Protection of personal data
If you are my customer, newsletter subscriber or website visitor, you are entrusting me with your personal information. I am responsible for their protection and security. Please familiarize yourself with the privacy policy, policies and rights you have in relation to the GDPR (General Data Protection Regulation).
I. Who is the Personal Data Controller?
The controller of personal data on the website www.dominikamasinova.cz is Dominika Mašínová, Liberec 3, 46001, born 23.05.2002. E-mail: dominika.masinova@gmail.com. I process your personal data as an administrator, i.e. I determine how personal data will be processed and for what purpose, for how long and I select any other processors who will help me with the processing.
II. Contact information
If you want to contact me during the processing, you can contact me by email: dominika.masinova@gmail.com.
III. I declare
I declare that, as the controller of your personal data, I fulfill all legal obligations required by applicable legislation, in particular the Personal Data Protection Act 110/2019 Sb and GDPR, and therefore that:
- I will process your personal data only on the basis of a valid legal reason, primarily legitimate interest, fulfillment of a contract, legal obligation or consent.
- I fulfill the information obligation according to Article 13 of the GDPR even before the processing of personal data begins.
- I will enable and support you to exercise and fulfill your rights under the Data Protection Act and the GDPR.
IV. Scope of personal data and purposes of processing
I process personal data that you entrust to me yourself for the following reasons (to fulfill these purposes):
Provision of services, fulfillment of the contract.
Your personal data in the scope of: e-mail, first name, last name, residential address, in the case of a purchase as an entrepreneur or company also ID and VAT number, account number, or I absolutely need the phone to fulfill the contract (e.g. sending accesses to the application, delivery of services or goods, etc.).
Bookkeeping
If you are a customer, I absolutely need your personal data (invoicing data) to comply with the legal obligation to issue and record tax documents.
Marketing - sending informative e-mails I use your personal data (email and name), gender, what you click on in the e-mail and when you most often open it for the purpose of direct marketing - sending business messages. If you are my customer, I do so out of legitimate interest, as I reasonably believe that you are interested in our news, for 7 years from the last order.
If you are not my customer, we only send you newsletters based on your consent, for a period of 7 years from the date of consent. You express your consent with the so-called Double opt-in confirmation. This confirmation is a clear expression of your consent to the processing of your personal data.
In either case, you can withdraw this consent by using the unsubscribe link in each email sent.
Advanced Consent Marketing
Only based on your consent, I may also send you inspirational offers from third parties or use your email address for e.g. remarketing and Facebook advertising targeting for a period of 5 years from consent. This can of course be revoked at any time via our contact details.
Photographic documentation, references
I may only use your photos, videos or written references on my site with your consent until you withdraw your consent. This can be revoked at any time via our contact details.
I keep your personal data for the duration of the statute of limitations, unless the law stipulates a longer period for their retention or we have not stated otherwise in specific cases.
V. Cookies
When you browse my website, I record your IP address, how long you stay on the site, and which page you come from. I see the use of cookies to measure website traffic and customize the website display as my legitimate interest as an administrator, as I believe that thanks to this I can offer you even better services.
Advertising targeting cookies will only be processed based on your consent.
My website can also be browsed in a mode that does not allow the collection of personal information. You can disable the use of cookies on your computer.
VI. Security and privacy
I protect personal data to the maximum extent possible using modern technologies that correspond to the level of technical development. I protect them as if they were my own. I have adopted and maintain all possible (currently known) technical and organizational measures to prevent misuse, damage or destruction of your personal data, in particular:
- Secure access to my computer (password protected).
- Secure access to my phone (secured by password and fingerprint reader).
- Secure access to my mailboxes (secured by username and password).
- Secure access to email distribution applications (protected by name and password).
- Secure access to invoicing systems (protected by name and password).
- Encrypted communication on my site (valid https certificate).
- By regularly updating the software.
Personal data will be processed in electronic form in an automated manner or in printed form in a non-automated manner.
