Privacy Policy 

Last updated: 31 March 2026

1. Introduction

This Privacy Policy explains how Share IT d.o.o. Novi Sad ("Share IT", "we", "us", or "our") collects, uses, stores, shares, and protects personal data when you visit our website, contact us, subscribe to updates, apply for a role, or otherwise interact with us online.

We process personal data in accordance with applicable data protection laws, including the Law on Personal Data Protection of the Republic of Serbia and, where applicable, the General Data Protection Regulation (GDPR).

2. Data Controller

Data Controller: Share IT d.o.o. Novi Sad  

Address: Narodnog Fronta 55a, 21000 Novi Sad, Serbia  

Email: privacy@shareit.rs  

Website: https://www.shareitsolutions.com

If Share IT is required to appoint an EU representative under applicable law, the relevant contact details will be published here or otherwise made available on the website.

3. Personal Data We Collect

We may collect and process the following categories of personal data:

3.1 Information you provide directly

When you contact us, submit a form, request a consultation, subscribe to updates, or otherwise communicate with us, we may collect:

• Full name
• Business email address
• Phone number
• Company name
• Job title
• Project, inquiry, or message details
• Communication preferences
• Any other information, documents, or attachments you choose to provide

Please do not send sensitive or special-category personal data through general contact forms unless it is clearly necessary.

3.2 Recruitment-related data

If you apply for a role or otherwise express interest in working with us, we may collect:

• CV / resume
• Employment history
• Education details
• Skills, certifications, and qualifications
• Portfolio, LinkedIn profile, GitHub profile, or similar professional information
• Interview notes and recruitment-related correspondence
• Reference information, where permitted by law

3.3 Information received from third parties

Where permitted by law, we may also receive personal data from third parties such as:

• Recruiters or recruitment platforms
• Employee or business referrals
• Publicly available professional sources such as LinkedIn or portfolio websites

3.4 Data collected automatically

When you use our website, we may automatically collect certain technical and usage data, including:

• IP address
• Browser type and version
• Device type and operating system
• Referring website or source
• Pages viewed and actions taken on the website
• Date and time of access
• General location inferred from IP address
• Log, diagnostic, and security-related information

3.5 Cookies and similar technologies

We may use cookies, pixels, tags, and similar technologies to operate the website, remember preferences, analyze traffic, improve performance, and, where applicable, support marketing activities.

4. How We Collect Personal Data

We collect personal data through:

• Contact forms on our website
• Direct email, phone, and other business communication
• Newsletter or marketing sign-up forms
• Job application forms or emails
• Meetings, calls, and business development interactions initiated through the website
• Cookies, analytics tools, server logs, and similar technologies

5. Purposes of Processing and Legal Bases

Where applicable, we rely on one or more of the following legal bases: consent, steps prior to entering into a contract / performance of a contract, legitimate interests, and legal obligation.

We process personal data for the following purposes:

5.1 Responding to inquiries and scheduling meetings

We process personal data to respond to contact requests, schedule calls or meetings, understand your needs, and communicate with you about a potential project or collaboration.

Legal basis: steps prior to entering into a contract and/or our legitimate interests in responding to business inquiries and managing business communications.

5.2 Managing business relationships and opportunities

We process personal data to evaluate opportunities, prepare proposals, manage prospect and client communications, and maintain our business records.

Legal basis: our legitimate interests in operating and growing our business and managing client and partner relationships, and where applicable, performance of a contract.

5.3 Sending newsletters and marketing communications

Where you subscribe to receive updates, newsletters, or similar communications, we process your personal data to send them to you.

Legal basis: your consent, and where permitted by applicable law, our legitimate interests in limited business-to-business marketing communications.

5.4 Recruitment and hiring

We process recruitment-related data to review applications, assess suitability, communicate during the hiring process, and maintain a talent pipeline where permitted.

Legal basis: steps prior to entering into an employment or contractor relationship, our legitimate interests in hiring suitable candidates, your consent where we keep your information for future roles, and legal obligations where applicable.

5.5 Website operation, analytics, and improvement

We process technical and usage data to operate the website, diagnose issues, maintain security, improve content and usability, and understand how the website is used.

Legal basis: our legitimate interests in operating, securing, and improving the website. Where non-essential cookies or similar technologies are used, the legal basis is your consent where required by applicable law.

5.6 Security, abuse prevention, and compliance

We process personal data to maintain system security, detect misuse, prevent fraud or abuse, enforce our legal rights, and comply with legal and regulatory requirements.

Legal basis: our legitimate interests in protecting our business, systems, and users, and compliance with legal obligations.

5.7 Legitimate interests we rely on

Where we rely on legitimate interests, those interests generally include:

• responding to business inquiries and maintaining communications;
• managing and developing client, partner, and candidate relationships;
• operating, improving, and securing our website and services;
• preventing misuse, fraud, and security incidents; and
• protecting and defending our legal rights.

