The Croatian Institute of Internal Auditors (CIIA) approaches the privacy of its members, suppliers, associates and other contacts with due care and undertakes to protect your personal data and comply with all legal regulations on data protection.

If you apply to be a member, register for courses or events, submit a request for confirmation of participation or otherwise submit your personal information to us through electronic forms, written requests, telephone, or e-mail, you agree that CIIA will use such information in in accordance with its Privacy Policy.

If we have received your data through a third party, for example through an event organization and reservation service provider or through cooperating professional associations, CIIA acts as a data processor and uses your data only for purposes directed by the third party.

Membership applications are accepted only from you as an individual, regardless of who fulfils the obligations of paying membership fees. CIIA will always act as data controller for all membership related data collected and processed.

The CIIA website occasionally contains links to websites owned and operated by third parties. These third-party websites have their own privacy policies and are likely to use cookies, so we encourage you to review them. We accept no responsibility or liability for the privacy practices of such third-party websites, and your use of such websites is at your own risk.

What information does HIIR have about me?

When you participate in or register for any of the HIIR services such as membership, conferences or other events, we may collect and store personal information about you.

The collected personal data may, depending on whether it is collected when joining CIIA or registering for a conference or other event organized by CIIA, include information such as your first and last name, OIB(personal identification number), e-mail address, postal address, telephone number, date of birth, information about your workplace and employer, information about the professional certificates you possess.

By sending your data, you enable us to provide you with the services you have chosen.

CIIA will not collect more personal information than is necessary to regulate membership, register for conferences or events, or respond to your inquiries.

How will you use my personal information?

We will use your personal data for a number of purposes, including:

  • processing member data and creating a register of members in accordance with current legal regulations;
  • providing information on current events in the country and abroad such as courses, seminars, conferences and the like;
  • to contact you regarding the payment of membership fees and the realization of membership benefits;
  • contact you in relation to any inquiry or comment we receive from you;
  • invite you to participate in surveys related to the profession of internal audit or the services of CIIA or IIA;
  • processing your registrations for meetings organized by CIIA. CIIA will never sell your information to third parties, but will share it with our selected partners such as agencies we work with to organize events. CIIA will require all third parties with whom we share data to process your personal data in accordance with the relevant provisions of the Personal Data Protection Regulation.

When you join CIIA, CIIA will share your first and last name, email information and membership number with the global Institute of Internal Auditors in the USA (IIA).

This data will be used exclusively for the purpose of exercising your membership rights and accessing the contents of the global website. IIA Global undertakes to comply with all current and future data protection requirements applicable in the EU. The IIA Privacy Policy in Croatian is also available to all CIIA members.

IIA may also contact you directly by sending relevant communications as part of membership benefits, in connection with any service or activity for which you have applied, including professional certification with IIA.

How long will HIIR keep my personal data?

We keep information about CIIA members as long as necessary to exercise your membership rights as well as to comply with the provisions of other laws such as the Associations Act or the Accounting Act.

In certain circumstances, you have the right to request the erasure of your data (commonly known as the "right to be forgotten."). If you want to exercise this right, please contact us at hiir@hiir.hr. We will respond to your request within one month.

Can I find out what personal data CIIA has about me?

You have the right to access personal information about you. If possible, we will provide you with such access electronically. If this is not possible, we will provide you with a copy of your data within one month of your request.

Questions or complaints?

If you have any questions, comments or complaints about how we processed your data, please send an e-mail to hiir@hiir.hr.

You also have the right to complain directly to the Personal Data Protection Agency at azop@azop.hr.