Personal data protection
As our customer, a site visitor or e-mail recipient, you are giving us your personal information. We are subsequently responsible for their processing and protection.
The following rows are used to familiarize yourself with the processing of these personal data, their protection and the rights you acquire in connection with the GDPR (Personal Data Protection Regulation).
The administrator is Ing. Petr Hlobil - Emersion Software, Company ID 87543320, registered office, Kostelec u Holešova 253, postcode 768 43, registered with the Municipal Authority of Holešov, which operates this website. We process your personal data as an administrator, that is, we determine how personal data will be processed, for what purpose and for how long. At the same time, we select other processors who help us with the processing.
As the administrator of your personal data, we declare that we comply with all legal obligations required by applicable law, in particular the Personal Data Protection Act and the GDPR.
Specifically, we declare that:
- We process your personal data based on a valid legal reason - in particular legitimate interest, performance of the contract, legal obligation or consent.
- We fulfill the obligation to provide information (in accordance with Article 13 of the GDPR) before the processing of personal data begins.
- We allow you to exercise your rights under the Personal Data Protection Act and the GDPR.
Scope of personal data and processing purposes
We process personal information that you entrust to us for the following purposes and for the following purposes:
- Provision of services and performance of the contract
Personal data needed to provide services and performance of contracts to the extent of: billing information, e-mail, telephone and correspondence address. Processing time results from the purpose or is given by law.
Personal data (billing information) for fulfilling the statutory obligation to issue and record tax documents. The processing time is determined by law.
We use your personal information (email, what you click and when you open it) for direct marketing purposes. If you are our customer, we do so on the basis of legitimate interest.
If you are not our customer, we will send you newsletters only for your consent, for a period of 5 years after you granted it.
You can easily revoke consent at any time by using the logout link in each email you send.
We keep your personal information for the duration of the limitation period, unless the law provides for a longer period of time, or unless otherwise stated.
When you browse our web sites, we record your IP address, how long you stay on the page and from which site you come from. Using cookies to measure site traffic and personalizing your site views is perceived as a legitimate manager interest that allows visitors to offer more advanced features and better services.
Security and Privacy
We protect the personal data as much as possible using recommended practices, advanced technologies, technical and organizational measures. Our primary goal is to prevent the misuse, damage or destruction of your personal information.
Transmission of personal data to third parties
Your employees and co-workers have access to your personal data. These persons are bound by secrecy and trained in the safe processing of personal data.
When processing some data, we use the services or applications of processors who specialize in the processing and are in compliance with the GDPR.
- Google Inc.
- OVH.CZ, s.r.o. - cloud services
- Hana Mikulčíková - accounting company
Transmission of data outside the European Union
We process data exclusively in the territory of the European Union or in countries that provide an adequate level of protection on the basis of a European Commission decision.
Your rights in connection with the protection of personal data
- Right to information
The site you are currently in is fulfilling the obligation to process and protect your personal information.
- Right of access
It gives the opportunity to verify the lawfulness of data processing. You can ask us to provide proof of your personal data processing and why. We need 30 days to secure this right, and we will inform you by e-mail about this right.
- Right to supplement and change
If you find your personal data outdated or incomplete, you have the right to add and change your personal information. We need 30 days to secure this right, and we will inform you by e-mail about this right.
- Right to limit processing
If you believe we process illegally, inaccurately, or if you have objected to processing but you do not want to delete all data, you may be asked to limit the scope of personal data or processing purposes.
- The right to erase (to be forgotten)
If you really want to, we will delete all your personal data from your systems and processors.
In some cases, however, we are bound to record personal data by a statutory obligation (eg, tax records after a statutory time limit). In this case, we will only delete personal information that is not bound by any other law. We need 30 days to secure this right, and we will inform you by e-mail about this right.
- Right to data portability
All personal information we collect about you is prepared to issue (make available) on request. We need 30 days to secure this right, and we will inform you by e-mail about this right.
- Right to object
If you suspect that we do not comply with the law with your data, you may contact us with a request for redress, or you may file a complaint with the Office for Personal Data Protection.
- The right not to be subject to automated individual decision making with legal or similar effects, including profiling.
Within the company, we do not use any automated decision-making, profiling, or other similar procedures.
Personal data processor
For the users of our hosting services and software products (customers), we act as processors. We declare that with the data of customers stored on our infrastructure we only manipulate and to the extent necessary to ensure the smooth operation of the provided services, we do not process, analyze or otherwise distribute the data to third parties except the processors who provide us with the services necessary for the operation provided by us services. These are the following processors:
- OVH.CZ, s.r.o.
Because we do not know what personal data the customer data contains, it is forbidden to save personal data of special categories that require a higher level of security than normal personal data without having to enter into the Processing Agreement between us and the hosting service user. Both parties undertake to use the (services) services to process the personal data (data) in accordance with the GDPR.
We do not have a designated Data Protection Officer because we are not required by law.
Our employees and collaborators who process your personal data are required to keep confidential personally identifiable information and security measures to protect your personal information. The duty of confidentiality persists even after the termination of our engagement with us.
These privacy and data protection policies come into force on 25 May 2018.