AdVerto Portal
SR|EN
Back

Privacy Policy

Last updated: 29.06.2026.

Draft — subject to legal review before use in sales. Describes how Marko Vasić PR Proizvodnja kinematografskih dela AdVerto (“AdVerto”, “we”) processes data.

This Policy explains what personal data we collect through the AdVerto Portal, for what purposes, on what legal basis, with whom we share it, and what rights you have. Processing complies with the Personal Data Protection Act of the Republic of Serbia and, where applicable, the GDPR.

1. Data controller

Marko Vasić PR Proizvodnja kinematografskih dela AdVerto, Bulevar despota Stefana 4, Novi Sad, 21000, Srbija. Privacy contact: adverto.srb@gmail.com.

2. What data we collect

  • Account: name, email, password (hashed), role.
  • Brand/company data: name, contact, package, billing details (tax ID, address), goals.
  • Content and materials: briefs, scripts, video/graphics, files you share or that are created during work (stored on Google Drive).
  • Performance data: metrics from Instagram/TikTok/Meta Ads accounts you connect or provide.
  • Technical data: cookies necessary for login and session security.

3. Purposes and legal basis

For each purpose we also state the legal basis — the right that allows us to process the data:

  • Providing the service (content production, reporting, portal) — performance of the contract (we process data to deliver what we agreed).
  • Invoicing and legal obligations — legal obligation (the law requires us to issue and keep invoices).
  • Security and abuse prevention — legitimate interest (protecting accounts and systems from misuse).
  • Service communication (transactional email, e.g. password reset) — performance of contract / legitimate interest.

4. Sub-processors (who we share with)

We use vetted service providers who process data on our behalf:

  • Supabase — database, authentication.
  • Vercel — application hosting.
  • Google (Drive) — storage of materials.
  • Meta / Instagram / TikTok — source of performance data (when you connect accounts).

We do not sell personal data to third parties.

5. Data retention

We retain different data for different periods:

  • Invoices and accounting records — as required by law (under Serbian regulations accounting records are kept for about 10 years), including after the collaboration ends.
  • Account data and materials — for the duration of the collaboration; afterwards we delete or anonymize them at your request, except what we must keep by law or to protect legal claims.
  • Anonymized or aggregated data that does not identify you may be retained (e.g. internal statistics).

6. Your rights

You have the right to access, rectification, erasure, restriction of processing, portability and objection. Send your request to adverto.srb@gmail.com; we respond within the statutory deadline.

7. Security

We apply technical and organizational measures: per-client data isolation (RLS), encryption in transit, access control. In the event of a data incident we act in accordance with statutory notification obligations.

8. Changes

We may update this Policy; material changes are communicated through the portal. The date of the last update is shown at the top.

Privacy PolicyTerms of Service