I. Privacy Policy
1.1. By submitting an order from the online order form for the delivery of services, the user acknowledges that he / she understands the terms and conditions of the privacy policy, that he / she expresses his / her consent to their wording and accepts it in its entirety.
1.2 The provider of the driveczech.com internet portal is the administrator of the user's personal data under Article 4 (7) of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data 46 / EC (General Data Protection Regulation) (hereinafter: "GDPR"). The Provider undertakes to process personal data in accordance with legal regulations, in particular GDPR.
1.3. Personal data is any information about an identified or identifiable natural person; an identifiable natural person is a natural person who can be identified, directly or indirectly, in particular by reference to an identifier, such as name, identification number, location data, network identifier, or one or more specific physical, physiological, genetic, psychological, economic, cultural or identity of the individual.
1.4 When ordering, personal data required for successful order processing (name and address, contact) are required. The purpose of personal data processing is to process the user's order and exercise the rights and obligations arising from the contractual relationship between the Provider and the User. The User expressly agrees that his / her personal data will be forwarded to the contractual carrier who will use it solely for the purpose of completing the user's order and will not disclose it to any other third parties. The purpose of personal data processing is to send business communications and other marketing activities. The legal reason for the processing of personal data is the performance of the contract pursuant to Art. (b) GDPR, the legal obligation of the controller under Article 6 (1) (a). c) GDPR and the Provider's legitimate interest pursuant to Art. f) GDPR. The Provider's legitimate interest is the processing of personal data for direct marketing purposes.
1.5 The Licensor uses the services of subcontractors, in particular mailing service providers (personal data stored in third countries) and web hosting providers. Subcontractors are screened for safe processing of personal data. The webhosting provider and subcontractor have entered into a personal data processing agreement under which the subcontractor is responsible for the proper security of the physical, hardware and software perimeter and thus bears direct responsibility to the user for any leakage or breach of personal data.
1.6 The Provider stores personal data of the User for the time necessary to exercise the rights and obligations arising from the contractual relationship between the Provider and the User and the exercise of claims from these contractual relationships (for 15 years after the termination of the contractual relationship). After this time, the data will be deleted.
1.7 The User has the right to request access from the Provider to his personal data pursuant to Article 15 of the GDPR, correction of personal data pursuant to Article 16 of the GDPR, or limitation of processing pursuant to Article 18 of the GDPR. The user is entitled to delete personal data pursuant to Article 17 (1) (a). and (c) to (f) GDPR. Furthermore, the user has the right to object to the processing pursuant to Article 21 of the GDPR and the right to data portability pursuant to Article 20 of the GDPR.
1.8 The User is entitled to file a complaint with the Office for Personal Data Protection if he / she considers that his / her right to personal data protection has been violated.
1.9 The User is not obliged to provide personal data. However, the provision of personal data is a necessary requirement for the conclusion and performance of the contract and without the provision of personal data it is not possible to conclude or fulfill the contract by the provider.
1.10 On the part of the Provider, there is no automatic individual decision making within the meaning of No. 22 GDPR.
1.11 Applicants interested in using the Provider's services by filling in the contact form:
1. Acknowledges the use of its personal data for the purpose of sending commercial communications, advertising material, direct sales, market research and direct product offerings by the Provider and third parties, but not more than once a week;
2. Declares that he / she does not consider sending information according to point 1.11.1 as unsolicited advertising within the meaning of Act no. No. 40/1995 Coll. as amended, as the user is sent information according to point 1.11.1 in connection with § 7 of Act no. No. 480/2004 Coll. expressly agrees.
3. The User may withdraw the consent under this paragraph at any time in writing to [email protected].
1.12 Within the scope of improving the quality of services, personalization of the offer, collection of anonymous data and analytical purposes, the Provider uses so-called cookies. By using the Site, the User agrees to use the technology. Necessary Cookies - Cookies absolutely necessary to ensure the operation of websites and Internet services. No consent is required to use these cookies. Analytical and Marketing Cookies - Consent is required to use other cookies. In particular, cookies in this category are used for anonymous monitoring of traffic and user activity on our website. This allows us to track what customers like and improve our services.
1.12.1 We specifically use cookies: Necessary cookies Cookies Purpose externaFontsLoaded- Helps us load fonts NOCHACHE- Helps with web loading speed PHPSESSID - Identifies the login previousURL-Saves the previous visited page referal - Helps identify the previous source visit mccid and mceid - Internal information to ensure the proper operation of the site SRV_id - Internal information for high availability CookiesOK - Use of cookies II. Rights and obligations between the administrator and the processor (processing contract)
2.1 The Provider is a processor in accordance with Article 28 of the GDPR in relation to the personal data of the users of the users. The user is the administrator of this data.
