Hello, my name is Kristýna Slavev and I run this website. If you are my customer, newsletter subscriber, or a visitor to the site, you entrust me with your personal data. I am responsible for their protection and security and I do everything I can to keep your personal data safe with me.
Please take a moment to acquaint yourself with the data protection policy, principles, and rights you have in connection with GDPR (General Data Protection Regulation).
Personal Data Controller
The personal data controller, pursuant to Article 4 point 7 of the European Parliament and Council Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as “GDPR”), is Kristýna Slavev, ID No.: 14163675, with its registered office at Tobrucká 715/29, Prague 6, 160 00 (hereinafter referred to as “Controller”).
If you wish to contact me, you can reach me by phone at +420 724 133 133 or via email at kristyna@holkazeskrine.forecomdigital.com.
As the controller of this site, I determine how personal data will be processed, for what purpose, for how long, and I choose any other processors that will help me process the data.
I declare that as the controller of your personal data, I comply with all statutory obligations required by applicable legislation, especially the Personal Data Protection Act and GDPR, meaning that:
•I will process your personal data only on a valid legal basis, primarily legitimate interest, contract performance, legal obligation, or consent given.
•I comply with the duty to inform under Article 13 GDPR before processing personal data.
•I will enable and support you in exercising and fulfilling your rights under the Personal Data Protection Act and GDPR.
Scope of Personal Data and Processing Purposes
The legal reason for processing personal data is:
•Contract performance between you and the Controller under Article 6 (1) (b) GDPR,
•Legitimate interest of the Controller in providing direct marketing (particularly for sending business messages and newsletters) pursuant to Article 6 (1) (f) GDPR,
•Your consent to processing for the purposes of direct marketing (particularly for sending business messages and newsletters) pursuant to Article 6 (1) (a) GDPR in conjunction with § 7 (2) of Act No. 480/2004 Coll., on certain information society services, in cases where no goods or services were ordered.
The purpose of processing personal data is:
•To process your service order and exercise the rights and obligations arising from the contractual relationship between you and the Controller; when ordering, personal data necessary for the successful fulfillment of the order (name and contact details) are required; providing personal data is a necessary requirement for concluding and fulfilling the contract, without providing personal data it is not possible to conclude the contract or fulfill it by the Controller,
•Sending business messages and carrying out other marketing activities.
Data Retention Period
The Controller retains personal data:
•For the period necessary to exercise the rights and obligations arising from the contractual relationship between you and the Controller and to assert claims arising from these contractual relationships (for a period of 10 years from the termination of the contractual relationship),
•Until the consent to the processing of personal data for marketing purposes is withdrawn, but no longer than 5 years.
After the expiration of the retention period, the Controller will erase the personal data. You can revoke your consent at any time using the unsubscribe link in each email sent. I may only use your photographs, references, etc., based on your consent.
Personal Data Security Conditions
The Controller declares that:
•They have taken all appropriate technical and organizational measures to secure personal data.
•They have taken technical measures to secure data storage and personal data storage in paper form, in particular: secure passwords, antivirus programs, and encryption via HTTPS certificates.
•The Controller declares that only authorized persons have access to personal data.
Transfer of Personal Data to Third Parties
The personal data I collect about you will not be disclosed or provided to third parties, except as described in this data processing and protection information.
For specific processing operations that I cannot ensure on my own, I provide processed personal data to my collaborators and processors who provide administrative and technical support in operating applications needed for the website’s functionality and technical support solutions.
This includes providers of the following platforms:
•Google — Google Analytics
•Email marketing platform
Rights Related to Personal Data Protection
You have several rights related to personal data protection. If you wish to exercise any of these rights, please contact me at kristyna@holkazeskrine.forecomdigital.com.
Under the GDPR, you have:
•The right to access your personal data under Article 15 GDPR,
•The right to rectification of personal data under Article 16 GDPR, or restriction of processing under Article 18 GDPR,
•The right to erasure of personal data under Article 17 GDPR,
•The right to object to processing under Article 21 GDPR,
•The right to data portability under Article 20 GDPR,
•The right to withdraw consent to processing in writing or electronically to the address or email of the Controller stated in Article III of these terms,
•The right to lodge a complaint with the Office for Personal Data Protection if you believe that your right to personal data protection has been violated.
Final Provisions
By submitting an order through the online order form, you confirm that you are familiar with the data protection terms and that you accept them in full.
The Controller is entitled to change these terms. The new version of the data protection terms will be published on their website, and at the same time, the new version of these terms will be sent to your email address provided to the Controller.