The provider of these websites is SMARTEN DEFT s.r.o., reg. address Újezdy 367, Příluky, 760 01 Zlín, ID No.: 02773244 registered in the commercial register maintained by the Regional Court in Brno, section C, file 82459. Hereinafter referred to as the “Provider” or “We”.
Such processing is lawful pursuant to Article 6, Para. 1, Letter f) of Regulation (EU) of the European Parliament and of the Council 2016⁄679 of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data. Legitimate interest is understood to be anonymous statistics of the website use so that we can offer you, the users, a better user experience, and evaluation of the success rate of advertising campaigns in order to allocate the advertising sources without bothering the user with irrelevant advertising.
In this matter, please note that you have the right to object to the processing of data processed under the legitimate interest of the administrator pursuant to Article 6, Para. 1, Letter f) of Regulation (EU) of the European Parliament and of the Council No. 2016⁄679, the right to information on data conducted with your person and the right to demand erasure of the data processed.
The data that we, as the provider, obtained in this way can be made available to other processors:
- digital agency Proof & Reason, s.r.o.
Google Analytics under Google LLC, registered address 1600 Amphitheatre Parkway, Mountain View, CA 94043, United States. To process statistics on visits, Google Analytics uses the following private data:
- IP address to determine the approximate location of the user. Before being moved to the Google servers, we anonymize the IP address by replacing the last part of the IP address with a zero. The geographic determination allows us to better analyse the towns, regions or countries that our users come from. These data are available in Google Analytics only as an aggregate; they cannot be detected for one particular visitor.
- So-called cookies with the CID identifier. This identifier is used to determine if the visitor is visiting the website for the first time. It also simplifies attribution of the new visit to the various sources and distribution of the advertising budgets.
- We have linked Google Analytics with other Google tools: Search Console. This link allows us to see aggregate data on visits from browsing.
- We collect information on where you have come to our website from, which pages you have visited, what you were doing on them and the time you spent on the website. We also collect data on the technologies that you use: we assess the type of equipment, the operating system and the version of your web browser. This helps us improve the website so that you can use it better on all devices. It is difficult to connect these data with individuals; we do not seek to identify a particular natural person – we only know that someone has visited this or that page from one browser.
You can find a current overview of processed personal data on the side of the processor Google LLC at the address https://privacy.google.com/businesses/adsservices/. You can find information on the method of personal data protection on the website https://policies.google.com/privacy?hl=cs
If you want to block sending of anonymous statistics by means of Google Analytics, you can use a plugin provided by Google. You need to download and install this plugin in your browser. Please note that you have to install this plugin in each browser on each device that you use; then anonymous statistics will not be sent to Google Analytics from any website that you visit.
We store data processed in Google Analytics for a period of 50 months.
Cookies and storage of information on your computer
What are cookies?
Small data files which are necessary to ensure certain functions of websites such as login. Thanks to cookies, websites can also remember various settings such as the language, font or other features that you have selected for viewing the websites. This is why we put cookies on your computer. It is done by an overwhelming majority of internet websites and providers.
What types of cookies are there?
Cookies can be categorised according to their life and according to who puts them on your computer. Regarding their life, they can be divided into two categories:
- Short-term (session cookie) – stay in your browser until you close the browser; then they are erased.
- Long-term (persistent cookie) – stay stored in the browser for a long time (depending on your browser and cookies settings) or until you remove them manually. Regarding who creates and processes them, cookies can be divided into two categories:
- First party cookie – created directly by the website or scripts on the same domain. They are mostly used to ensure the basic functionality of the website.
- Third party cookies – other scripts are created. They mostly include cookies of advertising systems, widgets of social networks or embedded videos.
What cookies do we use on this website?
- Google Analytics (first party cookies – long-term) – distinguishing between new and returning visitors; a cookie with a unique and anonymous browser identifier.
You can erase all cookies that are already present on your computer. Most browsers also offer blocking of the placement of cookies on your computer; in this case, however, you will not be able to use all our online services. You can find detailed information on modifying the storing of cookie files in your browser on the websites of the particular browser providers. The most common browsers:
You can find further details on the website AboutCookies.org.
Information on personal data processing
The administrator – SMARTEN DEFT s.r.o., with its registered office in Zlín - Příluky, Újezdy 367, Postal Code 760 01, ID No. 02773244, represented by Martin Malaník, the Chief Executive (hereinafter referred to as the “Administrator”) processes the personal data of customers and partners including their employees and other persons with whom the administrator has concluded a contract (hereinafter also referred to as the “data subject”), always in conformity with the applicable legal regulations, i.e., mainly the act on the protection of personal data and Regulation of the European Parliament and of the Council No. 2016⁄279 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation). This document is freely available in paper form in the administrator’s office and also on the administrator’s website www.smartendeft.cz.
