We handle your personal information in accordance with the law, honestly, securely and transparently for you. We are aware of your responsibility because you have entrusted us with your personal information. Therefore, the following is all key information regarding data processing, our obligations and your rights.


The controller of personal data is Miha Štefelin s.p.
Company address: Planina pod Golico 2C, 4270 Jesenice
Phone: 041 811 339


We process personal data for the following purposes and in accordance with one of the six possible legal bases (consent, conclusion or performance of a contract, legal obligations, protection of individual interests, tasks in the public interest, legitimate interests of the controller or third parties) and a specific time it is necessary.

Purpose of processing Legal basis for processing Processing deadline
Concluding and implementing a contractual relationship 

concluding a cooperation agreement, purchasing, renting services and the like

applicable laws in the field of obligations, enforcement, taxes and the like 

the conclusion or performance of a valid contract

the entire contractual relationship and for a further 10 years after completion 

& nbsp;

& nbsp;

Demands for products and services
Inquiries, additional information, service orders
Concluding or implementing a contract full contractual relationship and another 10 years after termination
Login for booking
We process personal data of customers exclusively for the purpose of booking, to respond to their request via e-mail and do not provide it.
consent of the individual until the reservation expires
News, educational content, news, promotions and offers
Notices about our business, news and benefits for you, campaigns you can take advantage of, educational content about services and the like
consent of the individual until revocation of consent
Marketing research
Participate in surveys, questionnaires and other tools we use to get to know you better and offer you the best
consent of the individual until revoked consent
Tourist vouchers
We need personal data of clients in the case of using BON21, which is provided exclusively and only in the case of a request from FURS.
applicable laws under applicable law

In order to ensure the favorable conclusion and implementation of the contract, we process various types of personal data.

Data type Data Source
Customer information
Identification and contact information, wishes, requests, consents, inquiries, information on purchases, rentals, packages, information on written, telephone or personal contacts
individual publicly available sources of own records
Contract relationship information
data on concluded contracts and annexes, data on answers to inquiries, data on payments, data on orders, data on possible legal remedies

& nbsp;

publicly available sources of own records


We use personal data in our company as a controller and in certain cases we provide it to FURS.


Personal data is transferred to countries outside the European Union, but only to companies that are on the Privacy Shield list, thus ensuring adequate protection of data and rights under Article 49 of the Regulation.


Our company operates comprehensively, but all decisions regarding contractual relationships and other decisions with legal or related effects are made by our employees with appropriate information support.


The Constitution of the Republic of Slovenia and the applicable European and Slovenian regulations guarantee you a number of rights regarding privacy and protection of personal data, including the following:

  • Right to be informed about the processing of your personal data (the text you read is part of the exercise of this right of yours);
  • right of access of personal data means that you have the right to obtain confirmation from us as the controller whether personal data are processed in relation to you and, where applicable, access to this personal data and additional information (purposes of processing, types of data, data users, retention time, existence of rights and possibilities of appeal, data sources, possible automated decision-making or special profiling);
  • Right of Correction means that you have the right to have, as the controller, correct inaccurate personal information about you without undue delay; taking into account the purposes of the processing, you also have the right to supplement incomplete personal data, including the submission of a supplementary statement;
  • Right of Deletion , also called “Right of Oblivion”, means that you have the right to have us, as the controller, delete personal data concerning you without undue delay if the prescribed conditions are met (processing no longer required, revocation of consent and no other legal basis, substantiated objection, illegal processing, deletion required by applicable regulations, etc.);
  • Right to limit processing means the right to obtain that as a controller we restrict the processing of your data if you dispute the accuracy of the data or if you have lodged an objection or if the processing is illegal or if the processing is no longer required by the controller , but to assert, enforce or defend your legal claims;
  • Right of portability means the right to receive personal data about you provided to us as a controller in a structured, commonly used and machine-readable form, and the right to provide this data to another controller without hindering you in any way (applies to data that we process automatically based on consent or contractual relationship);
  • Right to object means that you may object to certain types of processing of your personal data (public interests, legitimate interests of the controller, marketing purposes) at any time and we must prove legitimate interests in processing or stop processing in the case of marketing);
  • Automatic processing and profiling rights means that you are not subject to a decision based solely on automated processing, including profiling, which has legal or similar effects on you if there is no this is strictly necessary, prescribed or not

We will be happy to assist you in exercising all your rights or in obtaining additional information or clarifying dilemmas, via e-mail:

If you believe that your rights or regulations on personal data protection have been violated, you can complain to the competent state authority. In Slovenia, this is the Information Commissioner of the Republic of Slovenia (Zaloška 59, 1000 Ljubljana, phone: 01 230 97 30 , fax: 01 230 97 78, e-mail: ).

Scroll to Top