Privacy Policy
IuteCredit Macedonia
Privacy Policy
Applicable from: 15.01.2026
We, Financial Company Iute Credit Macedonia DOOEL Skopje, with EMBS 7221290, headquartered at st. 1732 no.4/Lamela A – DP 1, Skopje; e-mail: (“the Company” or “the Controller” or “we” or “us”), collect and process personal data of natural persons, our clients, contractual parties or other parties on the Macedonian market (“You” or “Your”). The Company is a non-banking financial institution registered in the trade companies register in accordance with the Law on Financial Companies, maintained by the Central Registry of the Republic of North Macedonia, and pursuant to Decision no.13-4845/5 dated 24.07.2017 of the Ministry of Finance. We are fully aware of our obligation to ensure the protection of Your personal data, and of our obligation to ensure compliance with the applicable legislation in the area of personal data protection.
With this Privacy Policy (“the Policy” or “the Privacy Policy”) We present the manner in which we collect and use Personal Data. The Policy describes the methods used and the purposes for which the Company and, accordingly, our service providers, process the data collected from and about You in the context of offering our services and concluding contracts, including credit agreements concluded at the Controller’s registered office, concluded through our credit intermediaries, or when You visit or use our services through the website http://iute.mk/ (“the Website”) or through the telephone number 13333 (“Telephone Support”) or through the MojIute application (“MyIute”) or any other channel that may be available, including Group services through third parties (hereinafter: “Available Channels”). We also provide explanation of the rights of data subjects and our obligations and responsibilities.
Important!
Please read this Policy carefully. It contains important information about how We process Personal Data and explains Your legal rights. The purpose of this Policy is not to change the terms of any contract You may conclude with Us, nor Your rights under the applicable personal data protection laws.
We do not process personal data of persons under 18 years of age.
Please do not provide Us with Your personal data if You are under 18 years of age.
We also ask for Your support in maintaining Your personal data by informing us of any changes to Your Personal Data.
By providing Your Personal Data or using the Available Channels, You trust Us and voluntarily accept the terms of this Privacy Policy.
If You provide data on behalf of another person, You must ensure that this Privacy Policy has been provided to that person and that the legal requirements have been met before submitting the data.
CONTROLLER
1.1 The joint controllers are Financial Company IUTE CREDIT MACEDONIA DOOEL Skopje and IuteCredit Europe AS (hereinafter jointly referred to as: “Controller”):
Financial Company IUTE CREDIT MACEDONIA DOOEL Skopje, EMBS 7221290
Registered office: St. 1732 no.4 Lamela A/DP 1, Skopje
Contact person (our data protection officer) for any comments, questions or information: Tatjana Davchev e-mail:
Iute Group AS, registration number 11551447
Registered office: Maakri no.19/1, Tallinn, 10145, Estonia
Contact person (our data protection officer) for any comments, questions or information: Carol Annuk e-mail:
Insurance Brokerage Company IUTE SAFE AD Skopje, EMBS 7796331
Registered office: st. Pirinska no.29, Skopje
Contact person (our data protection officer) for any comments, questions or information: Tatjana Davchev e-mail:
Electronic Money Institution IUTE PAY DOOEL Skopje, EMBS 7822553
Registered office: st. Stoltenbergova no.4, Lamela A/DP 1, Skopje
Contact person (our data protection officer) for any comments, questions or information: e-mail:
2.2 The Controller is fully responsible for the proper and lawful processing of Personal Data that we may lawfully obtain from You.
DEFINITIONS AND TERMS
The Law provides numerous definitions and it is not appropriate to reproduce all of them here. However, the most significant definitions in relation to this Policy are:
“Group” – Iute Group AS and its subsidiaries.
“Controller” is a natural or legal person, a public authority body, a state body or a legal entity established by the state for the exercise of public powers, an agency or other body, which alone or jointly with others determines the purposes and means of processing Your Personal Data.
“Personal Data” is any information relating to You, including data provided from public registers and public databases and data lawfully obtained through third parties, through which You may be directly or indirectly identified, in particular on the basis of an identifier such as name and surname, citizen identification number, location data, internet identifier, telephone number or on the basis of one or more characteristics specific to Your identity.
