Consent to the processing of personal data
I. Basic Provisions
1. To the operators of this website and to the Administrators of personal data in the sense of Article 4 point 7 of Regulation (EU) No. 1095/2006 2016/679 of the European Parliament and of the Council on the protection of natural persons in connection with the processing of personal data and the free movement of such data (hereinafter only GDPR) is Bruno Dirbák, Milešovská 366, 683 54 Otnice, Czech Republic, ID: 09393862, VAT number: CZ020805
2. To exercise your rights in relation to the processing of your personal data, you can contact the Controller using the following contact details:
- Email: info@abuko.team
- Mobile: +420 702 004 019
- Data box: 57afx8q
- Address: Milešovská 366, 683 54 Otnice
3. Personal data is any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is a natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, a network identifier or to one or more specific elements of the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
4. The controller does not have a designated data protection officer.
II. Categories of personal data processed
1. The controller processes personal data that:
- you have personally provided in connection with the contractual relationship. This includes the following personal data: email address, name and surname, telephone number
- The Administrator obtains your activity when using the individual services of the website, when communicating with the Administrator via online chat, by commenting on articles published on the Administrator’s website, publishing articles, registering, subscribing to newsletters or filling in an online form, all with your express consent. This may include the following personal data: email address, name and surname, IP address (see Article IV) or
- The Administrator may obtain cookies and other online browser identifiers based on your simple visit to the Administrator’s website and your behavior thereon. In this case, we record the following personal data: see. V. Cookies do not allow personal identification of visitors to the website.
III. Lawful basis and purpose of the processed data
1. The legal basis for the processing of personal data according to the category in Article II.1. is the performance of a contract to which you as the customer are a party (ordering the services of the Controller), in accordance with Article 1(b) GDPR, as well as the legitimate interest of the Controller in providing direct marketing to its customers (e.g. sending commercial communications and newsletters) in accordance with Article 1(f) GDPR. We will retain this data for 5 years from the conclusion of the Controller’s last contract with you.
2. The legal basis for the processing of personal data pursuant to Article II.2 that you have provided to the Controller is your explicit consent as set out in Article 2.2.
3. The personal data collected through cookies and other online identifiers are processed by the Controller on the basis of your explicit consent as stated in the article. V. This does not apply to so-called functional cookies, which are necessary for the operation of the website (for which you consent to the use of this technology by simply visiting the website).
4. The purpose of processing personal data is:
- the processing of your order and the exercise of the rights and obligations arising from the contractual relationship between you and the Controller; when placing an order, the personal data required for the successful processing of the order (name and address, contact) are required, the provision of personal data is a necessary requirement for the conclusion and performance of the contract, without the provision of personal data it is not possible to conclude the contract or its performance by the Controller,
- sending commercial communications or offers, newsletters and other marketing activities (including automated individual decision-making).
5. On the part of the Controller, there is automatic individual decision-making within the meaning of Article 22 GDPR. You have given your explicit consent to such processing.
IV. Consent of website visitors to the processing of personal data for marketing purposes
1. You consent to the sending of commercial communications/offers or newsletters, including profiling (consent for marketing purposes) as a visitor to the Administrator’s website by filling in your e-mail address in the field provided on the website and subsequently confirming your consent by clicking on the link that will be sent to your e-mail address (double opt-in).
2. Your consent to the processing of personal data for marketing purposes may be withdrawn at any time. The withdrawal of consent is not related to the processing of your personal data on the basis of another legal ground (e.g. for the performance of a contract).
V. Cookies and online identifiers
1. Cookies and other online identifiers enable the correct functionality of the website, remembering the customer’s login details, evaluating website traffic and optimising the Controller’s marketing activities and profiling (by finding out which pages and functions the customer uses most often, the offer to website visitors can be best tailored, including the advertisements displayed, etc.). The purpose of cookies is to make it easier and more convenient for visitors and customers to use the website and to enable the targeting of relevant advertising.
