Cor Net

Our Solutions

Book a Free C-Media Demo Today

Discover how our content management software can transform your business and drive revenue.
Cor Net
    • Get in touch

    Last updated: 21 November 2025

    1. COR NET d.o.o. – Company details and Data Controller

    Name: COR NET d.o.o.

    Address: Kneza Višeslava 14, 88 000 Mostar, Bosnia and Herzegovina

    Contact:
    Tel: +387 36 833 468
    E-mail: info@cor-net.net
    Web: https://cmedia.cor-net.net/

    Registration details:
    Registration number: 58-01-0103-14
    ID number: 4227838740005

    1.1. EU Representative

    In accordance with Article 27 of the General Data Protection Regulation (EU) 2016/679 (GDPR), we appoint the following EU Representative:

    Company name: Softly d.o.o.
    Address: Tronheimska 4D, 21000 Split, Republic of Croatia
    E-mail: compliance@softlyst.eu

    The Representative acts as a contact point for questions regarding the processing of personal data of data subjects in the territory of the European Union and in communications with the competent supervisory authorities, on behalf of COR NET d.o.o.

    This Privacy Policy applies to our website https://cmedia.cor-net.net/ (together, our “Service”). By accessing or using our Service, you confirm that you have read, understood and agree to the collection, storage, use and disclosure of your personal data as described in this Privacy Policy and in our Terms of Use.

    2. Introduction

    This Privacy Policy contains information on how we process your personal data.

    At COR NET d.o.o., we pay special attention to the protection and security of the personal data of our users, clients and partners. We are aware of the importance of privacy and we undertake to ensure that all personal data are processed lawfully, fairly and transparently, in accordance with the Law on Personal Data Protection of Bosnia and Herzegovina (“Official Gazette of Bosnia and Herzegovina”, No. 12/2025 of 28 February 2025), which is harmonized with the General Data Protection Regulation (GDPR) and other applicable regulations.

    COR NET d.o.o. collects personal data of its clients and potential customers in order to improve its business operations and services. Personal data allow us to tailor products and services to the specific needs of users. Data collection is also essential for targeted advertising, market analysis, improving user experience and compliance with legal obligations such as issuing invoices and maintaining records.

    3. Data we collect

    3.1. When you visit our website

    Our system automatically records each access to the website and temporarily stores this information in a “log file”. Among the stored data, the following are particularly included:

    Cookies

    On our website we use a cookie management tool in order to obtain your consent for the use of optional cookies.

    Cookies are small amounts of data generated by a website and stored by your web browser. They are used to identify your browser, provide analytics and remember information about you such as your language settings or login information.

    Cookies that are necessary for functionality, security and accessibility are set automatically and are not deleted via this tool.

    More information about how we use cookies, as well as how to change your cookie settings, can be found on our cookie page at Cookies Policy.

    Analytics

    On our website we use Google Analytics. Google Analytics collects data on how visitors use our site. We use these data to create reports and improve the functionality of the site. We collect information such as the number of visitors, the source from which they arrived on the site and the pages visited.

    Data are collected and processed in a way that does not allow the direct identification of individuals. After collection, the IP address and browser details are used to create a so-called “magic number” which changes every 24 hours. The IP address and specific browser data are then immediately deleted.

    For the processing of these data, we rely on your consent and collect analytical data only if you choose to allow optional cookies and similar technologies.

    Search

    Our website search and decision search use Funnelback. Search queries and results are recorded anonymously in order to improve our website and search functionality. Neither we nor Funnelback collect personal data that could identify the user.

    Security and performance

    We host our website via our dedicated server in Netherlands, and we store traffic data for 12 months.

    Newsletter opt-out option

    Personal data obtained via the newsletter are collected and processed solely for the purpose of informing users about news, services, products, events and other content related to our business.

    The legal basis for this processing of your personal data via the newsletter is your consent in accordance with Article 8(1)(a) of the Law on Personal Data Protection of Bosnia and Herzegovina and in accordance with the General Data Protection Regulation (GDPR), which you can freely withdraw at any time.

    Every recipient of the COR NET d.o.o. newsletter may unsubscribe via the link located at the bottom of each email message, or by sending an email to info@cor-net.net stating that they no longer wish to receive the newsletter and specifying the email address at which it has been received.

    Upon receiving such a request, an employee of COR NET d.o.o. will remove the specified email address from the newsletter recipient list and delete all correspondence permitted by law, as soon as possible.

    Personal data are used solely for the stated purposes and are stored for as long as the user’s consent remains in force.

    Purpose and legal basis for data processing

    The purpose of implementing the above measures is to maintain and monitor the performance of our website and to continuously improve the website and the services it provides to users.