“Processing of Personal Data” is any operation or set of operations that may be performed on Your personal data, automatically or otherwise, such as: collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, access, use, disclosure by transmission, publication or otherwise making available, alignment or combination, restriction, erasure or destruction.
“Pseudonymisation of Personal Data” or “Anonymisation of Personal Data” is an alternative to the erasure or destruction of Your Personal Data. This involves removing all elements by which You could be directly or indirectly identified. Pseudonymised or anonymised data does not constitute Personal Data.
“Law” – Law on Personal Data Protection (Official Gazette no.42/20, 294/21 and 101/25)
PRINCIPLES RELATED TO THE PROCESSING OF PERSONAL DATA
3.1 We Process Your Personal Data in accordance with applicable laws, including the Law on Personal Data Protection, the Law on the Macedonian Credit Bureau, the Law on Prevention of Money Laundering and Financing of Terrorism, this Policy, and the terms of the contracts we conclude with You.
3.2 We Process Your Personal Data in a secure and confidential manner. We respect the right of every individual to the protection of their Personal Data and will make every effort to ensure that the Personal Data we collect is appropriately protected. We regularly assess the risks associated with the Processing of Personal Data and will implement appropriate strategies to mitigate and eliminate those risks.
3.3 The protection of personal data is an integral part of our services and is supervised by our data protection officer. We ensure that our employees are aware of and compliant with personal data protection requirements. We expect, instruct and train our employees to comply with our personal data protection procedures.
3.4 We process Your Personal Data lawfully and for legitimate purposes. We set clear purposes for the Processing of personal data and process personal data solely for those purposes. We do not collect personal data that we do not need. We are entitled to delete/”blur” or otherwise render unreadable any data/documents submitted to Us that are not required for the provision of our services.
3.5 We Process Your Personal Data in a transparent and fair manner. We ensure adequate protection, and a fair and lawful manner of Processing Your Personal Data in order to prevent unauthorised disclosure or use of Your Personal Data.
3.6 We retain Your Personal Data for the period prescribed by law or contract, or as required for the provision of our services and/or for our legitimate interests. At the end of the retention period, We will permanently delete Your Personal Data or anonymise it.
3.7 We make every effort to ensure that the Personal Data We process is accurate and limited to what is necessary.
HOW WE COLLECT YOUR PERSONAL DATA
We may collect and process Your Personal Data in the following circumstances:
- If You contact Us through any of the Available Channels to request information about our products and services;
- If You provide Us with Your data or the data of Your contact person or representative when submitting a credit application through any of the Available Channels;
- If certain data is required by law to be provided with written consent, such consent shall be given either at the Controller’s business premises or at the premises of our partners, or in the case of electronic channels by ticking the relevant field(s), in which case the consent is equated with consent given in written form;
- Through checks in databases, such as the Macedonian Credit Bureau, the account register at KIBS AD Skopje, the Health Insurance Fund, the Ministry of Internal Affairs, etc.;
- If Your data is available during the term of a contract for the provision of the Controller’s services;
- If You consent to direct marketing, for example when completing a declaration or submitting data electronically;
- If other legal entities, including partners, make a permitted transfer of Your Personal Data to Us.
WHAT PERSONAL DATA WE COLLECT
5.1 We Process Personal Data related to Your identity and other necessary data for the purposes of concluding and executing a credit agreement or other contract, for carrying out Your requests, applications and complaints, as well as for the purposes of fulfilling our legal obligations, where processing is mandatory for the fulfilment of these purposes. Without this data, We would not be able to provide the relevant services. If You do not provide Us with identification data, We will not be able to conclude a credit agreement or any other contract with You.
5.2 We also Process Personal Data for marketing, security and/or analytical purposes, in order to provide You with first-class products and services, now and in the future.
5.3 The following categories of personal data may be collected from You or Your representative or contact person, depending on whether You are a prospective client, a client or a contracting party, and which of our services You use:
Personal Information
Your name and surname, gender, EMBG (Unique Citizen Identification Number), bank account number, date of birth, legal capacity, citizenship, as well as historical data retained by us from previous communications within the prescribed retention periods; The name of Your alternative contact, provided by You, who is not a guarantor, including data obtained through our checks, if such data has been collected in our related persons database; Name and surname, EMBG, place of residence or stay, telephone number and other data regarding Your representative as stated in a power of attorney, in cases where You have authorised a third party to represent You before the Company.
