Privacy Policy
We recognize the importance of protection of the personal data of our clients and business partners. This site provides a comprehensive and structured overview of information we collect regarding identification of persons and when we collect it.
Information on Personal Data Protection
This site will tell you everything about the personal data processing that we carry out. If we do process your personal data, you will find detailed information on your rights and on the manner in which you can exercise your rights here. You will find more details about each individual processing, your rights and the manner in which your rights may be exercised under the following headings designating groups of persons whose personal data are being processed and specific types of processing.
I. Employees' personal data.
II. Clients' personal data (users of Company's services and solutions).
III. Marketing (Information on goods and services including business message and profiling).
IV. Suppliers of goods and services and their representatives.
Information on Personal Data Protection
This site will tell you everything about the personal data processing that we carry out. If we do process your personal data, you will find detailed information on your rights and on the manner in which you can exercise your rights here. You will find more details about each individual processing, your rights and the manner in which your rights may be exercised under the following headings designating groups of persons whose personal data are being processed and specific types of processing.
I. Employees' personal data.
II. Clients' personal data (users of Company's services and solutions).
III. Marketing (Information on goods and services including business message and profiling).
IV. Suppliers of goods and services and their representatives.
Key characteristics of each individual processing
I. Employee personal data – the processing of employees' personal data to ensure compliance with the employer's legal obligations (performance of employment obligations) and exercising and protection of the employer's rights and legal interests, for instance with consent of an employee.
Comprehensive information on the processing, including details of your rights and the requirements for exercising your rights and the manner in which your rights may be exercised, is available HERE.
Comprehensive information on the processing, including details of your rights and the requirements for exercising your rights and the manner in which your rights may be exercised, is available HERE.
II. Clients' personal data (users of Company's services and solutions) – retention and processing of personal data of Company's clients in order to ensure the fulfilment of the Service Agreement concluded between the client and the Company.
Comprehensive information on the processing, including details of your rights, the requirements for exercising your rights and the manner in which your rights may be exercised, is available HERE.
Comprehensive information on the processing, including details of your rights, the requirements for exercising your rights and the manner in which your rights may be exercised, is available HERE.
III. Marketing – collecting and processing of information in order to identify the best offer for our customers in order to support sales and build Company's reputation.
Comprehensive information on the processing, including details of your rights, the requirements for exercising your rights and the manner in which your rights may be exercised, is available HERE.
Comprehensive information on the processing, including details of your rights, the requirements for exercising your rights and the manner in which your rights may be exercised, is available HERE.
IV. Contact details of suppliers of goods and services, and their representatives –retention of contact details for the purpose of entering into a contractual relationship and data necessary for contractual relations with the supplier of goods or services. Eventually, retention of contact details of the representatives (employees, executives representatives or other designated persons) of the suppliers.
Comprehensive information on the processing, including details of your rights, the requirements for exercising your rights and the manner in which your rights may be exercised, is available HERE.
Comprehensive information on the processing, including details of your rights, the requirements for exercising your rights and the manner in which your rights may be exercised, is available HERE.
I. EMPLOYEES' PERSONAL DATA
1. CONTROLLER
The personal data controller is TokmaTech s.r.o. with its registered office located at Kabeláčova 562/2, Kamýk, 143 00 Praha 4, identification No. 054 69 252, registered in the Commercial Register maintained by the Municipal Court in Prague under file No. C 263896 (hereinafter the "Controller").
2. YOUR RIGHTS
You have the following rights in respect of the personal data processing concerned:
a. ACCESS – The right to be informed whether or not your personal data are being processed. If your personal data are being processed, you have the right to obtain the information about the processing in prescribed extent and the right, under certain conditions, to obtain a copy of the processed personal data;
b. RECTIFICATION – The right to request rectification if the personal data processed are inaccurate, or the right to request completion if the data are incomplete;
c. ERASURE (right to be forgotten) - Right to request, under certain conditions stipulated by law (withdrawal of consent, termination of contract, unlawful processing), erasure of the personal data;
d. RESTRICTION OF PROCESSING – The right to request marking and, if applicable, restriction (suspension) of the processing pending verification of accuracy of the data, lawfulness of the processing, response to an objection or to ensure protection of your interests (exercise or protection or defence of rights and legitimate interests);
e. COMPLAINT – The right to lodge a complaint to the Office for Personal Data Protection against the Controller, the processing or the terms and conditions of exercising your rights. See www.uoou.cz for the contact details and other information about the Office;
f. WITHDRAWAL OF CONSENT – in relation to the use of photographs. Consent may be withdrawn at any time (in writing). The withdrawal of consent shall not affect the lawfulness of the processing of personal data carried out before the withdrawal. The photographs will be erased upon the request of withdrawal of consent, in relation to which the legal ground for their use by the Controller.
Use the relevant link to find details of individual rights, their characteristics and the conditions under which the rights arise and may be exercised. See how to exercise your rights at https://letopos.cz/vykon-prav-en.
A DATA PROTECTION OFFICER is not designated at the Controller.
3. PURPOSE OF PROCESSING
The Controller processes personal data for the purpose of:
Performance of employment obligations between the employee and the employer. Fulfilment of legal obligations of the employer (maintaining a database in accordance with the Labour Code, social security and health care, tax duties) and contractual obligations.
