Privacy Policy
I. Basic Provisions
The controller of personal data according to Article 4(7) of Regulation (EU) 2016/679 (GDPR) is Zdeněk Pecka, ID No. 87957574, with registered office at U Výstaviště 26A, 370 05 České Budějovice (hereinafter referred to as “controller”).
Contact details of the controller:
Address: U Výstaviště 26A, 370 05 České Budějovice
Email: zdenek@keep-czeching.com
Phone: +420 732 733 228
Personal data means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, ID number, location data, online identifier, or to one or more specific factors.
The controller has not appointed a data protection officer.
II. Sources and Categories of Processed Personal Data
The controller processes the personal data you have provided or obtained in connection with fulfilling your order.
The controller processes your identification and contact details and any other data necessary for contract fulfillment.
III. Legal Grounds and Purpose of Processing
The legal grounds for processing personal data are:
the performance of a contract between you and the controller (Art. 6(1)(b) GDPR),
the legitimate interest of the controller in direct marketing (Art. 6(1)(f) GDPR),
your consent to processing for the purposes of direct marketing (Art. 6(1)(a) GDPR in connection with § 7(2) of Act No. 480/2004 Coll.), if no goods or services were ordered.
The purpose of processing is:
fulfilling your order and exercising rights and obligations arising from the contractual relationship (name, address, contact details are required),
sending commercial communications and conducting marketing activities.
There is no automated individual decision-making as per Art. 22 GDPR.
IV. Data Retention Period
Personal data is stored:
for 15 years after the end of the contractual relationship,
for up to 5 years or until consent is withdrawn if processed on the basis of consent.
After the retention period, the controller deletes the data.
V. Data Recipients (Subcontractors)
Data recipients include:
service and payment processing providers,
providers ensuring system operations,
marketing service providers.
The controller does not intend to transfer data outside the EU or to international organizations.
VI. Your Rights
You have the right to:
access your personal data (Art. 15 GDPR),
correct or restrict processing (Art. 16, 18 GDPR),
have your data deleted (Art. 17 GDPR),
object to processing (Art. 21 GDPR),
data portability (Art. 20 GDPR),
withdraw your consent by written or electronic notice to the controller.
You can file a complaint with the Data Protection Authority if you believe your rights have been violated.
VII. Data Security
The controller has implemented appropriate technical and organizational measures, including antivirus software, secure backups, strong passwords, and biometric authentication.
Only authorized persons have access to the data.
VIII. Final Provisions
By submitting the online order, you confirm that you are familiar with and accept these privacy terms.
You agree by checking the consent box on the website.
The controller may update these terms. The new version will be published on the website or sent to your email.
These terms take effect on April 25, 2025.
I. Basic Provisions
The controller of personal data according to Article 4(7) of Regulation (EU) 2016/679 (GDPR) is Zdeněk Pecka, ID No. 87957574, with registered office at U Výstaviště 26A, 370 05 České Budějovice (hereinafter referred to as “controller”).
Contact details of the controller:
Address: U Výstaviště 26A, 370 05 České Budějovice
Email: zdenek@keep-czeching.com
Phone: +420 732 733 228
Personal data means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, ID number, location data, online identifier, or to one or more specific factors.
The controller has not appointed a data protection officer.
II. Sources and Categories of Processed Personal Data
The controller processes the personal data you have provided or obtained in connection with fulfilling your order.
The controller processes your identification and contact details and any other data necessary for contract fulfillment.
III. Legal Grounds and Purpose of Processing
The legal grounds for processing personal data are:
the performance of a contract between you and the controller (Art. 6(1)(b) GDPR),
the legitimate interest of the controller in direct marketing (Art. 6(1)(f) GDPR),
your consent to processing for the purposes of direct marketing (Art. 6(1)(a) GDPR in connection with § 7(2) of Act No. 480/2004 Coll.), if no goods or services were ordered.
The purpose of processing is:
fulfilling your order and exercising rights and obligations arising from the contractual relationship (name, address, contact details are required),
sending commercial communications and conducting marketing activities.
There is no automated individual decision-making as per Art. 22 GDPR.
IV. Data Retention Period
Personal data is stored:
for 15 years after the end of the contractual relationship,
for up to 5 years or until consent is withdrawn if processed on the basis of consent.
After the retention period, the controller deletes the data.
V. Data Recipients (Subcontractors)
Data recipients include:
service and payment processing providers,
providers ensuring system operations,
marketing service providers.
The controller does not intend to transfer data outside the EU or to international organizations.
VI. Your Rights
You have the right to:
access your personal data (Art. 15 GDPR),
correct or restrict processing (Art. 16, 18 GDPR),
have your data deleted (Art. 17 GDPR),
object to processing (Art. 21 GDPR),
data portability (Art. 20 GDPR),
withdraw your consent by written or electronic notice to the controller.
You can file a complaint with the Data Protection Authority if you believe your rights have been violated.
VII. Data Security
The controller has implemented appropriate technical and organizational measures, including antivirus software, secure backups, strong passwords, and biometric authentication.
Only authorized persons have access to the data.
VIII. Final Provisions
By submitting the online order, you confirm that you are familiar with and accept these privacy terms.
You agree by checking the consent box on the website.
The controller may update these terms. The new version will be published on the website or sent to your email.
These terms take effect on April 25, 2025.
