GDPR — Protection of personal data

Regulation (EU) 2016/679 · Effective date: 28 May 2026 · Applies to www.greenflow.ie

Green Flow d.o.o. is committed to protecting your personal data and complying with the EU General Data Protection Regulation (Regulation (EU) 2016/679, "GDPR"). This page summarises our GDPR position. The full detail is in our Privacy Policy.

1. Data Controller

Green Flow d.o.o., Savska cesta 41, 10000 Zagreb, Croatia · OIB: 92557545052 · Director: Ante Lelas · Email: info@greenflow.ie

2. Personal data we collect

Name, position, company, email, phone
Shipping / billing address, EU VAT number
Facility / project details you provide
IP, browser, device data and analytics signals

3. Legal basis (Art. 6)

Contract performance — processing samples, quotes, B2B orders
Legitimate interest — B2B outreach, support, security
Consent — newsletters and non-essential cookies
Legal obligation — Croatian tax and accounting records (7-year retention)

4. Your rights under the GDPR

To exercise your rights write to info@greenflow.ie.

5. Supervisory authorities

As Green Flow is established in Croatia, our lead supervisory authority is the Croatian Personal Data Protection Agency (AZOP):
Selska cesta 136, 10000 Zagreb · azop.hr

Irish data subjects may also lodge a complaint with the Data Protection Commission (DPC):
6 Pembroke Row, Dublin 2, D02 X963, Ireland · dataprotection.ie

6. International transfers

Where our processors (e.g. Netlify, Google) process data outside the EEA, transfers are protected by European Commission adequacy decisions or Standard Contractual Clauses under Chapter V of the GDPR.

7. Retention

B2B records: up to 7 years post business-relationship for Croatian tax/contract compliance. Marketing-only data: up to 24 months from last interaction or earlier on withdrawal of consent.

GDPR — Data Protection

GDPR — Protection of personal data