Privacy and security
Identity and contact details of the controller
Identity: Bmove d.o.o.
Address: Trg Petra Preradovića 6, HR-10000 Zagreb, CROATIA
OIB (VATIN): 60162542127
The controller processes your personal data lawfully, fairly and in a transparent manner.
Personal data protection and privacy
Personal data collection
Personal data includes all information that can be used on its own or with other information to identify, contact, or locate a single person, (e.g., name, e-mail address, home address, etc.).
When ordering or registering on Bmove, you may be asked to enter your name, e-mail address, phone number, credit card information, or other details in order to improve your customer experience or facilitate your purchase process.
Any non-personal information (browser type, number of visits, time spent on site, etc.) that is automatically recorded by accessing BM’s website may be used by BM exclusively for assessing website use and to improve its content and functionality.
In the event of any change of personal data (e.g., place of residence, delivery address) that is recorded during registration on Bmove website, the User is required to update the changed personal data. In the event that the user did not update the changed personal data on Bmove website or in the Bmove mobile application, BM is not responsible for any difficulties and errors in fulfilling orders and emailing receipts.
When do we collect information?
We collect information from you when you register for the Bmove service, place an order or enter information using the Bmove service.
How do we use your information?
We may use the information we collect from you when you register or make a purchase to quickly process your transactions, for billing purposes, to communicate with you and to provide you with receipts.
Use of your location in the Bmove mobile application
Use of your location when selecting the city for which you are buying a parking ticket
If you have allowed your Bmove mobile application to access your location information and you are in one of the cities where Bmove service is available, the city will show on top of the „Cities“ list on the Bmove mobile app main screen where you select the city for which you want to buy a parking ticket, simplifying and speeding up the purchase process.
If you have not allowed your Bmove mobile application to access your location information and/or you are not in one of the cities where Bmove service is available, the „Cities“ list is displayed in alphabetical order.
Your location information is not stored and is used only when the „Cities” list is displayed.
Recording your location when purchasing a parking ticket
If you have allowed your Bmove mobile application to access your location information, your location is recorded at the time of your parking ticket purchase, enabling easier orientation and faster location of your vehicle, and will be displayed on the city map in the parking ticket details under „Purchase History”.
Your location information is used solely for the aforementioned purpose and is stored for 90 days from your ticket purchase.
How do we protect your information?
We do not store or process your credit card information on our servers. Instead, we use an external PCI-compliant Internet Payment Gateway (CorvusPay and Datatrans) that handles all credit card transactions.
Your personal information is contained behind secured networks and systems, and is only accessible by a restricted number of people who have special access rights to those systems and are required to keep the information confidential. In addition, all sensitive/credit card information you supply is encrypted for transmission over the Internet via Transport Layer Security (TLS) technology, and therefore cannot be viewed or used by third parties.
BM is obliged to protect personal information and will collect only basic user information necessary for providing the Bmove service.
Use of browser cookies
Browser cookies hold pieces of information stored on the user’s computer that extend the functionality of Internet pages. By default, cookies are enabled but if the user wants those disabled, he/she won’t be able to use options like single-click select and a personalized homepage.
We do not sell, trade, or otherwise transfer your personal information to outside parties except in cases where expressly required by law and in cases where this is necessary for providing the Bmove service.
Exercising your rights
The Bmove website and mobile application provide you access to your personal data and their correction.
You are entitled at any time to request from BM the erasure of your personal data or restriction of their processing and to object to processing as well as the right to data portability. These rights are exercised by submitting an e-mail request to firstname.lastname@example.org
Payment of Bmove services is possible through the Bmove User account and the following credit and debit cards: MasterCard, Visa, Diners and Maestro (only for payments with one-time card entry).
After receiving a quote, Bmove account top up can be made by bank transfer or by credit and debit card: MasterCard, Maestro, Visa and Diners.
The User account can also be topped up via prepaid vouchers available through the Tisak and iNovine retail network.
Banking card payments are managed by a third party (Corvus Info d.o.o.) through CorvusPay (service that authorizes credit and debit card payments over the Internet – Internet Payment Gateway), which receives the banking card numbers and other data exclusively for the identification and approval of transactions.
CorvusPay provides complete secrecy of your banking card data (card number, validity date and CVV code) from the moment you enter them into the CorvusPay payment form. Payments are forwarded encrypted from your Bmove application or Internet browser to the issuer (bank that issued your card) and are not stored on IG servers. IG is not responsible for any unauthorized use of user’s banking card information.
The CorvusPay payment form is secured with the Transport Layer Security (TLS) protocol. All stored data is additionally protected using encryption with a cryptographic device certified to FIPS 140-2 Level 3 standard. CorvusPay meets all requirements for online payment security prescribed by leading card companies and operates in accordance with the PCI DSS Level 1 standard, which is the highest security standard in the payment card industry.
When paying with banking cards included in the 3-D Secure program, beside the validity of the banking card, the issuing bank also verifies your identity by using tokens or passwords.
MasterCard® SecureCode™, Verified by Visa