If you are my customer, news subscriber or website visitor, you entrust me with your personal data. I am responsible for their protection and security. Please familiarize yourself with the protection of personal data, policies and rights that you have in connection with the GDPR (Personal Data Protection Regulation).
Who is the administrator?
My name is Zuzana Candy, I run a website www.zuzanacandy.com. I process your personal data as an administrator, which means that I determine how the personal data will be processed and for what purpose, for how long and I select any other processors who will help me with the processing.
If you would like to contact me during processing, you can contact me at email@example.com.
I declare that, as the administrator of your personal data, I fulfill all legal obligations required by the applicable legislation, in particular the Personal Data Protection Act and the GDPR, and therefore:
● I will process your personal data only on the basis of a valid legal reason, in particular a legitimate interest, performance of the contract, legal obligation or consent granted,
● I fulfill the information obligation according to Article 13 of the GDPR before the commencement of the processing of personal data,
● I will enable and support you in exercising your rights under the Personal Data Protection Act and the GDPR
Scope of personal data and processing purposes
I process personal data that you entrust to me yourself, for the following reasons (to fulfill these purposes):
● PROVISION OF SERVICES, PERFORMANCE OF THE CONTRACT
Your personal data in the range: e-mail, I absolutely need to fulfill the contract (sending your chosen documents, information, etc.)
If you are a customer, I absolutely need your personal data (billing data) to comply with the legal obligations for issuing and registering tax documents.
● MARKETING – SENDING NEWSLETTERS
I use your personal data (e-mail and name), gender, what you click on in the e-mail and when you open it most often for the purpose of direct marketing - sending business messages. If you are my customer, I do so out of a legitimate interest, as I reasonably assume that you are interested in my news, as long as you do not unsubscribe from the newsletter yourself.
If you are not my customer, I send you newsletters only with your consent, also until you unsubscribe from the newsletter yourself. In either case, you can revoke this consent by using the unsubscribe link in each email I sent.
● ADVANCED MARKETING BY CONSENT
Only with your consent I can send you inspiring offers from third parties or use an e-mail address, for example, for remarketing and targeting advertising on Facebook, also until you unsubscribe from this subscription yourself. This can, of course, be revoked at any time via our contact details.
● PHOTOGRAPHIC DOCUMENTATION
I keep your personal data for the duration of the limitation periods, unless the law provides a longer period for their retention or I have not stated otherwise in specific cases.
Security and protection of personal data
I protect personal data as much as possible using modern technologies that correspond to the level of technical development. I protect them as if they were my own. I have taken and maintain all possible (currently known) technical and organizational measures to prevent the misuse, damage or destruction of your personal data.
Transfer of personal data to third parties
My employees and co-workers have access to your personal information.
To ensure specific processing operations that I cannot provide on my own, I use the services and applications of processors who can protect data even better than I do and who are specialized in data processing.
They are providers of the following platforms: MioWeb, SmartEmailing, FAPI, Facebook, Google.
It is possible that in the future I will decide to use other applications or processors to facilitate and improve processing. I promise you that in such a case I will put on the processors in the selection at least the same demands on the security and quality of processing as on myself.
Data transfer outside the European Union
I process data exclusively in the European Union or in countries that provide an adequate level of protection based on the decision of the European Commission.
Your rights in relation to the protection of personal data
You have a number of rights regarding the protection of personal data. If you wish to exercise any of these rights, please contact me via firstname.lastname@example.org.
● RIGHT TO INFORMATION
You have the right to information that is already filled in this information page with the principles of personal data processing.
● RIGHT OF ACCESS
Thanks to the right of access, you can contact me at any time and I will you send you within 30 days what personal data I process and why.
● RIGHT OF AMENDMENTS
If something changes for you or you find your personal data out of date or incomplete, you have the right to add and change personal data.
● RIGHT TO RESTRICT PROCESSING
You may exercise your processing restriction rights if you believe that I am processing your inaccurate data, that you believe that I am processing illegally, but you do not want to delete all data, or that you have objections to the processing. You can limit the scope of personal data or the purposes of processing. (For example, by unsubscribing from a newsletter, you limit the purpose of processing to sending business messages.)
● RIGHT TO TRANSFERABILITY
If you would like to take your personal data and transfer it to someone else, I will proceed in the same way as when exercising the right of access - except that I will send you the information in machine-readable form. I need at least 30 days here.
● RIGHT TO BE FORGOTTEN
I don't want to forget you, but if you want, you have a right to it. In this case, I will delete all your personal data from my system as well as from the system of all sub-processors and backups. I need 30 days to secure the right to deletion.
In some cases, I am bound by a legal obligation, and for example I have to register the issued tax documents for the period stipulated by law. In this case, I will delete all such personal data that are not bound by another law. I will notify you by email when the deletion is complete.
● RIGHT TO COMPLAINT TO THE PERSONAL DATA PROTECTION OFFICE
If you feel that I am not handling your data in accordance with the law, you have the right to contact the Office for Personal Data Protection at any time. I will be very happy if you inform me of this suspicion first so that I can do something about it and correct any mistakes.
● RIGHT TO UNSUBSCRIBE FROM NEWSLETTERS AND COMMERCIAL MESSAGES
I send you inspirational emails, articles or products and services - if you are my customer - based on my legitimate interest. If you are not a customer yet, I will send them to you only with your consent. In either case, you can unsubscribe from my emails by pressing the unsubscribe link in each email I sent you.
I would like to assure you that our employees and associates who will process your personal data are obliged to maintain the confidentiality of personal data and security measures. At the same time, this confidentiality continues even after the end of our contractual relations with you. Your personal data will not be passed on to any other third party without your consent.
These principles of personal data processing apply from 01. 06. 2020.