machine machine
I want
a machine
arrow arrow

GDPR

Privacy Policy

We comply with EU data protection regulations at a native speaker level. We are obligated to protect all data against misuse and ensure their maximum security. To maintain our company's operations, however, we must process some data.

The purpose of these Personal Data Processing Policies according to GDPR for customers of Störi Mantel s.r.o., ID No: 64087671, VAT No: CZ64087671, with its registered office at Zašová 439, 756 51 Zašová (hereinafter referred to as the "Controller") and visitors to the websites www.stoerimantel.cz, www.stoerimantel.com, and www.stoerimantel.eu is to provide information on what personal data the company processes as the Controller during the sale of goods, provision of services, and visits to its websites.

These policies are effective from May 25, 2018, and are issued in accordance with European Union Regulation No. 2016/679 on the protection of natural persons with regard to the processing of personal data ("GDPR") for the purpose of fulfilling the Controller's information obligation.

1. What data we collect

The Controller processes personal data provided directly by individuals or personal data obtained from the fulfillment of orders. Personal data is any information related to a natural person that enables the Controller to identify the person. For the purposes of selling goods and providing services, the Controller may process the following personal data:

Billing and identification data

Name and surname, company name, ID No, VAT No, billing address, bank details.

Contact details

Phone number, email, social media profiles.

Data on orders, inquiries, and price offers

Type and specifications of goods, service specifications, number of orders and their prices, customer segment, payment history.

Operational data

Data on users' behavior on websites using cookies to ensure online purchases and the technical functionality of websites, global statistical overviews, and non-personalized internet advertising.

Data processed based on the information obligation

Contact details for the purpose of sending commercial communications (newsletters), cookie records provided to third parties for the technical provision of personalized internet advertising (remarketing).

2. Why and for what purpose we process data

The Controller has a legal reason for processing personal data as part of fulfilling a contract between him and the customer.

The Controller has a legal reason for processing personal data in the provision of direct marketing (especially for sending commercial communications - newsletters) to customers who have entered into a business relationship with the Controller.

The Controller has a legal reason for processing personal data in the provision of direct marketing (especially for sending commercial communications - newsletters) in cases where no order for goods or services has been made.

The purpose of processing personal data is to conclude a contract (for processing orders, handling inquiries, and issuing price offers) and the related rights and obligations of the Controller. Without the provision of personal data, it is not possible to conclude a contract and fulfill the Controller's obligations.

The Controller may process personal data based on the user's consent as well as on the legitimate interest of the Controller. In both cases, the Controller commits to always clearly and understandably inform the user about this fact.

The Controller may process personal data based on legitimate interest in the following cases:

  • Sending commercial communications (newsletters) to customers.
  • Sending commercial communications (newsletters) to potential customers interested in purchasing goods or services - typically for inquiries, price calculations, and offers.
  • Remarketing campaigns and better targeting of ads (Facebook, Seznam.cz, Google.cz).
  • For analyzing website traffic and subsequently improving the usability of the website.
3. How Long We Retain Data

The Controller retains personal data for the period necessary to exercise rights and obligations arising from contractual relationships between him and the customers, for 10 years from the termination of the contractual relationship.

  • The Controller retains personal data for direct marketing purposes, for no longer than 5 years.
  • The Controller retains personal data for remarketing purposes, for no longer than 5 years.
  • The Controller retains personal data through cookies, for no longer than 1 year.

After the retention period of personal data expires, the Controller deletes the data.

4. To Whom We Disclose Personal Data

Recipients of personal data are individuals and legal entities (hereinafter referred to as "Processors") that are involved in:

  • Delivery of goods or services
  • Execution of payments
  • Provision of marketing services

The scope of provided personal data is always only to the necessary extent required for fulfilling the obligations arising from the contract or necessary for ensuring the functionality of the websites and user comfort.

The Controller always has contracts for the processing of personal data concluded with the recipients of personal data.

The Controller utilizes the following advertising systems for processing purposes, which use cookies to display behavioral advertising from these systems to users. Users can opt out of cookies used by these Processors:

Google Analytics, Google AdwordsGoogle's policies

Facebook - Facebook's policies

Other Personal Data Processors:

SmartemailingSmartemailing's policies

5. How We Protect Your Data

The Controller secures all personal data with standard technologies and procedures against theft or misuse. The measures are regularly updated and checked to ensure they meet current requirements for adequate protection.

The Controller protects the personal data of website users (especially regarding user profiles) with a password. Sensitive data are encrypted during transmission between the browser and the websites.

Without the responsible approach of users, the Controller cannot fully ensure the security of personal data. Therefore, users are required to keep their unique passwords and other access data confidential and are obliged to follow basic security principles.

In some cases, the Controller cannot always ensure encrypted communication between him and the users, especially through email, comments, and other types of electronic communication. If users voluntarily provide their personal data to the Controller, they do so voluntarily.

6. Your Rights in Data Processing

Data subjects have the following rights to access personal data arising from Article 15 of the GDPR:

  • Right of access to personal data
    Confirmation of whether the Controller processes personal data. Information about the purposes of processing, categories of personal data, recipients of personal data, and processing durations.
  • Right to rectification of personal data
    According to Article 16 of the GDPR, data subjects have the right to rectify inaccurate personal data processed by the Controller. Customers are also obliged to report changes to their personal data and to provide evidence that such a change has occurred. They are also obliged to cooperate in case the provided personal data are inaccurate or incomplete.
  • Right to erasure of personal data
    According to Article 17 of the GDPR, data subjects have the right to erasure of personal data if the Controller cannot demonstrate a legitimate interest for processing the personal data.
  • Right to data portability
    According to Article 20 of the GDPR, data subjects have the right to data portability of data they have provided to the Controller.
  • Right to object to processing
    According to Article 21 of the GDPR, data subjects have the right to object to the processing of personal data on grounds of the Controller's legitimate interest.
  • Right to withdraw consent for processing personal data
    Consent to the processing of personal data for commercial purposes can be withdrawn at any time. Withdrawal needs to be made explicitly and comprehensibly, either by email to marketing@stoerimantel.com or in writing to Störi Mantel, s.r.o., Zašová 439, 756 51 Zašová.

Consent to receive commercial communications (newsletters) linked to a specific electronic contact (email) can be revoked at any time either directly in the footer of any newsletter or through email communication - marketing@stoerimantel.com.

  • Right to appeal to the Personal Data Protection Authority
    Data subjects have the right to appeal to the Personal Data Protection Authority if they believe their right to personal data protection has been violated.
loading
scroll top scroll top