Legal

Privacy Policy

Last updated: April 2025

At Nomadic Peace, we take your privacy seriously. This policy explains exactly what data we collect, why we collect it, and how you can control it — in plain language, without legal jargon.

01

Who We Are

Nomadic Peace is a privately managed holiday apartment located in Šibenik, Croatia. We are the data controller for all personal data collected through this website.

Contact [email protected]
Location Šibenik, Croatia
Regulation EU GDPR 2016/679
02

What Data We Collect & Why

Reservations & Payments

Legal basis: Performance of contract (Art. 6(1)(b) GDPR)

When you make a booking, we collect your name, email address, and stay details (check-in/check-out dates). Payment is processed securely by Stripe — we never see or store your card number. Stripe handles all payment data on their PCI-DSS compliant servers.

Analytics Consent required

Legal basis: Consent (Art. 6(1)(a) GDPR)

With your permission, we use Google Analytics to understand how visitors use our site — which pages are visited, how long people stay, and where visitors come from. IP addresses are anonymised. You can withdraw consent at any time using the cookie banner at the bottom of the page.

03

Cookies

Cookie Purpose Consent needed
Stripe (_stripe_*) Secure payment processing No — essential
_ga, _gid Google Analytics visitor tracking Yes — opt-in
np_cookie_consent Stores your cookie preference No — essential

Analytics cookies are only activated after you explicitly click "Accept" in the cookie banner. If you click "Reject", no tracking scripts are loaded — not just blocked.

04

Third Parties

We share data only with the following processors, and only to the extent necessary:

Stripe Inc. Payment processing USA · SCCs applied stripe.com/privacy ↗ Google LLC Analytics (consent only) USA · SCCs applied policies.google.com/privacy ↗

We do not sell your data. We do not use it for advertising.

05

Your Rights

Under GDPR, you have the right to:

Access Request a copy of your personal data
Rectification Correct any inaccurate information
Erasure Request deletion of your data
Portability Receive your data in a portable format
Objection Object to certain types of processing
Withdraw consent Revoke analytics consent at any time

To exercise any of these rights, email us at [email protected]. We respond within 30 days. You also have the right to lodge a complaint with the Croatian Data Protection Authority (AZOP).

06

Data Retention

Booking data 5 years Croatian tax law requirement
Analytics data 14 months Google Analytics default, auto-deleted
Cookie preferences 1 year Stored locally in your browser

Questions about this policy?

[email protected]