2. On the website, the Administrator primarily uses the following cookies:
- functional cookies: these are automatically deleted when you leave the website and help the website to function properly during your visit,
- persistent cookies: are stored permanently and may contain an anonymous browser identifier of the site visitor. These cookies do not identify you as an individual, are completely anonymous and only identify your access to the website and your behaviour. Cookies are mainly used for measurement and statistical purposes (i.e. the cookie knows repeat visits from the same browser and device) and for site and advertising customisation, where the cookie allows, through the identification of the browser, to personalise the content of the site or to show targeted advertising to a specific user on the website or on the sites of partners that use this advertising system,
- marketing cookie: shows you ads and offers that are suitable and relevant to you based on your behaviour on the website (profiling).
3. You consent to the use of cookies and online identifiers for the provision of services, advertising personalisation and traffic analysis by ticking the interactive box at the bottom of the screen or on the Cookie Policy page.
4. You can use the Administrator’s services without the use of persistent and marketing cookies.
5. The use of cookies can be set using your internet browser. If you do not agree to the collection of cookies, you can prevent the collection of cookies by changing your browser settings and/or by visiting the Cookie Policy page.
6. The Administrator collects cookies on its website, which are listed on the Cookie Policy page and updated regularly.
VI. To whom the controller may disclose personal data
1. The recipients of personal data are:
- persons involved in the delivery of the Administrator’s goods and services and in making payments,
- persons processing accounting and providing tax advice to the Administrator,
- persons providing the operation of the Controller’s website, e.g. providers of processing software, services and applications used by the Controller, web hosting, etc.
- persons providing marketing services for the Administrator,
- The controller may transfer personal data to a third country (to a country outside the EU) to providers of mailing services and cloud services, or to a provider of automated spam detection services.
- The current list of processors is listed on the Consent to the processing of your personal data page.
VII. How long the controller keeps personal data
1. The controller stores personal data:
- for the period necessary to exercise the rights and obligations arising from the contractual relationship between you and the Controller and to assert claims under these contractual relationships (for a period of 5 years from the termination of the contractual relationship).
- until the consent to the processing of personal data for marketing purposes is withdrawn, for a maximum period of 5 years if the personal data is processed on the basis of consent,
- in the case of cookies, personal data is stored for a maximum of one year,
- after the expiry of the retention period, the Controller deletes the personal data.
VIII. How personal data are protected
1. The controller declares that it fully respects all the principles underlying the GDPR and that it has taken all appropriate technical and organisational measures to safeguard personal data.
2. The controller has also taken technical measures to secure data storage and storage of personal data in documentary form, in particular protection by encryption, passwords, restriction of access of persons, physical locking.
3. The controller declares that only persons authorised by it and instructed in data protection have access to personal data.
IX. What rights you have in relation to the protection of your personal data
1. Under the conditions set out in the GDPR in Articles 15 to 21 of the GDPR, you have the right to:
- access to personal data, which is the right to obtain confirmation from the Data Controller as to whether or not the personal data concerning him/her is being processed and, if so, the right to obtain access to such data and information as defined in Article 15 of the GDPR,
- to rectify inaccurate personal data concerning him or her and, taking into account the purpose of the processing, you have the right to have incomplete personal data completed, including by providing an additional declaration pursuant to Article 16 GDPR,
- the right to erasure (the so-called right to be forgotten), which consists in the controller deleting personal data concerning him/her without undue delay as soon as they are no longer necessary for the performance of the contract, unless there is another lawful reason for their further processing,
- for data portability within the meaning of Article 20 GDPR,
- object to the processing of personal data pursuant to Article 21 GDPR,
- the right to withdraw consent to processing in writing or electronically to the address or email of the Controller specified in Article I.2. of these Terms and Conditions.
2. Upon request, the administrator shall provide the purchaser with information on the measures taken in any event within one month of receipt of the request.
3. You also have the right to file a complaint with the Office for Personal Data Protection if you believe that your right to personal data protection has been violated.
X. Final Provisions
1. You agree to this Policy by checking the consent box via the online form. By checking the consent form, you confirm that you are aware of the Privacy Policy and that you accept it in its entirety.
2. The Administrator may amend this Policy. It will publish the new version of the Privacy Policy on its website.
These terms and conditions take effect on 1.11.2023