Privacy Policy

1. Basic Provisions

1.1 The data controller according to Article 4, point 7 of the Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data (hereinafter referred to as the “GDPR”) is Jan Bachor, ID: 74764764, with its registered office at U Kanálky 1457/10, Prague 2, 120 00 (hereinafter referred to as the “Controller”).
1.2 The contact details of the Controller are:

Address: U Kanálky 1457/10, Prague 2, 120 00
Phone: +420 739 737 696

2. Processed Personal Data

2.1 The Controller processes the following personal data of the Buyer:
Name and surname
Email address
Phone number
Payment details

3. Purposes of Personal Data Processing

3.1 Personal data is processed for the following purposes:
Processing orders and exercising rights and obligations arising from the contractual relationship between the Buyer and the Controller.
Communication with the Buyer and providing customer support.
Fulfilling the Controller’s legal obligations.

4. Legal Basis for Personal Data Processing

4.1 The legal basis for processing personal data is:
Performance of the contract between the Buyer and the Controller according to Article 6, paragraph 1, letter b) of the GDPR.
Compliance with the Controller’s legal obligations according to Article 6, paragraph 1, letter c) of the GDPR.
The legitimate interest of the Controller according to Article 6, paragraph 1, letter f) of the GDPR (e.g., for direct marketing purposes).

5. Duration of Personal Data Storage

5.1 Personal data will be stored for the time necessary to fulfill the purposes of processing:
For the duration of the contractual relationship.
For the period stipulated by the applicable legal regulations (e.g., the Accounting Act, tax regulations).
For the period during which the Controller is obliged to retain personal data according to the applicable legal regulations.

6. Recipients of Personal Data

6.1 Recipients of personal data are persons:
Involved in the delivery of goods/services/payment processing based on the contract.
Providing services for the operation of the e-shop and other services related to the operation of the e-shop.
Providing marketing services.

7. Rights of Data Subjects

7.1 The data subject has the right:
To access their personal data.
To correct inaccurate personal data.
To erase personal data if it is no longer needed for the purposes for which it was collected or processed.
To restrict the processing of personal data.
To data portability.
To object to the processing.
To lodge a complaint with a supervisory authority.

8. Security of Personal Data

8.1 The Controller takes technical and organizational measures to secure personal data against loss, misuse, and unauthorized access.

9. Final Provisions

9.1 By submitting an order from the online order form, the Buyer confirms that they have been informed of the personal data protection conditions and that they accept them in their entirety.

9.2 The Controller is entitled to change these conditions. The new version of the personal data protection conditions will be published on its website and the new version of these conditions will also be sent to the email address provided by the Buyer to the Controller.

9.3 These conditions take effect on May 21, 2024.