process online identifiers and create groups of users for advertising measurement or personalisation. Such consent may be changed or withdrawn at any time.
18. Security of personal data
We use organisational and technical measures to reduce the risk of unauthorised access, loss, alteration, disclosure or misuse of personal data. Access is restricted to persons and service providers who require the data to perform their work.
19. Complaint to a supervisory authority
If you believe that your personal data has not been handled appropriately, please contact us first so that we can review your concern.
Irrespective of this, you have the right to lodge a complaint with the Information Commissioner of the Republic of Slovenia. Current information about the procedure and contact details is available on the official website of the Information Commissioner .
20. Changes to this policy
We may update this policy from time to time due to changes in legislation, business processes, online services or technologies used. The current version is always published on this page.
Last content update: July 2026





-250x250h.jpg)















-250x250h.jpg)
-250x250h.jpg)








