COMPLIANCE

Last reviewed: 15 April 2026 (2026-04-15)

SCOPE OF THIS PAGE

This page lists the laws and frameworks Pantera Digital d.o.o. observes in delivering its website and services. It is intended as a transparent, good-faith statement of posture — not a legal opinion or an audit report. Where a statement of fact is material (for example, a claim of certification), we take care to include it only when it is verifiable today.

DATA PROTECTION AND ePRIVACY

• General Data Protection Regulation (EU) 2016/679 (GDPR) — where we act as a controller for our own processing, and where we process personal data on behalf of customers subject to EU law.
• Zakon o zaštiti podataka o ličnosti ("Sl. glasnik RS" br. 87/2018, "ZZPL") — the Serbian Law on Personal Data Protection.
• Zakon o elektronskim komunikacijama ("Sl. glasnik RS" br. 35/2023), Article 127 — consent requirement for non-essential cookies and similar technologies.
• ePrivacy Directive 2002/58/EC (as amended by Directive 2009/136/EC) — observed for visitors located in the EU.

See our Privacy Policy and Cookie Policy for the detailed notices.

E-COMMERCE AND INFORMATION-SOCIETY LAW

• Zakon o elektronskoj trgovini — the Serbian Law on Electronic Commerce; see our Legal Notice for the statutory identity disclosures required by Article 4.
• EU e-Commerce Directive 2000/31/EC — transposed into Serbian law; observed for EU-facing activities.

ACCESSIBILITY

• Web Content Accessibility Guidelines (WCAG) 2.1 Level AA — our target conformance level for the public website.
• EN 301 549 v3.2.1 — the harmonised European standard; voluntarily referenced for EU-facing services.
• European Accessibility Act — Directive (EU) 2019/882 — effective 28 June 2025; we track its scope and incorporate preparedness steps into our roadmap.
• Zakon o zabrani diskriminacije ("Sl. glasnik RS" br. 22/2009, 52/2021) and Zakon o sprečavanju diskriminacije osoba sa invaliditetom ("Sl. glasnik RS" br. 33/2006, 13/2016, 21/2020) — the Serbian legal basis for our accessibility commitments.

See our Accessibility Policy and Accessibility Roadmap.

MICROSOFT ECOSYSTEM

Where we deliver or resell Microsoft cloud services as part of our engagement with a customer:

• We observe the Microsoft Cloud Solution Provider (CSP) program requirements, including customer onboarding through the Microsoft Customer Agreement (MCA) and the use of GDAP (Granular Delegated Admin Privileges) for customer-tenant access.
• We follow the Microsoft Partner Code of Conduct and the applicable brand and trademark guidelines.
• Customer personal data processed through Microsoft cloud services is governed by the Microsoft Product Terms and the current Microsoft Products and Services DPA; our own DPA aligns with and flows these obligations through to the customer.

SECURITY

Our organisational and technical security measures are described on the Trust & Security page.

AUDITED CERTIFICATIONS

We do not currently hold ISO 27001, SOC 2, or other third-party audited security or compliance certifications. We do not claim such certifications on this website or elsewhere. When any such certification is formally achieved, this page will be updated and the certificate or attestation will be published or made available on request.

CONTACT

Questions about this page or about our compliance posture can be sent to:

• Email: compliance@pantera-digital.com
• Privacy / data protection: privacy@pantera-digital.com
• Phone: +381638895103
• Post: Pantera Digital d.o.o., Savski Nasip bb, 11000 Belgrade, Serbia

RELATED DOCUMENTS

• Privacy Policy
• Cookie Policy
• Accessibility Policy
• Accessibility Roadmap
• Terms of Service
• Legal Notice
• Trust & Security