Based on EU Regulation 2016/679 of 27.4.2016 with effect from 25.5.2018
This information is provided by:
Company number 06972108
2 Pass Street
OL9 6HZ Manchester – Oldham
contact phone: +420 773 626 295,
contact email: email@example.com
on the basis of Article 13 of EU Regulation 2016/679 (hereinafter referred to as the Regulation).
1. Explanation of terms:
1.1. Personal data are data leading to the identification of a natural person, in particular: name and surname, residential address, email address, telephone number, identification number of a natural person engaged in business and tax identification number of a natural person engaged in business as a data subject.
1.2. The controller (the above-mentioned company) is an entity that determines the purpose and means of personal data processing, performs processing and is responsible for them. The controller may authorize or authorize the processor to process personal data, unless a special law provides otherwise.
1.3. A processor is any entity that processes personal data in accordance with the Act and the Regulation on the basis of a special law or on behalf of the controller, on the basis of a concluded contract on the processing of personal data or on the basis of the data subject’s consent.
1.4. The database is an internal list of data on individuals and their personal data, maintained by the administrator.
1.5. Profiling is any form of automated processing of personal data consisting in the evaluation of certain personal aspects relating to a natural person, in particular the analysis or estimation of aspects related to his work performance, economic situation, health status, personal preferences, interests, reliability, behavior, place where it is located or moving.
1.6. Cookies are small amounts of data that a web server sends to a browser that stores them on a user’s computer. Each time you visit the same server, the browser then sends this data back to the server. Cookies are usually used to distinguish individual users, user preferences, etc. are stored in them.
1.7. The Commissioner for Personal Data Protection is a professionally qualified representative of the administrator, who oversees the transparency and legal processing of personal data by the administrator, as well as oversees the integrity of data – their backup and security.
2. The administrator (the above-mentioned company) processes personal data according to the Regulation according to the following principles:
2.1. Legality – processes only those data that are necessary to fulfill contractual obligations
2.2. Purposefulness – data are collected only for certain, explicit and legitimate purposes,
2.3. Minimization – processes the maximum amount that is necessary to perform the expressed tasks
2.4. Storage time – personal data are processed only for the time necessary for the given tasks
2.5. Integrity and confidentiality – the administrator has taken appropriate technical and organizational measures to secure and protect against unauthorized or unlawful processing and against loss, destruction or damage.
3. Protection of personal data and information on processing
3.1. The administrator obtains personal data from the entities themselves as part of negotiations on concluding a contract, eg by personal delivery, email, inquiry form or order.
3.2. The controller shall inform the data subject when the provision of personal data is necessary for the performance of the contractual relationship or when it is voluntary.
3.3. Personal data will be processed during the negotiations on the conclusion of the contract and for the duration of the contractual relationship.
3.4. Personal data will be further processed in the necessary form to fulfill the legal obligation to archive accounting documents for a period specified by legislation.
3.5. Personal data will be processed and stored for the next 24 months in the event of a possible dispute between the controller and the data subject.
4. Reasons for processing
4.1. The Administrator processes Personal Data for the following purposes:
* fulfillment of legal obligations of the administrator (accounting, tax and archive management).
* marketing and business offers of the administrator (download of the magazine, offer of conferences, trainings and other events).
* keeping a Database of Individuals.
* protection of the rights and legally protected interests of the administrator (legitimate interest).
5. Rights and obligations of the data subject
5.1. The entity is required to administrator only true and accurate personal information.
5.2. The entity is obliged to provide the administrator with verification of the provided data.
5.3. The entity has the right to request access to its personal data from the administrator
5.4. The subject has the right to correct the provided personal data
5.5. The subject has the right to delete the provided personal data
5.6. The subject has the right to limit the processing of personal data
5.7. If the consent of the subject is required for the processing of personal data, the subject may withdraw it at any time.
5.8. The entity may exercise its rights:
5.8.1. Data box: see index
5.8.2. Email: firstname.lastname@example.org
5.8.3. By post (the signature must be officially verified, see point 5.1.)
6. Rights and obligations of the administrator
6.1. The administrator has the right to verify the truthfulness and accuracy of the personal data provided
6.2. The controller is obliged to provide the data subject with information on the scope and manner of the personal data provided, if the data subject so requests. The administrator shall do so immediately within 30 working days at the latest.
6.3. The administrator has the right to refuse to provide such information or to charge for its provision in case of repeated and unreasonable requests.
6.4. The controller shall provide the information in electronic form, unless the data subject requests otherwise. In this case, reference may be made to point 5.3.
7. Legitimate interest of the administrator – purposes
7.1. Protection of the administrator, his basic or other rights arising from general legal obligations, regulations and contracts. In particular in the context of various disputes, inspections, investigations and in relation to contractual partners. The processing time is determined by generally binding regulations, but no later than 10 years after the termination of the contractual relationship.
7.2. Protection of the administrator’s property, the life and health of employees and persons entering the administrator’s premises.
For a period of 3 days from the recording.
7.3. Debt collection during the statutory limitation periods, but no longer than 10 years.
8. Consent to the processing of personal data
8.1. The data subject provides consent to the processing of data which, for their purposes, do not belong among the law, or to fulfill the contractual relationship, or among the legitimate interests of the controller. The consent is granted by a written form or confirmation of the electronic version of the consent.
8.2. The data subject may, according to point 4.7. revoke this consent at any time.
8.3. The purposes and processing of the data provided on the basis of the consent are indicated on the consent form.
9. Method of personal data processing
9.1. The personal data of the subject are processed automatically and manually
9.2. Personal data may be disclosed to authorized employees of the administrator if this is necessary for the performance of the contractual relationship and if it is strictly necessary for the performance of their duties.
9.3. Personal data may be made available to processors with whom the controller has a contract on the processing of personal data and, where applicable, to other persons in accordance with the law and the Regulation.
10.1. The administrator uses “cookies” on his website, which are stored on the visitor’s computer and automatically recognize him on the next visit. For example, cookies make it possible to adapt the website to the interests of the data subject or to store a username, which then does not have to be re-entered each time. If the data subject does not want his / her computer to be recognized, it is necessary to adjust the Internet browser settings in such a way that cookies are deleted from the computer’s hard disk, cookies are blocked or a warning is set before the cookie is saved. (More information about cookies can be found HERE.)
11.1. The wording of the Information on the processing of personal data may be changed or supplemented by the administrator. The Administrator shall inform the natural person of any such change by e-mail or other suitable communication channel at least 5 days before the changes take effect. If a natural person does not agree with the change, he has the right to request deletion from the database without any sanction.
11.2. This document takes effect on the day of its publication.