Privacy Policy
Last updated:
This Privacy Policy explains how Mile Đurđević (“Mile Viero”, “we”, “us”) collects and processes personal data when you visit www.mileviero.com, and the rights you have under the EU General Data Protection Regulation (GDPR) and the Slovenian Personal Data Protection Act (ZVOP-2).
We keep data collection to the minimum needed to run an informational artist website and answer booking enquiries. We never sell your personal data.
Who is responsible (data controller)
The controller responsible for your personal data is:
- Mile Đurđević (performing as Mile Viero)
- Slovenia
- Email: [email protected]
- Phone: +386 699 334 26 (SI) · +43 667 337 6709 (AT)
For any question about this policy or your data, contact us at [email protected].
What we collect, why, and the legal basis
Booking & contact form. When you submit the enquiry form we process the name, email address and any event details and message you provide, solely to respond to your enquiry and arrange a possible booking. Legal basis: your consent and steps taken at your request prior to a contract (GDPR Art. 6(1)(a) and (b)). The form is delivered to our inbox through the processor Web3Forms.
Analytics (optional). With your consent we use Google Analytics 4 to understand, in aggregate, how the site is used. Until you consent, analytics runs in a cookieless mode that sets no cookies and uses no persistent identifiers. Legal basis: your consent (GDPR Art. 6(1)(a)). See our Cookie Policy for details and how to withdraw consent.
Server logs & security. Our hosting and our CDN/security provider (Cloudflare) automatically process technical data — IP address, browser/user-agent, requested URL and timestamp — to deliver the site, keep it secure and prevent abuse. Legal basis: our legitimate interest in a secure, functioning website (GDPR Art. 6(1)(f)).
Language detection. On your first visit to an English page, your approximate country is looked up via the third-party service ipapi.co (which receives your IP address) so we can offer the site in your language. This runs once and the result is stored locally in your browser. Legal basis: our legitimate interest in showing the right language (GDPR Art. 6(1)(f)). Choosing a language manually stops it.
Cookies & local storage
By default the site sets no cookies. Optional Google Analytics cookies are set only after you accept them. We also use your browser’s local storage for two functional values — your cookie choice and your language preference. Full details are in our Cookie Policy.
Who we share data with (processors)
We do not sell your data and share it only with service providers that process it on our behalf, under contract:
- Web3Forms — delivery of the contact form to our inbox. Privacy.
- Google (Google Ireland Ltd.) — Google Analytics 4, only with your consent. Privacy.
- Cloudflare, Inc. — CDN, DNS and security/anti-abuse. Privacy.
- ipapi.co — one-time country lookup for language detection. Privacy.
- YouTube (Google) — embedded videos load only when you click play, in privacy-enhanced (no-cookie) mode. Privacy.
International transfers
The site is hosted on a server in the European Union (Frankfurt, Germany). Some processors above (Google, Cloudflare, Web3Forms) are based in or transfer data to the United States. Where that happens, transfers are covered by the EU–US Data Privacy Framework and/or the European Commission’s Standard Contractual Clauses, providing appropriate safeguards under GDPR Chapter V.
How long we keep data
Booking enquiries are kept only as long as needed to handle your request and any resulting engagement, then deleted — unless we must keep them to meet a legal obligation. Analytics data is retained per Google Analytics settings (up to 14 months). Server and security logs are kept for a short period for security purposes.
Your rights
Under the GDPR you have the right to access your data; to rectify or erase it; to restrict or object to processing; to data portability; and to withdraw consent at any time (without affecting processing already carried out). To exercise any of these, email [email protected].
You also have the right to lodge a complaint with the Slovenian supervisory authority: the Information Commissioner (Informacijski pooblaščenec), Dunajska cesta 22, 1000 Ljubljana — www.ip-rs.si, [email protected].
Security
The site is served exclusively over encrypted HTTPS and sits behind a security/CDN layer. We apply appropriate technical and organisational measures to protect personal data, though no method of internet transmission is completely secure.
Children’s privacy
This site is not directed at children and we do not knowingly collect personal data from children under 16. If you believe a child has provided us data, contact us and we will delete it.
Changes to this policy
We may update this policy from time to time. The current version and its “last updated” date are always published on this page.