Welcome to my website,

please read how your personal data is protected to avoid misunderstandings.  

​

The operator of the site is:

​

1. Personal data controller
Ing. Alžbeta Hrajnohová, Trnavská 47, 902 01 Pezinok, ID 54 304 768, VAT: 1127730890, Slovak Republic.
(Hereinafter referred to as the "Administrator") In accordance with Art. 12 GDPR informs about the processing of your personal data and about your rights.

​

2. Scope of personal data processing
Personal data are processed to the extent that the relevant data subject has provided them to the controller, in connection with the conclusion of a contractual or other legal relationship with the controller, or which the controller has otherwise collected and processes in accordance with applicable law or to fulfill the controller's legal obligations. .

The information obtained from the contact collection form is used for bulk mailing.

​

3. Sources of personal data
• directly from data subjects (registration and purchases via websites, e-mails, telephone, chat, contact form on the website, social networks, business cards, etc.)
• publicly accessible registers, lists and records (eg business register, trade register, real estate cadastre, public telephone directory, etc.)

​

4. Categories of personal data that are subject to processing

• address and identification data used for unambiguous and unmistakable identification of the data subject (eg name, surname, title, or birth number, date of birth, permanent residence address, ID number, VAT number) and data enabling contact with the data subject (contact details - e.g. contact address, telephone number, fax number, e-mail address and other similar information)

• descriptive data (eg bank details)

• other data necessary for the performance of the contract

• data provided in addition to the relevant laws processed within the framework of the consent granted by the data subject (processing of photographs, use of personal data for the purpose of personnel management, etc.)

​

5. Categories of persons concerned

• The site visitor's administrator

• Customer Manager

• employee of the administrator

• service provider

• another person in a contractual relationship with the administrator

​

6. Category of recipients of personal data

• processor

• financial institutions

• public institutes

• state ai. Authorities in the framework of the fulfillment of legal obligations stipulated by the relevant legal regulations

• other recipients (eg Transfer of personal data abroad - EU countries)

​

7. Purpose of personal data processing

• the purposes contained in the consent of the person concerned

• contractual relationship negotiations

• performance of the contract

• protection of the rights of the administrator, beneficiary or other persons concerned (eg recovery of the administrator's claims)

• archival records maintained by law

• fulfillment of legal obligations by the administrator

• protection of the data subject's vital interests

​

8. Method of processing and protection of personal data

The processing of personal data is performed by the administrator. Processing is performed in its establishment and the registered office of the administrator by individual authorized employees of the administrator, or processors. The processing takes place by means of computer technology, or also manually for personal data in paper form in compliance with all security principles for the management and processing of personal data. To this end, the controller has taken technical measures to ensure the protection of personal data, in particular measures to prevent unauthorized or accidental access to, change, destruction or loss of personal data, unauthorized transfer, unauthorized processing and other misuse of personal data. . All entities to which personal data may be disclosed respect the right of data subjects to privacy and are obliged to comply with applicable data protection legislation.

​

9. Time of personal data processing

In accordance with the deadlines specified in the relevant contracts or in the relevant legal regulations, this is the time strictly necessary to secure the rights and obligations arising from both the contractual relationship as well as the relevant legal regulations.

​

10. Lessons learned

The controller processes the data with the consent of the data subject, except in cases stipulated by law where the processing of personal data does not require the consent of the data subject.
In accordance with Art. 6 par. 1 of the GDPR, the controller may process the following data without the consent of the data subject:
• the person concerned has given his or her consent for one or more specific purposes,
• processing is necessary for the performance of the contract of which the data subject is a member or for the measures taken before the conclusion of the contract at the request of that data subject,
• processing is necessary to fulfill the legal obligation applicable to the controller,
• processing is necessary to protect the vital interests of the data subject or of another natural person,
• processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority entrusted to the controller,
• processing is necessary for the legitimate interests of the controller concerned or of a third party, except where those interests take precedence over the interests or fundamental rights and freedoms of the data subject requiring the protection of personal data.

​

11. Rights of data subjects

1) In accordance with Art. 12 The GDPR informs the controller at the request of the data subject of the right of access to personal data and of the following information:
• the purpose of the processing,
• the category of personal data concerned,
• the recipients or categories of recipients to whom the personal data have been or will be disclosed,
• the planned time during which the personal data will be stored,
• all available information on the source of personal data,
• if they are not obtained from the data subject, whether there is automated decision-making, including profiling.
2) Any data subject who discovers or suspects that the controller or processor is carrying out the processing of his or her personal data which is contrary to the protection of the data subject's private and personal life or contrary to law, in particular if the personal data are inaccurate with regard to purpose their processing, may:
• Ask your administrator for an explanation.
• Require the administrator to remove the condition. In particular, it may involve blocking, correcting, supplementing or deleting personal data.
• If the data subject's request under paragraph 1 is considered justified, the controller shall immediately rectify the error.
• If the controller does not comply with the data subject's request under paragraph 1, the data subject has the right to contact the supervisory authority, ie the Office for Personal Data Protection.
• The procedure under paragraph 1 does not preclude the data subject from contacting the supervisory authority directly.
• The administrator has the right to demand an appropriate fee for the provision of information, not exceeding the costs necessary to provide the information.