1. GENERAL INFORMATION
We take the protection of personal data very seriously and comply with the relevant legal regulations. In the following statement, we inform you about the type of personal data that is collected on the website: https://www.restaurant-taverna.sk/ and its subdomains, the purpose of using this data and the extent to which this data is provided to third parties.
Our personal data protection principles were adopted in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, which repeals Directive 95/46/EC (general regulation on data protection) (hereinafter referred to as "GDPR") and Act no. 18/2018 Coll. on the protection of personal data and on the amendment of certain laws, as amended.
2. ENTITY RESPONSIBLE FOR DATA PROCESSING
These principles of personal data protection apply to the processing of data by the company Profi Catering s.r.o., IČO: 47721707, with registered office at Námestie osloboditeľov 85/21 031 01 Liptovský Mikuláš, Slovak Republic, phone: 421 918 889 659 (hereinafter referred to as "Profi Catering s.r.o." or "we"), which you can contact at email@example.com.
3. PERSON RESPONSIBLE FOR DATA PROTECTION
If you have any suggestions regarding the protection of personal data, you can contact our responsible person for personal data protection by e-mail at the address firstname.lastname@example.org or by mail at the address Profi Catering s.r.o., Responsible person according to GDPR, ID number: 47721707, with registered office Námestie osloboditeľov 85/21 031 01 Liptovský Mikuláš, Slovak Republic.
4. DATA PROCESSING WHEN VISITING OUR WEBSITE
When you visit our website, the web browser you use automatically sends us information that enables our website to be displayed. The information provided includes the IP address of the Internet-connected device requesting access to our website, the date and time of the request, and browser information. This information is temporarily stored in a so-called log file and is automatically deleted after a maximum of 9 weeks. The collected data does not allow any direct conclusions to be drawn about your identity.
The legal basis for the processing of IP addresses is article 6 par. 1 letter f) the first sentence of the General Data Protection Regulation ("GDPR"). The purpose of data processing is to ensure trouble-free connection establishment and system security. Our legitimate interest lies in the security of your data, detection and defense against attack attempts, statistical evaluation, optimization and provision of our online services.
On the website https://www.restaurant-taverna.sk/, users can subscribe to our company's newsletter. According to Article 6 par. 1 letter a) GDPR, we process your data based on your consent.
The company Profi Catering s.r.o. uses the Sendinblue tool from the company Sendinblue SAS, Paris, Ile-de-France, France, to send out the newsletter.
The company Profi Catering s.r.o. informs its customers and business partners through an information bulletin, which contains (as far as possible individualized) information about the company's products, advertising campaigns, competitions and news. We also occasionally use this service to conduct surveys to improve customer satisfaction. Our company's newsletter can only be delivered to a person if (1) they have a valid e-mail address and (2) they have registered to receive the newsletter. A confirmation email will be sent to the email address that the data subject first registered as a newsletter address. The confirmation e-mail is used to check whether the holder of the e-mail address has agreed to send the newsletter as a data subject.
When registering for newsletters, we also store the IP address (assigned by the Internet Service Provider (ISP)) of the computer system the person is using at the time of registration, and the date and time of registration. The collection of this data is necessary in order to later trace (possible) misuse of the e-mail address of the person concerned, and therefore serves to ensure the legal protection of the person responsible for the processing.
The personal data collected during registration for the newsletter is used exclusively for sending our newsletter. In addition, its subscribers may be informed by e-mail if this is necessary for the functioning of the newsletter service or for registration, as well as in the case of changes in the offer of news or changes to technical conditions. Personal data collected as part of the newsletter service is not provided to third parties. The person concerned can unsubscribe from our newsletter at any time. Consent to the storage of personal data granted by the person concerned for the purpose of sending the newsletter can be revoked at any time. This does not affect the legality of processing on the basis of consent granted before its withdrawal. For the purpose of withdrawing consent, each newsletter contains a relevant link to an unsubscribe form. In addition, it is possible to unsubscribe from the newsletter at any time directly on the website of the data controller or inform the data controller in another way.
