According to the Regulation on the Croatian Visa Information System, every person has the right to be informed about data relating to him/her and which are kept into the Croatian Visa Information System (HVIS). The Ministry of Foreign and European Affairs is the data controller of the personal data filing system HVIS.
According to the mentioned Regulation, any person may request the correction of data relating to him/her if the data is inaccurate, as well as request the deletion of unlawfully collected data. The Ministry of Foreign and European Affairs will without delay such data correct or delete, in accordance with legal regulations governing the protection of personal data. Also, under the Act on Personal Data Protection, regardless of the data subject’s request; in the case the Ministry of Foreign and European Affairs determines that personal data is incomplete, inaccurate or outdated, he/she shall supplement or amend it. The Ministry of Foreign and European Affairs, as data controller shall inform the data subject and recipients of personal data of any amendments, alterations or deletions of such personal data undertaken within 30 days.
If the Ministry of Foreign and European Affairs considers that the data which are kept in HVIS are accurate or they were collected in a lawful manner, without delay, will in writing explain to data subject why they will not correct or delete the information relating to him/her.
The Ministry of Foreign and European Affairs is obliged to instruct the person about further steps, if he/she does not accept the explanation, and inform about the competent court or the body for appeal, as well as every available aid provided by the Croatian legislation, including that of the Agency for Protection of Personal Data.
Data protection officer of the Ministry of Foreign and European Affairs is the person who takes care of the legality of the processing of personal data. Contact:
Trg N.Š. Zrinskog 7-8, 10000 Zagreb
Tel.: +385 (0)1 4569 964
Fax: +385 (0)1 4551 795,
+385 (0)1 4920 149
Furthermore, according to the Act on Personal Data Protection, the Ministry of Foreign and European Affairs, as data controller, shall not later than 30 days from the submission of the application, to each data subjects’ request, or to his or her legal representative:
• provide a confirmation of whether personal data relating to him are processed or not,
• provide information in an intelligible form of the data relating to him which is undergoing processing and of their source
• allow access to the records of personal data collection and access to personal data contained in the collection of personal data concerning him and their prescription,
• deliver excerpts, certificates or printouts of the personal data included in the collection of personal data relating to him, which must contain an indication of the purpose and legal basis for the collection, processing and use of data,
• deliver print data on who and for what purpose and on what legal basis the use of personal data relating to him
• provide information about the logic involved in any automatic processing of data concerning him.
Finally, anyone who considers that his/her rights (which are guaranteed by the Act on Personal Data Protection) have been violated may lodge a complaint with the Agency for Protection of Personal Data. The complaint for protection of rights can be submitted to the Agency by electronic mail to the following address: firstname.lastname@example.org or in person or by post to Marticeva 14, 10000 Zagreb.