Identification Document
The type of Your identification document or that of Your representative, the country of issue, registration number, expiry date, data recorded in barcodes on the document (depending on the type of document) and security features.
Facial Recognition Data
Photographs, videos, audio recordings, photographs taken by You or Your representative and Your or Your representative’s document, and video and audio recordings in the identity verification process.
Contact Data
Your or Your representative’s address, email address, telephone number.
Technical Data
Your or Your representative’s device signature data, including but not limited to information on the date, time and activity of You or Your representative on our Available Channels, IP address, cookies accepted by You or Your representative, domain name, software and hardware attributes of Your or Your representative’s device, as well as the general geographic location of Your or Your representative’s device (e.g. city, country).
Publicly Available Data
E.g. Data about You or Your representative from databases of holders of public functions and checks against sanctions lists.
Credit and/or Credit Obligation Settlement
Place of employment (e.g. period of employment, job position, profession, salary, employer data including EMBS, EDB, registered office, telephone, sector, industry, salary, other income, total monthly income and expenditure, property status, paid contributions, credit history including data from other credit agreements from Macedonian Credit Bureau AD Skopje, data from the account register at KIBS AD Skopje regarding Your account number, data from the Health Insurance Fund for verification and confirmation of employment).
Financial Data
Your unique identification number, generated by the Company; credit agreement number(s) or contract number generated upon conclusion of the credit agreement or any other contract; data collected in the process of ongoing monitoring of the business relationship, in accordance with the legal requirements for “Know Your Customer” (repayments from third parties or suspicious transactions); data on the chosen method of credit utilisation (e.g. bank account transfer, cash, etc.); repayments made on the credits, as well as those due in the future in accordance with the credit agreement; data on Your credit and debit cards (if debit card payment is enabled); bank account number and payment and transaction data made in favour of the Company.
Traffic Data
Data relating to Your visits to our Website and communications through any of our Available Channels, visual or audio recordings collected during visits to our branches where our services are provided and when You communicate with us by telephone, as well as any data collected via email, messages, social media or other means of communication.
WHY AND ON WHAT BASIS WE PROCESS YOUR PERSONAL DATA
6.1 The main purpose for which We Process Your personal data or the personal data of Your representative is the establishment of a business relationship, the conclusion and termination of credit agreements, the implementation of legally required analysis measures, the provision of better customer service for You, the making of offers, the analysis of the usage of existing services and the development of new services.
6.2 We Process Your Personal Data for the following purposes and on the following legal bases:
| Purpose of Processing | Legal Basis for Processing |
|---|---|
| We decide whether and under what conditions to establish a business relationship or conclude a contract, or under what conditions we provide our services. | Performance of a contract or fulfilment of a legal obligation or implementation of pre-contractual measures. Article 10 para. 1 items 2, 3 and 6 of the Law |
| We assess Your creditworthiness and trustworthiness and conduct a risk analysis in accordance with our requirements. We may need Your consent to conduct checks in one or more databases. | Performance of a contract or implementation of pre-contractual measures or fulfilment of a legal obligation or our legitimate interest in risk management. Article 10 para. 1 items 1, 2 and 3 of the Law |
| We will identify You and/or Your representative upon establishing the business relationship in order to comply with the requirements of the law on the prevention of money laundering and financing of terrorism, including but not limited to the identity of Your beneficial owner(s), whether You or Your beneficial owner(s) are holders of public functions, whether You or Your beneficial owner(s) are subject to financial sanctions. | Performance of a contract or implementation of pre-contractual measures or fulfilment of a legal obligation or our legitimate interest in risk management. Article 10 para. 1 items 2 and 3 of the Law |
| We execute a contract concluded with You or guarantee the execution of such a contract and exercise, waive and protect our rights. | Performance of a contract or implementation of pre-contractual measures or fulfilment of a legal obligation or our legitimate interest in realising our claims. Article 10 para. 1 items 1, 2 and 3 of the Law |
| We implement measures for the prevention of money laundering and financing of terrorism and fulfil obligations arising from law. This also includes monitoring Your transactions with us and Your performance. | Fulfilment of a legal obligation. Article 10 para. 1 item 3 of the Law |
