Zpracování osobních údajů

Thank you for choosing to be part of our community at ONYX wood spol. s r.o. (“the Company,” “we,” “us,” or “our”). As the controller of your personal data within the meaning of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter referred to as the “Regulation”), we are committed to protecting your personal data and your right to privacy. If you have any questions or concerns about our policies or practices regarding your personal data, please contact us at info@onyx-wood.cz.

When you visit our website, www.ihriste.cz, and use our services, you trust us with your personal data. We take your privacy very seriously. In this Privacy Policy, we aim to explain as clearly as possible what personal data we collect, how we use it, and what rights you have regarding it. We encourage you to take the time to read it carefully, as it is important.

This Privacy Policy applies to all personal data collected through our website and/or any related services, sales, marketing, or events (collectively referred to in this Privacy Policy as the “Services”).

Please note that if you provide us with any personal data about your employees, collaborators, or other third parties, you are responsible for providing them with all the information contained herein.

Please read this Privacy Policy carefully as it will help you make informed decisions about sharing your personal data with us.

1. What personal data do we process?

In short: We process personal data that you provide to us and, where we have a proper legal basis, data that we have obtained from other public or private sources.
We process personal data that you voluntarily provide to us when you express an interest in obtaining information about us or our products and services, when you use our services or otherwise contact us.
We also process personal data that we obtain from publicly available sources such as your or your company's website, social networks, public registers and from business contact database providers who have a valid legal basis for providing this personal data.
The personal data we process depends on the context of your interactions with us and the Services, your choices, and the products and features you use. In general, we process the following personal data: full name; mailing address; telephone numbers; email address; and other similar identifying and contact information relating to your employment or professional activities, such as your role or area of responsibility within your company.
We also process personal data relating to goods or services you have purchased from us or in which you have expressed an interest.
Please note that any personal information you provide to us must be true, complete and accurate and you must notify us of any changes to this personal information.

2. Why do we process personal data?

In short: We process personal data for business and marketing purposes and to comply with our legal obligations.
Where you have specifically ordered any services or goods from us, we process personal data for the purpose of fulfilling our contractual obligations to you. We also process personal data following the proper performance of a contract for the purposes of providing warranty services, handling complaints or defending our rights and legal claims which we consider to be in our legitimate interests.
If you have given your consent, we also use personal data to send you our commercial offers and other commercial communications. We may also send such commercial communications without your consent if and to the extent permitted by applicable law.
Where we are required to do so by applicable law (e.g. Tax Act, KYC and AML regulations, etc.), we also process personal data to comply with our legal obligations in this regard.

3. Do we share personal information with anyone?

In short: We share personal data only when required by applicable laws, when necessary to provide our services, or to protect our legitimate interests.
We may need to share your personal data in the following situations:

Service Provision. To deliver our Services and related business offerings to you or your company, we use third-party service providers such as CRM systems, mailing systems, web hosting providers, and other standard office software providers. In such cases, the Services may require the sharing of personal data we process. We share personal data only to the extent necessary for storing the data in the cloud or hosting it on the servers of the respective provider.

Third-Party Advertisers. We may use third-party advertising companies and their services, such as Google Ads, Bing Ads, etc., to display advertisements when you use our services. These companies may use information about your visits to our website and other websites, contained in web cookies and other tracking technologies, to provide advertisements about goods and services of interest to you.

Transfers to Government Authorities. In cases mandated by law, we may be required to transfer personal data to relevant government authorities, such as trade inspection authorities, tax offices, police, or other public authorities.

Business Transfers. We may share or transfer personal data in connection with any merger, sale of company assets, financing, or acquisition of all or part of our business by another company, or during negotiations of such transactions.

4. Do we use cookies and other tracking technologies?

In short: We may use cookies and other tracking technologies to collect and store personal information.
1. Cookies are small text files that are stored locally by the browser on the computer used to view the website.
2. Cookies do not serve and do not allow personal identification of website users.
3. If a visitor to the website does not consent to the collection of cookies, they can prevent their collection by changing their browser settings.
4. The visitor can change the previous choice of cookies at any time by following the link here.

5. How long do we keep personal data?

In short: We retain personal data for as long as necessary to fulfil the purposes set out in this Privacy Policy, unless otherwise required by law.
We will only retain personal information for as long as necessary for the purposes set out in this Privacy Policy, unless a longer retention period is required by law (for example, tax, accounting or other legal requirements).
Where there is a contract between us, we will retain the necessary personal data for the duration of the contract and for a further period equal to the statutory limitation period for rights and obligations under that contract.
Where we process personal data on the basis of consent, processing will only continue until consent is withdrawn.
Once we no longer have a legitimate lawful basis for processing personal data, we will either delete or anonymise it or, if this is not possible (for example, because it has been stored in back-up archives), we will store the personal data securely. and isolate it from any further processing until removal is possible.

6. How do we keep personal data safe?

In short: We aim to protect personal data through a system of organisational and technical security measures.
We have implemented appropriate technical and organisational security measures to protect the security of all personal data we process. However, please also remember that we cannot guarantee that the Internet itself is 100% secure. While we will endeavor to protect all personal information using state-of-the-art security technologies, the transfer of personal information to and from our Services is at your own risk. You should only access the Services in a secure environment.