6. Whether You Must Provide Personal Data

Providing personal data is generally voluntary. However, some fields may be necessary for us to respond to your request, evaluate your application, provide requested information, or take steps before entering into a business relationship.

If you do not provide required information, we may not be able to process your request, respond effectively, or continue the relevant interaction.

7. Sharing of Personal Data

We do not sell personal data.

We may share personal data with trusted third parties where necessary for the purposes described in this Privacy Policy, including:

• hosting, cloud, and infrastructure providers;
• website analytics and performance providers;
• CRM, communication, and productivity tool providers;
• recruitment platforms, recruiters, and HR support providers;
• professional advisers such as lawyers, accountants, auditors, or compliance advisers;
• contractors, affiliates, and delivery partners involved in our business operations or service delivery; and
• courts, regulators, public authorities, or law enforcement bodies where disclosure is required by law or necessary to establish, exercise, or defend legal claims.

These recipients are required to process personal data only as permitted and to protect it appropriately.

8. International Data Transfers

Some of our service providers or partners may process personal data outside Serbia and/or the European Economic Area (EEA), depending on the circumstances and the applicable legal regime.

Where personal data is transferred internationally, we use appropriate safeguards as required by applicable law. These may include:

• adequacy decisions;
• Standard Contractual Clauses; or
• other lawful transfer mechanisms and safeguards.

You may contact us to request more information about relevant transfer safeguards, where applicable.

9. Data Retention

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

Typical retention periods or criteria include:

• Contact inquiries and business correspondence: up to 24 months after the last meaningful interaction;
• Sales and partnership discussions: for as long as the opportunity remains active and for a reasonable period afterwards, typically up to 24 months, unless longer retention is justified;
• Marketing subscription data: until you unsubscribe, withdraw consent, or we otherwise stop sending the communications;
• Recruitment data: until the end of the recruitment process and, if you consent to future consideration, for up to 24 months after the last relevant interaction;
• Server, diagnostic, and security logs: for as long as reasonably necessary for security, troubleshooting, and abuse prevention, and typically no longer than 12 months unless needed longer for an investigation or legal claim;
• Cookie consent records: for as long as necessary to manage and demonstrate consent choices, where applicable.

We may retain certain information for longer where necessary to comply with legal obligations or to establish, exercise, or defend legal claims.

10. Your Rights

Subject to applicable law, you may have the right to:

• request access to your personal data;
• request correction of inaccurate or incomplete data;
• request deletion of your personal data;
• request restriction of processing;
• object to processing based on legitimate interests;
• withdraw consent at any time, where processing is based on consent;
• request data portability; and
• lodge a complaint with a competent data protection authority.

To exercise your rights, contact us at privacy@shareit.rs.

If you believe your rights have been violated, you may also lodge a complaint with the Commissioner for Information of Public Importance and Personal Data Protection of the Republic of Serbia. If the GDPR applies to the relevant processing, you may also have the right to complain to a supervisory authority in the EEA country where you live, work, or where the alleged infringement occurred.

11. Cookies and Similar Technologies

We use cookies and similar technologies for different purposes, which may include:

• Strictly necessary cookies for core website functionality;
• Preference cookies to remember settings and choices;
• Analytics cookies to understand website usage and improve performance; and
• Marketing cookies where applicable.

Where required by law, non-essential cookies and similar technologies will be used only after you provide valid consent. You can manage your preferences through our cookie banner or settings tool, where available.

If we publish a separate Cookie Notice or cookie table, it should be read together with this Privacy Policy.

12. Data Security

We implement appropriate technical and organizational measures designed to protect personal data against unauthorized access, accidental loss, misuse, disclosure, alteration, or destruction. Depending on the context, these measures may include:

• access controls and least-privilege principles;
• secure hosting and system administration practices;
• encryption in transit where applicable;
• backups, monitoring, and system protection measures; and
• internal processes for handling personal data responsibly.

No method of transmission or storage is completely secure, but we take reasonable steps to protect the information entrusted to us.

13. Automated Decision-Making

We do not use solely automated decision-making, including profiling, that produces legal effects or similarly significant effects on individuals through this website.

14. Third-Party Websites

Our website may contain links to third-party websites, platforms, or services. We are not responsible for the privacy practices, content, or security of those third parties. We encourage you to review their privacy notices separately.

15. Children's Privacy

Our website and services are intended for business and professional audiences and are not directed to children. We do not knowingly collect personal data from children.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or business operations. The updated version will be posted on this page with a revised Last updated date.

17. Contact

If you have questions, requests, or concerns regarding this Privacy Policy or the way Share IT processes personal data, please contact us at:

Share IT d.o.o. Novi Sad 

Narodnog Fronta 55a, 21000 Novi Sad, Serbia  

DPO@shareitsolutions.com

https://www.shareitsolutions.com