Singidunum

University

Privacy Policy

Last updated: August 14, 2025

Singidunum University • Belgrade, Serbia

This Privacy Policy describes how Singidunum University ("the University," "we," "us," or "our") collects, uses, and protects your personal information when you use our digital platforms, including our website, learning management systems, student portals, and related services (collectively, "Services").

Information We Collect

We collect information that you provide directly to us and information that is automatically collected when you use our Services.

Personal Information:

•Name, email address, and contact details
•Student ID, academic records, and enrollment information
•Faculty credentials and research affiliations
•Payment and financial information

Automatically Collected:

•Device information and IP addresses
•Usage patterns and analytics data
•Cookies and similar tracking technologies
•System logs and error reports

How We Use Your Information

We use the information we collect to provide, maintain, and improve our Services, and to fulfill our educational and administrative responsibilities.

Primary Uses:

•Providing educational services and academic support
•Managing student enrollment and academic records
•Processing payments and financial transactions
•Communicating important updates and announcements
•Ensuring security and preventing fraud

Legal Basis for Processing

We process your personal information based on several legal grounds, including consent, contractual obligations, and legitimate interests.

Legal Grounds:

•Consent for optional services and communications
•Contract performance for enrolled students
•Legitimate interests in institutional operations
•Legal obligations and regulatory compliance

Compliance Framework:

•General Data Protection Regulation (GDPR)
•Serbian Data Protection Law
•Higher Education Act and regulations
•Institutional privacy policies

Information Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties, except as described in this policy or with your explicit consent.

Limited Sharing Circumstances:

• Service Providers: Trusted partners who assist in service delivery

• Legal Requirements: When required by law or court orders

• Academic Collaboration: Research partnerships and joint programs

• Emergency Situations: Health and safety emergencies

• Consent-Based: When you explicitly authorize disclosure

Data Security and Protection

We implement comprehensive security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction.

Security Measures:

•Encryption of data in transit and at rest
•Multi-factor authentication and access controls
•Regular security audits and vulnerability assessments
•Employee training on data protection practices

Data Retention and Deletion

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

Retention Periods:

•Student records: 10 years after graduation
•Financial records: 7 years for tax purposes
•Research data: Duration of research project + 5 years
•Website analytics: 2 years maximum

Your Rights and Choices

You have certain rights regarding your personal information, including the right to access, correct, and delete your data, subject to legal and institutional requirements.

Your Rights:

•Access and review your personal information
•Request correction of inaccurate data
•Request deletion of your data
•Withdraw consent for optional processing

How to Exercise:

•Contact our Data Protection Officer
•Submit formal written requests
•Use student portal privacy settings
•Follow institutional procedures

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze usage patterns, and provide personalized content and services.

Cookie Categories:

• Essential Cookies: Required for basic functionality

• Functional Cookies: Enhance user experience

• Analytics Cookies: Help improve our services

• Marketing Cookies: Provide relevant content

International Data Transfers

Your personal information may be transferred to and processed in countries other than Serbia, particularly within the European Union and for international academic collaborations.

Transfer Safeguards:

•Adequacy decisions by relevant authorities
•Standard contractual clauses for data protection
•Binding corporate rules for institutional transfers
•Explicit consent for specific transfers

Children's Privacy

Our Services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13 without parental consent.

Special Considerations:

• Parental Consent: Required for users under 18

• Educational Programs: Special provisions for minors

• Limited Data Collection: Minimal necessary information

• Enhanced Protection: Additional safeguards for minors

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes through appropriate channels and update the "Last updated" date.

Notification Process:

•Email notifications to registered users
•Website announcements and banners
•Student portal notifications
•30-day advance notice for major changes

Contact Information

If you have questions about this Privacy Policy or wish to exercise your rights, please contact our Data Protection Officer.

Data Protection Officer

Email: dpo@singidunum.ac.rs

Phone: +381 11 123 4569

Address: Danijelova 32, 11000 Belgrade, Serbia

Office Hours: Monday - Friday, 9:00 AM - 5:00 PM

Privacy Office

Email: privacy@singidunum.ac.rs

Phone: +381 11 123 4570

Address: Danijelova 32, 11000 Belgrade, Serbia

Office Hours: Monday - Friday, 8:00 AM - 6:00 PM

This Privacy Policy is effective as of August 14, 2025 and constitutes our commitment to protecting your privacy and personal information.