4. LEGAL GROUND FOR PROCESSING
The legal ground for the processing of personal data is: fulfilment of legal obligation of the Controller as stipulated in labour legal regulations, social security regulations and tax regulations (pursuant to Art. 6(1)(c) of the GDPR) and fulfilment of contractual obligations with the employee (pursuant to Art. 6(1)(b) of the GDPR);
5. SCOPE OF THE DATA being processed
The Controller processes the following data for the above purpose:
Identification and contact data qualification data, employment data (especially worked hours, wage, statutory levies, claims, breach of discipline, work injury, occupational disease, holiday, bank details, and number of children including their age), health insurance, personal ID number, information on tax details (tax discounts including personal details on a spouse and children, including their personal ID numbers)
6. PROVISION OF DATA IS MANDATORY
The provision of personal data is statutory requirement necessary for the employer to perform employment obligations, i. e. to perform a contract with the employee.
The provision of personal data is therefore mandatory; possible consequences of failure to provide personal data are breach of discipline, eventually subsequent obligation to compensate for damages occurred for example by imposing fine to the employer for a public offence which was caused by failing to provide mandatory report (for example insurance registration of employee) to relevant authority (for example District Social Security Administration).
7. PERIOD for which the personal data are stored and processed
The Controller processes personal data: in relation to each individual processing determined by law during statutory period, in case of data necessary for compliance with contractual obligations to ensure performing of employment obligations (employment, contract to complete job) and, if it is necessary, for performance of partial obligations (for example Non-Compete Clause) or exercise or protection of the Controllers' right (for example liability for damages, unlawful dismissal disputes, fulfilment of legal obligations and burden of proof to authorities, repayment of debts, etc).
8. PLACE where the personal data are being processed
The place of personal data processing shall be: Controller's business premises, including Controller's registered office.
9. THIRD COUNTRY
Personal data ARE NOT transferred outside of the EU for further processing.
10. PROCESSOR
A personal data processor pursuant to Art. 4(8) of the GDPR or a third party authorized by the Controller to process personal data may be engaged in the processing of personal data. In such cases, the Controller will minimize the risk of unauthorized disclosure, destruction, processing or loss of the personal data.
11. AUTOMATED DECISION-MAKING AND PROFILING
Automated decision-making means decisions that are made by automated means or based on the output of automated processes, without human intervention/volition.
Profiling means the use of personal data to evaluate certain personal aspects relating to a natural person, e.g. to predict that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, etc.
Automated decision-making WILL NOT be used in connection with personal data processing.
Profiling WILL NOT be used in connection with personal data processing.
The personal data controller is TokmaTech s.r.o. with its registered office located at Kabeláčova 562/2, Kamýk, 143 00 Praha 4, identification No. 054 69 252, registered in the Commercial Register maintained by the Municipal Court in Prague under file No. C 263896 (hereinafter the "Controller").
2. YOUR RIGHTS
You have the following rights in respect of the personal data processing concerned:
a. ACCESS – The right to be informed whether or not your personal data are being processed. If your personal data are being processed, you have the right to obtain the information about the processing in prescribed extent and the right, under certain conditions, to obtain a copy of the processed personal data;
b. RECTIFICATION – The right to request rectification if the personal data processed are inaccurate, or the right to request completion if the data are incomplete;
c. ERASURE (right to be forgotten) - Right to request, under certain conditions stipulated by law (withdrawal of consent, termination of contract, unlawful processing), erasure of the personal data;
d. RESTRICTION OF PROCESSING – The right to request marking and, if applicable, restriction (suspension) of the processing pending verification of accuracy of the data, lawfulness of the processing, response to an objection or to ensure protection of your interests (exercise or protection or defence of rights and legitimate interests);
e. COMPLAINT – The right to lodge a complaint to the Office for Personal Data Protection against the Controller, the processing or the terms and conditions of exercising your rights. See www.uoou.cz for the contact details and other information about the Office;
f. WITHDRAWAL OF CONSENT – in relation to the use of photographs. Consent may be withdrawn at any time (in writing). The withdrawal of consent shall not affect the lawfulness of the processing of personal data carried out before the withdrawal. The photographs will be erased upon the request of withdrawal of consent, in relation to which the legal ground for their use by the Controller.
Use the relevant link to find details of individual rights, their characteristics and the conditions under which the rights arise and may be exercised. See how to exercise your rights at https://letopos.cz/vykon-prav-en.
A DATA PROTECTION OFFICER is not designated at the Controller.
3. PURPOSE OF PROCESSING
The Controller processes personal data for the purpose of:
Performance of employment obligations between the employee and the employer. Fulfilment of legal obligations of the employer (maintaining a database in accordance with the Labour Code, social security and health care, tax duties) and contractual obligations.
4. LEGAL GROUND FOR PROCESSING
The legal ground for the processing of personal data is: fulfilment of legal obligation of the Controller as stipulated in labour legal regulations, social security regulations and tax regulations (pursuant to Art. 6(1)(c) of the GDPR) and fulfilment of contractual obligations with the employee (pursuant to Art. 6(1)(b) of the GDPR);
5. SCOPE OF THE DATA being processed
The Controller processes the following data for the above purpose:
Identification and contact data qualification data, employment data (especially worked hours, wage, statutory levies, claims, breach of discipline, work injury, occupational disease, holiday, bank details, and number of children including their age), health insurance, personal ID number, information on tax details (tax discounts including personal details on a spouse and children, including their personal ID numbers)
6. PROVISION OF DATA IS MANDATORY
The provision of personal data is statutory requirement necessary for the employer to perform employment obligations, i. e. to perform a contract with the employee.
