Cookie Policy

1. Who we are and our contact details

The controller of personal data (within the meaning of the General Data Protection Regulation, EU 2016/679 – the "GDPR") is:

• DIGI ALTURA-EDU j.d.o.o.
• Jezero I dio, Jezero 36, 47304 Plaški, Republic of Croatia
• VAT/Company ID (OIB): 30596726120
• Email: info@altura-edu.com
• Web: https://www.altura-edu.com

For any questions regarding the protection of personal data and cookies, you can contact us at the email address above.

2. What cookies are and why we use them

Cookies are small text files that a website stores on your device (computer, tablet, smartphone) when you visit it. Similarly, the browser’s local storage can store data necessary for the Platform to work. We use them to:

• ensure the Platform functions correctly (technical functions, sign-in, session);
• remember your cookie preference choice;
• enable referral tracking with your consent;
• measure the playback quality of video lectures to improve the service, with your consent (analytics).

Please note: the Platform does not currently use marketing or advertising cookies (such as Google Analytics, Meta Pixel or LinkedIn Insight).

This Policy applies in accordance with: the General Data Protection Regulation (GDPR) – Regulation (EU) 2016/679; the Directive on privacy and electronic communications (ePrivacy Directive) – 2002/58/EC and its amendments; the Act on the Implementation of the GDPR (Official Gazette 42/2018); the Electronic Communications Act (Official Gazette 76/2022).

3. Which cookies we use

Necessary cookies and necessary local storage cannot be disabled because they are essential for the Platform to function and for your sign-in. For the functional and analytics categories we request your explicit consent.

4. Managing consent and cookies

On your first visit we show you a simple notice with two choices: "Accept all" (enables functional and analytics cookies) or "Necessary only" (keeps strictly necessary cookies only). You can change your consent at any time:

• via the cookie settings at the bottom of this page, where you can enable or disable individual categories;
• by clicking "Cookie Settings" in the footer of any page, which re-opens the notice;
• directly in your web browser settings.

In accordance with Art. 7 GDPR, withdrawing consent is as easy as giving it and does not affect the lawfulness of processing up to the point of withdrawal. If you withdraw consent for functional cookies, the existing referral cookie is deleted; if you withdraw consent for analytics, playback analytics is no longer initialized.

Managing cookies in browsers: Google Chrome (Settings > Privacy and security > Cookies and other site data); Mozilla Firefox (Options > Privacy & Security > Cookies and Site Data); Microsoft Edge (Settings > Cookies and site permissions); Safari (Settings > Privacy > Manage Website Data).

Please note that disabling necessary cookies may negatively affect your experience of the Platform (e.g. disabled sign-in or problems with video lectures).

5. Third-party cookies and processing

Certain Platform features rely on third-party services that have their own privacy policies:

• Mux, Inc. (video lecture playback and analytics) — https://www.mux.com/privacy
• Stripe, Inc. (payment processing) — https://stripe.com/privacy
• Pusher Ltd. (real-time communication – chat and Q&A) — https://pusher.com/legal/privacy/

Payment is made by redirecting you to Stripe’s secure checkout page; any Stripe cookies are set by Stripe on its own domain, not by the Platform. Real-time communication (Pusher) takes place over a WebSocket connection and does not set cookies.

We have concluded Data Processing Agreements with these third parties in accordance with Art. 28 GDPR. Any transfer of data outside the EEA is based on the European Commission’s Standard Contractual Clauses (SCCs).

6. How long we keep data collected via cookies

We keep data collected via functional and analytics cookies for as long as stated in the table in section 3, or until consent is withdrawn, whichever comes first. Anonymized aggregate data (statistics) may be used indefinitely as it does not contain personal data.

7. Your rights under the GDPR

In accordance with Art. 15–22 GDPR you have the following rights:

• Right of access (Art. 15) — to learn which personal data we process about you.
• Right to rectification (Art. 16) — to request correction of inaccurate or incomplete data.
• Right to erasure ("right to be forgotten", Art. 17) — to request deletion of data when there is no longer a legal basis for processing.
• Right to restriction of processing (Art. 18) — to request a temporary suspension of processing.
• Right to data portability (Art. 20) — to receive your data in a structured, machine-readable format.
• Right to object (Art. 21) — to object to processing based on legitimate interest.
• Right to withdraw consent (Art. 7) — at any time, without consequences.

You can exercise your rights via: privacy@altura-edu.com. We will respond within 30 days.

You also have the right to lodge a complaint with the supervisory authority. In the Republic of Croatia this is the Personal Data Protection Agency (AZOP), Selska cesta 136, 10000 Zagreb, https://azop.hr, azop@azop.hr.

8. Changes to this Cookie Policy

We may update this Policy to comply with new legal requirements or changes to how the Platform operates. We will publish any material change on the website with an updated revision date in the document header. We recommend checking this page periodically. For categories that require consent, we will request renewed consent after material changes.