Privacy policy is defined in the document GENERAL TERMS AND CONDITIONS OF TESTING SERVICE, which you can download from the following page:
https://www.idvorsky.com/uploads/useruploads/Documents/GTCT-2018-1-1.pdf
Clause 3. relates to data protection:
3. Data protection
The Laboratory fully protects information received from the client as well as those that arise in the testing process in accordance with all requirements of ISO / IEC 17025, regardless of whether the tests are carried out within the scope of accreditation or out of the scope. All employees and engaged staff are responsible for data protection. Confidential data include: technical documentations, results and test report, intellectual property and other information declared by the client as confidential.
Protection implies non-disclosure of information to third parties and/or their disclosure without the approval of the client, as well as the protection of archived records of the laboratory. The Laboratory may announce the Customer as one of its client in the public list of references. Upon official written requests for the disclosure of data submitted by the state authorities, inspections or courts, the Laboratory will inform the Customer of such requests, except if such notification is contrary to the provisions of the law.
Insight into the Customer's data or product’s information by the Accreditation Body of Serbia, the competent ministries, certification or other bodies in the process of evaluation, recognition, control or supervision of the Laboratory’s work and
during which these institutions apply confidential data protection procedures is not considered as information disclosure.
The Customer and the Laboratory may arrange special conditions regarding the protection of confidential data by signing a Non-Disclosure Agreement or similar contracts. Personal data of a person who is the Client, who represents the
Client or who is appointed by the Client are also considered confidential data and include: name, postal and email address, telephone number, address, personal ID number or passport number and country of issue for foreign citizens etc. The Personal Data Protection Act of the Republic of Serbia applies in the Laboratory. All personal data are used solely for necessary business contacts or to announce the person’s visit to to the security staff at the main gait of Institue Mihajlo Pupin. Personal data received via e-mail (contact details in the e-mail signature and e-mail address), information from business cards, entering contact information in the forms on the Laboratory’s website, contact data that the client notes in a letter, data taken during telephone conversation or at meeting, data submitted for a visit announced to the security staff and similar are deemed to be data provided voluntarily by the person, thereby the person gave permission for their collection and use for the purposes specified in these General Terms and Conditions. Personal data are stored in records of the Laboratory for an unlimited time, protected against misuse and shall not be revealed to a third partys without explicit permission of the persons (except otherwise is provided by the law).
By accepting these General Terms, the physical person accepts to receive occasional information about the services of Idvorsky Laboratories, novelties and to be contacted for the purpose of maintaining business connections, but he/she may demand to receive no notifications any further.