Privacy Policy

according to Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons in connection with the processing of personal data and on the free movement of such data

1. Definition of terms and purposes of this Rule
1.1 Regulation (EU) 2016/679 (GDPR) represents the legal framework for the protection of personal data valid throughout the EU, which protects the rights of its citizens against unauthorized handling of their data and personal data (hereinafter: “GDPR”)
1.2 Personal data is any information relating to a specified or determinable data subject. A data subject is considered determined or determinable if the data subject can be directly or indirectly identified, in particular on the basis of a number, code or one or more elements specific to his physical, physiological, psychological, economic, cultural or social identity.
1.3 Anonymous data is data that, either in its original form or after processing, cannot be attributed to a specified or determinable data subject.
1.4 The subject of the data is the natural person to whom the personal data relate (hereinafter: “Subject”).
1.5 “Administrator” is a natural or legal person who alone or jointly with others determines the purposes and means of personal data processing (hereinafter: “Administrator”)
1.6 Processor, any entity that processes personal data for the controller (hereinafter: “Processor”).
1.7 by storing personal data, maintaining the data in such a form that allows it to be further processed.
1.8 disposal of personal data means the physical destruction of their carrier, their physical deletion or their permanent exclusion from further processing.
1.9. with the consent of the data subject, the free and conscious expression of the will of the data subject, the content of which is the consent of the data subject to the processing of personal data
1.10 For the purposes of this Rule, the purpose for which personal data is to be processed has been determined:
1.10.1 For the purpose of communicating with clients;
1.10.2 Performance of the contractual relationship;
1.10.3 Accounting and tax purposes;
1.10.4 Improving the quality of services provided;
1.10.5 Performing analyzes and measurements;
1.10.6 processing is necessary to fulfill a legal obligation that applies to the controller;
1.10.7 collect personal data corresponding only to the stated purpose and to the extent necessary to fulfill the statutory purpose.

2. Principles of personal data processing
2.1 In relation to the data subject, personal data will be processed correctly and in a legal and transparent manner, for a period no longer than is necessary for the purposes for which it is processed.
2.2 Security of personal data, including their protection using appropriate technical or organizational measures against unauthorized or illegal processing and against accidental loss, destruction or damage.
2.3 The data subject has given consent to the processing of his personal data for one or more specific purposes;
2.4 Processing is necessary for the fulfillment of a contract to which the data subject is a contracting party, or for the implementation of measures taken prior to the conclusion of the contract at the request of the data subject;
2.5 Processing is necessary to fulfill a legal obligation that applies to the controller;

3. Conditions and ways of expressing consent by processing your personal data
3.1 Electronically under the contact or inquiry form.
3.2 The condition for sending or processing personal data is always the subject’s consent to the processing of their personal data.
3.3 The data subject has the right to withdraw his consent at any time. Revocation of consent does not affect the legality of processing based on consent that was given before its revocation.

4. Cookies and Google Analytics
4.1 It does not require consent to the processing of your personal data for the file Cookies (read more), as they fall under “Processing that does not require identification”. About Cookies The subject is informed in a visible place with the confirmation function “I agree”
4.2 Google Analytics is an analytical tool by Google that helps website and application owners understand how visitors use the site and application. It may use a set of cookies to collect information and compile reports on the use of the website without Google learning any personally identifiable information of individual visitors.
4.3 The subject may opt out of providing information about their activity on the website to Google Analytics. Just install a browser add-on to opt out of Google Analytics. This add-on prevents the Google Analytics JavaScript (ga.js, analytics.js and dc.js) running on the website from sharing visit data with Google Analytics.
4.4 Event data retention in Google Analytics is set for 26 months, after which the data is automatically deleted.
4.5 We use the function of partial anonymization of the IP address. The address anonymization feature in Analytics zeroes out the last octet (for IPv4 addresses) or the last 80 bits (for IPv6 addresses) of user IP addresses shortly after the address is sent to the Analytics Collection.