The provision of personal data is therefore mandatory; possible consequences of failure to provide personal data are breach of discipline, eventually subsequent obligation to compensate for damages occurred for example by imposing fine to the employer for a public offence which was caused by failing to provide mandatory report (for example insurance registration of employee) to relevant authority (for example District Social Security Administration).
7. PERIOD for which the personal data are stored and processed
The Controller processes personal data: in relation to each individual processing determined by law during statutory period, in case of data necessary for compliance with contractual obligations to ensure performing of employment obligations (employment, contract to complete job) and, if it is necessary, for performance of partial obligations (for example Non-Compete Clause) or exercise or protection of the Controllers' right (for example liability for damages, unlawful dismissal disputes, fulfilment of legal obligations and burden of proof to authorities, repayment of debts, etc).
8. PLACE where the personal data are being processed
The place of personal data processing shall be: Controller's business premises, including Controller's registered office.
9. THIRD COUNTRY
Personal data ARE NOT transferred outside of the EU for further processing.
10. PROCESSOR
A personal data processor pursuant to Art. 4(8) of the GDPR or a third party authorized by the Controller to process personal data may be engaged in the processing of personal data. In such cases, the Controller will minimize the risk of unauthorized disclosure, destruction, processing or loss of the personal data.
11. AUTOMATED DECISION-MAKING AND PROFILING
Automated decision-making means decisions that are made by automated means or based on the output of automated processes, without human intervention/volition.
Profiling means the use of personal data to evaluate certain personal aspects relating to a natural person, e.g. to predict that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, etc.
Automated decision-making WILL NOT be used in connection with personal data processing.
Profiling WILL NOT be used in connection with personal data processing.
II. CLIENTS' PERSONAL DATA (USERS OF COMPANY'S SERVICES AND SOLUTIONS)
1. CONTROLLER
The personal data controller is TokmaTech s.r.o. with its registered office located at Kabeláčova 562/2, Kamýk, 143 00 Praha 4, identification No. 054 69 252, registered in the Commercial Register maintained by the Municipal Court in Prague under file No. C 263896 (hereinafter the "Controller").
2. YOUR RIGHTS
You have the following rights in respect of the personal data processing concerned:
a. ACCESS – The right to be informed whether or not your personal data are being processed. If your personal data are being processed, you have the right to obtain the information about the processing in prescribed extent and the right, under certain conditions, to obtain a copy of the processed personal data;
b. RECTIFICATION – The right to request rectification if the personal data processed are inaccurate, or the right to request completion if the data are incomplete;
c. ERASURE (right to be forgotten) - Right to request, under certain conditions stipulated by law (withdrawal of consent, termination of contract, unlawful processing), erasure of the personal data;
d. RESTRICTION OF PROCESSING – The right to request marking and, if applicable, restriction (suspension) of the processing pending verification of accuracy of the data, lawfulness of the processing, response to an objection or to ensure protection of your interests (exercise or protection or defence of rights and legitimate interests);
e. COMPLAINT – The right to lodge a complaint to the Office for Personal Data Protection against the Controller, the processing or the terms and conditions of exercising your rights. See www.uoou.cz for the contact details and other information about the Office;
You also have the right to:
OBJECT – The right to request for your personal data not to be further processed for tasks in public interest, for the Controller's or third person's legitimate interest or marketing purposes.
Use the relevant link to find details of individual rights, their characteristics and the conditions under which the rights arise and may be exercised. See how to exercise your rights at https://letopos.cz/vykon-prav-en.
A DATA PROTECTION OFFICER is not designated at the Controller.
3. PURPOSE OF PROCESSING
The Controller processes personal data for the purpose of fulfilment of the contract and his / her own legitimate interests: To ensure the uninterrupted provision of services.
4. LEGAL GROUND FOR PROCESSING
The legal ground for the processing of personal data is:
Natural person (individual entrepreneur) or a legal entity registers through a website or other communication channels used by the Controller and measures from its own initiative, in the pre-contractual or fulfilment stage – measures necessary before conclusion of the contract and fulfilment of the contract with data subject (pursuant to Art. 6(1)(b) of the GDPR).
5. SCOPE OF THE DATA being processed
The Controller processes the following data for the abovementioned purpose:
— In case the client is a freelancer or is conducting business as a natural person (individual entrepreneur) - identification and contact data, i.e. the name, surname, date of birth, identification number and tax identification number, scope of business, registered seat / office and information on contractual obligation including communication concerning contract negotiation and performance, banking and credit card details, invoicing details, electronic device details (cell phone, tablet, etc.) used to run the Controller'sservices.
— In case the client is a legal entity - identification and contact data of a representative of such entity (work contact information), job title, name, surname, registered office and information on contractual obligations.
6. PROVISION OF DATA IS NECESSARY
Provision of personal data is necessary only if it is necessary for the contractual and fulfilment purposes. It is not possible to conclude a contract without such provision.
