Privacy Policy

Last updated: May 6, 2026

Ban Technologies ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data when you visit our website ban-technologies.com or use our mobile applications and services.

We are based in Croatia, a member state of the European Union, and we process personal data in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR") and applicable Croatian data protection law.

1. Data Controller

The data controller responsible for your personal data is:

Ban Technologies
Croatia, European Union
Email: hello@ban-technologies.com

2. Personal Data We Collect

2.1 Data you provide to us

  • Contact information: name, email address, phone number, and company name when you fill out our contact form or email us.
  • Project information: details about your project requirements that you share with us during consultations.

2.2 Data collected automatically

  • Usage data: pages visited, time spent on pages, referral source, browser type, device type, and operating system.
  • IP address: collected and anonymized for analytics purposes.
  • Cookies: see Section 7 below.

2.3 Data from mobile applications

If you use a mobile application developed and published by Ban Technologies, we may collect:

  • Device identifiers and device type.
  • App usage analytics and crash reports.
  • Any data you explicitly provide within the app (e.g., account information, user-generated content).

Each application may have its own specific data collection practices described in supplemental notices within the app.

3. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR Article 6:

  • Consent (Art. 6(1)(a)): when you opt in to receive communications or accept analytics cookies (Google Analytics 4, see Section 7).
  • Contractual necessity (Art. 6(1)(b)): to respond to your inquiries and provide our services.
  • Legitimate interest (Art. 6(1)(f)): to improve our website and services, and for basic analytics.
  • Legal obligation (Art. 6(1)(c)): to comply with applicable laws and regulations.

4. How We Use Your Data

  • To respond to your inquiries and provide requested services.
  • To send project updates and communications you have requested.
  • To improve our website, applications, and service offerings.
  • To analyze website and app usage through anonymized analytics.
  • To comply with legal obligations.

5. Data Sharing and Transfers

We do not sell your personal data. We may share your data with:

  • Service providers: hosting providers, analytics services, and email delivery services that process data on our behalf under data processing agreements.
  • Analytics tools: Google Analytics 4 (Google Ireland Limited), subject to your cookie consent. See Section 7 for details.
  • Legal requirements: when required by law, court order, or governmental authority.

Where data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes described in this policy, unless a longer retention period is required by law. Contact form submissions are retained for up to 24 months unless an ongoing business relationship exists. Analytics data is retained in anonymized form.

7. Cookies & Tracking

7.1 Essential cookies

These are required for the website to function. They store your language preference and your cookie-consent choice. They cannot be disabled and contain no personal information.

7.2 Google Analytics 4 (with consent)

When you click Accept on the cookie banner, we use Google Analytics 4 (provided by Google Ireland Limited) to understand how visitors use our website. We implement Google Consent Mode v2: until you accept, no analytics cookies are stored and only anonymized, cookieless signals are sent. Once you accept, GA4 sets first-party cookies (named _ga and _ga_*) that hold a randomly generated client ID, these are valid for up to two years.

What we measure: page views, button clicks (contact form submissions, workshop applications, Calendly clicks, blog post views, outbound link clicks) and aggregate traffic patterns.

What this does not enable: Google Signals, ad personalization, cross-device tracking, demographic profiling, or any advertising features.

Data processing location: Google in the EU/EEA where possible; some processing may occur in the United States under the EU–US Data Privacy Framework.

7.3 Withdrawing consent

You can change your mind at any time. Use the button below to clear your stored choice, the consent banner will reappear so you can choose again.

7.4 Browser controls

You can also manage cookie preferences through your browser settings at any time, or use browser extensions that block analytics scripts.

8. Your Rights Under GDPR

As a data subject, you have the following rights:

  • Right of access (Art. 15): request a copy of your personal data.
  • Right to rectification (Art. 16): request correction of inaccurate data.
  • Right to erasure (Art. 17): request deletion of your personal data.
  • Right to restrict processing (Art. 18): request limitation of data processing.
  • Right to data portability (Art. 20): receive your data in a structured, machine-readable format.
  • Right to object (Art. 21): object to processing based on legitimate interests.
  • Right to withdraw consent: where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at hello@ban-technologies.com. We will respond within 30 days.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These include encrypted connections (TLS), access controls, and regular security reviews.

10. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately.

11. Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Croatian Personal Data Protection Agency (AZOP) or any other competent EU supervisory authority.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised "Last updated" date.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

hello@ban-technologies.com