top of page

Privacy Policy

A legal disclaimer

Bojovic Attorneys at Law is a law firm based in Belgrade, Serbia, and is headed by attorney at law Marija Bojović, as well as cooperating independent attorneys, all of whom are admitted and duly licensed with the Belgrade Bar Association ("Bojovic Law Attorneys at Law", "we" or "us").

 

1. Important Information

This privacy policy gives you information about how Bojovic Attorneys at Law, as the controller, collects and uses your data belonging to you or your personnel in the context of providing legal services.

 

Personal Data means information about individuals (including you), and information from which such individuals could be identified ("Personal Data").

 

You means any individual whose Personal Data we process, including Bojovic Attorneys at Law clients, Bojovic Attorneys at Law client personnel, counterparties, counterparty personnel, other attorneys and advisors, witnesses, suppliers, supplier personnel, and general business contacts.

 

2. The Personal Data We Collect

We may collect, use, store, and transfer different kinds of Personal Data, which we have grouped as follows:

  • Identity data: your first name, last name, company name, and position;

  • Contact data: your billing address, delivery address, email address, and phone numbers;

  • Financial data: your bank account information and payment details;

  • Transaction data: details of payments you have made and services you have purchased from us;

  • Technical data: your Internet Protocol (IP) address, login credentials, browser type and version, time zone and location, browser plug-in details, operating system, platform, device ID, and other technology-related data from the devices you use to access our website;

  • Data related to our services: information provided to us, obtained, or generated during the course of delivering our services, including special categories of data; and

  • Communication preferences: your preferences regarding newsletters and other communications from us.

 

Where we are required to collect Personal Data by law or under the terms of our engagement with you (as set out in our engagement letter and terms of business), and you fail to provide such data, we may be unable to perform the services.

 

3. How is Personal Data Collected?​

We use various methods to collect Personal Data during the course of our work for you, including email, other electronic correspondence, telephone, video conferencing software, and our website.

 

4. Data Security​

We have implemented appropriate security measures to prevent Personal Data from being accidentally lost, used, or accessed in an unauthorized manner, altered, or disclosed. Additionally, we limit access to those employees, agents, contractors, and other Personal Data third parties who have a legitimate business need to know. They will only process Personal Data on our instructions, and they are subject to a duty of confidentiality.

 

5. Purposes for Which We Use Personal Data and Legal Basis

We use your Data only for the following purposes:

  • To check whether we can act for you as a new or existing client or across from you as a counter party or other third party on a matter involving a new or existing client, and carry out all of our regulatory compliance requirements, including conflicts of interest, anti-money laundering, anti-terrorism, sanctions, fraud and background screening;

  • To deliver and enhance our services to you, manage payments, fees, and collect and recover money owed to us.

  • To establish, exercise, or defend legal claims, and fulfil regulatory requirements (e.g., performance of KYC process);

  • To manage our relationship with you, which will include notifying you about changes to our terms or privacy policy; and

  • To evaluate your application, assess your suitability for the role, and communicate with you throughout the recruiting process.

 

The law requires us to have a legal basis for collecting and using your Data. We rely on one or more of the following legal bases:

  • Performance of a contract with you;

  • Legitimate interest, where it is necessary for our legitimate interests as a legal services provider (or those of a third party) to ensure efficient service delivery without disproportionate impact on your privacy;

  • Regulatory and legal obligation, where we need to comply with a legal obligation to which we are subject; and

  • Consent, on which we rely only where we have obtained your active agreement to use your Personal Data for a specified purpose.

 

6. Disclosure of Personal Data

We may share Personal Data with third parties, such as IT service providers and other service providers, as necessary to fulfill our inquiries and deliver our services. They will process any Personal Data on our behalf and at our discretion. When doing so, we act with reasonable care in selecting external processors and apply adequate contractual provisions to ensure compliance with all relevant legal and regulatory data protection obligations. 

 

On certain occasions, we may be required to disclose certain information to comply with regulatory obligations. In such cases, we will notify you unless we are prohibited from doing so. 

 

7. Transfers​

We may transfer Data to other countries to provide our legal and related services, as described in this privacy policy. Such transfers may involve sharing your data with jurisdictions outside the European Economic Area (EEA), including locations that do not offer the same level of data protection as your country of residence and are not recognized as providing an adequate level of security. We will only transfer your Personal Data internationally when it is necessary for the performance of our services to you, for the establishment, exercise, or defense of legal claims, or when it is otherwise essential to fulfill the purposes outlined in this policy.

 

To ensure the security of your Data during such transfers, we implement appropriate safeguards in line with the General Data Protection Regulation (EU) 2016/679 (GDPR), such as the use of standard contractual clauses.

 

8. Data Security

We have implemented appropriate security measures to prevent your Data from being accidentally lost, used, or accessed in an unauthorized way, altered, or disclosed. Additionally, we limit access to those employees, agents, contractors, and other third parties who have a legitimate business need to know. They will only process your Personal Data on our instructions, and they are subject to a duty of confidentiality.

 

9. Third-Party Links

Our website may include links to third-party websites, plug-ins, and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy policies or practices. When you leave our website, we encourage you to read the privacy policy of every website you visit.

 

10. Data Retention

We will only retain Personal Data for as long as reasonably necessary to fulfill the purposes for which it was collected and to satisfy any legal, regulatory, tax, accounting, or reporting requirements for a period of five years following the completion or termination of the engagement. We may retain your Data for an extended period in the event of a complaint or if we reasonably believe there is a prospect of litigation regarding our relationship with you.

 

11. Legal Rights

You have rights under data protection laws concerning your Personal Data to: (i) request access to your Personal Data, (ii) request correction of the Personal Data, (iii) request erasure of your Data in certain circumstances, (iv) object to processing of your Personal Data, (v) request the transfer of your Personal Data to you or a third party, (vi) withdraw consent at any time where we are relying on consent to process your Personal Data, and (vii) request restriction of processing of your Personal Data.  

 

We may need to request specific information from you to help us confirm your identity and ensure your right to access your Personal Data (or to exercise any of your other rights). This is a security measure to ensure that Personal Data is not disclosed to any person who has no right to receive it. We may also contact you to request further information related to your request, which will help us expedite our response.

 

12. Contact Details

If you have any questions about this privacy policy or the use of your Data, or would like to.  To exercise your privacy rights, please get in touch with us at contact@bojovic.com.

 

13. Complaints

You have the right to file a complaint with the relevant local data protection authority, i.e., the Serbian Commissioner for Information of Public Importance and Personal Data Protection. However, we would appreciate the opportunity to address your concerns and resolve any issues amicably before you choose to exercise this right. You may contact us at contact@bojovic.com.

 

14. Changes to the Privacy Policy and Information Changes

We regularly review our privacy policy. Previous versions can be obtained by contacting us at contact@bojovic.com.

 

The Personal Data we hold about you must be accurate and current. Please keep us informed if your Personal Data changes during your relationship with us, e.g., a new address or e-mail address. We will not be responsible for any losses arising from any inaccurate, inauthentic, deficient, or incomplete Personal Data that you provide to us.

 

Last Updated: 10 June, 2025

bottom of page