Personal Data Protection
Personal data protection
If you are our customer, news subscriber or web visitor, you are entrusting us with your personal data. We are responsible for ensuring the protection and privacy of these data. Please, familiarize yourself with personal data protection and learn about the principles and rights you have in connection with the GDPR (General Data Protection Regulation).
Who is a controller?
We are Plastia s.r.o., Company ID No. 60720981, with its registered office at Na Pankráci 1062/58 140 00 Prague 4, registered in the Companies Register of the Municipal Court in Prague, Section C, File No. 167767, and we operate the website www.plastia.eu. We process your personal data as a controller, i.e. we determine how your personal data will be processed and for what purpose and for how long they will be processed and we select potential other processors to help us with this processing.
Contact details
If you have any questions you want to ask about data processing, you can contact us by phone at +420 566 667 001 or by e-mail at eshop@plastia.eu
Our declaration
We declare that as controllers of your personal data we have met all the statutory obligations required by the legislation in force, especially the Act on Personal Data Protection and the GDPR, i.e.:
we will only process your personal data on a valid lawful basis, especially on the basis of a legitimate interest, contractual performance, compliance with a legal obligation or your consent,
we/I fulfil the information duty acc. to Article 13 GDPR before the commencement of any personal data processing,
we will enable you and support you in exercising and performing your rights according to the Act on Personal Data Protection and the GDPR.
Scope of personal data and purposes of processing
Any personal data that you have entrusted to us are processed by us on the following grounds (to fulfil the following purposes):
- providing services, performing a contract
We need your personal data in the following scope: your e-mail, name and surname, address and telephone, for contractual performance (e.g. sending access data for an application, sending an online course, delivering a product, etc.).
- bookkeeping
If you are customers, we need your personal data (invoicing data) to comply with our statutory obligation concerning the issuance and keeping of tax documents (invoices).
- marketing – sending newsletters
We use your personal data (e-mail and name), gender, what you click on in e-mails and when you open them most often, for direct marketing purposes – sending marketing communications. If you are our customer, we will do so based on a legitimate interest, because we reasonably assume that you are interested in our news and we will do so for a period of 5 years after your last order. If you are not our customer, we will send our newsletters only with your consent and we will do so for 5 years after this consent is given. In both cases you can withdraw this consent by using the unsubscribe link included in every e-mail we send.
We will keep your personal data during the statutory limitation periods, unless the law stipulates a longer period for keeping these data or unless we specify otherwise on a case-by-case basis.
Cookies
During your visit on our website we record your IP address, we track how much time you spend on the website and from which website you have come from. The use of cookies for measuring website visitor numbers and customizing the website appearance is considered by us as a legitimate interest of a data controller, because we trust that this helps us offer you even better services.
Our website can also be browsed in a mode that does not enable the collection of personal data. You can also disable cookies on your computer.
Personal data privacy and protection
We protect personal data to the maximum extent possible by using modern, state-of-the-art technologies. We protect these data as if they were our own.
We have adopted and maintain all the possible (currently known) technical and organizational measures to prevent misuse, damage or destruction of your personal data.
Transferring personal data to third parties
Your personal data can be accessed by our employees and associates.
To carry out specific processing operations that we cannot perform ourselves, we rely on services and applications of processors who can protect the data even better than us and who specialize in such processing.
These include the providers of the following platforms:
SmartSelling a.s. (SmartEmailing, MioWeb, FAPI, Proaffil)
Facebook
Google
Lupasoft s.r.o., Information System Manager, Company ID No. 27985903
IZON s.r.o., E-shop Solution Manager, Company ID No. 28605161
DIGISHOCK s.r.o., Online Advertising Manager, Company ID No. 05521629
Mgr. Jitka Marková, Marketing Advisor, Company ID No. 04696093
It is possible that in the future we will decide to use additional applications or processors to make the processing easier and of a higher quality. However, we/I promise you that in this case I will place on any such processors at least the same demands concerning the processing safety and quality as those I place on myself.
Transferring data outside the European Union
All personal data processing will take place in the EU.
Your rights related to personal data protection
You have numerous rights related to personal data protection. If you want to exercise any of those rights, please contact us by e-mail at: eshop@plastia.eu
You have the right to information, which is already addressed by this information page with the principles of personal data processing.
Thanks to the right of access, you can ask us anytime and I will document to you within 30 days which of your personal data we/I process and why.
If anything changes about you or if you find your personal data obsolete outdated or incomplete, you will have the right to completion and change of personal data.
You can use the right to restriction of processing if you believe that we process your inaccurate data, if you think that we perform the processing unlawfully, but you don’t want to erase all the data, or if you have raised an objection to processing.
You can restrict the scope of personal data or purposes of processing. (e.g. by unsubscribing from a newsletter you restrict the purpose of processing for the sending of marketing communications).
Right to portability
If you want to take your personal data and transfer them to someone else, we will proceed in the same way as when exercising the right of access, with the only difference being that we will deliver the information to you in a machine readable form. To do this, we will need at least 30 days.
Right to erasure (to be forgotten)
Another right you have is the right to erasure (be forgotten). We don’t want to forget you, but it is your right to demand that we should do so if that’s what you wish. In this case, we will erase all your personal data from our system as well as from the system of all our sub-processors and backups. To complete all erasure tasks, we will need 90 days.
In some cases, we are bound by a legal obligation and we e.g. must keep a record of the issued tax documents (invoices) for a period defined by law. Thus, in this case we will erase all the personal data that are not subject to any other law. Once the erasure is completed, we will inform you by e-mail.
Filing a complaint with the Office for Personal Data Protection
If you suspect that we do not treat your personal data in accordance with law, you may file, at any time, a complaint with the Office for Personal Data Protection. We will really appreciate if you first inform us about any such suspicion so that we can do something about it and resolve any issues that may have arisen.
Unsubscribing from newsletters and marketing communications
If you are our customer, we will send you e-mails with inspiration, articles or products and services based on our legitimate interest.
If you are not our customer yet, we will send them only with your consent. In both cases, you can stop receiving our e-mails by clicking the unsubscribe link included in every e-mail we send.
Confidentiality
We would like to assure you that our employees and associates who will process your personal data are bound to maintain confidentiality of personal data and of security measures the disclosure of which would compromise the safety of your personal data. This confidentiality obligation will continue even after the termination of your business/legal relations with our company. Without your consent, your personal data will not be disclosed to any third party.
These principles of personal data processing shall come into force on 13 May 2018.
Files for download:
- Personal data protection (PDF, 106.24 KB)