7. PERIOD for which the personal data are stored and processed
The Controller processes personal data: for the necessary period of time, i.e. for the entire duration of cooperation or potential cooperation with the data subject. In case of contractual obligations, until they are fulfilled, and for the duration of the applicable statutory time limits, including period for claiming defects, statute of limitations and prescription periods in relation to potential claims arising from contractual relationship. Data and documents may be retained for a period prescribed by law (for example tax records, etc.).
8. RECIPIENTS to whom the personal data may be disclosed
Personal data are provided to following recipients (categories): NO RECIPIENTS.
9. PLACE where the personal data are being processed
The place of the processing of personal data shall be: Controller's business premises, including Controller's registered seat / office.
10. THIRD COUNTRY
Personal data ARE NOT transferred outside of the EU for further processing.
11. PROCESSOR
A personal data processor pursuant to Art. 4(8) of the GDPR or a third party authorized by the Controller to process personal data may be engaged in the processing of personal data. In such cases, the Controller will minimize the risk of unauthorized disclosure, destruction, processing or loss of the personal data.
12. AUTOMATED DECISION-MAKING AND PROFILING
Automated decision-making means decisions that are made by automated means or based on the output of automated processes, without human intervention/volition.
Profiling means the use of personal data to evaluate certain personal aspects relating to a natural person, e.g. to predict that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, etc.
Automated decision-making WILL NOT be used in connection with personal data processing.
Profiling WILL NOT be used in connection with personal data processing.
The personal data controller is TokmaTech s.r.o. with its registered office located at Kabeláčova 562/2, Kamýk, 143 00 Praha 4, identification No. 054 69 252, registered in the Commercial Register maintained by the Municipal Court in Prague under file No. C 263896 (hereinafter the "Controller").
2. YOUR RIGHTS
You have the following rights in respect of the personal data processing concerned:
a. ACCESS – The right to be informed whether or not your personal data are being processed. If your personal data are being processed, you have the right to obtain the information about the processing in prescribed extent and the right, under certain conditions, to obtain a copy of the processed personal data;
b. RECTIFICATION – The right to request rectification if the personal data processed are inaccurate, or the right to request completion if the data are incomplete;
c. ERASURE (right to be forgotten) - Right to request, under certain conditions stipulated by law (withdrawal of consent, termination of contract, unlawful processing), erasure of the personal data;
d. RESTRICTION OF PROCESSING – The right to request marking and, if applicable, restriction (suspension) of the processing pending verification of accuracy of the data, lawfulness of the processing, response to an objection or to ensure protection of your interests (exercise or protection or defence of rights and legitimate interests);
e. COMPLAINT – The right to lodge a complaint to the Office for Personal Data Protection against the Controller, the processing or the terms and conditions of exercising your rights. See www.uoou.cz for the contact details and other information about the Office;
You also have the right to:
OBJECT – The right to request for your personal data not to be further processed for tasks in public interest, for the Controller's or third person's legitimate interest or marketing purposes.
Use the relevant link to find details of individual rights, their characteristics and the conditions under which the rights arise and may be exercised. See how to exercise your rights at https://letopos.cz/vykon-prav-en.
A DATA PROTECTION OFFICER is not designated at the Controller.
3. PURPOSE OF PROCESSING
The Controller processes personal data for the purpose of fulfilment of the contract and his / her own legitimate interests: To ensure the uninterrupted provision of services.
4. LEGAL GROUND FOR PROCESSING
The legal ground for the processing of personal data is:
Natural person (individual entrepreneur) or a legal entity registers through a website or other communication channels used by the Controller and measures from its own initiative, in the pre-contractual or fulfilment stage – measures necessary before conclusion of the contract and fulfilment of the contract with data subject (pursuant to Art. 6(1)(b) of the GDPR).
5. SCOPE OF THE DATA being processed
The Controller processes the following data for the abovementioned purpose:
— In case the client is a freelancer or is conducting business as a natural person (individual entrepreneur) - identification and contact data, i.e. the name, surname, date of birth, identification number and tax identification number, scope of business, registered seat / office and information on contractual obligation including communication concerning contract negotiation and performance, banking and credit card details, invoicing details, electronic device details (cell phone, tablet, etc.) used to run the Controller'sservices.
— In case the client is a legal entity - identification and contact data of a representative of such entity (work contact information), job title, name, surname, registered office and information on contractual obligations.
6. PROVISION OF DATA IS NECESSARY
Provision of personal data is necessary only if it is necessary for the contractual and fulfilment purposes. It is not possible to conclude a contract without such provision.
7. PERIOD for which the personal data are stored and processed
The Controller processes personal data: for the necessary period of time, i.e. for the entire duration of cooperation or potential cooperation with the data subject. In case of contractual obligations, until they are fulfilled, and for the duration of the applicable statutory time limits, including period for claiming defects, statute of limitations and prescription periods in relation to potential claims arising from contractual relationship. Data and documents may be retained for a period prescribed by law (for example tax records, etc.).
8. RECIPIENTS to whom the personal data may be disclosed
Personal data are provided to following recipients (categories): NO RECIPIENTS.
9. PLACE where the personal data are being processed
The place of the processing of personal data shall be: Controller's business premises, including Controller's registered seat / office.
10. THIRD COUNTRY
Personal data ARE NOT transferred outside of the EU for further processing.
11. PROCESSOR
A personal data processor pursuant to Art. 4(8) of the GDPR or a third party authorized by the Controller to process personal data may be engaged in the processing of personal data. In such cases, the Controller will minimize the risk of unauthorized disclosure, destruction, processing or loss of the personal data.
