Search keyword:

Zivko Mijatovic & Partners

Privacy Policy

Last updated: May 17, 2023

Basic definitions

Personal Data” means any information relating to an identified or identifiable individual (identifiable individual being a person who can be identified, directly or indirectly), in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that individual.

“Processing” means any operation which is performed on personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction or such.

Controller” means any entity (natural or legal person, public authority, agency or other body) that determines the purpose and the ways that personal data are being processed.

“Processor” means any entity (natural or legal person, public authority, agency or other body) that processes personal data on behalf of the Controller, not including Controller’s employees.

“Sensitive Personal Data” means Personal Data about race or ethnicity, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data for the purpose of uniquely identifying a natural person, data on physical or mental health, sex life or sexual orientation.

Who are we and how can you contact us

We are ZMP, an international legal practice providing intellectual property (“IP”) services to natural persons – individuals and companies.

ZMP is comprising of a network of law offices across Europe in the following territories: Albania, Bosnia and Herzegovina, Bulgaria, Croatia, Czech Republic, Hungary, Kosovo*, North Macedonia, Montenegro, Poland, Romania, Serbia, Slovakia, Slovenia and Spain. Some of these offices are our affiliates operating under the ZMP name and brand, and some of them are our partner offices with separate business name, with whom we cooperate regarding the provision of legal IP services.

Please note that each office is a separate entity subject to jurisdiction in the respective country where they practice law. As such, each office is considered to be a separate Controller of Your Personal data, but for the purpose of this Privacy policy, all of these entities (both affiliate and partner offices) will be referred together as “ZMP”, “ZMP entities”, “we”, “us” or “our”.

The complete list of ZMP entities ,i.e. Personal data Controllers:


Zivko Mijatovic & Partners s.l.
Av. Fotógrafo Francisco Cano 91A, 03540 Alicante
Tel: + 34 96 515 42 44; + 34 96 516 03 63
Fax: + 34 96 516 03 63; + 34 96 526 96 91


Živko Mijatović and Partners d.o.o.
Studentski trg 4, 11001 Belgrade
Tel: +381 11 3341 771; +381 11 3341 797
Fax: +381 11 3341 792


ZMP IP d.o.o.
Baruna Trenka 7, 10000 Zagreb
Tel: +385 1 4854 510; +385 1 457 75 36
Fax: +385 1 457 75 35


Živko Mijatovic & Partners d.o.o.
Tržaška cesta 118, 1000 Ljubljana
Tel: +386 5 904 34 11


Ndue Përlleshi (Alko Impex), Object 2, hyrja 1 nr. 9, Pristina
Tel: +381 11 3341 771; +381 11 3341 797
Fax: +381 11 3341 792

Bosnia and Hercegovina

Živko Mijatovic & Partners d.o.o.
M.H.Uskufije 3, 71000 Sarajevo
Tel: +387 33 200 641
Fax: +387 33 218 421

Republic of North Macedonia

Živko Mijatovic & Partners d.o.o.
Dame Gruev 3/2-11, 1000 Skopje
Tel: +389 23 222 175
Fax: +381 11 2084 166


Živko Mijatovic & Partners d.o.o.
The Capital Plaza, Sheikh Zayed Street 13-IV/68, 81000 Podgorica
Tel: + 382 20 234 152
Fax: + 382 20 234 152


5 Dame Gruev Str., Sofia 1606
Tel: + 359 2 943 40 45
Fax: + 359 2 943 40 45


ZMP Intellectual Property SRL
17 C. A. Rosetti street, office 314, Bucharest
Tel: +4 021 527 06 51
Fax: + 359 2 943 40 45

Czech Republic

Zivko Mijatovic & Partners s.r.o.
Jugoslávských partyzánů 639/26, 160 00 Praha 6
Tel: +420 774 655 998


ZMP Hungary KFT
Városligeti fasor 8/b. fszt. 9-10, H-1068 Budapest
Tel: +36 30 777 5648

Slovak Republic

Zivko Mijatovic & Partners s.r.o.
Krasovskeho 13, 85101 Bratislava
Tel: +421 2 63 452 507


ZMP IP Sp. z o.o.
Puławska 2, Budynek B, 02-566 Warszawa
Tel: +48 22 418 73 21
Fax: +48 22 485 33 55


Rruga Ibrahim Rugova, P. 70, H. 5, Ap. 5, Tiranë
Tel: +355 4 225 07 36
Fax: +355 4 225 07 35

If You have any question or comment regarding this Privacy policy or the processing of Your Personal data, You are welcome to direct them to the Controller of Your data, i.e. the ZMP entity you are cooperating with, using the listed contact details.