The newsletter contains so-called tracking pixels. A tracking pixel is a tiny graphic embedded in e-mails sent in HTML format that allows log files to be recorded and analyzed. This makes it possible to statistically evaluate the success or failure of online marketing campaigns. The built-in counting pixel allows the person responsible to find out if and when the person concerned has opened the e-mail. Modified links can be used to record which links in an email a person has opened.
The data controller stores and evaluates personal data obtained through tracking pixels and links contained in the newsletter in order to optimize the newsletter and better adapt the content of future newsletters to the interests of the person concerned. This personal data is not provided to third parties. The persons concerned have the right to revoke the declaration of consent they have given in this regard at any time. This is the same process as unsubscribing from a newsletter.
Sendinblue technology will be used on the basis of our legitimate interests according to Article 6 para. 1 letter f) GDPR and the intermediary agreement on the processing of personal data according to Article 28 paragraph 3 of the first sentence of the GDPR.
Sendinblue may use recipient data in pseudonymized form (i.e. without identifying the user) to optimize or improve its own services, e.g. for the technical optimization of sending and presenting the newsletter or for statistical purposes. However, Sendiblue technology does not use the data of our newsletter recipients to write to them itself or pass it on to third parties.
6. GOOGLE WEB FONTS
General information on data protection can be found in the Google Privacy Center at: http://www.google.com/intl/de-DE/privacy/.
7. PERSONAL DATA STORAGE PERIOD
We retain personal data for the duration of the relevant statutory limitation period or for as long as the purpose for collecting it lasts. After the expiry of the limitation period, the data is usually deleted, unless it is necessary for the initiation or performance of the contract. If the user's data is not deleted because the data is needed for other purposes permitted by law, data processing will be limited to the maximum extent possible. Therefore, this data will be blocked to the maximum extent possible and will not be processed for other purposes. This applies, for example, to user data that must be retained for reasons of commercial or tax law.
8. CONTACT FORMS AND CONTACTING
We offer you the opportunity to contact us via contact forms, phone, e-mail or social networks. The data sent in this way is processed by the responsible person for the purpose of processing the relevant request based on Article 6 paragraph 1 letter b) in the case of contracts and pre-contractual measures, such as offers, and on the basis of Article 6 par. 1 letter f) in case of other requirements. Your data can be stored and processed in our wordpress system.
9. DATA SECURITY
By implementing technical and organizational measures, we do our best to ensure that your personal data is processed in accordance with the legal regulations on data protection and their protection.
The company Profi Catering s.r.o. reserves the right to change these personal data protection principles at any time in accordance with valid provisions on data protection and other legal regulations.
11. WHERE WILL MY DATA BE PROCESSED?
Your data will be processed within the EU.
12. RIGHTS OF THE PERSONS AFFECTED
In accordance with Article 15 GDPR, you have the right to information about the processing of your personal data.
You can also exercise the right to rectification, erasure or (if erasure is not possible) restriction of processing and data portability pursuant to Articles 16 to 18 and 20 of the GDPR. To exercise this right, please contact our Data Protection Officer.
If you believe that your personal data is not being processed in accordance with data protection laws, please contact our data protection officer. You also have the right to file a complaint with the relevant supervisory authority at any time.
Competent supervisory authority:
Personal Data Protection Office of the Slovak Republic, Hraničná 12, 820 07 Bratislava 27, Slovak Republic
Phone: + 421 2 32 31 32 14
According to Article 21 par. 1 GDPR, an objection can be raised against data processing for reasons related to the specific situation of the person concerned, which is carried out on the basis of Article 6 para. 1 letter f), including objection to profiling based on the mentioned provisions.
The stated general right to object applies to all purposes of processing described in these personal data protection principles, if the processing is based on Article 6 par. 1 letter f) first sentence of the GDPR. We are obliged to comply with this general objection only if you give us serious reasons (e.g. possible threat to life or health).
Personal data that you provide to us in connection with the application of your request pursuant to Art. 15 to 21 GDPR, we will store when exercising the rights of the data subject in accordance with Article 6 par. 1 letter f) GDPR based on legitimate interest. This is about the verifiability of your request.