12. AUTOMATED DECISION-MAKING AND PROFILING
Automated decision-making means decisions that are made by automated means or based on the output of automated processes, without human intervention/volition.
Profiling means the use of personal data to evaluate certain personal aspects relating to a natural person, e.g. to predict that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, etc.
Automated decision-making WILL NOT be used in connection with personal data processing.
Profiling WILL NOT be used in connection with personal data processing.
III. MARKETING
1. CONTROLLER
The personal data controller is TokmaTech s.r.o. with its registered office located at Kabeláčova 562/2, Kamýk, 143 00 Praha 4, identification No. 054 69 252, registered in the Commercial Register maintained by the Municipal Court in Prague under file No. C 263896 (hereinafter the "Controller").
2. YOUR RIGHTS
You have the following rights in respect of the personal data processing concerned:
a. WITHDRAWAL OF CONSENT – Consent may be withdrawn at any time in a manner described at https://letopos.cz/vykon-prav-en: The withdrawal of consent shall not affect the lawfulness of the processing of personal data carried out before the withdrawal. Processing of your data for marketing purposes will end upon the withdrawal of consent.
b. ACCESS – The right to be informed whether or not your personal data are being processed. If your personal data are being processed, you have the right to obtain the information about the processing in prescribed extent and the right, under certain conditions, to obtain a copy of the processed personal data;
c. RECTIFICATION – The right to request rectification if the personal data processed are inaccurate, or the right to request completion if the data are incomplete;
d. ERASURE (right to be forgotten) - Right to request, under certain conditions stipulated by law (withdrawal of consent, termination of contract, unlawful processing), erasure of the personal data;
e. RESTRICTION OF PROCESSING – The right to request marking and, if applicable, restriction (suspension) of the processing pending verification of accuracy of the data, lawfulness of the processing, response to an objection or to ensure protection of your interests (exercise or protection or defence of rights and legitimate interests);
f. COMPLAINT – The right to lodge a complaint to the Office for Personal Data Protection against the Controller, the processing or the terms and conditions of exercising your rights. See www.uoou.cz for the contact details and other information about the Office;
g. PORTABILITY – The right stipulated by law to obtain information for further processing for person determined by you, and to whom you will hand over such information, or request direct hand over to another person for further processing.
You also have the right to:
OBJECT – The right to request for your personal data not to be further processed for tasks in public interest, for the Controller's or third person´s legitimate interest or marketing purposes.
Use the relevant link to find details of individual rights, their characteristics and the conditions under which the rights arise and may be exercised. See how to exercise your rights at https://letopos.cz/vykon-prav-en.
A DATA PROTECTION OFFICER is not designated at the Controller.
3. PURPOSE OF PROCESSING
The Controller processes personal data for marketing purposes: Sending and calling information about the Controller's services and goods. Business messages and calls take into account expected needs, interests and preferences of the addressee based on profiling of the addressee using data on its online presence and participation in online networks and business directories.
4. LEGAL GROUND FOR PROCESSING
The legal ground for the processing of personal data is: for the direct marketing the legitimate interest of the Controller (pursuant to Art. 6(1)(f) of the GDPR), and for the other marketing activities a consent of the data subjects (pursuant to Art. 6(1)(a) of the GDPR).
5. SCOPE OF THE DATA being processed
The Controller processes the following data for the above-mentioned purpose:
Identification and contact data, i.e. the name, surname, phone number, email address, information on the type of conducted business and online presence data (cookies and other similar data sources and tools, participation on social media and business directories).
6. PROVISION OF DATA IS VOLUNTARY
Provision of data is voluntary.
7. PERIOD for which the personal data are stored and processed
The Controller processes personal data for purposes stipulated in art. 3: for the necessary period of time, i.e. for the entire cooperation or potential cooperation with data subject as for the data processed on the basis of legitimate interest, otherwise until the withdrawal of consent but no longer than 5 years after the last interaction with the subject of data.
8. PLACE where the personal data are being processed
The place of personal data processing shall be: the Controller's business premises, including the Controller's registered office.
9. RECIPIENTS to whom the personal data may be disclosed
Personal data are provided to following recipients (categories): NO RECIPIENTS.
10. THIRD COUNTRY
Personal data ARE NOT transferred outside of the EU for further processing.
11. PROCESSOR
A personal data processor pursuant to Art. 4(8) of the GDPR or a third party authorized by the Controller to process personal data may be engaged in the processing of personal data. In such cases, the Controller will minimize the risk of unauthorized disclosure, destruction, processing or loss of the personal data.
12. AUTOMATED DECISION-MAKING AND PROFILING
Automated decision-making means decisions that are made by automated means or based on the output of automated processes, without human intervention/volition.
Profiling means the use of personal data to evaluate certain personal aspects relating to a natural person, e.g. to predict that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, etc.
Automated decision-making WILL NOT be used in connection to personal data processing.
Profiling WILL be used in connection to personal data processing. Specifically, preference profiling based on client's / user's online presence, social media and business directories usage and other data obtained from cookies and similar tools.
The personal data controller is TokmaTech s.r.o. with its registered office located at Kabeláčova 562/2, Kamýk, 143 00 Praha 4, identification No. 054 69 252, registered in the Commercial Register maintained by the Municipal Court in Prague under file No. C 263896 (hereinafter the "Controller").