This Privacy Policy applies to every ZMP entity, i.e. all listed affiliate and partner offices.

However, please note that our partner offices in Bulgaria and Albania have their separate businesses unrelated to IP services, which entails processing of Personal data independent of ZMP brand. In cases of the stated partner offices in Bulgaria and Albania, this Privacy policy relates only to personal data processing in regard to IP services provided by these offices.

An updated version of this Privacy Policy will always stay available on this webpage and the date of its last update will be featured at the beginning of this Privacy Policy document. We encourage you to check the updates from time to time.

Whom is this Privacy Policy addressing

This Privacy Policy explains ZMP’s practices and policies in regard to collection, use and processing of Personal data of persons outside of ZMP, namely:

  • visitors of our website (“Website”) who choose to fill-in the available contact form in order to make an inquiry about our business and services we provide;
  • individuals who contact us via phone or email to make an inquiry about our business and services we provide;
  • participants in webinars and other events we organize;
  • persons who provide us with their business cards;
  • our individual clients (natural persons who are our clients);
  • individuals who are representatives of our clients – organizations we represent (companies, associations and other legal entities). Such individuals may be our client’s employees and other agents with whom we interact regarding the services we provide;
  • individuals whose data are provided to us by our clients, in relation to legal services we are providing, or are provided to us by public authorities, regulatory bodies and such.

(“You”, “Your”).

Cases in which we may collect and process Your personal data

We collect Your Personal data:

  • When You visit our Website and decide to contact us in order to inquire about our services, ask us a question, or contact us in other way (via phone or email, for example);
  • when You attend webinars and other events we organize;
  • when You decide to voluntarily provide Your business card to us;
  • in the course of sending You an offer for our legal services and establishing a client-lawyer relationship (KYC procedures and such),
  • During the course of our client-lawyer relationship when we provide legal services to You or Your organization.
  • In case a third party (our client or public authority, regulatory body) provides Your Personal data to us.

Categories of personal data we process and purpose of processing

We collect several categories of personal data, depending on a particular situation, keeping in mind the principle of data minimization – we process only the Personal data necessary for the fulfillment of a particular purpose.

When you access our Website and fill-in the contact form in order to inquire about the legal services we provide, we will collect Your name, surname, name of Your organization, work position and Your contact email address, so we can respond to Your question in an appropriate manner, keeping in mind the industry You work for. Filling-in the contact form is optional, but if You wish us to respond to Your inquiry, we will need to process Your data. The same applies is in case You contact us in some other way – via phone or our business email for example, or You provide us voluntarily with Your business card – we will also collect Your contact information in order to respond to Your inquiry.

If You choose to participate in a webinar or other event we are organizing, we will collect Your contact information (name, surname, work position and name of Your organization), so we can register You and facilitate Your participation in the webinar or other event (for example, send you the invitation and the necessary materials). Therefore, processing of Your data is necessary in order to enable Your participation.

If You or Your organization wish to hire us for the provision of legal services, we will collect Your contact data and KYC information as a part of our business acceptance process, in order to send You our business offer.

If You or Your organization are already a client, we will collect certain Personal data depending on a particular legal service we are providing, in accordance with local law and local authorities’ requirements (for instance, courts, administrative bodies, registers and such). This usually includes name, surname, email, phone number, name of Your organization and Your work position. We will also collect and process clients’ records and documents necessary for the provision of legal services or fulfillment of clients’ legal and regulatory obligations or establishment, exercise or defense of legal claims or proceedings. It may happen, although rarely, that we might ask for our client’s ID document (passport, other type of ID document) for identification purposes in order to provide a legal service to such client, or initiate a legal claim on their behalf. In this case, we will anonymize all biometric data (for instance fingerprint located on the ID document provided to us by the client) and will not process such Sensitive data. Providing these data is necessary in order to provide You or Your organization the requested legal service and/or comply with competent authority’s request.