    The main reasons why we collect and use users’ data are:

    The legal basis on which we rely for processing your personal data is either Article 8(1)(a) of the Law on Personal Data Protection of Bosnia and Herzegovina, for example where we request your consent for the use of optional cookies, or Article 8(1)(f) of the same Law, which allows us to process personal data when this is necessary for our legitimate interests (for example, to preserve the integrity of our IT systems and business continuity).

    Because we process your personal data on the basis of our legitimate interests, as stated above, you have the right to object to such processing. There may be justified reasons for which we may refuse your objection, depending on the purpose for which we process the data.

    How long do we keep personal data?
    Retention periods depend on the purpose of collection:

    3.2. When you use our C-Media service

    For users who use the services offered by C-Media, we process the following categories of personal data:

    Purpose and legal basis for data processing

    We rely on the following legal bases for the processing of your personal data, in accordance with the Law on Personal Data Protection of Bosnia and Herzegovina aligned with the General Data Protection Regulation (GDPR):

    How long do we keep personal data?

    Retention periods depend on the purpose of collection, as described in section 3.1.

    3.3. When you contact us via the “Get In Touch” form

    If you contact us via the “Get In Touch” form on our website, we will process your personal data for the purpose of establishing business cooperation, responding to your inquiries or providing information about our products and services.

    Personal data we collect:

    Purpose and legal basis for data processing

    We collect your personal data solely in order to respond to your inquiry, consider potential business cooperation and establish a professional relationship.

    The legal basis for processing your data is our legitimate interest under Article 8(1)(f) of the Law on Personal Data Protection of Bosnia and Herzegovina, which allows us to process data for the purpose of conducting business communication and exploring new business opportunities. In certain cases, if your inquiry is related to preparing a contract, the legal basis is the taking of steps prior to entering into a contract under Article 8(1)(b) of the Law on Personal Data Protection of Bosnia and Herzegovina.

    How long do we keep personal data?

    We keep your personal data collected via the form for as long as necessary to resolve your inquiry and maintain business communication. If business cooperation is established, the data will be integrated into our business records and stored in accordance with our internal rules and legal obligations. If no cooperation is established, the data are deleted within 30 days of the last communication.

    3.4. Visitors to our premises – video surveillance

    The premises of COR NET d.o.o. are covered by video surveillance for the purpose of protecting property and persons. Visitors (existing and potential clients, visitors, suppliers, external associates and others accessing the business premises) are informed in advance that access to the premises and its interior is monitored by video surveillance. Video surveillance is used exclusively for this purpose and only for this purpose.

    COR NET d.o.o. has declared legitimate interest as the basis for implementing video surveillance to protect valuable property and persons accessing the premises, in accordance with Article 8(1)(f) of the Law on Personal Data Protection of Bosnia and Herzegovina. The manner of using, managing and archiving recordings is regulated by the Decision on the establishment and management of video surveillance, and appropriate organizational and technical data protection measures are applied. Notices that the premises are under video surveillance are clearly displayed at the location.

    Recordings are stored on protected servers and retained for a maximum of 30 days, after which they are automatically deleted, unless required for an official investigation.

    4. Sharing your personal data

    We share your personal data only when this is necessary to provide our services, to fulfil legal obligations or where we have your explicit consent. We will never share your data with third parties for direct marketing purposes.

    In order to provide our services, we use external associates and partners (so-called “data processors”) who perform certain functions on our behalf. Examples of such partners include:

    All our partners are required to sign data processing agreements under which they undertake to process your data solely in accordance with our instructions, to keep them secure and to retain them only for as long as we instruct them.

    In certain circumstances, we are also legally required to share your data. This may be on the basis of a court order, in cooperation with regulatory authorities or other institutions during the handling of complaints or investigations. In each such case, we will check and document the legal basis for sharing the information.

    If your personal data are transferred outside Bosnia and Herzegovina, we ensure that such transfer is secure and carried out solely in accordance with the Law on Personal Data Protection of Bosnia and Herzegovina and relevant international data protection standards (such as the GDPR), ensuring an adequate level of protection.

    Links to other websites

    If we provide links to websites of other organizations, this Privacy Policy does not cover how those organizations process personal data. We recommend that you read the privacy notices on the websites you visit.

    5. Security of payment data

    We may offer products and/or services that are subject to a fee. In such cases, we use third-party payment processing services (e.g. payment service providers – Stripe Payments Europe, Limited, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, D02 H210, Ireland).

    We do not store credit card data. All transactions are processed using secure encryption – the same level of protection used by leading banks. Card data are transmitted, stored and processed securely through Stripe’s gateway system on a PCI-compliant network. More information about the security of online payments can be found at: Stripe – Privacy Policy.

