We carefully protect your personal data and use high-quality third-party tools to provide you with the best service. These tools process some of your data, but we always make sure that every service we partner with also meets all conditions and is GDPR compliant. The administrator of personal data in accordance with Article 4 paragraph 7 of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data (hereinafter: “GDPR”) is the owner of the website , or a person authorized by him.
Personal data – any information about an identified or identifiable individual; an identifiable natural person is a natural person who can be identified, directly or indirectly, in particular by reference to a specific identifier, such as a name, an identification number, location data, an online identifier or to one or more specific physical, physiological, genetic, the psychological, economic, cultural or social identity of that natural person.
We process personal data only for the purpose of communicating with site users or implementing the offered service or selling goods based on the execution of a concluded contract. This data is as follows: First Name, Last Name, Delivery Address, Telephone Contact, Billing Address, Email, Payment details according to payment type and activity history. We process the personal data you provide or the personal data that the administrator receives as a result of completing your order. We process your identification and contact data, as well as data necessary for the performance of the contract.
The legal reason for the processing of personal data is: performance of the contract between you and the controller in accordance with Article 6 paragraph 1 letter b) GDPR, the legitimate interest of the controller in providing direct marketing (especially for sending commercial communications and newsletters) in accordance with Article 6(1) letter e) of the GDPR, Your consent to processing for the purpose of ensuring direct marketing (in particular for sending business messages and newsletters) in accordance with the letter of Article 6.1 paragraph a) of the GDPR in connection with paragraph 2 § 7 of Law No. 480/2004 Coll. about certain information society services in the event that goods or services have not been ordered.
The purpose of processing personal data is to process your request and exercise the rights and obligations arising from the contractual relationship between you and the controller; When placing an order, personal data necessary for successful processing of the order is required (name, address, contact), the provision of personal data is a necessary requirement for the conclusion and execution of the contract, without providing personal data. data it is impossible to conclude a contract or perform it on the part of the administrator, as well as for sending business messages and carrying out other marketing activities.
The administrator automatically makes individual decisions within the meaning of Article 22 GDPR. You have given your express consent to such processing.
The administrator stores personal data for the period necessary to implement the rights and obligations arising from the contractual relationship between you and the administrator, as well as to implement the requirements from these contractual relationships (for 15 years from the date of termination of the contractual relationship).
The administrator stores personal data until the consent to the processing of personal data for marketing purposes is withdrawn, for a maximum of 15 years if the processing of personal data is carried out on the basis of consent. Upon expiration of the personal data storage period, the administrator deletes the personal data.
The processing of personal data is necessary to communicate with site users or to fulfill the contract concluded when ordering the services offered.
Recipients of personal data are persons involved in the delivery of goods/services/making payments on the basis of an agreement, providing services for managing an online store (Shoptet) and other services related to the operation of an online store, and providing marketing services.
The administrator intends to transfer personal data to a third country (country outside the EU) or an international organization. Recipients of personal data in third countries are providers of postal services, cloud services and communication services.
Subject to the conditions set out in the GDPR, you have:
- the right of access to your personal data in accordance with Article 15 GDPR.
- the right to correct personal data in accordance with Article 16 GDPR or to restrict processing in accordance with Article 18 GDPR.
- the right to erasure of personal data in accordance with Article 17 GDPR.
- the right to object to processing in accordance with Article 21 GDPR.
- right to data portability according to Article 20 GDPR.
the right to withdraw consent to processing in writing or electronically to the address or email address of the administrator specified in Article III of these conditions.
The administrator declares that he has taken all necessary technical and organizational measures to protect personal data. The administrator has taken technical measures to ensure the security of data storage and personal data storage in paper form, especially passwords, encryption, backup, and anti-virus software. The administrator declares that only authorized persons have access to personal data. By sending a message through the online feedback form and checking the consent box, you confirm that you are familiar with the terms of personal data protection and accept them in full. The administrator has the right to change these conditions. It will publish the new version of the privacy terms on its website and at the same time send you the new version of these terms to your email address that you have provided to the administrator.