| We reduce or prevent risks that could harm You or Us and protect Your and Our interests and the quality of our services, as well as collect evidence of business transactions or other business communications. This may include video surveillance for purposes other than confirming Your identity, as well as recording of telephone conversations, online communications, and chat sessions for purposes other than the provision of our services. – Your consent may be required | Your consent, performance of contractual obligations or implementation of pre-contractual measures, fulfilment of legal obligations, or our legitimate interests in preventing, limiting or investigating misuse or unlawful use of our products and services or service disruptions in order to guarantee service quality. Article 10 para. 1 items 1 and 6 of the Law |
| We enable access to and use of our Website. | Performance of contractual obligations or implementation of pre-contractual measures or Our legitimate interest in preventing unauthorised access to our Website. Article 10 para. 1 items 2 and 3 of the Law |
| We develop our systems. | Our legitimate interest in the operation and improvement of our systems. Article 10 para. 1 item 6 of the Law |
| We conduct statistical research and market analysis and participation in groups of clients, products and services, reporting and risk management, etc. | Our legitimate interest in improving our services, enhancing the user experience we offer You, developing new services, risk management and fulfilment of legal obligations. Article 10 para. 1 items 3 and 6 of the Law |
| We develop our existing services and new services. | Our legitimate interest in improving our services, enhancing the user experience and developing new services. Article 10 para. 1 item 6 of the Law |
| We verify and, where necessary, update Your Personal Data, manage client relationships, maintain up-to-date data and update it through checks via external and internal sources, as well as requesting updates directly from You. | Performance of contractual obligations, implementation of pre-contractual measures and fulfilment of legal obligations. Article 10 para. 1 items 2 and 3 of the Law |
| We send You advertisements and offers, including personalised offers from the products and services of our partners. – Your consent may be required. | Your consent or our legitimate interest in providing additional services. Article 10 para. 1 items 1 and 6 of the Law |
| We organise prize games and campaigns. – Your consent may be required. | Your consent or our legitimate interest in providing additional services. Article 10 para. 1 items 1 and 6 of the Law |
| We seek to better understand Your expectations (e.g. analyses of Website visits, client surveys, etc.). For our business purposes, such as data analysis, certification, development of new models, identification of trends based on Website or MyIute activity, development of a customised Website or MyIute environment through the introduction of products and services tailored to Your personal needs, or measurement of the effectiveness of our promotional campaigns. – Your consent may be required | Your consent or our legitimate interest in improving our Services, enhancing the user experience and developing new products and services. Article 10 para. 1 items 1 and 6 of the Law |
PROFILING AND AUTOMATED DECISION-MAKING
7.1 We may also Process Your Personal Data for the purposes of automated individual decision-making, including profiling, in which case Your profile data (personal information, creditworthiness information and financial data) is used. The processing is fair and transparent and without discrimination between You and other clients, and is carried out for the purposes of concluding/performing a contract and our legitimate interest.
7.2 We use profiling and automated decision-making because they potentially provide greater consistency and fair treatment in the decision-making process (e.g. reducing the possibility of human error, discrimination or abuse of duty), reducing the risk of non-payment by clients for products and services (e.g. through the creation of a credit rating), or enabling decisions to be made in a short period of time, thereby improving efficiency. We also use profiling and automated decision-making in order to provide You with marketing materials and to monitor transactions and prevent fraud.
7.3 We comply with the provisions of the Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data, available at: https://www.dzlp.mk/mk/domasni_propisi
PRE-DEFINED FIELDS
8.1 We may use pre-defined fields for Your contact data in our digital Available Channels and other systems in order to make our services more convenient. The fields are pre-defined if You have entered Your Personal Data into the fields in our digital channels and other systems and if You are our client. We will populate the pre-defined fields with Your data that You provided to Us when concluding the most recent contract. You must always verify that the data in the pre-defined fields is accurate.
8.2 If You do not wish Your contact details to be pre-populated in our digitally Available Channels or other systems, You have the right to opt out of this option. Please contact us to implement this.
PROCESSING OF PERSONAL DATA FOR MARKETING PURPOSES
9.1 We process Personal Data for marketing purposes. If such processing is based on Your consent, You have the right to withdraw such consent at any time. If the processing is not based on Your consent, You may also decline to receive such notifications at any time. In order to withdraw Your consent to receive marketing materials, please send a message to our contacts or manage Your consents through our Available Channels. Instructions for withdrawing consent are also included in our marketing communications.