In order to charge for the services we have provided, we will process the necessary financial and payment data such are our client’s bank account number, SWIFT, IBAN and other financial data required for processing payments.

We process Your personal data in order to send You our newsletter or contact You in regard to our services for which we believe may interest You or Your oranization. You may unsubscribe from receiving these types of emails by clicking the unsubscribe link located in the bottom of the email. Once you unsubscribe, we will stop sending You newsletters and other types of promotional emails, but we may keep Your contact data if You or Your organization are our client, in order to render the services we have been contracted for.

We also keep records of our clients and legal cases we are responsible for (mainly client’s name and address, as well as the contact details), so we are able to perform our regular business activities and provide and charge for the legal services rendered.

Our individual or corporate clients may provide us Your personal data, in cases You are the subject of, or Your data are connected to legal advice we are providing to such clients (for instance, You are their employee, agent, customer or other individual). In this case, our client is responsible for ensuring that such data is disclosed to us in compliance with relevant data protection law.

Legal basis of processing

Depending on the purpose of processing and processing activity, we rely on different legal basis when processing Your Personal data.

We have legitimate interest to process Your Personal data (namely – contact, employment and registration data) in order to respond to Your inquiries, facilitate Your participation in webinars and other events we organize and establish business relationship with You or Your organization.

We also collect clients’contact, employment, financial data, as well as legal records and other documents necessary for the provision of our legal services (including legal advice and representing them before regulatory and legal authorities) either based on a performance of a contract we have signed with our clients, or, if processing is necessary for the compliance of our legal and regulatory obligation.

In order to fulfill our legal obligations such as complying with our tax reporting obligations, checking the identity of our clients and preventing frauds, we also process certain data (such is KYC data or other clients’ records).

In cases clients provide us with their Sensitive data (namely, copies of their passport and ID documents containing their fingerprint copy), we will ask for their consent firstly, and then immediately anonymize the fingerprint.

We will process Your contact data in order to provide You with our newsletter and information which might interest you. In certain markets, we process these data based on Your consent, in others, based on legitimate interest we have to inform our clients or potential clients on matters which we believe might interest them. Either way, You may unsubscribe from receiving such emails any time, by clicking the unsubscribe link in the end of an email, and we will stop with such processing.

We keep records of Your or Your organization’s legal cases, because we have legitimate interest to perform our day-to-day business activities and provide you with legal services you procured, or we will process your legal records in order to comply with our obligation prescribed by relevant law (for instance, law dealing with archiving matters).

How long do we keep Your Personal data

We retain Your Personal data only as long as they are needed to fulfill the purpose of processing, or, in some cases, Your Personal data may be retained longer in accordance with local legal requirements (archiving laws, statute of limitation periods etc.)

For instance, if we are obliged to keep collected data in order to comply with legal and regulatory obligations prescribed by a local law, we will keep them for the period of time prescribed in the said law. Or, if processing is necessary for the establishment, exercise or defense of a legal claim, or a filing/registration of Your trademark, patent and such, we will process Your personal data until the claims have been settled or Your IP registered, unless the local law requires us to keep your data for a longer period of time (for instance, local laws prescribing the obligation of archiving legal records).

If You need further information about our specific retention periods of Your personal data, You may contact Your respective Personal Data Controller via contact details provided above.

After the retention period for Your Personal data expires, we will stop processing Your data.

Disclosure of Your Personal Data

Each ZMP entity has its own database separate from other ZMP entities. However, only when it is strictly necessary to facilitate cooperation between ZMP entities in order to provide legal services or charge for the legal services rendered, ZMP entities may share Your necessary personal data with other ZMP affiliate or partner office.

ZMP may also share Your personal data with third-party service providers we have retained in connection with legal service we are providing to You or Your organization (for instance, translators, consultants, couriers etc.)