2. YOUR RIGHTS
You have the following rights in respect of the personal data processing concerned:
a. WITHDRAWAL OF CONSENT – Consent may be withdrawn at any time in a manner described at https://letopos.cz/vykon-prav-en: The withdrawal of consent shall not affect the lawfulness of the processing of personal data carried out before the withdrawal. Processing of your data for marketing purposes will end upon the withdrawal of consent.
b. ACCESS – The right to be informed whether or not your personal data are being processed. If your personal data are being processed, you have the right to obtain the information about the processing in prescribed extent and the right, under certain conditions, to obtain a copy of the processed personal data;
c. RECTIFICATION – The right to request rectification if the personal data processed are inaccurate, or the right to request completion if the data are incomplete;
d. ERASURE (right to be forgotten) - Right to request, under certain conditions stipulated by law (withdrawal of consent, termination of contract, unlawful processing), erasure of the personal data;
e. RESTRICTION OF PROCESSING – The right to request marking and, if applicable, restriction (suspension) of the processing pending verification of accuracy of the data, lawfulness of the processing, response to an objection or to ensure protection of your interests (exercise or protection or defence of rights and legitimate interests);
f. COMPLAINT – The right to lodge a complaint to the Office for Personal Data Protection against the Controller, the processing or the terms and conditions of exercising your rights. See www.uoou.cz for the contact details and other information about the Office;
g. PORTABILITY – The right stipulated by law to obtain information for further processing for person determined by you, and to whom you will hand over such information, or request direct hand over to another person for further processing.
You also have the right to:
OBJECT – The right to request for your personal data not to be further processed for tasks in public interest, for the Controller's or third person´s legitimate interest or marketing purposes.
Use the relevant link to find details of individual rights, their characteristics and the conditions under which the rights arise and may be exercised. See how to exercise your rights at https://letopos.cz/vykon-prav-en.
A DATA PROTECTION OFFICER is not designated at the Controller.
3. PURPOSE OF PROCESSING
The Controller processes personal data for marketing purposes: Sending and calling information about the Controller's services and goods. Business messages and calls take into account expected needs, interests and preferences of the addressee based on profiling of the addressee using data on its online presence and participation in online networks and business directories.
4. LEGAL GROUND FOR PROCESSING
The legal ground for the processing of personal data is: for the direct marketing the legitimate interest of the Controller (pursuant to Art. 6(1)(f) of the GDPR), and for the other marketing activities a consent of the data subjects (pursuant to Art. 6(1)(a) of the GDPR).
5. SCOPE OF THE DATA being processed
The Controller processes the following data for the above-mentioned purpose:
Identification and contact data, i.e. the name, surname, phone number, email address, information on the type of conducted business and online presence data (cookies and other similar data sources and tools, participation on social media and business directories).
6. PROVISION OF DATA IS VOLUNTARY
Provision of data is voluntary.
7. PERIOD for which the personal data are stored and processed
The Controller processes personal data for purposes stipulated in art. 3: for the necessary period of time, i.e. for the entire cooperation or potential cooperation with data subject as for the data processed on the basis of legitimate interest, otherwise until the withdrawal of consent but no longer than 5 years after the last interaction with the subject of data.
8. PLACE where the personal data are being processed
The place of personal data processing shall be: the Controller's business premises, including the Controller's registered office.
9. RECIPIENTS to whom the personal data may be disclosed
Personal data are provided to following recipients (categories): NO RECIPIENTS.
10. THIRD COUNTRY
Personal data ARE NOT transferred outside of the EU for further processing.
11. PROCESSOR
A personal data processor pursuant to Art. 4(8) of the GDPR or a third party authorized by the Controller to process personal data may be engaged in the processing of personal data. In such cases, the Controller will minimize the risk of unauthorized disclosure, destruction, processing or loss of the personal data.
12. AUTOMATED DECISION-MAKING AND PROFILING
Automated decision-making means decisions that are made by automated means or based on the output of automated processes, without human intervention/volition.
Profiling means the use of personal data to evaluate certain personal aspects relating to a natural person, e.g. to predict that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, etc.
Automated decision-making WILL NOT be used in connection to personal data processing.
Profiling WILL be used in connection to personal data processing. Specifically, preference profiling based on client's / user's online presence, social media and business directories usage and other data obtained from cookies and similar tools.
IV. CONTACT DETAILS OF SUPPLIERS OF GOODS AND SERVICES, AND THEIR REPRESENTATIVES
1. CONTROLLER
The personal data controller is TokmaTech s.r.o. with its registered office located at Kabeláčova 562/2, Kamýk, 143 00 Praha 4, identification No. 054 69 252, registered in the Commercial Register maintained by the Municipal Court in Prague under file No. C 263896 (hereinafter the "Controller").