VII. Transfer of personal data to third parties
My staff and associates have access to your personal information.
To ensure specific processing operations that I cannot provide by myself, I use the services and applications of processors who can protect data even better than me and specialize in the given processing.
Personal data processors are or may be:
- SmartSelling a.s. (SmartEmailing, MioWeb, FAPI), Netroufalky 797/5, 625 00 Brno, Czech Republic, DIČ: CZ29210372
- SendinBlue SAS – Politique de confidentialité, 55, rue d’Amsterdam 75008 Paris, France
- Facebook Ireland Ltd, 4 Grand canal square, Dublin 2, Irsko, VAT IE9692928F
- Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA
I can make personal data that I process both as an administrator and as a processor available exclusively to collaborators and processors who perform administrative and technical support in the operation of applications necessary for the operation of the website and supporting applications or participate in the running of my business (accounting).
Access to other entities is allowed only for the purpose of fulfilling legal obligations.
I assure you that my collaborators, who will process your personal data, are obliged to maintain confidentiality about personal data and about security measures, the disclosure of which would endanger the security of your personal data.
At the same time, this confidentiality continues even after the end of contractual relations with me. Without your consent, your personal data will not be released to any other third party.
It is possible that in the future I will decide to use other applications or processors to facilitate and improve processing. However, I promise you that in such a case, when choosing, I will place at least the same demands on security and quality of processing on the processor as on myself.
I will not transfer your data to third countries. I process data exclusively in the European Union or in countries that ensure an adequate level of protection based on the decision of the European Commission.
VIII. Vaše práva v souvislosti s ochranou osobních údajů
You have a number of rights in relation to the protection of personal data. If you wish to exercise any of these rights, please contact me by email: dominika.masinova@gmail.com.
- You have a right to information, which is already fulfilled by this information page with the processing of personal data.
- Thanks to the right of access, you can challenge me at any time and I will provide you with evidence within 15 days of what personal data I process and why.
- If something changes about you or you find your personal data out of date or incomplete, you have the right to complete and change your personal data.
- You can use the right to restrict processing if you believe that I am processing your inaccurate data, if you believe that I am carrying out the processing illegally, but you do not want to delete all data or if you have objected to the processing.
You can limit the scope of personal data or processing purposes. (For example, by unsubscribing from the newsletter, you limit the purpose of processing for sending commercial communications.) - Right to portability: If you would like to take your personal data and transfer it to someone else, we will do the same as exercising the right of access - except that I will send the information to you in machine-readable form. I need at least 20 days here.
- Right to erasure (to be forgotten): Your other right is the right to erasure (to be forgotten). I don't want to forget you, but if you wish, you have the right to do so. In such event, it will delete all your personal data from its system and from the systems of all sub-processors and backups. I need 10 days to ensure the right to erasure.
In some cases, I am bound by a legal obligation, and for example, I have to register issued tax documents after the deadline set by law. In this case, delete all such personal data that is not bound by another law. I will notify you by email when the deletion is complete.
Complaint to the Office for the Protection of Personal Data
If you feel that I am not handling your data in accordance with the law, you have the right to complain to the Data Protection Authority at any time. I would appreciate it if you would first inform me of this suspicion so that I can do something about it and correct any errors.
Unsubscribing from newsletters and commercial communications
I send you emails with inspiration, articles or products and services if you are my customer based on my legitimate interest.
If you are not already a customer, I only send them to you based on your consent. In both cases, you can unsubscribe from my emails by clicking on the unsubscribe link in each email sent.
IX. Secrecy
I would like to assure you that my employees and colleagues who will process your personal data are obliged to maintain confidentiality about personal data and about security measures, the disclosure of which would endanger the security of your personal data. At the same time, this confidentiality continues even after the end of contractual relations with us. Without your consent, your personal data will not be released to any other third party.
These personal data processing policies apply from: 31.07.2020.