By sending personal data from the online contact form, the user confirms that he understands the conditions of personal data protection, that he expresses his consent to their wording and that he accepts them in full.
The provider is the controller of users’ personal data pursuant to Article 4 (7) of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as “GDPR”). The Provider undertakes to process personal data in accordance with legal regulations, in particular GDPR.
Personal data is any information about an identified or identifiable natural person; an identifiable natural person is a natural person who can be identified, directly or indirectly, in particular by reference to a specific identifier, such as name, identification number, location data, network identifier or one or more specific physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
When contacting via the contact form, personal data are required as they are necessary to process the user’s request successfully (name, surname, email, telephone). The purpose of personal data processing is to process the user’s request.
The provider uses the services of subcontractors, especially web hosting providers, external programmers, external graphics. Subcontractors are checked for the secure processing of personal data. The web hosting subcontractor and provider have concluded a contract on the processing of personal data, according to which the subcontractor is responsible for the proper security of the physical, hardware and software perimeter, and therefore bears direct responsibility to the user for any leakage or breach of personal data.
The provider stores the user’s personal data for the time necessary to exercise the rights and obligations arising from the contractual relationship between the provider and the user and the assertion of claims under these contractual relationships (for a period of 15 years from the termination of the contractual relationship). After that, the data will be deleted.
At the request of the user and based on his/her right, the provider has to provide him/her with an access to his personal data pursuant to Article 15 of the GDPR, correction of personal data pursuant to Article 16 of the GDPR, or restrictions on processing pursuant to Article 18 of the GDPR. The user has the right to delete personal data according to Article 17, paragraph 1, letter a), and c) to f) of the GDPR. Furthermore, the user has the right to object to the processing according to Article 21 of the GDPR and the right to data portability according to Article 20 of the GDPR. For more information and exercise of the user’s rights, contact us via e-mail: email@example.com.
The user has the right to file a complaint with the Office for Personal Data Protection if he believes that his right to personal data protection has been violated.
The user is not obliged to provide personal data. However, the provision of personal data is a necessary requirement to make a reservation for the user thus without the provision of personal data it is not possible.
There is no automatic individual decision-making by the provider in the sense of Article 22 of the GDPR.