INFORMATION ON THE PROCESSING OF PERSONAL DATA
We take data protection very seriously. See below for complete information about what data we hold and how we handle it. The protection of personal data is governed by the GDPR (formally Regulation No. 2016/679 of the European Parliament and of the Council of 27April2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC).
Details of the controller
The controller of your personal data is RM GASTRO CZ s.r.o. with its registered office at Jilmová 2685/10, Žižkov, 130 00, ID No: 278 71 550, registered in the Commercial Register, File No: C 123105 in the Municipal Court ("controller").
Contact details of the controller:
RM GASTRO Group
193 00 Praha 9
The controller has not appointed a data protection officer.
We process the following personal data:
- e-mail address
- phone number
Purpose and duration of processing:
We process personal data for the purpose of processing your enquiry, subsequent performance of the contract (pursuant to Article 6, paragraph 1 b) and, if you grant us your explicit consent, for marketing purposes (pursuant to Article 6, paragraph 1 e).
The processing time varies according to the purpose. For the purpose of processing your enquiry, we store data for 1 year, for marketing purposes for 3-5 years (the exact period is specified in the consent) and, if you are or about to become our client, we store data for the duration of the time you are our client.
We use third-party services to offer you first-rate services. Other recipients of your personal data will be those providing technical services related to the operation of the website, e-shop and CRM system, including the operation of software and data storage. We also use processors from abroad.
Security and protection of personal data
We take all technical and organisational measures to ensure the protection of personal data in the manner specified in the Act or other binding legal regulations and to preclude any possible unauthorised or accidental access to personal data, alteration, destruction or loss of personal data, unauthorised transfers and other unauthorised processing, as well as other misuse of personal data. This obligation shall continue to apply also after we have ceased to process your personal data.
We protect all electronic data stored with a secure protocol (HTTPS) that protects the connection between your web browser and our server from eavesdropping and data fraud.
We have user access control in place, a system of rights and role management that protects data against unauthorised access. All persons who come into contact with personal data in the performance of their duties are bound by the duty of confidentiality.
Under the GDPR, you have the following rights:
- to revoke your consent at any time
- to request information from us about the processing of your personal data
- to request that we grant you access to your personal data
- to request that we correct inaccurate personal data or to complete or update your personal data
- to request that we delete your personal data without delay
- to request that we restrict the processing of your personal data
- to request that we transfer your personal data in a machine-readable format
- if you have any doubts about the lawfulness of the processing of your personal data, you have the right to contact the Office for Personal Data Protection