9.2 General information about our services and introductory or supplementary information or notifications regarding changes to the terms and conditions or tariff, or information related to the fulfilment of obligations under a contract concluded with You (e.g. notifications of delayed payments, debts, contract termination, etc.) are not considered marketing. In these cases, You cannot decline to receive such information.
TRANSFER OF DATA TO THIRD PARTIES
10.1 We will disclose and/or transfer Your Personal Data:
10.1.1 to a company within the Group in order to: (1) comply with risk management requirements and control mechanisms; (2) organise strategic research and market share analysis of groups of clients, products and services and other financial indicators; (3) comply with applicable prudential norms, including capital and liquidity requirements; (4) conclude and execute contracts and provide You with information about contracts You have concluded with entities belonging to the same Group as Us; (5) comply with the principle of responsible lending; (6) develop and implement an information system for the entire Group; and (7) implement analysis measures as provided for in the law on the prevention of money laundering and financing of terrorism;
10.1.2 to persons and organisations associated with the provision of our services and the performance of contracts concluded with You (e.g. guarantors, owners of pledged assets, payment intermediaries, credit institutions, international card organisations, translators, IT and postal service providers, contact centre service providers);
10.1.3 to the credit register of the Macedonian Credit Bureau or its equivalent, to which we send and from which we receive information on the basis of law or a valid contract, in order to implement the principle of responsible lending, and also to enable third parties to access data regarding Your regularity of repayment and creditworthiness. Data regarding Your potential payment delays is disclosed to the credit register or its equivalent and the transferred Personal Data may be processed by any person who is a member of such a register or who can access such a register on another legal basis;
10.1.4 to other registers (e.g. population register, commercial registers, credit registers, etc.) to which we submit and from which we request Your Personal Data in order to verify the accuracy and integrity of Your Personal Data or for the implementation of pre-contractual measures or a contract concluded with You;
10.1.5 to third parties for the purpose of providing a service requested by You;
10.1.6 to service providers to whom we have partially or fully entrusted the performance of activities, under conditions provided by law, and provided that such persons meet the requirements for technical and organisational measures, physical security and information systems indicated by us with regard to the confidentiality and protection of Personal Data;
10.1.7 to credit institutions, creditors, debt collection service providers and other third parties with whom we would conduct negotiations for the transfer of the contract concluded with You or the assignment of claims under such a contract;
10.1.8 to a new creditor following the assignment of claims;
10.1.9 to another third party, in the event that You fail to fulfil the obligations under the contract (e.g. debt collection service providers, courts, enforcement agents, notaries or liquidators and bankruptcy administrators).
10.2 In certain cases, We may be required to disclose and transfer Your Personal Data in order to fulfil legal obligations – to governmental and other bodies, institutions, insurance companies, insurance brokers, banks and institutions in the context of their activities and in accordance with the Law, the Law on Personal Data Protection and other regulations in Macedonian legislation (e.g. transfer of data to enforcement agents, notaries, liquidators, bankruptcy administrators, tax and customs authorities, or the Financial Intelligence Office).
10.3 We may use third parties (e.g. payment intermediaries) for the purpose of executing a contract concluded with You and make Your Personal Data available to them. These parties process Your Personal Data in accordance with their own regulations and on their own responsibility. We may also use third parties outside of Macedonia for the purpose of executing a contract concluded with You, and who process Your Personal Data in accordance with the laws of their country or location.
TRANSFER OF DATA TO THIRD COUNTRIES
11.1 We Process Your Personal Data in the Republic of North Macedonia and the European Economic Area, but there may be cases in which We would need to transfer Your Personal Data, and for it to be processed, in countries outside of the European Economic Area.
HOW WE PROTECT YOUR PERSONAL DATA
12.1 We protect Personal Data by strictly complying with the applicable Macedonian regulations and the principles of the Law, as well as the framework established by the European Union directives on the protection of Personal Data (including Directive (EU) 2016/679).
12.2 Your data is stored on our secure servers or on the servers of our service providers or business partners (or in certain cases data is also stored in paper form, equally subject to appropriate protection). Data is accessed and used in accordance with our security policies and standards (or those of our service providers or business partners), always in compliance with applicable laws and the necessary security measures.
