Privacy policy
1 Personal data controller
1.1 The personal data controller Pavel Strejček, ID 66331021, with registered office at Valdštejnova 839/75, 350 02 Cheb, Czech Republic (hereinafter referred to as "controller"), declares that all personal data processed by the controller are strictly confidential. The controller handles them in accordance with national and European Union legislation in force in the field of personal data protection.
1.2 The Administrator collects, stores and uses your personal data within the meaning of Section 6 of Act No. 101/2000 Coll., on the protection of personal data and on amendments to certain acts, as amended (hereinafter referred to as the Personal Data Protection Act), or Article 28 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as the "GDPR Regulation"). The individual purposes for which the Administrator processes personal data are defined below.
1.3 The controller also collects this personal data through its website at https://SignedText.com (hereinafter referred to as the "Internet Site").
1.4 This policy is issued by the controller to ensure that you are sufficiently informed about what personal data the controller processes about you, for what purpose, for how long, who will have access to your personal data and what your rights are. This policy applies to all personal data collected by the controller, whether collected for the purpose of fulfilling a contractual relationship, legal obligation, legitimate interest or consent.
2 Data processed
2.1 The controller is entitled to process the following personal data according to the purpose, according to categories of personal data, according to categories of data subject, according to categories of recipients and according to the retention period as follows.
Č. | Purpose of processing | Categories of personal data | Category of data subject | Categories of beneficiaries | Preservation time |
---|---|---|---|---|---|
1 | performance of the contractual relationship, legitimate interest | user profile data:
|
registered user, customer | any visitors to the website, both unregistered and registered, personal data controller | for the duration of the user account |
2 | legitimate interest, statistical purposes | browser and internet connection details, IP address | website visitor, both unregistered and registered | personal data controller | for the duration of the user account, max. 4 years for non-registered visitors |
3 | accounting and tax purposes | address and identification data | customer | personal data controller, accountant | 10 years from the end of the tax year |
2.2 The individual purposes of processing are:
2.2.1 Fulfillment of the contractual relationship means: the relationship between you and the Administrator arising from an order, registration, contract, entry and participation in a competition, etc;
2.2.2 accounting and tax purposes means: accounting records as defined in accounting and tax legislation;
2.2.3 Statistical purposes means: anonymised website traffic surveys, as well as monitoring the number of page views, time spent on the website, type of device from which you access the website. We collect data in order to improve our services and offer relevant content to our clients;
2.2.4 legitimate interest means: effective defense in the event of a dispute; the period of processing personal data in such a case is 4 years from the expiration of the warranty period for the goods and is extended by the period for which the dispute is ongoing. We want to continuously improve the quality of our services and, if necessary, provide new and better services; we want to prevent the obstruction of such activities; therefore, activities that contribute to the fulfillment of this goal are our legitimate interest. A legitimate interest also includes processing for the purposes of preventing fraud (e.g. assessing the risk of concluding a contract), direct marketing (e.g. offering relevant services to existing customers), transferring personal data within a group of companies for internal administrative purposes, reporting crimes and transferring personal data to the competent authority, ensuring network and information security . This list is only exemplary;
2.2.5 fulfilment of other statutory obligations means: providing information to law enforcement authorities, providing information to other public authorities, etc.
2.3 We process your personal data for the time necessary to ensure all rights and obligations arising from the mutual legal transaction, at least for the period of order processing, execution of the transaction, installation of the service, etc., as well as for the period for which the controller is obliged to keep the personal data according to generally binding legal regulations or for the period for which you have given your consent to the controller, if applicable. Otherwise, the processing period results from the purpose for which the personal data are processed or is determined by legal regulations.
2.4 Personal data is processed manually and automatically by the controller. The controller is entitled to process certain information automatically, for example, to create statistical information about traffic to its website.
3 Personal data processed on the basis of consent
3.1 If we have obtained consent from you to process your personal data, it is for one of the following purposes:
3.1.1 Identification and disclosure of the user of the service creating the signatures;
3.1.2 Ensuring the trustworthiness of signatures
4 Rights of the data subject
4.1 As a data subject, you have the following rights under the law, which you can exercise at any time. These are:
4.1.1 The right of access to personal data, according to which you have the right to obtain information from the controller about whether the controller processes your personal data. The controller is obliged to provide you with this information without undue delay. The content of the information is determined by the provisions of Section 12(2) of Act No. 101/2000 Coll., on the protection of personal data, as amended. The controller has the right to demand a reasonable fee for providing the information, not exceeding the costs necessary to provide the information;
4.1.2 The right to rectification or erasure of personal data, or restriction of processing, whereby you have the right to have personal data that is inaccurate or incorrect rectified. If your personal data is no longer necessary for the purposes for which it was collected or is being processed unlawfully, you have the right to request its erasure. If you do not wish to request the erasure of personal data but only to temporarily restrict its processing, you may request the restriction of processing;
4.1.3 right to request an explanation if you suspect that the processing of personal data by the controller is in breach of the law;
4.1.4 right to contact the Office for Personal Data Protection in case of doubts about compliance with the obligations related to the processing of personal data;
4.1.5 right to data portability, i.e. the right to obtain personal data concerning you that you have provided to the controller in a structured, commonly used and machine-readable format, see Article 20 GDPR for more details;
4.1.6 The right to object to the processing of personal data which are processed for the performance of a task carried out in the public interest or in the exercise of official authority or for the purposes of protecting the legitimate interests of the controller. The controller shall terminate the processing without undue delay unless it can demonstrate that there is a legitimate interest/reason for the processing which overrides your interests, rights or freedoms;
4.1.7 The right to withdraw consent to the processing of personal data at any time if you have given your consent to the controller to process your personal data.
5 Cookies
5.1 What are cookies
Cookies are small text files that are stored in your browser when you visit a website. They are necessary for the site to function properly (for example, to keep the user logged in and to transfer data securely between pages).
5.2 What cookies we use
This website uses only necessary technical (session) cookies, which:
- maintain an active user session (login, form content);
- ensure communication security (protection against request spoofing, server load balancing).
These cookies are created when you enter the site and automatically disappear when you close your browser. We do not use any persistent cookies, third party cookies or cookies for analytics, personalisation or marketing.
5.3 Legal basis and compliance
Pursuant to Section 89(3) of Act No. 127/2005 Coll. on Electronic Communications and Article 5(3) of the ePrivacy Directive, technical cookies "necessary for the provision of the service explicitly requested by the user" may be stored without prior consent. The processing of these cookies is based on Article 6(1)(b) GDPR (performance of the contract/service provision) and Article 6(1)(f) GDPR (legitimate interest in the safe and functional operation of the website).
5.4 How you can manage cookies
If you also wish to block or delete these necessary cookies, you can do so in your browser settings. However, please note that without them the site may not function properly (e.g. you may not be able to log in or submit a form).
5.5 Updates to this notice
We may modify this section from time to time, e.g. when the functionality of the site or legal requirements change. The date of the last update is set out in the General Terms and Conditions. If we ever start using non-essential cookies, we will prompt you for your consent beforehand.
6 Transfers to third countries
6.1 Your personal data is transferred to visitors of the website to any country on the basis of the performance of the contractual relationship.
7 Information and questions
7.1 For further information on the rights and obligations regarding the protection of personal data, the data subject may contact us by e-mail at info/at/signedtext.com.