Privacy Policy

We protect your privacy

BASIC PROVISIONS

  1. The controller of personal data pursuant to Article 4(7) of the Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as “GDPR”) is Hom Mali spol. s r.o. (ID: 49689614), with its registered office at Reinerova 1657/23, Řepy, 163 00 Prague (hereinafter referred to as “controller”).

  2. Personal data means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

  3. The controller has not appointed a data protection officer.

II. SOURCES AND CATEGORIES OF PERSONAL DATA PROCESSING

  1. The controller processes personal data that you have provided to him/her or personal data that the controller has obtained on the basis of fulfilling a legal obligation, performing a contract, legitimate and vital interests, consent of the data subject to the processing of personal data.

  2. The controller processes your identification and contact details and data necessary for personalizing content, advertising, visitor analysis, and contract fulfillment.

III. LEGAL BASIS AND PURPOSE OF PERSONAL DATA PROCESSING

  1. Processing of personal data based on the legitimate interest of the controller in some cases, the controller processes personal data to ensure the protection of its rights and the rights and legally protected interests, or the rights and legally protected interests of other individuals. The controller may carry out such processing without the consent of the data subject. The existence of the controller’s legitimate interest is always carefully assessed.

  2. Processing of personal data based on contractual conditions

fulfillment of the contract between you and the controller pursuant to Article 6(1)(b) of the GDPR, the controller’s legitimate interest in providing direct marketing (in particular for sending commercial communications and newsletters) pursuant to Article 6(1)(f) of the GDPR, Your consent to processing for the purposes of providing direct marketing (in particular for sending commercial communications and newsletters) pursuant to Article 6(1)(a) of the GDPR in connection with Section 7(2) of Act No. 480/2004 Coll., on certain information society services in the event that no goods or services have been ordered. processing your order and performing the rights and obligations arising from the contractual relationship between you and the controller; when ordering, personal data necessary for successful order processing (name and address, contact) are required. The provision of personal data is a necessary requirement for the conclusion and performance of the contract; without providing personal data, the contract cannot be concluded or fulfilled by the controller.

  1. The purpose of processing personal data is to process your order and perform the rights and obligations arising from the contractual relationship between you and the controller; when ordering, personal data necessary for successful order processing (name and address, contact) are required. The provision of personal data is a necessary requirement for the conclusion and performance of the contract; without providing personal data, the contract cannot be concluded or fulfilled by the controller,

  2. Processing of personal data based on the consent of the data subjects granted

The controller processes personal data based on the consent granted in cases listed by the controller. 5. The controller does not engage in automatic individual decision-making within the meaning of Article 22 of the GDPR.

IV. DATA RETENTION PERIOD

  1. The controller retains personal data

for the duration of the mutual contractual relationship for the period necessary to perform the rights and obligations arising from the contractual relationship between you and the controller and to assert claims arising from these contractual relationships (for a period of 5 years from the termination of the contractual relationship). for the period until consent to the processing of personal data for marketing purposes is revoked, up to a maximum of 5 years, if personal data is processed on the basis of consent.

  1. After the expiry of the retention period of personal data, the controller will delete the personal data.

V. RECIPIENTS OF PERSONAL DATA (SUBCONTRACTORS OF THE CONTROLLER)

  1. Recipients of personal data are persons involved in the delivery of goods/services/payment processing based on a contract.

  2. The controller does not intend to transfer personal data to a third country or international organization, and the existence or non-existence of a Commission decision on adequate protection or, in cases of transfer referred to in Articles 46, 47, or Article 49(1) second subparagraph of the GDPR, reference to appropriate safeguards and means to obtain a copy of such data or information on where such data has been made available.

VI. COOKIES

  1. We use “cookies” on our websites to provide visitors with greater convenience during their browsing. “Cookies” are small text files created by websites in your device when you visit them.

  2. Our websites use both so-called “session cookies” and “persistent cookies.”

Session cookies allow you to browse through the tabs of our pages and remember any information you enter here. The session cookie is automatically deleted when you close the browser or shortly thereafter. Persistent cookies allow these websites to remember your preferences and settings for your next visit, and thanks to them, you do not have to constantly log in, for example. Persistent cookies expire automatically after a certain set time.

  1. Our websites use cookies that:

improve the performance of the websites by collecting information about how visitors use them (e.g., which tabs are most visited). increase the functionality of the websites and make them closer to you by allowing us to remember your previous choices. However, this information is not used to identify you or remember where you have been on the Internet. allow some tools to work, provide spam protection, and also access to age-restricted content. allow some of our suppliers to provide services related to the websites on our behalf.

  1. “Cookies” are not viruses. They are only text files that do not contain any programs and therefore cannot be executed as a program. A “cookies” file cannot copy itself and send it over the internet. However, your web browser sends it to the website to which it belongs each time you visit it, and it then appears in your browser settings.

  2. By using “cookies,” we can also generally record statistical data about the behavior of visitors to these websites. This allows us to tailor them to your interests and requirements.

  3. “Cookies” help us identify particularly popular or problematic parts of the websites, but they cannot be associated with a specific user.

  4. We also use “cookies” for the purpose of your authentication, i.e., to eliminate the need to enter identification data about you each time you enter the websites again. At the same time, we use them to customize the websites to your needs, e.g., to continue displaying the websites in the language or in a certain graphic layout you have chosen.

  5. Of course, you can view these websites without “cookies,” but some of their functionalities may be limited, and the comfort of use may be reduced. Most browsers accept these files automatically, but their storage can be prevented by selecting the “do not accept cookies” option in the browser settings. You can also delete “cookies” that have already been stored on your device at any time. You can find out the exact settings of this function using the “help” of your browser.

  6. By using the websites, you consent to the use of “cookies” in the manner described above.

VII. YOUR RIGHTS

  1. Under the conditions set out in the GDPR, you have

the right to access your personal data pursuant to Article 15 of the GDPR, the right to rectification of personal data pursuant to Article 16 of the GDPR, or restriction of processing pursuant to Article 18 of the GDPR. the right to erasure of personal data pursuant to Article 17 of the GDPR. the right to object to processing pursuant to Article 21 of the GDPR and the right to data portability pursuant to Article 20 of the GDPR. the right to withdraw consent to processing in writing or electronically to the address or email of the controller stated in Article III of these terms and conditions without affecting the lawfulness of processing based on consent given before its withdrawal.

  1. You also have the right to lodge a complaint with the Office for Personal Data Protection if you believe that your right to personal data protection has been violated.

VIII. CONDITIONS FOR ENSURING THE SECURITY OF PERSONAL DATA

  1. The controller declares that it has taken all appropriate technical and organizational measures to secure personal data.

  2. The controller has taken technical measures to secure data storage and personal data storage on paper, in particular by using a password, antivirus program, and backup.

  3. The controller declares that only persons authorized by him/her have access to personal data.

IX. FINAL PROVISIONS

  1. By submitting an order from the internet order form, you confirm that you have read and fully accept the terms of personal data protection.

  2. By ticking the consent via the internet form, you agree to these terms. By ticking the consent, you confirm that you have read and fully accept the terms of personal data protection.

  3. The controller is entitled to change these terms. The new version of the personal data protection terms will be published on its websites, and at the same time, the new version of these terms will be sent to your email address provided to the controller.

These terms come into effect on May 25, 2018.