12.3 Although We cannot guarantee that the transfer of data via the internet, the Website or MyIute is entirely protected from cyberattacks, We and our business partners make every effort to maintain technical and organisational measures for the physical and personal protection and protection of automated information systems in connection with Your data, in accordance with applicable laws. For example, We apply the following measures:
12.4 Strictly limiting access by our employees and service providers to Your data, on a “need to know” basis and in order to achieve the purpose of processing on the basis of “need to know”;
12.5 Personal Data is stored electronically in password-protected or otherwise authorised databases and shared folders; monitoring and virus protection are carried out; copies and backups are created for continuity purposes; the systems also maintain a log history of document activities;
12.6 At the Controller’s premises where Personal Data is processed, technical and security measures are implemented (alarm and security equipment and video surveillance), fire protection, and access control procedures are implemented;
12.7 Employees of the Controller who process Personal Data are familiarised with the applicable legislation, the Controller’s policies and the identified risks and scenarios for their occurrence;
12.8 Data processing systems, including personal ones, are subject to regular audits. For the purposes of comprehensive monitoring and timely response, records containing information on every access and activity undertaken in relation to Personal Data are maintained by the Controller. The completion of records is a fully automated and integral part of Data Processing. The Controller, through clear internal rules, has implemented technical and organisational measures for the conditions and procedures for the collection, processing and storage in original form of Personal Data from clients, as well as strict rules for compliance oversight; such oversight ensures comprehensive protection against unauthorised access;
12.9 Contractual protection provisions are included in contracts with third parties acting on behalf of the Controller;
12.10 When We provide You with (or You choose to receive) a password granting You access to a specific location on the Website or another portal or service provided by Us, You are responsible for the confidentiality of the password and for compliance with any other security procedure of which We notify You. Please do not share Your password with anyone else.
HOW LONG WE RETAIN YOUR PERSONAL DATA
13.1 We process Your Personal Data for as long as necessary to fulfil the purpose of the Processing or to fulfil a legal obligation. The retention period of Personal Data is based on a contract concluded with You, our legitimate interest and/or law. If Your data is processed for more than one purpose, We will retain it for the longest applicable period; however, We will not process it for purposes with a shorter retention period once that period has expired.
13.2 We restrict access to Your data to those persons who must process it for the relevant purpose.
13.3 In certain cases, We may need to retain Your Personal Data for a longer period in order to have accurate records of Your business relationship with Us, in the event of complaints or disputes, or if We have reasonable grounds to believe there is a possibility of court proceedings in which Your Personal Data would be required.
13.4 The retention period is in accordance with our business needs and applicable laws. Personal Data that is no longer required will be Pseudonymised or Anonymised or deleted/destroyed.
COOKIES
14.1 Cookie processing:
A cookie is a small text file that a website saves on Your computer or mobile device when You visit the site. It enables the website to remember Your activities and settings (such as login, language, font size and other display preferences), so that You do not have to re-enter them when You return to the site or navigate from one page to another.
14.1.1 Browser Cookies
Our website may use cookies to enhance the user experience. Your internet browser saves cookies on Your computer to store site visits. You may choose to decline cookies or receive a warning whenever cookies are being sent. If You have chosen this option, certain parts of the site may not function as intended.
Additionally, our websites and the MyIute mobile application have implemented a dedicated consent section, enabling You to manage according to Your preferences. Non-essential cookies (e.g. analytics, marketing) require explicit consent, which can be managed through the settings within the mobile application.
14.1.2 Third-Party Analytics and Marketing Cookies
(a) Analytics Cookies
Google Analytics Cookies
We use cookies from the Google Analytics platform in order to collect anonymous statistics on demographics and interests. These reports are more aggregate data than they are identifying of individuals, and they help us optimise the content of our Site and create targeted advertisements for specific groups. Visitors may disable Google Analytics on the Google Display Network.
Google Analytics cookies enable us to collect anonymised data on user behaviour on our Site. The collected information does not contain personal data and is transferred to and stored in Google’s software in accordance with Google’s privacy policy.
