Back to Home

Privacy Policy

Effective date: February 7, 2026

1. Data Controller

M5 Network, obrt za usluge, vl. Mišel Hergotić
Dravska 73 A, Strahoninec, Croatia
VAT ID: HR61046442790
Email: [email protected]

For any privacy-related questions or requests, please contact us at the email address above.

2. Personal Data We Collect

2.1 Contact Form

When you submit our contact form, we collect:

  • First name
  • Email address
  • Phone number (optional)
  • Preferred contact method
  • Subject of inquiry
  • Message content

Legal basis: Legitimate interest (Art. 6(1)(f) GDPR) — to respond to your inquiry and provide the requested service.

2.2 Client Project Data

If you become a client, we may collect business information necessary to build your website or provide our services, such as company name, address, and content you provide for your project.

Legal basis: Performance of a contract (Art. 6(1)(b) GDPR).

2.3 Automatically Collected Data

We use privacy-friendly, cookieless analytics (self-hosted Umami) that collects anonymized usage data such as page views and referrer information. This data cannot be used to identify individual users and no cookies are set.

3. Cookies

Our website uses the following cookies:

CookiePurposeType
NEXT_LOCALEStores your language preferenceNecessary
cookie_consentStores your cookie consent preferencesNecessary
Sentry cookiesError tracking and performance monitoringAnalytics (consent required)

Analytics cookies are only set if you provide consent through our cookie banner. You can change your preferences at any time by clicking the cookie icon in the bottom-right corner of the page.

4. Third-Party Services

4.1 Amazon Web Services SES

We use AWS Simple Email Service (region: eu-central-1, Frankfurt) to deliver contact form submissions to our inbox. Your form data is transmitted through AWS servers located in the EU.

4.2 Sentry

With your consent, we use Sentry (data center: Germany) for error tracking and performance monitoring. Sentry may collect technical information such as browser type, operating system, and interaction data to help us identify and fix issues. Sentry is only activated if you accept analytics cookies.

4.3 Google reCAPTCHA Enterprise

We use Google reCAPTCHA Enterprise to protect our contact form from spam and abuse. reCAPTCHA may collect hardware and software information, such as device and application data, and send it to Google for analysis. This processing is based on our legitimate interest in protecting our website (Art. 6(1)(f) GDPR).

For more information, see the Google Privacy Policy and Terms of Service.

4.4 Umami Analytics

We use a self-hosted instance of Umami for website analytics. Umami is a privacy-friendly analytics tool that does not use cookies, does not collect personal data, and does not track individual users. All data is anonymized and aggregated.

5. International Data Transfers

Most of our data processing takes place within the EU/EEA. However, Google reCAPTCHA Enterprise may transfer data to the United States. These transfers are protected by the EU-U.S. Data Privacy Framework, which ensures an adequate level of data protection as recognized by the European Commission.

6. Data Retention

  • Contact form submissions: Stored in our email inbox for as long as necessary to respond to your inquiry and for any subsequent business relationship.
  • Client project data: Retained for the duration of the business relationship and any applicable legal retention periods.
  • Cookies: Consent preferences are stored for 1 year. Analytics data in Sentry is retained according to Sentry's data retention policies.

7. Your Rights

Under the GDPR, you have the right to:

  • Access — request a copy of your personal data
  • Rectification — request correction of inaccurate data
  • Erasure — request deletion of your data ("right to be forgotten")
  • Restriction — request limitation of processing
  • Data portability — receive your data in a structured format
  • Objection — object to processing based on legitimate interest
  • Withdraw consent — withdraw previously given consent at any time

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days.

You also have the right to lodge a complaint with the Croatian Personal Data Protection Agency (AZOP) at azop.hr.

8. Children's Privacy

Our website and services are intended for businesses and individuals aged 16 and older. We do not knowingly collect personal data from children under 16. If you believe we have inadvertently collected such data, please contact us and we will promptly delete it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated effective date. We encourage you to review this policy periodically.

10. Contact

If you have any questions about this Privacy Policy or our data practices, please contact us:

M5 Network
Dravska 73 A, Strahoninec, Croatia
Email: [email protected]

Back to Home