    6. Data subject rights under the GDPR

    Right of access: You may request confirmation as to whether your personal data are being processed and additional information about such processing. If the requests are manifestly unfounded, excessive or repetitive, COR NET d.o.o. may charge a reasonable fee taking into account the administrative costs, or refuse to act on the request.

    Right to rectification: You may request the rectification of inaccurate or incomplete personal data.

    Right to erasure (“right to be forgotten”): You may request the erasure of your personal data, and COR NET d.o.o. will erase them without undue delay if all conditions under the Law on Personal Data Protection of Bosnia and Herzegovina are met, in accordance with the GDPR. Erasure of data may make it impossible to provide COR NET d.o.o. products or services.

    Right to restriction of processing: You may request the restriction of processing of your personal data.

    Right to object: You have the right to object to the processing of personal data carried out by COR NET d.o.o.

    Right to data portability: You may request that your personal data be provided to you in a structured, commonly used and machine-readable format and to transmit those data to another controller without hindrance.

    Decisions based solely on automated processing

    We fully respect your right not to be subject to decisions based solely on automated processing, including profiling, if such decisions produce legal effects concerning you or similarly significantly affect you.

    You have the right to object to such automated decision-making, and we will ensure that such processing is not carried out without an appropriate legal basis and safeguards.

    7. Withdrawal of consent

    If you have given consent for the collection, processing and transfer of your personal data for a specific purpose, you have the right to withdraw that consent at any time.

    Once we receive notice that you have withdrawn your consent, we will no longer process your data for that purpose, unless there is another lawful basis for processing. In such a case, you will be informed.

    For example, you can withdraw your consent for the use of cookies by clicking on the “Manage cookie settings” button or by changing the settings in your browser.

    8. “Do Not Track” signals

    We do not support the “Do Not Track” (DNT) option. “Do Not Track” is a setting you can enable in your web browser to inform websites that you do not wish to be tracked.

    You can enable or disable the “Do Not Track” option via your browser’s settings or preferences page.

    9. Children

    Our services are not intended for children. We do not knowingly collect personal data from children. If we become aware that a child has provided us with personal data, we will promptly delete such information.

    If you become aware that a child has provided us with their personal data, please contact us using the contact details below.

    10. Complaints, questions or requests regarding personal data processing

    All processing of personal data is carried out in accordance with the Law on Personal Data Protection of Bosnia and Herzegovina (“Official Gazette of Bosnia and Herzegovina”, No. 12/2025 of 28 February 2025), which is harmonized with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation – GDPR).

    For any complaints, questions or requests regarding the processing of personal data, you can contact COR NET d.o.o.:

    You will receive a response within 30 days.

    If COR NET d.o.o. does not grant a justified request of the data subject/customer, the customer has the right to contact the Personal Data Protection Agency in Bosnia and Herzegovina (www.azlp.ba), at the following address: Personal Data Protection Agency in Bosnia and Herzegovina, Dubrovačka 6, 71000 Sarajevo; tel: ++387 33 726-250; fax: ++387 33 726-251; e-mail: azlpinfo@azlp.ba; Data Protection Officer contact details: ++387 33 726-258, e-mail: szzp@azlp.ba.

    11. Data breach notification

    We maintain up-to-date technical measures to ensure data protection, primarily to protect your personal data from risks during transmission and from access by third parties. These measures are updated in line with the latest technical developments.

    Our policy and value is to act fairly and proportionately when deciding on the actions to be taken to notify affected parties in the event of a personal data breach. In accordance with the Law on Personal Data Protection of Bosnia and Herzegovina and the GDPR, where it is known that a breach has occurred which may pose a risk to the rights and freedoms of individuals, the Personal Data Protection Agency in Bosnia and Herzegovina will be notified within 72 hours. Management of this process will take place in accordance with our information security incident management procedure, which defines the entire process for handling security incidents.

    12. Technical and organizational measures for personal data protection

    We follow strict security procedures to minimize the risk of data destruction, unauthorized disclosure of data, unauthorized access to personal data and other breaches.

    The equipment/premises in which we store personal data are located in a secure environment with restricted physical access.

    We use firewalls, strong passwords, antivirus programs and other measures to protect personal data (for example, encryption and pseudonymization).

    Access to personal data is granted only to authorized persons within our organization, which has been regulated by our internal acts.

    We have bound our employees to confidentiality regarding all data that they learn in the course of performing their work.

    We regularly organize training for our employees to ensure that the level of awareness within our company regarding personal data protection is satisfactory.

    13. Changes to our Privacy Policy

    We regularly update this Privacy Policy so that it remains accurate and up-to-date, and we reserve the right to change its content if we deem it necessary. You will be informed in a timely manner about any amendments and additions via our website, in accordance with the principle of transparency.

    On our website we will publish the updated Privacy Policy, with the “Last updated” date at the top.