14.1.3 Remarketing and Advertising Cookies
(a) Google AdWords Remarketing Platform
We use online advertising cookies on the Google AdWords online marketing platform. These cookies enable us to show You advertisements after visiting our site. This may take the form of an advertisement on Google’s search page or on the Google Display Network. They also help us analyse the effectiveness of impressions, interactions and visits to related sites. You may customise Google ad display through Your Google account settings.
(b) AdForm Remarketing Platform
We use AdForm cookies for online advertising, which enable us to show You targeted advertisements on the AdForm Display Network after visiting our Site. These cookies help us analyse the impact of impressions, advertising interactions and user behaviour. You may manage Your AdForm ad preferences through their privacy settings.
(c) Facebook Marketing and Remarketing Platform
Our Site uses cookies from Facebook for marketing and remarketing purposes. These cookies enable Us and third-party providers, including Facebook, to show You advertisements after You visit our Site. Advertisements may also appear on the Facebook platform, and the cookies are used to analyse advertising interactions in order to improve their relevance.
Analytics (Engagement) and Functional (Usability) Cookies
(a) Microsoft Clarity
We use Microsoft Clarity on our Site in order to analyse user behaviour and improve the functionality of our Site. Microsoft Clarity has a first-party cookie setup which collects session data, links multiple visits to the site into a single record, and identifies first-time visitors to the Site. These cookies enable us to better understand how users interact with our Site.
If cookies are disabled in Your browser, Clarity will assign a unique identification number to each visit, which will prevent the linking of Site visits as a single session. Microsoft Clarity cookies do not collect personally identifiable personal data and are used solely for performance analysis and improvement of functionalities.
(b) OptinMonster
Our Website uses cookies from OptinMonster in order to enhance the user experience and deliver personalised marketing campaigns. These cookies track user interactions with pop-ups, forms and other tools on the site, deliver a targeted environment, avoid repetitive campaigns and ensure that messages are in line with user preferences. While these cookies collect anonymised behavioural data in order to improve the relevance and timeliness of promotional messages, they do not collect personal data unless it is voluntarily provided by the user (e.g. through forms).
(c) Hotjar
We use Hotjar in the MyIute mobile application to better understand user behaviour and improve the functionality of the mobile application and thereby the overall user experience. Hotjar collects aggregate data through technology embedded in the mobile application to understand how users interact with individual screen views, including clicks, gestures, movements and navigation flows. This information helps us identify usability issues, analyse usage trends and optimise the performance of the mobile application.
Hotjar is able to recognise users during a session, distinguishing new users from returning users, and ensures that the feedback tools embedded in the mobile application are displayed appropriately. The data collected is anonymised and does not enable the direct identification of individual users. Hotjar does not directly collect personally identifiable data from clients unless such data is voluntarily provided by the user themselves (e.g. through feedback forms).
14.2 Opting out of Cookies
14.2.1 You may opt out of remarketing by visiting the links below:
(a) For Google: https://support.google.com/google-ads/answer/2375362?co=ADWORDS.IsAWNCustomer%3Dfalse&hl=en
(b) For Facebook: https://www.facebook.com/ads/website_custom_audiences/
(c) For AdForm: https://site.adform.com/privacy-center/platform-privacy/opt-out/
14.3 Managing and Deleting Cookies:
You may accept or decline cookies by changing Your browser settings. If cookies are disabled, You may not be able to use all interactive content on Our Website.
14.4 Cookies enable Us to:
14.3.1 Allow Our Website to operate according to Your expectations;
14.3.2 Remember Your settings during a visit;
14.3.3 Continuously improve the Website for You;
14.3.4 Improve our advertising efficiency.
14.4 We do not use cookies to:
14.4.1 Collect Personal Data for identification purposes – we always require Your explicit permission whenever we collect such data;
14.4.2 Collect special categories of Personal Data without Your explicit consent.
14.5 We do not use non-mandatory cookies to:
14.5.1 Collect data for identification purposes. We will always request Your explicit consent for this.
14.5.2 Collect sensitive personal data without Your explicit consent.
14.6 Cookie usage falls into several categories:
14.6.1 Website Functionality and Application Feature Cookies
We use essential cookies to ensure the core functionality of our website and MyIute app. These cookies are necessary for the proper operation of our services and enable critical features such as secure login, navigation between pages, and remembering your preferences during a session.
We use cookies to make our Website and MyIute mobile application better. These cookies are necessary for the proper management of our services and to enable critical features such as secure login, navigation between pages and saving your preferences during a session.
