PRYLORIX

Legal Information

Privacy Policy

Last updated: January 15, 2026.

Prylorix d.o.o. (hereinafter: "Prylorix", "we", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when using our website prylorix.com and related services.

1. Data Controller

The controller of your personal data is Prylorix d.o.o., registered at Ilica 247, 10000 Zagreb, Croatia, OIB: 12345678901. For all questions regarding the protection of personal data, you can contact us at the email address: privacy@prylorix.com.

2. What Data We Collect

We collect the following categories of personal data: (a) data you directly provide via the contact form — full name, email address, message content; (b) automatically collected data — IP address, browser type, operating system, pages visited, time of visit, and cookie data; (c) data required for regulatory compliance — identity data in accordance with Croatian Anti-Money Laundering and Counter-Terrorism Financing Act (OG 108/17, 39/19).

3. Legal Basis for Processing

We process your personal data based on: (a) your consent (Art. 6(1)(a) GDPR); (b) performance of a contract or taking steps prior to entering into a contract (Art. 6(1)(b) GDPR); (c) compliance with legal obligations, particularly towards HANFA and applicable anti-money laundering regulations (Art. 6(1)(c) GDPR); (d) legitimate interests of Prylorix d.o.o., such as service improvement and platform security (Art. 6(1)(f) GDPR).

4. How We Use Your Data

We use your data to: respond to inquiries received through the contact form; notify you about project status and investment opportunities (with your consent); improve the functionality and security of our website; fulfill regulatory and legal obligations; perform statistical analysis of website usage in anonymized form.

5. Sharing Data with Third Parties

We do not sell or rent your data to third parties. We may share data with: service providers who assist us in platform operations (hosting, analytics) under binding data processing agreements; competent regulatory bodies (HANFA, Tax Administration) when legally required; legal advisors and auditors to the extent necessary to protect our legitimate interests.

6. Data Retention

We retain your data only as long as necessary to fulfill the purposes for which it was collected or as required by law. Contact form data is retained for a maximum of 2 years from the last communication. Regulatory data is retained in accordance with statutory periods (generally 10 years for anti-money laundering data).

7. Your Rights

Under the GDPR, you have the right to: access your personal data; rectify inaccurate data; erase data ("right to be forgotten"); restrict processing; data portability; object to processing; withdraw consent at any time. To exercise your rights, contact privacy@prylorix.com. You also have the right to lodge a complaint with the Croatian Personal Data Protection Agency (AZOP), Selska cesta 136, 10000 Zagreb.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, loss, or misuse. This includes data encryption in transit (SSL/TLS), regular security audits, and restricted access to personal data exclusively by authorized personnel.

9. Changes to Privacy Policy

We reserve the right to amend this Privacy Policy. All changes take effect on the date of publication on this page. We will notify you of significant changes through our website.