What personal information we collect and why we collect it
Protection of personal data
Processing and protection of personal data in Novirea, sro
If you are our customer or visitor to the website, you entrust us with your personal data and acknowledge that by placing an order on the online store https://novirusactive.cz/ (hereinafter referred to as ” order “), your personal data is processed by Novirea, sro, ID: 091 99 934, with its registered office at Linecká 260, 382 41 Kaplice, registered at the Regional Court in České Budějovice under file no. No. C 29953.
The processing of personal data takes place on the basis of Article 6 (1) (a). b) REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (General Data Protection Regulation) – hereinafter ‘ GDPR ‘. The processing of your personal data is necessary for the fulfillment of the contract to which you are a party, for the execution of your order.
We are responsible for the protection and security of your personal information. Please familiarize yourself with the protection of personal data, policies and rights that you have in connection with the GDPR (Personal Data Protection Regulation).
Who is the administrator?
Linecká 260 382 41 Kaplice
We process your personal data as an administrator, ie we determine how personal data will be processed and for what purpose, for how long, and we select any other processors who will assist us with the processing.
We declare that, as the controller of your personal data, we comply with all legal obligations required by applicable legislation, in particular the Personal Data Protection Act and the GDPR, and therefore that:
– we will process your personal data only on the basis of a valid legal reason, in particular a legitimate interest, performance of a contract, legal obligation or consent,
– we fulfill the information obligation under Article 13 of the GDPR before starting personal data processing,
– we enable and support you in exercising and enforcing your rights under the Personal Data Protection Act and the GDPR.
Scope of personal data and processing purposes
We process personal data that you entrust to us yourself, for the following reasons (to fulfill these purposes):
Processing of inquiries and orders – your personal data to the extent: we absolutely need e-mail and telephone for further communication with you.
Accounting – If you are a customer, your personal data (invoicing data) such as name, surname, address, we urgently need to comply with legal obligations for the issuance and registration of tax documents.
Categories of the data subject
The data subject is you as our customer, resp. buyer according to our general terms and conditions, ie the person who makes an order on our online store https://novirusactive.cz/
Advertising targeting cookies will only be processed with your consent.
Security and protection of personal data
We protect personal data as much as possible using modern technologies that correspond to the level of technical development. We protect them as if they were our own. We have taken and maintain all possible (currently known) technical and organizational measures to prevent the misuse, damage or destruction of your personal data. The stored data is encrypted, both at the file system and database level. Controlled access to data, training of authorized persons, keeping records on the transfer of records to authorized bodies and persons are provided.
The period for which personal data will be processed
Personal data will be processed only for the time strictly necessary to fulfill the purpose for which they were collected. The maximum period for which personal data will be processed is ten years from their acquisition.
Transfer of personal data to third parties
Our personal data is accessible to our employees and co-workers, who are bound by confidentiality and trained in the security of personal data processing.
Transfer of data outside the European Union
We process data exclusively in the European Union or in countries that provide an adequate level of protection based on the decision of the European Commission. Personal data will not be transferred to third countries.
Your rights regarding personal data protection
You have a number of rights with regard to the protection of personal data. If you want to exercise any of these rights, please contact us via e-mail: firstname.lastname@example.org
You have the right to information that is already filled in this information page with the principles of personal data processing.
Thanks to the right of access to personal data, you can call us at any time and we will prove to you within 30 days what personal data we process and why.
If something changes with you or you find your personal data out of date or incomplete, you have the right to add and change personal data.
You can exercise the right to restrict processing if you believe that we are processing your inaccurate data, that you believe that we are processing illegally, but that you do not want to delete all data, or that you have objected to the processing.
You can limit the scope of personal data or the purposes of processing. (For example, by unsubscribing from a newsletter, you limit the purpose of processing to sending business messages.)
The right to object to the processing of personal data , which means the possibility to file a written or electronic objection to the processing of personal data. This can be applied either in writing by registered letter sent to the address of the Administrator’s registered office, or in electronic form to the e-mail address: email@example.com
Right to delete (be forgotten)
Your next right is the right to erase (be forgotten) if the purpose of the processing has already passed or if the personal data are processed illegally. We do not want to forget you, but if you wish, you have the right to do so. In such a case, we will delete all your personal data from our system as well as from the system of all sub-processors and backups. We need 30 days to secure the right to delete.
In some cases, we are bound by a legal obligation, and for example, we must register the issued tax documents for the period specified by law. In this case, we will delete all such personal data that is not bound by another law. We will inform you by e-mail about the completion of the deletion.
Complaint to the Office for Personal Data Protection
If you feel that we are not handling your data in accordance with the law, you have the right to contact your Office for Personal Data Protection at any time. We will be very happy if you first inform us of this suspicion so that we can do something about it and correct any mistakes.
We would like to assure you that our employees and co-workers who will process your personal data are obliged to maintain the confidentiality of personal data and security measures, the disclosure of which would jeopardize the security of your personal data. At the same time, this confidentiality persists even after the end of our contractual relations with us. Your personal data will not be disclosed to any other third party without your consent.
These principles of personal data processing apply from 1.7.2020.