Personal processing policy data
BASIC SUMMARY
Ondřej Havlas processes your personal data because it is necessary for the performance of the agreement for the purchase of goods concluded with you (or for the implementation of measures taken prior to the conclusion of such an agreement) and for the compliance with the public law obligations of the company.
- IDENTITY AND CONTACT DETAILS OF THE CONTROLLER
- The controller of your personal data is a natural person, Ondřej Havlas, with his registered office at Sudovo Hlavno 87, Sudovo Hlavno, 294 76, ID no.: 74461826 (hereinafter the “Controller”).
- The contact details of the Controller are as follows: correspondence address: Sudovo Hlavno 87, Sudovo Hlavno, 294 76, email info@moparshop.eu.
- The Controller has not appointed a data protection officer.o The Controller has not appointed a data protection officer.
- LEGAL BASIS FOR PERSONAL DATA PROCESSING
- The legal basis for the processing of personal data is the fact that such processing is necessary for the following:
- the performance of the agreement concluded between you and the Controller or for the implementation of the Controller’s measures prior to the conclusion of such an agreement within the meaning of Article 6 (1)(b) of Regulation 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter the “GDPR”);
- compliance with the legal obligations applicable to the Controller within the meaning of Article 6 (1)(c) of the GDPR, in particular, compliance with the obligations imposed on the Controller by generally binding legal regulations, in particular, Act No. 235/2004 Sb., on value-added tax, as amended, Act No. 586/1992 Sb., on income taxes, as amended, and Act No. 563/1991 Sb., on accounting, as amended.
- The legal basis for the processing of personal data is the fact that such processing is necessary for the following:
- PURPOSE OF PERSONAL DATA PROCESSING
- The purpose of the processing of your personal data is the performance of the agreement concluded between you and the Controller, including the delivery of goods and rights arising from the liability for defects and the implementation of measures prior to the conclusion of the agreement by the Controller, as well as the performance of the related public law obligations of the Controller.
- The Controller does not practise automated individual decision making within the meaning of Article 22 of the GDPR.
- RETENTION PERIOD OF PERSONAL DATA
- Your personal data will be processed for the duration of the effects of the rights and obligations under the agreement and also for the time necessary for the purposes of archiving in accordance with the relevant generally binding legal regulations, but no longer than for the period specified by the generally binding legal regulations.
- Your personal data will be processed for the duration of the effects of the rights and obligations under the agreement and also for the time necessary for the purposes of archiving in accordance with the relevant generally binding legal regulations, but no longer than for the period specified by the generally binding legal regulations.
- OTHER RECIPIENTS OF PERSONAL DATA
- Other recipients of your personal data are shipping companies and other persons involved in the delivery of the goods or the execution of payments under the purchase agreement and persons providing technical services related to the operation of the online store, including the operation of software and data storage. Other recipients of your personal data include shipping companies providing the delivery of goods and the hosting service provider.
- The recipients of your personal data processed for the purpose of compliance with legal obligations may also be tax authorities or other competent authorities in those cases where the Controller is required to do so by generally binding legal regulations.
- The Controller does not intend to transfer your personal data to a third country (a non-EU country) or an international organisation.
- RIGHTS OF THE DATA SUBJECT
- Under the conditions set out in the GDPR, you have the right to request access to your personal data from the Controller, the right to the rectification or erasure of your personal data, the right to restrict its processing, the right to object to the processing of your personal data, and the right to data portability.
- If you believe that the processing of your personal data was or is in breach of the GDPR, you have the right to lodge a complaint with the supervisory authority.
- You are under no obligation to provide your personal data. The provision of your personal data is a necessary requirement for the conclusion and performance of the agreement; if you do not provide your personal data, the agreement cannot be concluded or performed by the Controller.
Document updated as of 01 March 2023