1. Introduction
This document describes how [COMPANY NAME] (hereinafter referred to as “we,” “us,” or “the Company”) processes and protects the personal data it collects through the website [www.example.cz] and related services.
2. Data Controller
The data controller is: [COMPANY NAME]
Address: [Street, City, ZIP Code]
ID/VAT: [ID / VAT]
Contact: privacy@example.cz or phone: [phone number]
3. What data we collect
We may collect and process the following categories of personal data:
- Identification data (first name, last name)
- Contact information (email address, phone number, mailing address)
- Service usage data (access logs, IP address, cookies, browser and device information)
- Payment data (if you use paid services) — we process this data only to the extent necessary and often through an external payment gateway
- Other data provided voluntarily by you (e.g., in the contact form or during registration)
4. Legal Grounds for Processing
We process personal data based on one or more of the following legal grounds:
- performance of the contract between you and us;
- compliance with a legal obligation;
- legitimate interest (e.g., website security, prevention of misuse, improvement of services);
- your consent (e.g., marketing newsletters, analytical cookies).
5. Purposes of Processing
We use the data primarily for:
- providing and improving our services;
- processing orders and payments;
- communicating with customers (responding to inquiries, technical support);
- sending marketing communications, if you give your consent;
- complying with legal obligations (accounting, tax documents);
- security purposes (fraud detection, ensuring operations).
6. Retention Period
We retain personal data for the period necessary to fulfill the purpose for which it was collected, or for the period specified by law (e.g., accounting records). Specific retention periods may be set forth in internal guidelines.
7. Data Recipients and Sharing
We may share personal data with:
- hosting and technical service providers;
- payment gateways and carriers;
- external vendors processing data on behalf of the controller (e.g., marketing tools, analytics);
- if required by law, authorities, or courts.
We have contracts in place with all processors to ensure an adequate level of data protection.
8. Data Transfer Outside the EU/EEA
In the event of a transfer of personal data outside the European Union or the European Economic Area, we will ensure an adequate level of protection (e.g., EU Standard Contractual Clauses, adequacy decisions) or request your consent.
9. Your rights
You have the right to:
- request access to your personal data;
- to request the correction of inaccurate data;
- request erasure (the right to be forgotten);
- request restriction of processing;
- withdraw consent to processing if processing is based on consent;
- object to processing;
- request data portability (if technically feasible and legally permissible);
- file a complaint with the supervisory authority (in the Czech Republic: the Office for Personal Data Protection).
To exercise your rights, please contact us via email at: privacy@example.cz.
10. Cookies and Tracking Technologies
Our website uses cookies and similar technologies. Cookies are used for session management, analytics, content personalization, and ad targeting. Most cookies can be managed or disabled in your browser settings.