5. Transparent information and communications You can find information on the Subject
5.1 In the case of the Subject’s request to provide information, the subject’s data will be provided within a maximum of 30 days from the date of submission of the request.
5.2 If the personal data was not obtained from the data subject, in the event of a request for information, the controller is entitled to ask the subject for identity verification.
5.3 The administrator will also provide information about the source of the obtained personal data.
5.5 The data subject has the right to obtain confirmation from the controller as to whether or not personal data relating to him/her is being processed and, if so, the right to obtain access to such personal data and the following information:
5.5.1 processing purposes;
5.5.2 category of personal data concerned;
5.5.3 recipients or categories of recipients to whom the personal data has been or will be made available;
5.5.4 the planned period for which personal data will be stored, or if it cannot be determined, the criteria used to determine this period;
5.5.5 the existence of the right to request from the administrator the correction or deletion of personal data concerning the data subject or the restriction of their processing, or to object to such processing;
5.5.6 the right to file a complaint with a supervisory authority;
5.6. If the subject requests information about personal data, the administrator will provide a copy of the processed personal data. For additional copies at the request of the data subject, the controller may charge a reasonable fee based on administrative costs.
5.7. The data subject has the right to have the controller correct inaccurate personal data without undue delay.

6. Data that we process as administrators
6.1 As part of registering an account, filling out a form or other activity, the following data are specifically processed: Name and surname, Telephone number, E-mail address.
6.2 Other indirect data: IP address, cookies, information about the version of the browser and operating system to ensure the correct display of the website.

7. “Right to erasure (“right to be forgotten”)”
7.1 The data subject has the right to have the administrator delete personal data relating to the data subject without undue delay, and the administrator has the obligation to delete personal data without undue delay if one of the following reasons is given:
7.1.1 the personal data are no longer needed for the purposes for which they were collected or otherwise processed;
7.1.2 the data subject withdraws consent and there is no other legal reason for processing;
7.1.3 the data subject objects to the processing of personal data;
7.1.4 personal data were processed unlawfully;.
7.2. The data subject has the right to object to the processing of personal data at any time for reasons related to his specific situation,
7.3. The administrator notifies individual recipients to whom personal data has been made available of any corrections or deletions of personal data.

8. Records of processing activities
8.1 The administrator keeps records of the processing activities for which he is responsible. These records contain all of the following information:
8.1.1 the name and contact details of the administrator;
8.1.2 processing purposes;
8.1.3 description of categories of data subjects and categories of personal data;
8.1.4 deletion of individual categories of data;
8.1.5 security check.

9. Security of processing
9.1 We do not collect personal data of website visitors.
9.1 Personal data provided through the inquiry or contact form is protected in electronic form and is secure.
9.2 Data with personal data are regularly backed up.
9.3 The Administrator is obliged to dispose of personal data as soon as the purpose for which the personal data was processed has expired, or for the period determined by Act No. 563/1991 Coll., on accounting.
9.4 The administrator shall report any violation of the security of personal data to the supervisory authority without undue delay.
9.5 If it is likely that a certain case of breach of personal data security will result in a high risk for the rights and freedoms of natural persons, the controller shall notify the data subject of this breach without undue delay.
9.6 Only authorized persons have access to personal data

10. Transfer of personal data to other countries
10.1. The transfer of personal data to other countries (to a country outside the EU) is possible only with the consent or on the basis of the instructions of the data subject
10.2. the transfer is necessary for the performance of a contract concluded in the interest of the data subject between the administrator and a third party

11. Processors and recipients of personal data
11.1 The processors and recipients of personal data managed by the Administrator are:
11.1.1 interested party and customer of the provision of services;
11.1.2 suppliers and service providers;
11.1.3 state and other authorities within the framework of the fulfillment of legal obligations.

12. Contact information
12.1. Contact address of the Administrator

Phone: +420 773 731 269
E-mail: info@landsnails.cz

These conditions take effect on 28.11.2023

Made in Pilsen on November 28, 2023