Controller’s declaration on personal data processing
Information on personal data processing in accordance with the General Data Protection Regulation (GDPR) and the Czech Act No. 110/2019 Coll. on personal data processing.
I. Controller of Personal Data (further as the „Controller“)
The Controller of the presonal data shall be the company LD seating s.r.o., Dřevařská 2461/19a, 680 01 Boskovice, Czech Republic, IDNo.: 29361729. In case you need to address us regarding the personal data processsing issues you can do so through: electronic data box dx4h5bp, or via e-mail address: firstname.lastname@example.org, or via regular mail on the address Dřevařská 2461/19a, 680 01 Boskovice, Czech Republic.
D seating s.r.o. shall process the personal data according to the rules set by the law of the European Union, in particular according to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data; and according to the Czech Act No. 110/2019 Coll. on personal data processing.
The legal reason for the processing of your personal data is the fact that such processing is necessary as precontractual or for the performance of a contract between you and the Controller.
II. Extend of the Personal Data Processing
he personal data is processed in the extent to which the data subject has provided such data; as such: in connection with the registration in order to access to the client zone of the LDSeating.com Web portal, the newsletter, electronic communication on published email addresses and statistical monitoring.
III. Source of the Personal Data
Personal data we process are obtained directly from data subjects within the registration on our website, through social networks and electronic communications. When you visit our website, there are no personal data collected automatically and we do not perform any profiling.
However, when you visit our website, we automatically collect the non-personal data provided in the browser cookies. Cookies are small text files that the website places into the web browser cookie. When you return to our site, the browser sends cookies back to the server and it gets all the information saved by your browser, such as a password or login name. Cookies are used by the vast majority of websites nowadays.
You can block restrict or delete cookies directly in your browser at any time. If you don't know how to do so, please use the help provided by your browser.
IV. Which the Personal Data Do We Process
For user zone login purposes, the Controller collects the following information:
- First Name and Surname - mandatory, for the purpose of identifying a contact person
- Email Address - mandatory, unique identifier for login to customer zone, newsletter sending address, as well as a communication address
- Country - mandatory, for the purpose of displaying territorially set information and price lists
- Password - mandatory for customer zone login purposes
- Phone number - optional
- Company name - optional
- Position within the company - optional
The provision of mandatory data is voluntary, but necessary for registration to access the client zone web portal. Processing of personal data - names, surnames, email addresses and countries are allowed by the Article 6 (1) (a) and (b) of GDPR. The customer who has a created account on our web portal may, at any time request its removal to email@example.com. Canceling an account is irreversible and means deleting all data and communication history. Restoring the canceled account will not be possible.
In case of registration for the purposes of newsletter, we process
- e-mail address
- IP address
Such processing is allowed by the Article 6 (1) (a) of GDPR. The newsletter is provided by an external company Mail Komplet that sends such business communication based on your subscription login. You can terminate the subscription be using the "Unsubscribe" link that is part of each newsletter sent.
In case of via e-mail communication, we process these data:
- name or nickname
- e-mail address
- other personal data you voluntarily fill in the text of your message.
Processing of personal data obtained by e-mail communication is allowed by the Article 6 (1) (a) of the GDPR - your consent.
V. Ways of Personal Data Processing and Protection
The Controller declares that the personal data is processed only for the stated purpose. Your personal data is technically and procedurally secured in the way that there cannot be an unauthorized or random access, change, deletion or loss, unauthorized transmissions as well as other misuse. All data provided by the customer at the registration are stored in encoded form based on the actual safety standards.
VI. Categories of Personal Data Processors and Recipients
The external company Flowmedia s.r.o., IDNo.: 02600943, is the processor of the personal data on our web portal; this company provides the technical solution of the administration. Content is hosted on Digital Ocean's servers (https://www.digitalocean.com/)
The information on the way and means you use our web, we share through Google analytics and Google Adwords with the company Google (Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). The company accepted the Privacy Shield. Google is the administrator and processor.
VII. For How Long Do We Keep Your Personal Data
The personal data needed for access to the user zone portal, we keep for the duration of the registration and for the technically needed period to delete the data upon your request for deletion of registration. The database is backed up every 7 days by default and then automatically overwritten by the current backup.
E-mail communication is normally saved for a maximum of 3 years since the last communication, unless a contract is concluded.
VIII. The Rights of the Data Subject
Please be aware that you have the following rights according to the GDPR:
- to request the information, how do we process your personal data,
- to request the copy of your processed personal data,
- to request access to this information and its update or correction,
- to request the deletion of your personal data.
If you believe that the Controller performs the processing of personal data in conflict with the protection of your privacy, or contrary to the Act on personal data processing, you can contact the Controller requesting an explanation, or you can address the Czech Personal Data Protecting Authority (Úřad pro ochranu osobních údajů) via its email address: firstname.lastname@example.org or via phone +420 234 665 111.
The last update of this declaration has been done on 15.03.2021.