Privacy & Data Protection

Privacy Policy

This Privacy Policy explains how Blidinje Direct ("we", "us", or "our") collects, uses, and protects your personal information when you visit our website or contact us about accommodation in Blidinje National Park. We are committed to handling your data responsibly, transparently, and in accordance with applicable data protection laws.

Last updated: 30 January 2026

1. Introduction

This Privacy Policy describes how we process personal data when you use our website, send us an inquiry, or otherwise interact with Blidinje Direct. By using this website or contacting us, you acknowledge that you have read and understood this Policy.

We only collect information that we genuinely need to respond to your requests, help you find suitable accommodation, and operate and improve our services. We do not sell your personal data and we avoid unnecessary tracking or profiling.

If you do not agree with this Policy, please do not use our website and do not provide us with your personal data. You can always contact us with questions about how your information is used.

2. Information We Collect

The types of personal information we may collect depend on how you interact with us. We generally collect the following categories of data:

2.1 Information you provide directly

When you contact us to check availability, request recommendations, or ask a question, you may provide:

  • Identification details such as your name.
  • Contact details such as your email address and, if you choose, a phone number or messaging handle.
  • Trip details such as preferred dates, number of guests, type of accommodation, and any special requirements (e.g., pets, children, remote work, accessibility).
  • Any other information you include in free‑text fields or messages you send to us.

2.2 Information collected automatically

When you visit our website, certain technical data may be collected automatically to ensure security, performance, and basic analytics. This can include:

  • IP address and approximate location (city/country level).
  • Browser type, operating system, and device information.
  • Pages viewed, referring pages, and general usage patterns.
  • Date and time of visits and basic error or performance logs.

We strive to keep this technical data aggregated or pseudonymised wherever reasonably possible and do not attempt to identify individual visitors unless necessary for security or legal reasons.

2.3 Information from third parties

In some cases, we may receive limited information about you from third parties, for example:

  • When a host or travel organiser shares your basic details with us in order to coordinate a group booking or request.
  • When you reach us via a social media platform or another communication channel that shares your public profile or contact information.

We treat such information in accordance with this Privacy Policy once it is received by us.

3. How We Use Your Information

We process your personal data only for specific, legitimate purposes and, where required, on the basis of an appropriate legal ground (such as your consent, our legitimate interests, or the need to perform a contract with you). In particular, we may use your information to:

  • Respond to your inquiries and provide our services. This includes reviewing your dates and preferences, suggesting verified properties, and putting you in contact with suitable hosts.
  • Facilitate communication with hosts. When needed, we may share relevant trip details with selected hosts so they can respond with availability, prices, and conditions for your stay.
  • Operate, protect, and improve our website. Technical data helps us monitor performance, detect abuse or security issues, and understand which pages and content are most useful.
  • Maintain records and comply with legal obligations. We may keep basic records of communications and bookings to comply with applicable laws, accounting requirements, or to establish, exercise, or defend legal claims.
  • Send occasional service‑related messages. We may contact you with important updates related to your inquiry or stay (for example, changes in availability, weather‑related advice, or updates about your chosen property).

We do not use your data for aggressive marketing campaigns, mass newsletters, or automated decision‑making that produces legal or similarly significant effects for you.

4. Legal Basis, Sharing, and Data Retention

4.1 Legal basis for processing (where applicable)

Depending on your location and the applicable law (for example, the EU General Data Protection Regulation – GDPR), we may rely on one or more of the following legal bases:

  • Consent: when you voluntarily provide information (such as through an email or form) and ask us to respond or assist you.
  • Contractual necessity: when we process data to take steps at your request prior to entering into a potential accommodation agreement.
  • Legitimate interests: for operating our website, preventing abuse, and improving our services in ways that do not override your fundamental rights and freedoms.
  • Legal obligations: where we must retain certain information for tax, accounting, or other mandatory legal requirements.

4.2 Sharing of your information

We limit the sharing of your personal data to what is necessary and appropriate for the purposes described in this Policy. In particular:

  • Hosts and local partners: We may share your name, contact details, and relevant trip information with specific hosts so they can respond to your inquiry, confirm availability, and coordinate your stay.
  • Service providers: We may use trusted third‑party tools for email, hosting, or analytics. These providers are only allowed to process your data on our behalf and in accordance with appropriate data protection safeguards.
  • Legal and safety requirements: We may disclose information if required by law or in good‑faith belief that such action is reasonably necessary to comply with legal processes, protect our rights or property, or ensure the safety of our users, partners, or the public.

We do not sell or rent your personal data to third parties for their own marketing purposes.

4.3 Data retention

We keep personal data only for as long as necessary to fulfill the purposes described in this Policy, including:

  • For active inquiries and bookings, for the duration of our communication and any resulting stay, plus a reasonable period afterwards for follow‑up and record‑keeping.
  • For legal, accounting, or reporting requirements, for the period mandated by applicable laws.

When data is no longer needed, we will either securely delete it or anonymise it so that it can no longer be linked to you.

5. Cookies and Similar Technologies

Our website may use cookies and similar technologies to provide basic functionality, remember certain preferences, and gain insights into how visitors use the site. Cookies are small text files stored on your device when you visit a website.

5.1 Types of cookies we may use

  • Strictly necessary cookies: Required for the website to function correctly and securely (for example, to load pages, balance traffic, or detect technical issues).
  • Preference cookies: Used to remember your basic settings or choices (such as language or cookie preferences), where applicable.
  • Analytics or performance cookies: Help us understand how visitors use our website in aggregate (for example, which pages are visited most often), so we can improve content and navigation.

5.2 Managing cookies

Most web browsers allow you to control cookies through their settings, including blocking or deleting them. If you choose to disable certain cookies, parts of our website may not function as intended.

For more detailed information on cookies and how to manage or delete them, you can visit independent resources such as aboutcookies.org or consult your browser’s help documentation.

6. Your Data Protection Rights

Depending on your location and the applicable law, you may have certain rights regarding your personal data. These can include:

  • Right of access: to request a copy of the personal data we hold about you.
  • Right to rectification: to request corrections to inaccurate or incomplete data.
  • Right to erasure: to ask us to delete your personal data in certain circumstances.
  • Right to restriction of processing: to ask us to limit the way we use your data.
  • Right to object: to object to certain processing activities, particularly those based on our legitimate interests.
  • Right to data portability: to receive the data you provided to us in a structured, commonly used format where technically feasible.
  • Right to withdraw consent: where processing is based on your consent, you can withdraw it at any time, without affecting the lawfulness of processing already carried out.

To exercise any of these rights, please contact us using the details provided in the Contact section below. We may need to verify your identity before responding to your request.

If you believe that your data protection rights have been violated, you may also have the right to lodge a complaint with your local data protection authority or supervisory body.

7. Data Security and International Transfers

We take reasonable technical and organisational measures to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

Because our tools and service providers may be located in different countries, your information may be stored or processed outside of your country of residence. Where required, we implement appropriate safeguards to ensure that any international transfers comply with applicable data protection laws.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, provide additional notice.

We encourage you to review this Policy periodically so that you remain informed about how we handle your personal data.

9. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, you can contact us at:

Blidinje Direct

Email: zontiarp@gmail.com

When contacting us about your data, please include enough information for us to identify you and respond to your request securely (for example, the email address you used when you wrote to us).