Principles of Personal Data Processing
The Principles of Personal Data Processing were drawn up pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR).
The Principles of Personal Data Processing describe the purposes of personal data processing and the method of data processing, inform about individual categories of personal data processing, any recipients thereof, the period of time for which the personal data are kept, and the rights of a data subject in relation to personal data.
The principles of personal data processing apply to:
- Processing of personal data by the controller during the data subject´s use of a website operated by the controller (the website)
- Processing of personal data by the controller during the performance of contracts made with business partners
- Processing of personal data in performing the controller´s legal duties
- Processing of personal data required for the protection of legitimate interests of the controller and/or its business partners
- Processing of personal data by the controller on the basis of a given consent
What personal data are
Personal data include any information relating to an identified or identifiable natural person (data subject). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier (a name, an identification number, an online identifier) or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
What personal data processing means
Personal data processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
A data subject is exclusively a natural person, whom the personal data are related to. A data subject is not a legal entity. Data relating to exclusively a legal entity are not personal data. However, personal data also include e.g. an e-mail address of an employee of a legal entity.
Controller of personal data
The controller of personal data is SILON s.r.o., Planá nad Lužnicí, Průmyslová 451, CZ-391 02 Sezimovo Ústí (hereinafter “the controller”). The controller can be reached at email@example.com.
Purpose of personal data processing
The personal data of a data subject may be processed by the controller for the following purposes:
- Performance of contracts (especially the performance of contracts with cooperating persons, the performance of contracts with business partners etc.)
- Marketing and targeted advertising
- Performance of legal duties (especially statutory duties)
- Protection of a legitimate interest of the controller
Overview of processed personal data
- name and surname
- phone number
- contact address
Methods of collecting personal data
Personal data are collected directly from a data subject, from mutual communication, contracts made, business relations, completed forms and public sources.
Giving consent to personal data processing
Consent to personal data processing is given on a voluntary basis and can be withdrawn at any time.
Rights of data subjects
You, as a data subject, have the following rights:
- rights of access to personal data – especially to verify whether or not personal data concerning the data subject are being processed, and, where that is the case, to obtain access to the personal data;
- right to rectification and/or complete inaccurate or false data – if the data subject believes the controller is keeping inaccurate or false information concerning the data subject, he/she is entitled to point that out. If the data subject informs the controller he/she requests rectification of his/her personal data, the controller must attend to the request;
- right to restriction of personal data processing – the data subject has the right to request the restriction of the processing of recorded personal data;
- right to object to the processing of personal data – the data subject has the right to object, on grounds relating to his or her particular situation, at any time to the processing of personal data;
- right to data portability – the essence is the right to receive, under certain conditions, the personal data concerning the data subject, which he or she has provided to the controller, in a structured, commonly used and machine-readable format and to have the right to transmit those data to another controller without hindrance from the original controller, if it is technically feasible;
Common conditions for application of the right to portability:
- the processing must be based on a legal ground for consent or on a contract,
- the processing is carried out by automated means.
- right to erasure – the controller is obliged to erase data concerning the data subject upon request, if:
- the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed
- the data subject withdraws consent on which the processing is based and there is no other legal ground for the processing
- the data subject objects to the processing on the grounds of the legitimate interests of the controller of personal data
- the personal data have been unlawfully processed
- there is no statutory duty to keep the data
Security of personal data
The controller implemented technical and organisation measures taking into account the nature, scope and purposes of personal data processing in order to ensure and is able to prove that the processing complies with the general regulation. The personal data may be accessed only by authorised employees and/or other contracted processors, however, at all times only to the extent necessary for the use of information for a defined purpose.
Period of time for which personal data are kept
Personal data will be kept for the time required for their use for the relevant purpose of processing.
When you visit and use the website www.sofisil.eu, small data files are stored on your device or similar technologies, such as pixels, are activated (hereinafter collectively referred to as “cookies”). Cookies are used to store and receive identifiers and other information about the devices from which you access the website and help us provide, protect and improve the services we offer.
Necessary session cookies, which are stored in your browser’s cookie file only until you exit the browser. These cookies are essential for the proper functionality of the website or associated applications.
We may use persistent cookies to make it easier and more convenient for you to browse our website (for example, for easier and faster navigation). These cookies remain in your browser for longer periods of time. The length of such periods depends on the chosen browser settings.
- Google – traffic measurement, recaptcha, video display