Privacy Policy

We are “Red Black Tree d.o.o. Čačak“, 20857706, a software development company registered at and operating under the laws and legislation of the Republic of Serbia.

This privacy policy will explain how our organization uses the personal data we collect from you when you use our website (“Site”), or when you communicate with us using Internet, or by other means of communication.

Red Black Tree accepts and follows local and international standards and rules regarding personal data collection via it’s corporate website (Site), therefore this Privacy Policy is established to provide you with information on which personal data we are collecting and how, for which purposes, and other details in this regard, and applies to your personal data whichever country you are coming from.

We as a company are legally bound to comply with the jurisdiction of the Republic of Serbia, which has accepted and incorporated EU’s GDPR into it’s legislation, and therefore the actual EU regulation (GDPR). Primarily, your personal data collected via Red Black Tree corporate website are protected under the Law on Personal Data Protection of the Republic of Serbia, which is in harmony with EU’s GDPR (The Official Gazette of the Republic of Serbia, number 97/08).

Pursuantly, Red Black Tree and this Privacy Policy follows the personal data definition under General Data Protection Regulation of the European Union (GDPR): Personal data are any information which are related to an identified or identifiable natural person (Art. 4.1 of GDPR), i.e. any information that can identify an individual, either directly or when combined with other data.

However, we strive to maintain protection of personal data which is also compliant on most territories of North America (that is, USA and Canada) and United Kingdom. We believe that personal data protection established by instruments of GDPR should also suffice, at least in key-elements, when most other worldly legislations are concerned. There are quite a few internationally accepted and valid definitions of “personal data”, although most of them share the same principal elements. For instance, the "Personal Identification Data", as described in US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context.

The data subjects are identifiable if they can be directly or indirectly identified, especially by reference to an identifier such as a name, an identification number, location data, an online identifier or one of several special characteristics, which expresses the physical, physiological, genetic, mental, commercial, cultural or social identity of these natural persons. In practice, these also include all data which are or can be assigned to a person in any kind of way. For example, the telephone, credit card or personnel number of a person, account data, number plate, appearance, customer number or address are all personal data, also commonly known as personal identifying data, or elsewhere as personal identifying information.

Particularly sensitive information such as health information, income, religion and cultural profiles and the like is also personal data (RBT is not collecting them). Furthermore, and crucial in the present context, data on user behavior is also personal. Cookies can track and register individual users’ browsing activities, like what articles they scroll past and which ones they choose to click on.

In this regard, we are assuring you that our core-business is not based upon, dependent upon or focused on collection of any personal data. We strive to run our business, which is mostly software development, without collection and usage of your personal data.

Therefore, we may get in touch with, or in possession of, your personal data primarily while you are visiting our Site, or while you are communicating with us using email, either as a representative of our current or prospective clients, business partners or other parties interested in our software development business.

This privacy policy has been compiled to better serve those who are concerned with how their Personal Data, or "Personally Identifiable Information" (PII) is being used online when accessing our corporate website, whichever jurisdiction they are coming from as visitors of our Site, or while communicating with us using email. In any case, and whichever jurisdiction you as a visitor of our website are coming from, rest assured that, at all times, WE DO NOT COLLECT YOUR PERSONAL DATA WITHOUT YOUR EXPLICIT APPROVAL.

Please read further details of this Privacy Policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personal Data, i.e. your Personally Identifiable Information in accordance with our website.

Topics of this Privacy Policy are following:

  1. What data do we collect?
  2. How do we collect your data?
  3. How will we use your data?
  4. How do we store and protect your data?
  5. Marketing
  6. What are your data protection rights?
  7. Privacy policies of other websites
  8. Changes to our privacy policy
  9. How to contact us
  10. How to contact the appropriate authorities

What data do we collect?

Our Company collects the following data:

  1. Personal Identification information provided when you communicate with us via email, or via social networks (for instance, job candidates) such as: name, email address, phone number, data of your business and other data that you may present in your email signature.
  2. When above types of personal data is concerned, when EU GDPR is concerned, RBT acts as a “Data Processor”, within limits of use as described in this Privacy Policy.

How do we collect your data?

You directly provide Our Company with most of the data we collect. We collect data and process data when you:

  1. When you communicate with us via email, either as a visitor of our Site or in our regular communication with yourself as our business partner

How will we use your data?

Our Company collects your data so that we can establish and maintain our business communication with yourself, as a job applicant or as a representative of our client or business partner.

How do we store and protect your data?

Our Company securely stores your data at Google and Amazon servers. More info at: Google and Amazon ISO compliance pages.

Our Company will keep your above described data for a period of 3 (three) years. Once this time period has expired, we will manually delete your data.

We protect your data by using standards of good security practice as provided for by EU GDPR:

  1. we are continuously ensuring confidentiality, integrity, availability and resilience of processing systems and services;
  2. we have implemented the international standard ISO 27001 - information security management system;
  3. we have established processes for regular testing, assessing and evaluating the effectiveness of the technical and organizational measures.


Our Company will not send you information about products and services for marketing purposes.

What are your data protection rights?

Our Company would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:

  1. The right to access - You have the right to request RBT for copies of your personal data. We may charge you a small fee for this service.
  2. The right to rectification - You have the right to request that RBT corrects any information you believe is inaccurate. You also have the right to request RBT to complete information you believe is incomplete.
  3. The right to erasure - You have the right to request that we erase your personal data, under certain conditions.
  4. The right to restrict processing - You have the right to request that we restrict the processing of your personal data, under certain conditions.
  5. The right to object to processing - You have the right to object to RBT’s processing of your personal data, under certain conditions.
  6. The right to data portability - You have the right to request that RBT transfers the data that RBT collected to another organization, or directly to you, under certain conditions. If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us at our email:

Privacy policies of other websites

The Site contains links to other websites. Our privacy policy applies only to our website, so if you click on a link to another website, you should read their privacy policy.

Changes to our privacy policy

RBT keeps its privacy policy under regular review and places any updates on this web page. This privacy policy was last updated on 01.07.2021.

How to contact us?

If you have any questions about RBT’s privacy policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us. Email us at:

How to contact the appropriate authority?

Should you wish to report a complaint or if you feel that Our Company has not addressed your concern in a satisfactory manner, you may contact the Commissioner for Information of Public Importance and Personal Data Protection of the Republic of Serbia.