For example:
- With functional cookies we store data when You log in to the Website or mobile application so that You do not have to log in every time You visit a different page/menu during the session.
- They assist in maintaining the stability and security of the site, ensuring that it functions optimally across devices and browsers.
- Certain preferences or choices (e.g. language or region) are temporarily stored to improve Your experience during the session.
14.6.2 Analytics Cookies:
Analytics programmes use cookies to collect statistical data that enable us to improve our Website. Except in cases where You explicitly inform us by completing a form or calling us, all data collected by analytics programmes is stored anonymously and we see only general, and not specific individual, data.
Examples:
- How You arrived at our Website (e.g. from a search engine, advertisement, etc.);
- Activities You undertake on the Website, such as the number of pages viewed, time spent on the site, the page at which the visitor left the Website;
- How frequently You return to our Website;
- The technology used by visitors (e.g. browser, operating system, device, etc.).
14.7 To find out more about cookies in general and how to manage them, please visit the site www.aboutcookies.org.
YOUR RIGHTS IN RELATION TO PERSONAL DATA PROTECTION
15.1 You have rights in relation to Your Personal Data, namely the right to:
(a) Request from us additional information about how Your data is used;
(b) Request from us to allow You access to Your Personal Data and to provide You with a copy thereof;
(c) Receive Your Personal Data that You have provided to us in a structured, commonly used and machine-readable format and, where technically feasible, to have the data transferred to another controller without hindrance, but only where the processing of that information is based on Your consent or a contract and is carried out in an automated manner;
(d) Request from us the updating of any inaccurate data we hold and to have it corrected/updated;
(e) Request the erasure or anonymisation of all Your personal data for which we no longer have a legal obligation to process and/or retain;
(f) Withdraw Your consent to the processing of personal data at any time when processing is based on Your consent, and in relation to direct marketing, in order for us to cease processing it for that purpose from that point forward;
(g) Lodge an objection to processing for the purposes of automated individual decision-making, including profiling, where this significantly affects You, and to have the opportunity to exercise the right to obtain human intervention on the part of the controller, the right to express a personal view and the right to contest such a decision;
(h) Request from us the restriction of the processing of Your data, for example during the examination of a complaint.
15.2 Procedure for exercising rights:
15.2.1 You may submit a request to exercise Your rights to the Contact Persons in one of the following ways: in person, by post (including email), telephone or fax, as indicated in point 1 above.
15.2.2 Each of Your applications or requests is assigned a receipt number, is reviewed, we verify Your identity and the right You wish to exercise, and we respond within one month of receipt of the request. In the case of a complex matter or during a period of receiving numerous requests, the response period may be extended by an additional two months, of which You will be notified. In the event of refusal of a request, we will state the reasons for the refusal in writing.
15.2.3 The exercise of these rights is subject to certain exceptions, for example in the case of the protection of the public interest (e.g. prevention of criminal offences) or our interests or the rights and freedoms of third parties.
15.2.4 If You have any other questions in relation to Your data, please contact us as indicated in point 1 above (Monday to Friday from 08:00 to 16:00).
15.2.5 If You do not agree with our initial response, You may request further review of Your case. Our Data Protection Officer will review Your request before any further steps are taken.
15.2.6 In the event that You are not satisfied with the manner in which Your data is processed or our response when exercising these rights, You have the right to lodge a complaint with the Agency for Personal Data Protection at: blvd. Goce Delchev no.18, Skopje, website: https://dzlp.mk/prizlnlp. Please attempt to resolve the matter with us first, although You have the right to contact the Agency for Personal Data Protection at any time.
CHANGES TO PERSONAL DATA AND CESSATION OF PERSONAL DATA PROCESSING
16.1 Please inform us immediately in the event of any changes to or inaccuracies in Your Personal Data provided to Us. Upon our request, please provide a document evidencing the changes made (e.g. a new identification document).
16.2 We strive and make every effort to carry out regular checks on the completeness and accuracy of Your Personal Data.
UPDATING THIS POLICY
From time to time, we may make amendments to this Policy. All changes will apply from the time the revised Policy is published on the Website, and a notice will be published on the Website.
Financial Company Iute Credit Macedonia DOOEL Skopje