Your personal data is safe with us and we pay due attention to its protection. You can read below what personal data we collect, for what purpose we use it, how long we keep it, to whom we may transfer it and what your rights are.
Protection of personal data of customers of Authentica, s.r.o.
The administrator of personal data is Authentica, s.r.o., ID No. 26883082, with registered office at Vídeňská 102/113, 619 00 Brno, a company registered in the Commercial Register maintained by the Commercial Court in Brno, Section C, Insert 43287, (hereinafter referred to as the "Administrator"), which, as the administrator of the personal data provided by the customer for the purposes of negotiating the purchase contract and for the implementation of the contract, will process such personal data in accordance with the law, in particular Act No. 89/2012 Coll, Civil Code, Act No. 101/2000 Coll., on the protection of personal data and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.
Information for customers upon receipt of personal data by the Administrator
Legal basis for processing
Conclusion of a purchase contract or confirmation of a sent order, or negotiations for the conclusion of a purchase contract (e.g. submission of a quotation, etc.). The provision of personal data is an obligation of the data subject - the customer, which arises from the aforementioned contract.
Purpose of processing
The controller processes personal data for the purpose of fulfilling the obligations and exercising the rights of the seller in connection with the purchase contract concluded with the customer as the buyer.
Categories of personal data
Address and identification data (in particular company name/name and surname, date of birth/ID number, residence/residence, VAT number), contact data (name of the contact person and his/her e-mail address, telephone number), or other data necessary for the performance of the contract.
Categories of data subjects and source of personal data
Customers of the controller as buyers. Personal data is collected from customers as data subjects.
Recipients of personal data
The recipients of personal data are only public authorities within the scope of their authorisation and external companies processing part of the agenda for the data controller (e.g. external accountants, external providers of information system maintenance). Personal data are only transferred within the European Union.
Processing time and security of personal data
The security and protection of your personal data is ensured by strict technical security standards that also respect the relevant legal standards.
Personal data will be processed for the period necessary to fulfil the rights and obligations arising from the purchase contract. Subsequently, they will be handled in accordance with the applicable legislation, in particular Act No. 499/2004 Coll., the Act on Archives and File Service and on Amendments to Certain Acts and Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (GDPR).
Customer's rights
Right of access to personal data
The customer has the right to obtain information from the controller as to whether the controller processes his personal data and, if so, what the data is and how it is processed.
Right to erasure of personal data
The controller is obliged to erase the personal data it processes about the customer if certain conditions are met and the customer requests it.
Right to rectification or completion of personal data
The customer has the right to have inaccurate personal data concerning him corrected by the controller without undue delay at his request. The customer has the right to complete incomplete personal data at any time.
Right to restriction of processing of personal data
The customer has the right to have the controller restrict the processing of his personal data in certain cases.
Right to object to the processing of personal data
The Customer has the right to object at any time to the processing of personal data which is based on the legitimate interests of the controller, a third party or is necessary for the performance of a task carried out in the public interest or in the exercise of official authority.
Right to data portability
The Customer may obtain the personal data he has provided to the controller in a common and machine-readable format. He may subsequently transmit this data to another controller or, if technically possible, request that the controllers transmit it between themselves.
Right to lodge a complaint with the supervisory authority
The customer may lodge a complaint with the Office for Personal Data Protection, which is located at Pplk. Sochora 27, 170 00 Prague 7, tel.: 234 665 111 (switchboard), www.uoou.cz.
The right to withdraw consent to the processing of personal data at any time does not apply, as the customer's personal data is processed for the performance of a contract concluded with the controller, not on the basis of consent to processing.