Privacy Policy

The controller responsible for processing personal data through the app is:

Pisarna Coworking (SDP d.o.o.)
Koliška ulica 5, 1234 Domžale
Slovenia
Email: hello@pisarna.co

Depending on how the app is used, we may process the following categories of personal data:

• Account and identity data, such as name, email address, role, invitation status and authentication data.
• Profile data, such as profile image, skills, status notes, profile metadata and member directory information.
• Workspace usage data, such as bookings, booking notes, resource assignments, check-in status, QR-triggered booking and check-in actions, and no-show cancellations.
• Community data, such as RSVPs to events, notices read status and interactions with workspace content.
• Uploaded content, such as avatar images and resource images.
• Event location data, including venue name and Google Places identifiers when locations are selected through the app.
• Technical data, such as session cookies, log data and device/browser information necessary to secure and operate the app.

We collect personal data directly from you, from workspace administrators, and automatically through the app.

• Administrators or community managers may invite you and create or update your workspace profile.
• You may provide information when signing in, completing your profile, booking resources, RSVPing to events or uploading images.
• Some data is generated by the service itself, for example booking history, check-in timestamps or notice read markers.
• Location details may be obtained via Google Places when event locations are searched or selected.

We process personal data only where we have a valid legal basis under GDPR. This may include:

• Performance of a contract or pre-contractual steps, for account access and workspace service delivery.
• Legitimate interests, for workspace administration, resource planning, fraud prevention, service security and internal analytics.
• Compliance with legal obligations, where retention or disclosure is required by law.
• Consent, where required for optional processing that is not otherwise justified.

In practice, we use personal data to:

• manage invitations, authentication and access control;
• display the member directory and relevant community manager contact information;
• manage desks, meeting rooms, phone booths, events, notices and check-in workflows;
• prevent abuse of bookings and enforce workspace rules, including automated cancellation of missed check-ins where enabled;
• operate, troubleshoot and secure the app; and
• prepare aggregated administrative statistics and internal analytics.

We use third-party processors to operate the app. These may include:

• Supabase for authentication, database hosting, file storage and session management.
• Email delivery providers used through Supabase or custom SMTP configuration to send invitation and password-related emails.
• Google Maps / Google Places to help administrators search and select event locations.

These providers process data on our behalf under applicable data processing terms. If data is transferred outside the EEA, we rely on appropriate safeguards such as Standard Contractual Clauses where required.

We do not sell personal data.

We may share personal data only where necessary:

• with authorised workspace staff such as administrators and community managers;
• with processors and infrastructure providers acting on our instructions;
• with other members inside the app where the product intentionally shows member, booking or event participation information; and
• where required by law, court order or competent public authority.

We retain personal data only for as long as necessary for the purposes described in this policy, including account administration, workspace operations, legal compliance and dispute handling.

Different categories may be retained for different periods. For example, account and profile information may be kept while a member account is active, while booking or event records may be retained longer where needed for operational history, auditing, legal claims or legitimate business records.

You should define and publish your exact retention schedule internally and, if desired, replace this section with your specific periods.

The app uses cookies and similar technical storage mainly for authentication, session continuity, security and core app functionality. Without these, the service cannot operate correctly.

If you later add analytics, marketing or advertising cookies, you should update this policy and implement any consent mechanisms required under EU ePrivacy rules and GDPR.

Subject to applicable law, you may have the right to:

• access your personal data;
• request rectification of inaccurate or incomplete data;
• request erasure in certain circumstances;
• request restriction of processing;
• object to processing based on legitimate interests;
• request data portability where applicable; and
• withdraw consent where processing is based on consent.

To exercise your rights, contact us at [insert contact email]. You also have the right to lodge a complaint with the Information Commissioner of the Republic of Slovenia (Informacijski pooblaščenec) or another competent supervisory authority.

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration or disclosure. These include access controls, role-based permissions, managed infrastructure and secure account handling.

No system is completely secure, so we cannot guarantee absolute security. If you believe your account or personal data has been compromised, contact us immediately at hello@pisarna.co.

The app is intended for professional coworking and workspace use and is not directed to children. We do not knowingly provide the service to minors where this would be unlawful or inappropriate.

We may update this Privacy Policy from time to time to reflect legal, operational or product changes. When we make material changes, we will update the "Last updated" date and, where appropriate, provide additional notice within the app or by email.

Questions about this Privacy Policy or data protection matters can be sent to hello@pisarna.co.