2. YOUR RIGHTS
You have the following rights in respect of the personal data processing concerned:
a. ACCESS – The right to be informed whether or not your personal data are being processed. If your personal data are being processed, you have the right to obtain the information about the processing in prescribed extent and the right, under certain conditions, to obtain a copy of the processed personal data;
b. RECTIFICATION – The right to request rectification if the personal data processed are inaccurate, or the right to request completion if the data are incomplete;
c. ERASURE (right to be forgotten) - Right to request, under certain conditions stipulated by law (withdrawal of consent, termination of contract, unlawful processing), erasure of the personal data;
d. RESTRICTION OF PROCESSING – The right to request marking and, if applicable, restriction (suspension) of the processing pending verification of accuracy of the data, lawfulness of the processing, response to an objection or to ensure protection of your interests (application or protection or defence of rights and legitimate interests);
e. COMPLAINT – The right to lodge a complaint to the Office for Personal Data Protection against the Controller, the processing or the terms and conditions of exercising your rights. See www.uoou.cz for the contact details and other information about the Office;
You also have the right to:
OBJECT – The right to request for your personal data not to be further processed for tasks in public interest, for the Controller's or third person's interest or marketing purposes.
Use the relevant link to find details of individual rights, their characteristics and the conditions under which the rights arise and may be exercised. See how to exercise your rights at https://letopos.cz/vykon-prav-en.
A DATA PROTECTION OFFICER is not designated at the Controller.
3. PURPOSE OF PROCESSING
The Controller processes personal data for fulfilment of the contract and its own legitimate interests:
Database of identification and contact data, i.e. name, surname, place of residence / registered seat (office), identification number, phone number, email address, banking and billing details of potential / current suppliers of goods and services for contract negotiation, records of communication with the supplier regarding contract negotiations (in order to be able to prove the content of the contract as well as pre-contractual liability etc.), conclusion of the contract with the supplier. In respect of fulfilment of contractual obligations, it is the documentation and correspondence concerning performance of employment that is necessary to prove the manner in which the fulfilment of the contract and protection and exercise of rights took place.
In case the supplier is not one of the contractual parties, data concerning his employees, executive representatives or other persons authorised to negotiate about contract, i.e. contract performance, are registered.
4. LEGAL GROUND FOR PROCESSING
The legal ground for the processing of personal data is:
— Controller's legitimate interest in relation to the database of potential suppliers Art. 6(1)(f) of the GDPR), in the contracting and fulfilling stage – necessary measures before the conclusion of the contract and fulfilling the contract with data subject Art. 6(1)(b) of the GDPR), all applies if the supplier is a natural person (individual entrepreneur);
— Controller's legitimate interest in relation to the database of suppliers, negotiations and fulfilment of the contract where the subject of processing are personal data of supplier' representatives (Art. 6(1)(f) of the GDPR), all applies if the supplier is a legal entity
5. SCOPE OF THE DATA being processed
The Controller processes the following data for the above-mentioned purpose:
— In case the supplier is a natural person (individual entrepreneur) - identification and contact data, i.e. name, surname, scope of business, registered seat / office, billing and invoicing details and information on contractual obligation including communication concerning contract negotiation and performance.
— In case the supplier is a legal entity - identification and contact data of a representative of such entity (work contact information), job title, name, surname, scope of business, registered seat / office, billing and invoicing details and information on contractual obligation including communication concerning contract negotiation with the employer.
6. PROVISION OF DATA IS NECESSARY
Provision of personal data is necessary only if it is necessary for the contractual and fulfilment purposes. It is not possible to conclude a contract without such provision.
7. PERIOD for which the personal data are stored and processed
The Controller processes personal data: for the necessary period of time, i.e. for the entire cooperation, or potential cooperation with the data subject. In case of contractual obligations – until they are fulfilled, and for the time period stipulated by law, including period for claiming defects, statute of limitations and prescription periods regarding potential claims arising from contractual relationship. Data and documents may be retained for a period prescribed by law (for example tax records, etc.).
8. PLACE where the personal data are being processed
The place of the processing of personal data shall be: the Controller's business premises, including the Controller's registered office
9. RECIPIENTS to whom the personal data may be disclosed
Personal data are provided to following recipients (categories): NO RECIPIENTS.
10. THIRD COUNTRY
Personal data ARE NOT transferred outside of the EU for further processing.
11. PROCESSOR
A personal data processor pursuant to Art. 4(8) of the GDPR or a third party authorized by the Controller to process personal data may be engaged in the processing of personal data. In such cases, the Controller will minimize the risk of unauthorized disclosure, destruction, processing or loss of the personal data.
12. AUTOMATED DECISION-MAKING AND PROFILING
Automated decision-making means decisions that are made by automated means or based on the output of automated processes, without human intervention/volition.
Profiling means the use of personal data to evaluate certain personal aspects relating to a natural person, e.g. to predict that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, etc.
Automated decision-making WILL NOT be used in connection with personal data processing.
Profiling WILL NOT be used in connection with the processing of personal data.
The personal data controller is TokmaTech s.r.o. with its registered office located at Kabeláčova 562/2, Kamýk, 143 00 Praha 4, identification No. 054 69 252, registered in the Commercial Register maintained by the Municipal Court in Prague under file No. C 263896 (hereinafter the "Controller").
