We would like to inform you in this way about the way we handle personal information that we process as part of our activities. We declare that we comply with Regulation (EU) 2016/679 of the European Parliament and of the Council, hereinafter referred to as “GDPR”.
WHO IS WORKING WITH PERSONAL DATA?
According to Article 4 (7) of the GDPR, the controller means a natural or legal person who, alone or together with others, determines the purposes and means of the processing of personal data.
Budvkurzu.cz is a brand name of Betsys s.r.o. based at Karolinská 650, Prague 8, 186 00, IČ: 26499606. Hereinafter referred to as the “Administrator”.
WHAT DATA DO WE PROCESS?
The controller processes personal data on the basis of the legal titles listed below:
Provision of services and cooperation with clients Administrator:
Name and surname
In relation to employees:
Name and surname
For marketing purposes:
Name and surname
HOW DO WE OBTAIN PERSONAL DATA?
We obtain personal data on the basis of demand from the client and by establishing cooperation. We do not purposefully search for personal data. To meet the conditions of the GDPR, the collection of personal data is carried out on the basis of one of the following legal titles:
- processing of personal data is necessary to meet the conditions of the contract that the Administrator has concluded with the client. This applies to all employees of Betsys s.r.o. and all subcontractors
- processing is necessary to fulfill the legal obligation of the Administrator. This applies in particular to the employees of Betsys s.r.o. and the legal obligations that Betsys s.r.o. has towards them. These purposes include, but are not limited to, payroll and internal communication activities
- processing is always carried out only in necessary cases in a legitimate manner, which is determined by the legal basis of the state
- processing is based on the explicit consent of the client or entity. Direct consent is required only in cases that do not relate to the above-mentioned legal titles.
RECIPIENT OF PERSONAL DATA
The recipients of personal data are the employees of the Administrator and its subcontractors. These entities have access to a secure server with client data. Subcontractors are contractually bound by confidentiality. The server is protected by encryption and the access address is hidden. Only the Administrator and subcontractors know it. The access itself is password protected. All data is backed up regularly.
All physical materials or other storage devices with personal data are kept in a locked room.
No personal data is passed on to third parties or other organizations.
RIGHTS OF PERSONAL DATA SUBJECTS
Entities shall, in accordance with Chapter III. GDPR these rights:
in the case of personal data processing on the basis of consent, revoke such consent at any time,
to provide information on the processing of your personal data pursuant to Article 13 and Article 14 of the GDPR,
to access, correct and supplement the processed personal data,
to delete such data pursuant to Article 17 of the GDPR or to restrict processing,
to transfer your personal data to another administrator,
to raise objections to the processing of personal data, including profiling and decision-making based on automated processing,
contact the supervisory authority in the event of a conflict with the above or with the principles of personal data processing.
If you are interested in exercising any of the above rights, please contact the Administrator in writing at Karolinská 650, Prague 8, 186 00 or at the email address email@example.com.