cruises d.o.o. (hereinafter referred to as: “we”, “us”,
“our”, etc) is the owner of the website amb-cruises.com
and its subdomains (hereinafter referred to as the: “website”).
your privacy seriously and to inform you about the collection and use
carefully in order to obtain information on how we collect, use, and
protect your personal data.
note, we do not account for websites that are linked to or provided
each site separately.
responsible person for collection, processing and use of your
personal data (data controller) is amb
cruises d.o.o., Josipa Marohnića 1/1, 7th floor, 10000 Zagreb, Croatia, Croatian personal information number/OIB:
may contact us either by the above address or on telephone number:
+385 95 822 1400 or on e‑mail: firstname.lastname@example.org.
Collection and processing of personal data:
data means any information relating to an identified or identifiable
natural person; an identifiable natural person is one who can be
identified, directly or indirectly, in particular by reference to an
identifier such as a name, an identification number, location data,
an online identifier or to one or more factors specific to the
physical, physiological, genetic, mental, economic, cultural or
social identity of that natural person.
collect and process the personal data that you provide to us as a
user of the website or future customer in the context of a request or
to conclude a contract. The data processing takes place for the
purpose of the inquiry answering, contract initiation and contract
fulfilment. Without the personal data provided by you, a contract
initiation or contract fulfilment is not possible.
examples of the data we may use regarding your use of the website are
personal data set out in the List of Crew and
Passengers such as the name, surname, gender/sex, place of
residence, date of birth, place of birth, nationality,
identification documents and pertaining information, and any other
information as deemed necessary for the registration of the crew and
personal data necessary for the negotiation and
formation of a contract, such as the name, surname, gender/sex,
place of residence, date of birth, place of birth, nationality,
identification documents and pertaining information, e-mail address
and phone number(s).
Use and disclosure of data:
as you have provided us with personal data as a user of our website
and/or customer, we only use this information for establishing
contact, answering questions, for formation of contracts or
processing contracts, registration of passenger and crew members with
the competent authorities, for technical administration, and for the
purposes of improving our website.
data will only be disclosed or transmitted by us to third parties if
this is necessary for the purposes stated above or you have
previously consented as a user of the website and/or customer. As a
user of the website and/or customer, you have the right to revoke
your consent with effect for the future at any time. For the purposes
of revoking your consent please use the contact detail as indicated
in point I.
example of the third parties to which your personal data may be
shared are the following:
the competent bodies in accordance to our
obligations e.g. Ministry of the Sea,
Traffic and Infrastructure;
our business partners with which we have entered
into separate agreement for processing of personal data: TPA d.o.o.,
Ivana Lučića 2a, OIB: 18197068007 and AMB HOLDING
GmbH, Austria, Vienna, Löwengasse 47, OIB: 12059903230;
legal and/or other advisors.
data is stored in Linz (Austria) and we will not transfer or
store such data in non-European Union countries. Your personal data
is stored and protected during your usage of the website and the
conclusion of the contract envisaged herein. The deletion of any
stored personal data takes place, if you as a user of the website
and/or customer revoke the consent to the storage, if no contract is
concluded, after the expiry of the applicable guarantee, warranty,
statute of limitations and statutory storage periods, and beyond
after the termination of any legal disputes in which the personal
data is required/used as evidence.
optimize this website in terms of system performance, usability and
providing useful information about our services, the website provider
automatically collects and stores information in so-called server log
files, which your browser automatically transmits to us. This
includes your internet protocol address (IP address), browser and
language setting, operating system, referrer URL, your internet
service provider and date / time.
data is anonymised, and a combination of this data with personal data
sources will not be made. We reserve the right to check this data
retrospectively, if we become aware of specific indications for
website uses third-party-services to provide specific functions.
Those are: a map, a video and a virtual tour. For those services your
browser will connect with other domains. Those domains have separate
and specific Privacy Policies for themselves.
website uses an embedded openstreetmap which is provided over an API
from openstreetmaps.org. Each time you visit this website it connects
to the openstreetmap servers. A storage of personal data is not done
to our knowledge. In particular, no IP addresses are stored or the
usage behaviour is evaluated. This website can be blocked clientsided
and, except for this service, amb-cruises.com will still work
note, this is only a short summary, while for further insight on data
protection of openstreetmaps.org please read the following
website uses embedded videos which are provided over vimeo.com. Each
time you visit this website it connects to the vimeo-servers. This
might be registered and recorded. This function can be blocked
clientsided and, except for this service, amb-cruises.com will still
note, this is only a short summary, while further insight on data
protection of vimeo.com can be found at https://vimeo.com/privacy
website uses an embedded virtual tour which is provided over
matterport.com. Each time you visit this website it connects to the
servers of matterport.com. This might be registered and recorded.
