When you use MeanDuck.com (the "Website"), we may collect certain personal data about you. Popcom d.o.o. (the "Provider") manages personal data in accordance with applicable data protection laws. This Privacy Policy explains how we collect, use, disclose and protect your personal data.

By using the Website, you agree to the handling of your personal data as described in this Privacy Policy.

What data we collect

We may collect the following categories of data when you browse or interact with the Website:

• Contact data (e.g., your email address) if you contact us via email or the contact form.
• Technical data such as your IP address, device and browser type, operating system, language settings, and other system settings.
• Usage data such as dates and times of access, pages viewed, time on page, clicks, and the referring URL.
• Cookies and similar technologies used to operate the site and improve your experience. See our Cookies Policy for details.

Legal bases and purposes of processing

We process data on the following legal bases and for these purposes:

• Legitimate interests to operate, secure, maintain and improve the Website, including analytics and troubleshooting.
• Consent where required (e.g., for certain cookies or direct marketing you opt into).
• Compliance with legal obligations (e.g., responding to lawful requests by authorities).

How we use your data

• To provide and operate the Website and its features.
• To analyze performance and usage to improve user experience.
• To communicate with you when you contact us.
• To protect the security and integrity of the Website and investigate misuse.

Analytics and aggregated insights

We may combine usage data with aggregated, non-identifiable information for research, statistics and service improvement. We do not create user profiles for social or public display.

Sharing and disclosures

We may share data with trusted processors (e.g., hosting, security, analytics providers) who process data on our behalf under appropriate contracts. We may disclose data if required by law or in good faith belief that such action is necessary to (a) comply with legal obligations and proceedings; (b) protect and defend the rights or property of the Provider; (c) act to protect the personal safety of users or the public.

International transfers

Where data is transferred outside the EU/EEA, we use appropriate safeguards (such as standard contractual clauses) to protect your data.

Data security

We implement technical and organizational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access.

Retention

We retain personal data only for as long as necessary for the purposes described above, or as required by law. Aggregated, non-identifiable data may be retained longer.

Your rights

Subject to applicable law, you have the right to access, rectify, erase, restrict processing, object to processing, and data portability. Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of processing before withdrawal.

How to contact us

To exercise your rights or ask questions about this policy, contact us via the contact page.

Children

The Website is intended for users aged 15 and over. If you believe we have collected data from a child contrary to this statement, please contact us via the contact page.

Updates to this policy

We may update this Privacy Policy from time to time. When we do, we will update the effective date below and, where appropriate, notify you by reasonable means.

Deletion requests

You may request deletion of your personal data at any time by using the contact page.

Versions

This version of the Privacy Policy is version 1.0 and is valid from 17 September 2025.