2. YOUR RIGHTS
You have the following rights in respect of the personal data processing concerned:
a. ACCESS – The right to be informed whether or not your personal data are being processed. If your personal data are being processed, you have the right to obtain the information about the processing in prescribed extent and the right, under certain conditions, to obtain a copy of the processed personal data;
b. RECTIFICATION – The right to request rectification if the personal data processed are inaccurate, or the right to request completion if the data are incomplete;
c. ERASURE (right to be forgotten) - Right to request, under certain conditions stipulated by law (withdrawal of consent, termination of contract, unlawful processing), erasure of the personal data;
d. RESTRICTION OF PROCESSING – The right to request marking and, if applicable, restriction (suspension) of the processing pending verification of accuracy of the data, lawfulness of the processing, response to an objection or to ensure protection of your interests (application or protection or defence of rights and legitimate interests);
e. COMPLAINT – The right to lodge a complaint to the Office for Personal Data Protection against the Controller, the processing or the terms and conditions of exercising your rights. See www.uoou.cz for the contact details and other information about the Office;
You also have the right to:
OBJECT – The right to request for your personal data not to be further processed for tasks in public interest, for the Controller's or third person's interest or marketing purposes.
Use the relevant link to find details of individual rights, their characteristics and the conditions under which the rights arise and may be exercised. See how to exercise your rights at https://letopos.cz/vykon-prav-en.
A DATA PROTECTION OFFICER is not designated at the Controller.
3. PURPOSE OF PROCESSING
The Controller processes personal data for fulfilment of the contract and its own legitimate interests:
Database of identification and contact data, i.e. name, surname, place of residence / registered seat (office), identification number, phone number, email address, banking and billing details of potential / current suppliers of goods and services for contract negotiation, records of communication with the supplier regarding contract negotiations (in order to be able to prove the content of the contract as well as pre-contractual liability etc.), conclusion of the contract with the supplier. In respect of fulfilment of contractual obligations, it is the documentation and correspondence concerning performance of employment that is necessary to prove the manner in which the fulfilment of the contract and protection and exercise of rights took place.
In case the supplier is not one of the contractual parties, data concerning his employees, executive representatives or other persons authorised to negotiate about contract, i.e. contract performance, are registered.
4. LEGAL GROUND FOR PROCESSING
The legal ground for the processing of personal data is:
— Controller's legitimate interest in relation to the database of potential suppliers Art. 6(1)(f) of the GDPR), in the contracting and fulfilling stage – necessary measures before the conclusion of the contract and fulfilling the contract with data subject Art. 6(1)(b) of the GDPR), all applies if the supplier is a natural person (individual entrepreneur);
— Controller's legitimate interest in relation to the database of suppliers, negotiations and fulfilment of the contract where the subject of processing are personal data of supplier' representatives (Art. 6(1)(f) of the GDPR), all applies if the supplier is a legal entity
5. SCOPE OF THE DATA being processed
The Controller processes the following data for the above-mentioned purpose:
— In case the supplier is a natural person (individual entrepreneur) - identification and contact data, i.e. name, surname, scope of business, registered seat / office, billing and invoicing details and information on contractual obligation including communication concerning contract negotiation and performance.
— In case the supplier is a legal entity - identification and contact data of a representative of such entity (work contact information), job title, name, surname, scope of business, registered seat / office, billing and invoicing details and information on contractual obligation including communication concerning contract negotiation with the employer.
6. PROVISION OF DATA IS NECESSARY
Provision of personal data is necessary only if it is necessary for the contractual and fulfilment purposes. It is not possible to conclude a contract without such provision.
7. PERIOD for which the personal data are stored and processed
The Controller processes personal data: for the necessary period of time, i.e. for the entire cooperation, or potential cooperation with the data subject. In case of contractual obligations – until they are fulfilled, and for the time period stipulated by law, including period for claiming defects, statute of limitations and prescription periods regarding potential claims arising from contractual relationship. Data and documents may be retained for a period prescribed by law (for example tax records, etc.).
8. PLACE where the personal data are being processed
The place of the processing of personal data shall be: the Controller's business premises, including the Controller's registered office
9. RECIPIENTS to whom the personal data may be disclosed
Personal data are provided to following recipients (categories): NO RECIPIENTS.
10. THIRD COUNTRY
Personal data ARE NOT transferred outside of the EU for further processing.
11. PROCESSOR
A personal data processor pursuant to Art. 4(8) of the GDPR or a third party authorized by the Controller to process personal data may be engaged in the processing of personal data. In such cases, the Controller will minimize the risk of unauthorized disclosure, destruction, processing or loss of the personal data.
12. AUTOMATED DECISION-MAKING AND PROFILING
Automated decision-making means decisions that are made by automated means or based on the output of automated processes, without human intervention/volition.
Profiling means the use of personal data to evaluate certain personal aspects relating to a natural person, e.g. to predict that natural person's performance at work, economic situation, health, personal preferences, interests, reliability, etc.
Automated decision-making WILL NOT be used in connection with personal data processing.
Profiling WILL NOT be used in connection with the processing of personal data.
WITHDRAWAL OF CONSENT WITH DATA PROCESSING
If you wish to withdraw your consent for data processing for marketing purposes, please enter your email address and send to confirm.
Používáme cookies ke zlepšení našich stránek.
Souhlasím
O NÁS
TokmaTech s.r.o.
Kabeláčova 562/2, Kamýk, 14300
Praha 4, IČ: 05469252
+420 227 272 208
info@letopos.cz
Náš tým
Spisová značka C 263896 vedená u Městského soudu v Praze
Kabeláčova 562/2, Kamýk, 14300
Praha 4, IČ: 05469252
+420 227 272 208
info@letopos.cz
Náš tým
Spisová značka C 263896 vedená u Městského soudu v Praze