Receipt of personal data and Privacy Policy
PREAMBLE
These Terms and Conditions govern mutual rights and obligations in the processing of personal data to which we have gained access as part of our cooperation, as part of the collection of our products and the use of our services.
PERSONAL DATA PROTECTION
The Service Provider, as the data controller of personal data provided to it on the basis of a concluded contract with the Customer (hereinafter referred to as the “Customer”, “User” or “Client”), undertakes to process such personal data in accordance with the law and in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as the “GDPR”). The Service Provider undertakes to process personal data in accordance with valid legislation, in particular the GDPR.
DATA CONTROLLER
| Name | WeldingPro Group s.r.o. |
| Business ID | 08263396 |
| Registered office | Na Zlatnici 301/2, 147 00 Prague, Czech Republic |
| info@weldingpro.cz | |
| Telephone | +420 359 703 001 |
LEGAL BASIS FOR THE PROCESSING OF PERSONAL DATA
The legal basis is the conclusion of a contract or agreement for the purpose of receiving products and services from the Service Provider, in particular contracts for work, cooperation contracts, purchase agreements, lease agreements, retraining contracts, employment contracts, representation agreements (hereinafter referred to as “Contracts”). The provision of personal data is the obligation of the data subject – the User, resulting from the above-mentioned Contract. Personal data such as (name and address, contact – telephone and email, company name, company ID, registered office, VATIN) are required from the Customer for the successful conclusion of the Contract and provision of the product or service. The Service Provider undertakes to process personal data of the User to the following extent: common personal data and a special category of personal data pursuant to Article 9 of the GDPR.
PURPOSE OF THE PROCESSING
The purpose of processing personal data is also to send commercial communications, offers and other marketing activities. The legal reason for the processing of personal data is the performance of the Contract pursuant to Article 6(1)(b) of the GDPR, fulfilment of the statutory obligations of the Data Controller under Article 6(1)(c) of the GDPR and a legitimate interest of the Provider under Article 6(1)(f) of the GDPR. The legitimate interest of the Provider is the processing of personal data for direct marketing purposes.
RECIPIENT OF PERSONAL DATA
Only the Service Provider will have access to the personal data provided.
TIME PERIOD FOR THE PROCESSING OF PERSONAL DATA
The Service Provider is obliged to store the User’s personal data for the period necessary to exercise the rights and obligations arising from the Contract and for a period of 15 years from the termination of the concluded Contract. Data are erased once this period has expired.
USER RIGHTS
The right to access personal data means that the User has the right to obtain information from the Data Controller about whether the User’s personal data are being processed and, if so, what data are being processed and how. The User has the right to have the Data Controller – without undue delay – rectify inaccurate personal data concerning the User at the User’s request. The User has the right to complete incomplete personal data at any time.
The right to erasure of personal data is, in other words, the expressed obligation of the Data Controller – the Service Provider to destroy the personal data it processes about the User if certain conditions are met and the User requests it. The right to withdraw consent at any time. The withdrawal of consent does not affect the lawfulness of processing based on the consent before its withdrawal.
The User has the right to have the Data Controller – the user, in certain cases, restrict the processing of the User’s personal data. The Client has the right to object to the processing which is based on the legitimate interests of the Data Controller at any time.
The right to data portability gives the Client the opportunity to obtain the personal data provided to the Data Controller in a common and machine-readable format. The Client may then pass these data on to another data controller or, if technically possible, request that the controllers pass it on to each other.
If the User is in any way dissatisfied with the processing of their personal data carried out by the Data Controller – the Service Provider, the User may submit a complaint directly to it or contact the Office for Personal Data Protection. More information about the rights of the Client is available on the website of the Office for Personal Data Protection. ( https://www.uoou.cz/6-prava-subjektu-udaj/d-27276 )
The User is not obliged to provide personal data, but it is not possible for the Service Provider to conclude a Contract or perform it without their provision.
OBLIGATIONS OF THE SERVICE PROVIDER
The Service Provider is not entitled to process personal data in violation or beyond the scope set out in these Terms and Conditions.
The Service Provider undertakes to process personal data for the User for the purpose of providing services and products.
The Licensor processes personal data only at the Provider’s workplaces within the European Union, and mainly in electronic form.
Under Article 28(2) of the GDPR, the User grants permission with the involvement of a subcontractor as another personal data processor. The Subcontractor must comply with the same data protection obligations as set out in these Terms and Conditions.
The Service Provider undertakes and is obliged to technically ensure the protection of personal data provided so that there can be no leakage, unauthorized use or access, alteration, destruction, unauthorized transfer or loss.
The Service Provider is obliged to ensure confidentiality of the personal data processed.
COOKIES
The Service Provider uses cookies to track visitor preferences and improve the website. Cookies are files stored on the User’s hard drive that ensure comfort when using the Service Provider’s website. The User has the right to deactivate the use of cookies in the User’s Internet browser.
FINAL PROVISIONS
The User agrees to these Terms and Conditions by checking the consent box in the online form. By checking the consent box, the User expresses that they have read these Terms and Conditions, that they express their consent to them and that they accept them in their entirety.
The Provider is entitled to change these Terms and Conditions. The Provider is obliged to publish a new version of the Terms and Conditions on its website without undue delay or send a new version to the User’s email address.
Relationships not expressly regulated by these Terms and Conditions are governed by the GDPR and the law of the Czech Republic, in particular by Act No. 89/2012 Sb., the Civil Code, as amended.
