Terms of personal data protection

 

INFORMATION FOR CUSTOMERS ON PERSONAL DATA PROCESSING

Company CLATRONIC CZ & SK s.r.o., 

ID: 280 23 609, with registered office at náměstí Republiky 1068, postal code: 360 01 (hereinafter referred to as the “Controller”) hereby informs its customers (hereinafter referred to as the “Data Subjects”) of the basic principles and principles in accordance with the provisions of Article 13 seq. of Regulation No. 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as the “Regulation”) and related legislation, on the basis of which CLATRONIC CZ & SK s.r.o., as the Controller of personal data in connection with the conclusion of the Purchase Agreement, handles the personal data of the Data Subject.

The processing of personal data (manually and automatically in electronic form) to the extent of: name, surname, residence, telephone number and e-mail is necessary for the proper performance of the purchase contract concluded between the controller and the data subject.

The controller processes personal data provided to him by the data subject or on the basis of fulfilling the order of the data subject.

The purpose of data processing is:

– processing the order of the data subject and exercising the rights and obligations arising from the contractual relationship between the data subject and the controller.

When placing an order, personal data are required which are necessary for the execution of the order, which are necessary for the conclusion and performance of the contract and without which it is not possible to conclude the contract or perform it by the administrator.

– sending commercial messages and doing other marketing activities

– for the purpose of determining the satisfaction with the purchase of the data subject in order to improve the quality of services in the form of email questionnaires within the Customer Verified program.

These are sent in the case of a purchase if, within the meaning of Section 7 (3) of Act No. 480/2004 on certain

information society services, the data subject does not refuse to send commercial communications to the controller or the data subject does not withdraw his or her prior consent.

For sending questionnaires, evaluating your feedback and analyzing the market position of the administrator, the administrator uses processors, which are Heuréka.cz a Zboží.cz. 

For these purposes, the controller may transmit information about the purchased goods and the e-mail address of the data subject.

Personal data is stored with the controller:

– for the period strictly necessary to ensure mutual rights and obligations arising from the purchase contract and the assertion of claims under these contractual relationships for 15 years after the termination of the contractual relationship

– until the consent to the processing of personal data for marketing purposes is withdrawn, if the personal data are processed on the basis of consent, for a maximum of 10 years

The recipients of personal data are persons and companies:

– involved in the delivery of goods and services and making payments under the contract

– providing e-shop operation services and other services related to e-shop operation – carriers, accounting services – providing marketing services

Provided services providing marketing and support services:

– Google Analytics recording cookies, site usage, purchase conversions and form filling

– Google Ads recording cookies, site usage, purchase conversions and form filling, retargeting

– Heuréka.cz recording purchase conversions and form completions, e-mail for Verified by Customers service 

– Seznamzbozi.cz recording purchase conversions and e-mail 

– Srovnanicen.cz recording purchase conversions and e-mail 

– Srovnalme.cz recording purchase conversions and e-mail 

– Sklik.cz recording cookies, web usage, purchase conversions, retargeting

– accounting program Cézar Breaker Software

– PPL carriers

– GOPAY payment gateway

– Visual Chat for customer communication

– electronic communication

– MailChimp recording email – for sending offers and questionnaires

 

Terms of personal data security:

– The Controller declares that it has taken all appropriate technical and organizational measures to secure personal data 

– The Controller has taken technical measures to secure data repositories and personal data repositories in paper form

– The Controller declares that only persons authorised by him have access to personal data

– The administrator is entitled to change these conditions.

A new version of the privacy policy will then be published on its website and sent to the e-mail address provided by the data subject to the controller.

The administrator has not appointed a data protection officer, has not authorized any processor to process personal data, or has appointed a representative to perform duties within the meaning of the Regulation.

The controller does not intend to provide personal data about the data subjects to any natural or legal person, a public authority or other third parties.

The Administrator does not intend to transfer personal data to a third country or international organisation.

The data subject has the following rights in accordance with the Regulation:

• the right to ask the administrator to provide information about the processing of his personal data, the existence of the right to request from the controller rectification of inaccurate personal data concerning him or her without undue delay;

• the right to have incomplete personal data completed, taking into account the purpose of the processing; the existence of the right to request from the controller rectification or erasure of personal data concerning the data subject or to object to such processing;

• the right to request that the controller restrict the processing of personal data in cases specified by the Regulation;

• the right to object to the processing of his personal data in the cases provided for by the Regulation,

f) Right to data portability Each data subject shall have the right granted by the European legislator, to receive the personal data concerning him or her, which was provided to a controller, in a structured, commonly used and machine-readable format.

Furthermore, the data subject has the right to lodge a complaint with the Office for Personal Data Protection if he or she considers that there has been a legal violation in relation to the protection of his or her personal data.

The data subject declares:

– that by submitting an order from the online order form, it confirms that it is familiar with the terms of personal data protection and that it accepts them in their entirety

– that they agree to these terms and conditions by ticking their consent via the internet contact form

These terms come into effect on 25 May 2018.