There will be scripts loaded to provide this kind of function. If you
block these scripts this website will still be functioning, except
the virtual tour.
note, this is only a short summary, while further insight on data
protection of vimeo.com can be found
are links presented which lead to social-media-websites. Those links
do not have pixel-tracking, widget- or any other kind of function
other than, by clicking on them, link to the specific websites.
you choose to visit those websites, please refer to the Privacy
Policy of those specific sites.
Protection of personal data:
are committed to maintaining security of your personal data.
Therefore, we have ensured that your personal data are processed and
used safely and in accordance with the applicable laws and
professional standards. In order to protect your personal data
collected on the website, we use physical, technical, and
organisational security measures to protect such data against
security risks, such as accidental, unauthorised, unlawful and
otherwise prohibited access to data, their destruction or loss or
disclosure, and we ensure the level of security that corresponds to
risks of data processing. We are constantly upgrading and testing our
security technology. We restrict access to your personal data to
those employees who need to know that data to provide you with some
benefits or services as explained herein. In addition, we educate our
employees on the importance of confidentiality and the protection of
privacy and the protection of your personal data.
Breach of personal data:
In case of breach of your personal data, we will
notify the authorities without delay, but at the latest within 72
hours following such breach. We will also notify you within one month
of such breach regarding the extent of the breach, the personal data
covered, the impact on our services and our planned data security
measures and the limitation of any adverse effect on you.
to the data protection regulations, you are entitled to the following
rights and remedies:
you have the right to receive information about
your personal data stored by us at any time and receive a copy of
the same. It may be necessary for you to prove your identity in a
suitable manner (Art. 15 of the Regulation (EU) 2016/679 of the
European Parliament and of the Council of 27 April 2016 on the
protection of natural persons with regard to the processing of
personal data and on the free movement of such data, and repealing
directive 95/46/EC (hereinafter referred to as: “GDPR”)).
Such personal information may be regarding the
purpose of the data processing, the categories of personal data, who
has received your personal data from us outside our company, what is
the source of your personal data (if not provided directly from you
to us), how long we keep your personal data;
you have the right to correct incorrect or
incomplete personal data related to you, without undue delay (Art.
you have the right for limitation of processing
and profiling or - apart from a prescribed data processing for
business transactions (Art. 18 GDPR);
you have the right to delete your personal data
the personal data are no longer necessary, if they have been
processed unlawfully, if you revoke your consent, such data must be
deleted pursuant to relevant regulations (Art. 17 GDPR);
you have the right to data transmission (Art. 20
you also have the right to raise objections to
the processing of data e.g. for
direct marketing purposes with future effect (Article 21 (2) and (3)
you would like to exercise any of the stated rights, please send your
request to the contact details as above in point I. If you take
measures to enforce your above-mentioned rights under the GDPR, we
must respond to the requested measure without delay or at the latest
within one month after receipt of your application or comply with the
application. We will comply to your request cost-free. Should there
be compelling legal reasons for deletion, you will be notified
also have the possibility to file a complaint with the supervisory
authority at any time during our collection and use of your personal
data. In the Republic of Croatia, you may file the complaint with the
Croatian Personal Data Protection Agency on the following address:
PERSONAL DATA PROTECTION AGENCY
Grge Martića 14
- 10 000 Zagreb
00385 (0)1 4609-000
00385 (0)1 4609-099
we decide that processing of your personal data is necessary for any
other purposes not included for the purposes of negotiation and
formation of the contract or registration of the passenger and the
crew with the competent bodies, we will inform you thereof and we
such processing, within the meaning of Article 6 paragraph 1 item (b)
of GDPR. Without your consent, or should you withdraw your consent,
we shall cease processing of your personal data for purposes for
which we have requested your consent, and will proceed to erase, or
otherwise permanently destroy your personal data within the
time-limits referred to in point IV.
contact us. (For contact details see point I.)