II. The scope and purpose of personal data processing
The administrator processes personal data provided to it by the customer when sending an order of services and by a business partner or another person when concluding a contract (especially a cooperation contract, a lease contract, etc.) and throughout the validity of such contract. The administrator also processes data on persons who use a contact form to send a request for initial consultation, which is available on the administrator’s website www.smartendeft.cz.
The administrator usually processes the below-mentioned personal data:
- first name and surname;
- date of birth or company ID No., or Tax ID No.;
- permanent residence of a person who is a natural person not running a business
- registered office of a person who is a natural person running a business;
- delivery/billing address;
- work position;
- phone number, e-mail address, website;
- bank account number.
The administrator processes these personal data for the purpose of implementing the rights and obligations ensuing from the concluded contract and communication related to matters of the contract. The processing of these data is essential for the performance of the contract. Processing of data provided via the contact form available on the administrator’s website www.smartendeft.cz proceeds on the basis of a legitimate interest of the administrator in communication and provision of information to a potential customer.
The administrator also processes the below-mentioned personal data of third parties which were provided by the customer when sending an order of services, or a business partner who is a legal person when concluding a contract and throughout the validity of such a contract:
- first name, surname, phone number and e-mail address of the statutory organ or members of the company’s statutory organ;
- first name, surname, working position or position within the company, phone number, and e-mail address of the business partner’s employee;
- first name, surname, working position or position within the company, phone number and e-mail address of the business partner’s other representative.
The administrator processes these third party personal data for the purpose of implementing the rights and obligations ensuing from the concluded contract and for the purpose of communication regarding matters associated with performing the contract. The processing of these data is essential for the performance of the contract.
Some of the above-mentioned personal data, namely the first name, surname, working position, name of the employer, photo (portrait), including photos from events organized by the administrator or entered by the administrator as well as the nickname or selection of certain characteristic traits provided by the subject can be processed by the administrator also on the basis of a consent obtained from the data subject.
III. The method and time period of personal data processing
- Personal data are processed by the administrator, but they can also be processed by other processors for the administrator – at present, only the external accountant.
- The administrator declares that it has adopted all measures necessary to protect the safety of personal data of all subjects.
- Personal data listed in Article II herein shall be processed for the specified purposes by the administrator for the duration of the contract and then for a period of ten years after the termination of the contract for the purpose of archiving according to the applicable legal regulations (mainly the law on bookkeeping and the law on value added tax).
IV. Rights of the personal data subjects
- The customer, business partner or other person with whom the administrator has concluded a contract as well as the person whose personal data are processed on the basis of the administrator’s legitimate interest, have the right to access their personal data and demand a statement from the administrator on what personal data the administrator processes, to what purpose, who has access to the personal data and to whom the personal data have been made available.
- The data subject has the right to cancel the consent to personal data processing which it has granted to the administrator.
- The data subject has the right to request the correction or completion of incorrect or incomplete personal data from the administrator, demand erasure of the personal data if there is no purpose for the data processing or it has ceased to exist, or request restriction in the personal data processing as regards personal data processing on the administrator side.
- For reasons concerning a particular situation, the data subject has the right to raise an objection at any time regarding its personal data that are processed as essential for the purposes of the legitimate interests of the administrator or a third party. In such case, the administrator stops processing the personal data until it proves serious justified reasons for the processing exceeding the interests or the rights and freedoms of the data subjects, or for the determination, performance or defence of legal claims.
- The data subject has the right to obtain its personal data from the administrator and transfer it to another administrator as long as the data are processed on the basis of a consent or for the purposes of contract implementation or if the personal data are processed automatically. The performance of the right to transferability must not adversely affect the rights and freedoms of the administrator or third parties.
- The data subject has the right to make a complaint to the supervisory authority if it believes that the processing of the personal data has violated the General Data Protection Regulation (GDPR). This supervisory authority is the Office for Personal Data Protection.
- Requests pursuant to this article can be sent in writing by letter or in electronic form. A specimen form for the exercise of the rights is available for all data subjects in the registered office of the company or it can be sent by e-mail. The exercise of rights pursuant to this article is free, except for repeated requests or requests that are clearly unreasonable or disproportionate. In this case, the administrator can request payment of a reasonable charge or refuse to comply with the request.
In Zlín, 25 May 2018
SMARTEN DEFT s.r.o.
Martin Malaník, Chief of Executive