PRIVACY POLICY
ARTGLASS Ltd. is responsible for the protection and security of your personal data, which you entrust to us in the case of purchasing our products or visiting the e-shop shop.artglass.cz.
ARTGLASS Ltd. protects your personal data in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as “GDPR“) and in accordance with relevant national legislation on the protection of personal data.
We respect your right to privacy.
In the interest of transparency, this policy provides detailed information about what personal data we process, for what purpose, for how long, to whom we pass it, what your rights are and much more.
Please, also read the Cookie Policy.
1. PERSONAL DATA CONTROLLER
Personal Data Controller is:
ARTGLASS s.r.o.
Dolní Černá Studnice 45
468 21 Pěnčín
Česká republika
Identification Number: 48269743
(hereinafter referred to as “Controller“ or “ARTGLASS”)
ARTGLASS processes your personal data as a Controller, ie determines how the personal data will be processed and for what purpose, for how long and selects any other processors.
Contact information
If you wish to contact us during the processing of your data, please contact us by e-mail: dhuskova@artglass.cz.
2. DECLARATION
This declaration describes how we handle your personal information, options for collecting, using, updating, correcting and accessing your personal information.
We declare that, as the Controller of your personal data, we fulfil all obligations arising from the applicable legislation, in particular Act No. 110/2019 Coll., on the processing of personal data and GDPR.
We will process your personal data only on the basis of a valid legal reason, in particular a legitimate interest, performance of the contract, legal obligation or consent.
Before starting the processing of personal data, we fulfil the information obligation according to Article 13 of the GDPR.
3. SCOPE OF PERSONAL DATA AND PURPOSE OF PROCESSING
Your trust is important to us. We respect your control over your personal data and digital content and it is our priority to prevent any unauthorized access to them. Whenever we ask you for information, we need it, we don't ask for more. We use the double opt-in function to verify your e-mail.
3.1 Categories of personal data processed and purpose of such processing
We collect personal information that you provide to us, such as when you order something, when you contact us, or provide a purchase or merchandise evaluation. The personal information you provide to us includes both mandatory information: contact information and payment information, and also optional information. You cannot buy from us without providing the required information. You voluntarily provide us with personal data where we ask for your consent, eg for registration, for sending newsletters, counseling, discussions, reviews and more, to the extent specified therein.
For example, we need your data for the following purposes:
Creating and managing your personal account (registration)
Fulfillment of the contract and provision of goods and services (Processing of your order, delivery of goods, settlement of returns or complaints)
We process your personal data to the extent that we obtained it on the basis of your order. The provision of this personal data is a necessary requirement for the conclusion and performance of the contract, without the provision of personal data it is not possible to conclude the contract or perform it on our part. The legal reason for the processing of this personal data is therefore the performance of the contract between you and the Administrator pursuant to Article 6, paragraph 1, letter b) GDPR.
Fulfillment of legal obligations (especially accounting, tax and archiving)
If you are an ARTGLASS customer, your personal data (invoicing data) is also necessary for us to meet the legal requirements for the issuance and registration of tax documents (according to Article 6 (1) (c) of the GDPR).
Sending current information about the status of your order via SMS messages
Contacting you in case of problems with the delivery of your ordered goods
Answer your questions and inform you about new and changed services
Send you business communications about current promotions and discounts, if you have requested to receive it (newsletter)
Manage your account and control your payment morale
Perform analyses to provide you with relevant goods
Send you satisfaction questionnaires in order to give you the opportunity to influence our offer and services
Test and improve our systems through which we provide our services
Prevent misuse of our services
4. Retention period of personal data
We will keep your personal data for the necessary period of time, in particular for the above purposes: - for purchases with and without registration for a period of three years, with the new three-year period starting from the day I place my last order,
- for the evaluation of purchases or goods for a period of three years,
- for sending business messages without making a purchase, discussion, watchdog, contact form, counseling, product inquiry, etc. for a period of one year,
- or for a period stipulated by law (for a period of 11 years the data stated on the tax document, fulfillment of the legal obligation pursuant to Act No. 235/2004 Coll., on value added tax, as amended).
Your personal data will then be deleted if you do not agree to the extension of the processing of personal data.
5. COOKIES
For the proper functioning of the website, it is sometimes necessary to place small data files on your device, which are called cookies. Cookies do not pose a danger and are not used to obtain any sensitive personal data, but they are important for the protection of privacy. Cookies are not used to identify users of websites.
When browsing our website, we record your IP address, how long you stay on the page and from which page you come. We perceive the use of cookies to measure website traffic and customize the display of websites as our legitimate interest of the Controller, as we believe that thanks to this we can offer you even better services.