2.2 These Terms and Conditions govern mutual rights and obligations in the processing of personal data to which the Provider has acquired access in the context of the license agreement concluded by agreeing to the General Terms and Conditions on www.driveczech.com (hereinafter referred to as the “License Agreement”) concluded with the User on the date of establishment of the User account.
2.3. The Provider undertakes to process the User's personal data to the extent and for the purpose set out in Article 2.4 - 2.7 of these Terms and Conditions. Processing resources will be automated. The Provider will collect, store, store, block, and dispose of Personal Information as part of the processing. The Provider is not entitled to process personal data in contradiction or beyond the scope set by these Terms.
2.4 The Provider undertakes to process personal data for the User in the following range: common personal information specific categories of data under Article 9 of the GDPR which the User acquired in connection with his own business.
2.5. The Provider undertakes to process personal data for the User in order to provide the Driveczech Platform with a License Agreement.
2.6. Personal data may only be processed at the workplaces of the Provider or its subcontractors pursuant to Article 2.8 of these Terms and Conditions, within the territory of the European Union.
2.7. The Provider undertakes to process the User's personal data of the User for the User, all for the period necessary to exercise the rights and obligations arising from the contractual relationship between the Provider and the User and to exercise claims from these contractual relationships (for a period of 15 years after the termination of the contractual relationship).
2.8 The User grants permission with the involvement of a subcontractor as an additional processor pursuant to Article 28 (2) of the GDPR, which is the Driveczech Hosting Provider. In addition, the User grants the Provider a general authorization to engage in the processing of other personal data processors, but the Provider must inform the User in writing of any intended changes regarding the acceptance of other processors or their substitution and provide the User with an opportunity to object to these changes. The provider must impose on his subcontractors, as a personal data processor, the same data protection obligations as set out in these terms.
2.9. The Provider undertakes that the processing of personal data will be secured in the following manner: Personal data is processed in accordance with the law and on the basis of the User's instructions, ie for the performance of all activities necessary for the provision of the Driveczech platform through a license agreement. The Provider undertakes to ensure the technical and organizational protection of the processed personal data in such a way that unauthorized or accidental access to the data, their change, destruction or loss, unauthorized transmissions, their other unauthorized processing as well as any other misuse is prevented. all the obligations of the personal data processor ensuing from legal regulations are ensured continuously during the processing of the data in terms of personnel and organization. The technical and organizational measures taken correspond to the level of risk. The provider uses them to ensure the continuing confidentiality, integrity, availability and resilience of processing systems and services, and to restore the availability and access to personal data in a timely manner in the event of physical or technical incidents. The Provider hereby declares that the protection of personal data is subject to the Provider's internal security regulations. Only authorized persons of the Provider and subcontractors shall have access to personal data pursuant to Article 2.8 of these Terms and Conditions, which shall have the Provider's conditions and scope of data processing and each such person shall access personal data under its unique identifier. Authorized Persons of the Provider, which process personal data under these conditions, are obliged to maintain confidentiality about personal data and security measures, the disclosure of which would jeopardize their security. The Provider shall ensure their provable commitment to this obligation. The Provider shall ensure that this obligation for the Provider and the Authorized Persons will continue even after the termination of employment or other relationship with the Provider. The Provider will assist the User through appropriate technical and organizational measures, if possible, to fulfill the user's obligation to respond to requests for the exercise of the data subject's rights set out in the GDPR; as well as ensuring compliance with the obligations under Articles 32 to 36 of the GDPR, taking into account the nature of the processing and information available to the Provider. Upon termination of the performance, which is associated with the processing, pursuant to Article 2.7 of these Terms and Conditions, the Provider is obliged to delete all personal data or return it to the User if it is not obliged to store personal data on the basis of a special law. The Provider shall provide the User with all information necessary to prove that the obligations under this Agreement and the GDPR have been fulfilled, shall enable audits, including inspections, carried out by the User or other auditor authorized by the User.
2.10 The User undertakes to promptly report all facts known to him that could adversely affect the due and timely fulfillment of the obligations arising from these Terms and Conditions and to provide the Provider with the assistance necessary to fulfill these conditions. III. Final Provisions
3.1 These Terms and Conditions shall cease to be valid upon expiry of the period specified in Article 1.6 and Article 2.7 hereof.
3.2 The User agrees to these Terms and Conditions by ticking the consent via the Internet form. By checking the consent, the user expresses that he / she has read these terms and conditions, agrees with them and that he / she accepts them in their entirety.
3.3 The Provider is entitled to change these conditions. The Provider is obliged to publish the new version of the Terms and Conditions on its website without undue delay. will send the new version to the User at his email address.
3.4. Provider contact details on the following: +420 603 427 002, [email protected].
3.5 Relations not explicitly regulated by these Terms and Conditions are governed by the GDPR and the legal order of the Czech Republic, in particular Act No. 89/2012 Coll., The Civil Code, as amended.
These conditions come into effect on August 1, 2023.