Privacy Policy

The Institute for standardization of the Republic of North Macedonia (hereinafter: ISRSM) values and is committed to the protection of your privacy, including that of our members and associates, ISRSM participants, clients, visitors to the ISRSM website, and subscribers of ISRSM services.

This privacy policy provides general information about the way ISRSM collects and processes the personal data of users of ISRSM services, at the time of registration, or during the use of our website and IT tools, which are protected or with the Law on Personal Data Protection and bylaws or with the European regulations on personal data protection. ISRSM has taken appropriate organizational and technical measures (for example, IT security) to ensure that your personal data is protected.
ISRSM processes only the necessary personal data of the citizens in accordance with the valid regulations in the field of personal data protection.

The collection and processing of personal data of the citizen-user are necessary to obtain the electronic service he requests. If the user refuses to share the necessary personal data for the use of electronic services, ISRSM will not be able to provide the requested electronic service.
This privacy policy is intended to inform users of information about the ways and reasons for:

• The reasons for collecting and processing personal data;
• The manner of collecting and processing personal data;
• What personal data is collected and processed;
• The rights and obligations of users regarding the collection and processing of personal data.

Controller and processor of personal data

The controller of the personal data is ISRSM for standardization of the Republic of Northern Macedonia (ISRSM) with headquarters on st. Yuri Gagarin, No. 15, 3rd floor, in Skopje, Republic of Northern Macedonia.

ISRSM is the only national standardization body in the Republic of North Macedonia with the status of a public institution, competent for the preparation, approval, or adoption of standards in all areas covered by the European Committee for Standardization (CEN), International Organization for Standardization (ISO), European Committee for Electrotechnical Standardization (CENELEC), the International Electrotechnical Commission (IEC) and the European Telecommunications Institute for Standardization (ETSI). Unless otherwise stipulated by the law on standardization, the provisions of the law that refer to the institutions are applied to ISRSM. ISRSM has the status of a legal entity.
Personal data are processed in accordance with the provisions of the Law on Personal Data Protection.

Data collected by the Portal

The system collects personal data automatically, as soon as the user logs in through the "My Account" section. This system retains this data only during the user session of the Portal, ie until the user is logged in, and then deleted.
Personal data provided by the user himself are necessary to obtain the desired electronic service from ISRSM. The type and volume of personal data collected depend on the electronic service requested by the user. ISRSM collects only personal data that are necessary to enable the user to request and receive the service from the provider.

User personal data is required for the following reasons:

1. User registration;
2. Use of electronic services provided through the ISRSM website;
3. Participation in the process of standardization activities, related to membership in the national 4. ISRS Technical Committees, as well as participation in the process of international and European standardization;
4. Elimination of any problems related to the user profile;
5. Implement the terms of use of this Privacy Policy;
6. Payment for fees and electronic services for issuing payment receipts (pre/invoice) of standards, publications, and training;
7. Easier navigation through the website;

Persons seeking access to public information based on the Law on Free Access to Public Information. In order to process the requests for access to information, the submitters are required to submit certain data, based on the Law on Free Access to Public Information.

Categories of data to be processed

1. Navigation data

When visiting our website, for each visitor the server creates logs (records) with the following data:

• User (Your) Internet Protocol (IP) address;
• Device from which it accesses, type,s, and model;
• The user operating system;
• Browser type, plugins, and version;
• The pages visited by the user on our website and the time spent on each page;
• URL of the page that transfers to our website and in some cases, the terms used by the user, in an attempt to find the ISRSM page;
• The language of the browser it uses;
• Country from which our website is accessed (determined via IP address).

Server logs are automatically deleted within 15 days, unless circumstances require a longer stay, for example, to investigate a virus or malicious attack.

2. Data that users voluntarily submit

The only personal data collected by ISRSM from the user registration are those that the user voluntarily submits for specific purposes.
Some of the following personal information may be collected: name and surname, postal address, contact telephone, fax, and email.

How we collect personal data

We collect personal data through various channels, including:
- through your use of our website, including the application forms for membership in TC and ISRS;
- by mail (forwarded applications/complaints, initiatives by interested parties to participate in standardization activities);
- by submitting your request in person to the archives of ISSRM.

Categories of personal data users

The activities of processing personal data related to the online services available through the website of ISRSM, are performed by the employees responsible for these services or the persons in charge of performing the activities in question.

Sharing and exchanging data with third parties

We do not share information about you and/or your visit to our website with third parties, except in the following cases:
- in case of forwarding of your initiatives, applications, and requests within the competence of other institutions and bodies,
- at the request of a court, police, or other bodies and bodies to perform their duties and only if there is a legal basis for that and
- for standardization and related activities in the world in order to (i) facilitate the international exchange of goods and services, and (ii) to develop cooperation in the field of intellectual, scientific, technological, and economic activity.

Use and processing of data for other purposes

The user's personal data is used and processed only for the purposes for which it is collected.

Storage time of collected data

The data we collect is stored in accordance with the law and the period required to achieve the purpose of processing.

What are your rights?

Your rights regarding the processing of personal data are:
- the right to be informed about the processing of personal data;
- right of access to personal data;
- right to correction and deletion of personal data;
- right to restrict the processing of personal data;
- right to object;

For additional information and/or exercising your rights to personal data protection, you can contact our personal data protection officer Taskov Filip at the following e-mail address: taskov.filip@isrsm.gov.mk

Right to submit a request to ISRSM

If you believe that the way ISRSM processes your personal data violates the provisions of the Law on Personal Data Protection, you can file a complaint to ISRSM.

Privacy Policy Change

The privacy policy will be regularly amended in accordance with the changes and our activities.

With respect,

Institute for Standardization of the Republic of Northern Macedonia (ISRSM)