Legal information

Privacy policy

Last updated:

This Privacy Policy explains how Здружение за екологија и водни спортови АМФИБИЈА Охрид (referred to below as "Amphibia", "we") collects, uses, and protects personal data when you use this website or contact us through the contact form.

1. Data controller

The data controller is:
Здружение за екологија и водни спортови АМФИБИЈА Охрид
ул. Наум Охридски бр. 10Д, Охрид, Република Северна Македонија
ЕМБС: 7939760 · ЕДБ: 4020026557351
Email: info@amphibia.mk

2. What data we collect

Through this website we collect personal data only when you voluntarily submit it via the contact form on the Contact page:

  • Full name — so we know how to address you.
  • Email address — so we can reply.
  • Subject (optional) — to help categorize the message.
  • Message content — whatever you write yourself.

We do not collect special categories of personal data (health, biometric, political opinions, etc.) and we do not collect data from children.

3. Why we process it

  • To reply to your message and to communicate about your question or initiative.
  • To protect against abuse (anti-spam via a technical "honeypot" field, no automated profiling).

4. Legal basis

We process personal data based on:

  • Your consent when you voluntarily submit the contact form (Article 10(1)(a) of the Macedonian Personal Data Protection Act, in line with GDPR Article 6(1)(a)).
  • Our legitimate interest in replying to inquiries and protecting our systems from abuse.

5. Who has access to your data

Contact-form messages are sent as email to info@amphibia.mk via SMTP provided by Google (Gmail / Google Workspace). This means Google, as the email service provider, processes the data according to their privacy policy and standard contractual clauses for international data transfers.

Other than the above, we do not share your data with third parties, do not sell it, and do not use it for marketing.

6. How long we keep it

We keep contact-form messages for as long as needed to respond and to maintain a reasonable communication history — at most 24 months from the last contact. After that, or earlier at your request, the message is deleted.

7. Cookies and analytics

This website does not use tracking cookies, nor marketing analytics tools such as Google Analytics, Meta Pixel, or similar. We do not perform automated profiling of visitors.

Fonts are self-hosted (via Next.js's "next/font") — no request is made to Google Fonts when you visit. Images and icons are served from our own hosting.

8. Server logs

As with any website, the hosting provider may temporarily record technical visit data (IP address, access time, browser type) for security and normal server operation. These records aren't used to identify individuals and aren't connected to contact-form data.

9. Security

The website operates over HTTPS (encrypted connection). Access to the mailbox where messages arrive is protected by a strong password and two-factor authentication (2FA).

10. Your rights

Under the Macedonian Personal Data Protection Act, you have the right to:

  • request access to the personal data we hold about you;
  • request correction of inaccurate or incomplete data;
  • request erasure ("right to be forgotten") when no longer necessary;
  • request restriction of processing or object to processing;
  • withdraw consent at any time, without affecting earlier lawful processing.

To exercise these rights, write to info@amphibia.mk.

11. Complaints to the supervisory authority

If you believe your rights have been violated, you have the right to file a complaint with the Personal Data Protection Agency of the Republic of North Macedonia.

12. Changes to this policy

This policy may be updated as the website evolves. Any changes will be posted on this page with an updated date at the top.