7. Do we collect personal data from underage people?

In short: We do not knowingly collect or market personal information from children under the age of 18.
We do not knowingly solicit or market personal information from children under 18. By using the Services, you represent that you are at least 18 years of age or that you are the parent or legal guardian of such minor. If we become aware that personal information has been collected from users under the age of 18, we will deactivate the account and take reasonable steps to promptly delete such information from our records. If you become aware of any information we have collected from children under the age of 18, please contact us at info@onyx-wood.cz

8. What are your privacy rights?

In short: You can review, modify, or request the deletion of your data as described below.

You have the following rights:

Right of access to your personal data. If you want to know whether, how, and to what extent we process your personal data, you have the right to request this information from us. If we process your personal data, you have the right to access it. In cases of unauthorized, excessive, or repetitive requests, we may charge a reasonable fee or refuse the request (this also applies to the exercise of your other rights listed below).

Right to rectification of your personal data. If you believe we are processing inaccurate or incomplete personal data about you, you have the right to request correction or completion of such data. We will do so without undue delay, subject to our technical capabilities.

Right to erasure of your personal data. If you request the deletion of your personal data, we will comply where (i) the data is no longer necessary for the purposes for which it was collected or processed, (ii) processing is unlawful, (iii) you object to processing, and there are no overriding reasons for continued processing, or (iv) further processing is not required by law.

Right to restriction of processing. If you request the restriction of processing your personal data, we will make the data inaccessible, temporarily remove or store it, or take other necessary actions to properly implement your rights.

Right to data portability. If your personal data is processed based on consent or a contract and by automated means, you may request the transfer of such data to a third party. If exercising this right adversely affects the rights and freedoms of others, we are entitled to limit or refuse your request.

Right to object. You have the right to object to the processing of your personal data if it is processed to perform a task carried out in the public interest, in the exercise of official authority, or for our legitimate interests. If we cannot demonstrate a compelling legitimate reason for processing that outweighs your interests, rights, and freedoms, we will cease processing the personal data without undue delay. If the sole purpose of processing is for marketing (and you can exercise this right directly by clicking the unsubscribe link in any marketing communication you receive from us), we will stop processing and immediately delete the relevant data upon your request.

To exercise any of the above rights, please contact us at info@onyx-wood.cz or by mail. We will respond to your request within 30 days.

Right to file a complaint. You also have the right to file a complaint with the Czech Office for Personal Data Protection, the competent national supervisory authority.

9. Data leak

A personal data breach occurs when personal data is accessed, collected, used, disclosed or disposed of in an unauthorised manner. You will be notified of a data breach when we believe you are at risk of risk or serious harm. For example, a data breach may be likely to result in serious financial harm or harm to your mental or physical well-being. In the event that we become aware of a security breach that has resulted or may result in unauthorised access, use or disclosure of personal data, we will investigate the matter promptly and notify the relevant supervisory authority within 72 hours of becoming aware of it, unless the data breach is unlikely to result in a threat to the rights and freedoms of individuals.

10. Controls for functions do not track

Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track ("DNT") feature or setting that you can activate to signal your privacy preferences so that data about your online browsing activities is not tracked and collected. No uniform technology standard for recognizing and implementing DNT signals has been finalized. For this reason, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If an online tracking standard is adopted that we must follow in the future, we will notify you of that process in a revised version of this Privacy Policy.

11. Do residents of other countries have specific privacy rights?

In short: Yes, if you are a resident of one of the following countries, you may be granted special rights.

USA

California

Section 1798.83 of the California Civil Code, also known as the "Shine The Light" law, allows our users who are California residents to request and obtain from us, on an annual basis and free of charge, information about the categories of personal information we have disclosed to third parties for direct marketing purposes and the names and addresses of any third parties with whom we have shared personal information in the immediately preceding calendar year. If you are a resident of California and wish to do so, please submit your request in writing to us using the contact information below.

Japan

Under Article 31 of the Japanese Data Protection Law, if you are a resident of Japan, you also have a special right to an explanation of the reasons if you exercise any of your rights and we refuse to exercise them as you request or if we deem it appropriate to exercise them differently or if we take any action other than that which you specifically request.

Republic of Korea

Pursuant to Article 4(3) of the South Korean Data Protection Act, if you are a resident of South Korea, you also have a special right to request and obtain confirmation from us confirming our processing of your personal data.
As we also process your personal data that we have collected from sources other than you, under Article 20(1) of the South Korean Data Protection Act, if you are a resident of South Korea, you have the right to request the suspension of the processing of such personal data.

12. Are we making updates to this policy?

In short: Yes, we update this policy as necessary to comply with applicable laws.
We may update this Privacy Policy from time to time. The updated version will be marked with the updated "revised" date, and the updated version will be effective as soon as it is available. If we make material changes to this Privacy Policy, we may notify you either by prominently posting a notice of those changes or by directly sending you a notice. We encourage you to review this Privacy Policy frequently to stay informed about how we are protecting your information.

13. How can you contact us about this policy?

If you have questions or comments about this policy, you can email us at info@onyx-wood.cz or by mail:

ONYX wood spol. s r.o.
U Stadionu 270, Prachatice II
383 01 Prachatice
Česká republika

14. How to make contact with us regarding the deletion of my personal data?

You can ask us to delete your account and the data recorded with it by sending an email to info@ihriste.cz, enter "Request to delete user data" in the subject line. The request must include the email used to log into the application. If logging in via Facebook, please include the email you use to log in to Facebook.

Processing of Personal Data

Table of Contents