COOKIE + GDPR

COOKIES

Cookies are small data files necessary for the proper functioning of websites, which is why we sometimes place them on your computer—just like most major websites do.

WHAT ARE COOKIES?

They are text files that websites store on your computer or mobile device when you start using the site. This allows the site to remember your actions and preferences (such as login details, language, font size, and other display preferences) for a certain period, so you do not need to re-enter them every time you navigate from one page to another.

With the help of cookies, many of our pages remember:

  • your display preferences, such as color contrast settings or font size
  • whether you have already answered a survey about the usefulness of the site’s content, so the survey window does not appear again
  • whether you have agreed to the use of cookies on the site

Our websites also often include video files, and through cookies, we collect data about them (e.g., where you accessed the video page from, which videos you watched, etc.).

Enabling these types of cookies is not strictly necessary for the functioning of the website, but it will make browsing easier and more pleasant. These cookies can be deleted or blocked, but in such cases, the site may not function properly.

The information collected through cookies is not used to personally identify you, and the structure of this data is fully under our control. Cookies are not used for any purposes other than those described here.

PERSONAL DATA PROCESSING AND USER INFORMATION

Privacy Policy

I. Basic Provisions
The controller of personal data pursuant to Article 4(7) of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons regarding the processing of personal data and on the free movement of such data (hereinafter: “GDPR”) is Jan Mayer (hereinafter: “controller”).

Controller’s contact details:
Address: Dolní Marklovice 258, Dolní Marklovice 258, Petrovice u Karviné, 735 72

email: info@d4m.eu
phone: +420 773 674 673

“Personal data” means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, particularly by reference to an identifier such as a name, identification number, location data, online identifier, or one or more factors specific to that person’s physical, physiological, genetic, mental, economic, cultural, or social identity.

The controller has not appointed a data protection officer.

II. Sources and Categories of Processed Personal Data

The controller processes personal data that you have provided or personal data obtained by fulfilling your order.
The controller processes your identification and contact details and data necessary for fulfilling the contract.

III. Legal Basis and Purpose of Personal Data Processing

The legal basis for processing personal data is:

  • performance of a contract between you and the controller under Article 6(1)(b) GDPR,

  • the controller’s legitimate interest in providing direct marketing (particularly for sending commercial communications and newsletters) under Article 6(1)(f) GDPR,

  • your consent to processing for the purposes of direct marketing (particularly for sending commercial communications and newsletters) under Article 6(1)(a) GDPR in conjunction with Section 7(2) of Act No. 480/2004 Coll., on Certain Information Society Services, if no goods or services were ordered.



The purposes of processing personal data are:

  • handling your order and exercising rights and obligations arising from the contractual relationship between you and the controller; when placing an order, personal data necessary for successful fulfillment (name, address, contact details) are required. Providing personal data is a necessary requirement for concluding and fulfilling a contract—without providing personal data, it is not possible to conclude or perform a contract by the controller.

  • sending commercial communications and performing other marketing activities.


The controller engages in automated individual decision-making within the meaning of Article 22 GDPR. You have given your explicit consent to such processing.

IV. Data Retention Period

The controller stores personal data:

  • for the period necessary to exercise rights and obligations arising from the contractual relationship between you and the controller and to assert claims from such contractual relationships (for 10 years after the end of the contractual relationship),

  • until consent to the processing of personal data for marketing purposes is withdrawn, but no longer than 3 years if processing is based on consent.


After the retention period expires, the controller will erase personal data.

V. Recipients of Personal Data (Controller’s Subcontractors)

Recipients of personal data include persons:

  • involved in delivering goods/services or processing payments based on a contract,

  • providing e-shop operation services and other services related to e-shop operation,

  • providing marketing services,

  • for the purpose of accounting for tax documents in accordance with contracts and applicable legal regulations, to the extent of:

    • name, surname, title,

    • postal address,

    • billing address,

    • email address,

    • telephone contact,

    • bank account details,

    • details of the subject matter of the controller’s performance.



VI. Your Rights

Under GDPR, you have the right to:

  • access your personal data under Article 15 GDPR,

  • rectification of personal data under Article 16 GDPR, or restriction of processing under Article 18 GDPR,

  • erasure of personal data under Article 17 GDPR,

  • object to processing under Article 21 GDPR,

  • data portability under Article 20 GDPR,

  • withdraw consent to processing in writing or electronically at the address or email of the controller specified in Article III of these terms.

You also have the right to file a complaint with the Office for Personal Data Protection if you believe that your right to personal data protection has been violated.



VII. Conditions of Personal Data Security

The controller declares that he has taken all appropriate technical and organizational measures to secure personal data.
The controller has adopted technical measures to secure data storage and storage of personal data in paper form.
The controller declares that personal data is accessible only to authorized persons.

VIII. Final Provisions

By submitting an order via the online order form, you confirm that you are familiar with the privacy policy terms and that you accept them in full.
You agree to these terms by ticking the consent box via the online form. By ticking the consent box, you confirm that you are familiar with the privacy policy terms and that you accept them in full.

The controller is entitled to change these terms. The new version of the privacy policy will be published on the controller’s website and sent to your email address that you provided to the controller.




These terms take effect on 25 May 2018