1. Introductory Provisions
The controller of personal data within the meaning of Article 4 (7) of Regulation (EU) 2016/679 of the European Parliament and of the Council (hereinafter referred to as “GDPR”) is DBS s.r.o., ID 022153098, with its registered office Františka Kadlece 2441, 180 00 Praha, Libeň (hereinafter referred to as the “Controller”).
Administrator contact information
Contact information of the administrator:
Address: Františka Kadlece 2441, 180 00 Prague, Libeň
Email: info@dbservice.cz
Phone: +420 720 773 200
Personal data means any information relating to a natural person that can be directly or indirectly identified — for example, by name, identification number, location data, network identifier or specific features of their physical, psychological, economic or social identity.
The controller did not appoint a data protection officer.
2. Origin and scope of data processed
The Administrator works with the data that you have provided to him or with the data obtained during the processing of your order. These are, in particular, identification and contact data and information necessary for the performance of the contract.
The Controller does not have a designated Data Protection Officer.
3. Legal basis and purpose of data processing
The processing of personal data takes place on the basis of:
performance of the contract between you and the controller pursuant to Art. 6 para. 1 (b) GDPR,
legitimate interest of the controller, which is direct marketing (e.g. sending newsletters and commercial communications) pursuant to Article 6 (1) (f) GDPR.
The data are processed for the following purposes:
processing of your order and realization of rights and obligations from the contractual relationship, communication with the customer,
marketing activities of the administrator, compliance with legal obligations.
When ordering, the data necessary for the conclusion and proper fulfillment of the contract (name, address, contact) are required. Without their provision, the contract cannot be concluded or performed.
4. Period of storage of personal data
Personal data are stored for the period necessary to fulfill the obligations arising from the contractual relationship and to enforce any claims, but not more than 15 years after the termination of the contract.
5. Recipients of personal data
Personal data may be disclosed to third parties who:
participate in the supply of goods or services,
provide marketing and support services for the administrator.
The controller does not transfer personal data outside the European Union.
6. Your rights
In accordance with GDPR, you have the following rights:
the right of access to personal data (Article 15),
the right to rectification of data (Article 16),
the right to erasure (Article 17),
the right to restriction of processing (Article 18),
the right to object to processing (Article 21),
the right to data portability (Article 20),
the right to withdraw consent to processing — in writing or electronically at the contacts referred to in Article 1.
If you believe that your rights have been violated, you can file a complaint with the Office for Personal Data Protection.
7. Ensuring the security of personal data
7. Ensuring the security of personal data
The Controller confirms that it has taken appropriate technical and organizational measures to protect personal data. Data storage and documentation in paper form are secured in such a way that they can only be handled by persons expressly designated by the controller.
8. Final provisions
By submitting your order, you confirm that you have familiarized yourself with these terms of personal data processing and accept them in full. You confirm your consent by checking the appropriate box on the order form.
The Administrator reserves the right to update these terms and conditions. The new wording will always be posted on the official website of the administrator.
These conditions are effective from 02.09.2024.