ZMP may share your Personal data with other third-party service providers, such is our IT support that makes sure Your data are safely stored and protected, or Your or Your organization’s contact and financial details with our accounting service, so we are able to charge for the legal services we provided .

In order to send newsletters and promotional mails, we use an external mailing service system. In cases we share your data with third-party service providers, we are making sure that necessary agreements and other data protection safeguards are in place.

If it is necessary during the course of provision of our legal services or if we are obligated by law (especially where is reasonably necessary for the establishment, exercise or defense of a legal claim or for the purpose of alternative dispute resolution process, as well as for various filings and registrations), we may share Your Personal Data with legal and regulatory authorities or any party needed in connection to legal or administrative proceedings we are conducing on Your behalf. We also may share Personal data in order to comply with our duties as per request made by tax or other state authority.

Data integrity and security

We care about Your privacy and the integrity of Your personal data and maintain physical, technical and administrative safeguards in order to prevent any unauthorized access, loss, damage or destruction of Your Personal data.

We implement appropriate technical and organizational measures including anti-virus protection, passwords, multifactor authentication and others, and have developed an internal system of roles and privileges allowing access to data solely to those persons who objectively need access to provide services and other benefits to you.

In unlikely case of data breach, we will notify You or any competent data protection supervisory authority where we are legally required to do so.

Data transfer

Since ZMP is a legal practice present in multiple jurisdictions, Personal data may be shared across those jurisdictions between ZMP entities, if it is necessary for the provision of our services or if it is necessary for the establishment, exercise or defense of legal claims.

If Personal data are transferred outside the EU, adequate safeguards will be ensured, through standard contractual clauses, or with your consent, or on the basis of other appropriate solutions in accordance with GDPR or other applicable data protection law.

For further details in regard to transfers of Personal Data outside EU and a copy of such safeguards, please contact Your Personal Data Controller.

Your rights

You have the following rights in connection to processing of Your Personal data:

  • The right to be informed. You have the right to be informed on Your Personal data protection rights, as well as about how we collect, use and process your Personal data in a clear and easily understandable way. In order to do so, we have compiled this Privacy Policy to properly inform You.
  • The right of access. You have the right to request a copy of Your Personal data processed by us and request other information how Your data is used (including the purpose of processing, categories of Personal data we process, retention period and other information which are already provided in this Privacy policy).
  • The right to rectification. If You believe that Your Personal data which we process are inaccurate or incomplete, You can contact us with a request to rectify or update such data without undue delay;
  • The right to erasure. You have the right to ask us to erase Your Personal data when, among other things, the Personal data is no longer necessary for the purpose for which it was processed, or when Your Personal data have been unlawfully processed.
  • The right to restrict processing. In certain cases, You have the right restrict the processing of Your Personal data. For instance, in case processing of Your Personal data is unlawful but You oppose the erasure of the Personal data, or, if we no longer need Your data but You need these data for the establishment, exercise or defense of legal claims and in some other cases.
  • The right to data portability. You have the right to request to receive Your Personal data in structured, commonly used and machine-readable format and have the right to transmit such data to another controller without hindrance, in accordance with the law;
  • The right to object. You have the right to file an objection to the processing necessary for the purpose of achieving our legitimate interests at any time, and we will stop with such processing, if there are legal grounds for this. You have the right to file an objection to processing of Your personal data in cases of processing for direct marketing, including profiling, in any time (for instance, you can always opt-out from receiving our marketing emails – newsletters and such, by clicking the unsubscribe link, after which we will stop processing Your Personal data for this purpose).
  • Automated individual decision-making, including profiling. In case that the processing of Your Personal data is done automatically, You have the right to a human intervention, and to express opinion on and object to a decision based solely on automated processing, in accordance with the law;
  • The right to withdraw Your consent. In cases in which we process Your Personal data based on consent You have previously provided, You have the right to withdraw Your consent in any time, and we will stop with such processing, unless there is another legal ground for the processing.
  • The right to lodge a complaint. You have the right to lodge a complaint with the competent data protection supervisory authority if You believe that Your data protection rights may have been breached.

Some of the above rights have their exceptions prescribed by the law. You can exercise the above rights by contacting each ZMP entity separately, using the listed contact details.