Protection of personal data
1. BASIC PROVISION
The personal data controller referred to in Article 4 (7) of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data ("GDPR") is the operator of the Internet shop www.pilnik .cz, Ing. Jana Žídková, IČ: 60770619, DIČ: CZ6061281336 with registered office at Bělohorská 3057/55, 636 00 Brno (hereinafter referred to as the Operator). The Operator keeps and processes personal data in accordance with the Personal Data Protection Act (No. 101/2000 Coll.) And the laws in force in the territory ČR.
2. PERSONAL DATA
The operator processes only the personal data that users / customers provide in connection with the use of the services (eg: order processing, subscription form, customer registration, customer support contact).
In the case of purchase, the operator collects:
-
Name and surname
-
E-mail adress
-
Phone number (for order status information)
-
Delivery address (for order delivery)
-
Billing address
-
Password in encrypted form
-
business registration number, VAT
-
Other data necessary for performance of the contract
In the case of removing marketing messages (newsletters):
-
Name and surname
-
Contact details (e-mail)
The data we obtain from your use of our services:
While browsing our web sites, we record your IP address, how long you stay on the page and from which site you come from. We view the use of cookies to measure site traffic and customize your website views as our legitimate interest because we believe we can offer you even better services.Ads targeting cookies will only be processed based on your consent.
Our website can also be browsed in a mode that does not allow for the collection of personal data. You can disable the use of cookies on your computer.
3. LEGAL REASON AND PURPOSE OF PERSONAL DATA PROCESSING
The legitimate reason for the processing of personal data is:
-
The performance of the contract between you and the operator under Article 6 (1) b) GDPR.
-
The legitimate interest of the operator in providing direct marketing (in particular for sending business messages and newsletters) under Article 6 (1) f) GDPR.
-
Your consent to processing for the purpose of providing direct marketing (in particular for sending business messages and newsletters) pursuant to Article 6 (1) a) GDPR in conjunction with Section 7 (2) of Act No. 480/2004 Coll., on Certain Information Society Services in the Event of Non-Order of Goods or Services.
The purpose of processing personal data is:
-
Ordering your order and exercising the rights and obligations arising from the contractual relationship between you and the operator; When ordering, the personal data necessary for the successful execution of the order (name and address, email, telephone), the provision of personal data is a necessary requirement for conclusion and fulfillment of the contract, without providing personal data it is not possible to conclude the contract or to fulfill it by the administrator .
-
Sending business messages and doing other marketing activities.
An operator does not use managed personal data for automated decision making.
4. TRANSPOSITION OF PERSONAL DATA TO THIRD PARTIES
Your personal data transmitted to you is transmitted or mediated only if it is necessary for the performance of the contract on the basis of a legitimate interest or if you have previously consented to it. Third parties that may have access to personal data are:
-
Processors involved in fulfilling the sales contract.
-
Payment service providers to process payments and banks based on your order.
-
Transporters, in order to deliver ordered products or services and resolve complaints and withdraw from the contract.
-
Providers of services providing marketing services.
-
Service Providers for Traffic Analysis, Data Processing.
-
Operators of technical solutions to manage the technical part of the e-shop.
-
Public authorities (such as the Police or other law enforcement agencies, including the specialized departments of the UOOZ).
-
Third parties to conduct customer surveys.
Where third parties use data in their legitimate interest, the operator is not responsible for such processing. This processing is governed by the principles of processing the personal data of the companies and persons concerned.
5. PROCESSING TIME
Operator holds personal data:
-
For the time necessary to ensure all rights and obligations arising out of the Purchase Agreement and the exercise of claims under these contractual relationships.
-
The period during which the operator is obliged to keep according to the general legal regulations.
-
Until the consent to the processing of personal data for marketing purposes is revoked, no more than 10 years if personal data is processed by consent.
6. RIGHTS OF BODIES
-
If we process your personal information, you may request free of charge the processing of your personal data at any time by request at the following address: obchod@pilnik.cz.
-
If you believe that processing of personal data is inconsistent with the protection of your personal data and the legal conditions of personal data protection, you may request an explanation, request that we remove the resulting situation, in particular you may request repair, supplementation, liquidation of personal data or blocking your personal information.
-
You also have the right to contact your Personal Data Protection Officer or the Personal Data Protection Authority at any time.
-
You may at any time revoke your consent to the processing of personal data. If you revoke your consent to the processing of your personal information, your personal information will be erased or anonymized; this does not apply to personal data that an operator needs to meet legal obligations (for example, handling a previously placed order) or to protect its legitimate interests. Personal data will also be destroyed if personal data are not needed for the intended purpose or if the storage of your data is inadmissible for other legitimate reasons.
-
You can request a deletion request electronically at the following address: obchod@pilnik.cz.
7. LEGAL REASONS FOR THE PROCESSING OF PERSONAL DATA
-
Based on your consent for specific purposes.
-
Based on legitimate interest.
-
On the basis of fulfillment of the concluded contract to the extent of the personal data necessary for its fulfillment.
8. CONDITIONS OF PERSONAL DATA SECURITY
-
The operator declares that it has taken all appropriate technical and organizational measures to safeguard personal data.
-
The operator has taken technical measures to secure data repositories and personal data in paper form.
-
The Operator declares that personal data are only accessible to persons authorized by him / her.
9. FINAL PROVISIONS
-
By submitting an order from the online store, you acknowledge that you are aware of the privacy policy and that you accept it in its entirety.
Valid from 25.5.2018