Websites can also be browsed in a mode that does not allow the collection of personal data. You can disable the use of cookies on your computer in your internet browser.
By using the Controller‘s website, you agree to the use of „cookies“ as described above.
Google Analytics
Our website also uses Google Analytics. Google Analytics is a web analytics service provided by Google Inc. This service uses „cookies“ (in the case of Google Analytics, these are third-party cookies) text files that are stored on your computer and allow analysis of the use of the website, for example, remember the settings of individual users. The information generated by the cookies about your use of this website is usually sent to a Google server in the USA and stored there. These cookies are controlled by third parties and the Controller does not have access to read or write this data.
You can block the storage of cookies by adjusting the settings in your browser. However, if you do so, you may not be able to use all the features of our website to the full. Google Analytics is performed in accordance with the terms and conditions which can be found here.
6. SECURITY AND PROTECTION OF PERSONAL DATA
ARTGLASS protects your personal data to the maximum extent possible using modern technologies that correspond to the state of technical development and has taken all possible (currently known) technical and organizational measures to secure personal data, which prevent their misuse, damage or destruction.
To make card payments with us as secure as possible, all information is sent in encrypted form using the SSL protocol. This means that the information passes through a secure connection and that your credit card information cannot be read by external parties. When paying by card, we work with an authorized payment intermediary, who helps us directly with your bank to verify that the card is valid for purchases. We do this through our services and by sharing information with you.
7. TRANSFER OF PERSONAL DATA TO THIRD PARTIES
Access to your personal data have our employees and co-workers, who signed a nondisclosure agreement and who are
trained in the security of personal data processing.
In order to provide some specific processing operations that we can not provide ourselves, we use the services and applications
of providers that specialize in these processes and are in compliance with the GDPR.
They are providers of the following platforms and services:
Carriers, for example:
Czech Post
DPD
Further:
Shopion s.r.o.
It is possible that in the future we will decide to use other applications or processors to facilitate and improve processing. In this case, we always select companies in accordance with the GDPR.
We never provide, sell or exchange your data with third parties for trading purposes.
8. TRANSFER OF DATA OUTSIDE THE EUROPEAN UNION
We process data only in the European Union or in countries that provide an adequate level of protection on the basis of the European Commission‘s decisions.
9. YOUR RIGHTS IN CONNECTION WITH THE PROTECTION OF PERSONAL DATA
Under the conditions set out in the GDPR, you have:
- the right to information
This right is already fulfilled by this document with the principles of personal data processing,
- the right to access your personal data pursuant to Article 15 of the GDPR
You can make a claim and we will provide you all your personal data and reasons for their processing within 30 days.
- the right to rectification personal data pursuant to Article 16 of the GDPR
You have the right to add and change your personal information if something changes or you find your personal data outdated or incomplete.
- The right to restriction of processing according to Article 18 of the GDPR
If you believe that we are processing your inaccurate data, but do not want to erase all data, or if you have objected to the processing, you may limit the scope of personal data or processing purposes (e.g. (For example, by unsubscribing from a newsletter, and restrict the purpose of sending business information to you).
- the right to erasure (‘right to be forgotten’) pursuant to Article 17 of the GDPR
In this case, we will delete all your personal data from our system as well as from the system of all sub-processors and backups. We need 30 days to secure the right to erasure. In justified cases, we are bound by a legal obligation. We must register the issued tax documents for the period stipulated by law. In this case, we will delete all such personal data that is not bound by another law. We will notify you by email when the erasure is complete.
- the right to object to the processing pursuant to Article 21 of the GDPR
- the right to data portability according to Article 20 of the GDPR
- the right to withdraw consent to processing in writing or electronically to the Controller´s address or email.
- the right to lodge a complaint with the Office for Personal Data Protection in the event that you believe that your right to personal data protection has been violated.
If you wish to exercise any of these rights, please contact us via e-mail: dhuskova@artglass.cz.
10. UNSUBSCRIBE FROM SENDING NEWSLETTERS AND BUSINESS MESSAGES
Emails with inspiration, articles or information about products and services are sent to you if you are our customer. It is based on our legitimate interest. You can unsubscribe from the newsletter by replying to the e-mail sent.
11. CONFIDENTIALITY
Our employees and co-workers, who will process your personal information, are required to maintain your personal data confidentially and safely. This confidentiality persists even after the termination of the contractual relations.
12. FINAL PROVISIONS
In the event that we become aware of a security risk associated with personal data, we will notify you without undue delay.
ARTGLASS may decide to change or update this Privacy Policy. You will always have the latest version of the policy available on our website. This version is effective from 1 January 2022.