top of page

PRIVACY POLICY

prepared in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data within the meaning of Articles 13 and 14 of the Regulation (hereinafter referred to as the ‘GDPR’) and Act No. 110/2019 Sb., on the Processing of Personal Data (hereinafter referred to as the ‘Personal Data Processing Act’)

 

Who processes your data?     

TOPCORE service s.r.o.

Dolní Sklenov 158, 739 46 Hukvaldy

Company ID: 016 23 303

Contact e-mail: info@topcore.cz  

 

hereinafter referred to as ’we’ or ‘controller’ or ‘organisation’

 

What is personal data?

Personal data is virtually any information that can identify a living individual directly or is intended to reach such a person. Personal data can be divided into general (e.g. name and surname, age, telephone number, place of birth, civil status, etc.) and sensitive (today they are referred to as a special category of personal data with following specification – biometric data, trade union/political party membership, ethnic origin, philosophical creed, genetic data, information on convictions and criminal offences, religion, political opinions, racial origin of sexual orientation/life, health status).

 

What is personal data processing?

Processing of personal data means a systematic activity carried out by the controller with personal data for a specific purpose. The activities referred to in the preceding sentence include, but are not limited to: collecting, recording, sorting, structuring, storing, adapting or altering, retrieving, consulting, using, making available by transmission, dissemination or otherwise, arranging or combining, restricting, deletion or destroying.

Sources and categories of personal data:

The Controller processes the personal data (directly from you) that you have provided to him or her or the personal data that he or she received as a result of fulfilling your order.

Your identification and contact information and data necessary to perform the contract.

 

Legal reason and purpose of processing

The legal basis for processing is:

Your consent to the processing of personal data for the purpose of providing direct marketing pursuant to Article 6 (1) (a) GDPR

For the purpose of entering into and performing a contract (i.e. in accordance with the provision of our services), we process your personal data according to the provisions of Article 6 (1) (b) GDPR. The legal basis for processing your general personal data is therefore a contract.

Once the contract has been fulfilled, we must archive your personal data for the period of time foreseen by applicable law. Here, the legal ground for processing your general personal data is compliance with a legal obligation, as stipulated by Article 6 (1) (c) GDPR.

 

The purpose of personal data processing is:

Dealing with your order and exercising the rights and obligations arising from the contractual relationship between you and the Controller. When placing an order, personal data is required for the successful dealing with the order under Article 1(b) of the Regulation (this includes subsequent payment, delivery of goods, handling of complaints, etc.); we use your personal data that you provide to us to conclude a contract with you and, if the contract has already been concluded between us, then we use it to fulfil it. The processing of the customer’s personal data takes place without the customer’s consent, as the legal basis for the processing of his or her personal data for the purpose of performing the contract is a specific contract between the customer and the operator. The provision of personal data is a necessary requirement for the conclusion and performance of a contract; without the provision of personal data it is not possible to conclude a contract or for the controller to fulfil its terms.

What personal data will we process and to what extent?

In order to provide you with our services, we need to know the following personal data:

General personal data: name and surname, permanent address, address for delivery of services or goods, your telephone number and e-mail address,

 

How long will we retain the data?

We will retain your personal data for as long as we perform our mutual contract. After the end of the contractual relationship, we will retain your personal data for as long as necessary to fulfil the necessary archiving obligation under the legal regulations that envisage archiving (these regulations are e.g. the Accounting Act, the Value Added Tax Act, the Archiving and Records Management Act ).

Recipients of personal data

Certain activities for our company are carried out by subcontractors. To perform these activities, such subcontractor is required to be provided with your personal data to the extent necessary for the performance of the subcontractor’s tasks. Such external subcontractors are mainly external companies providing IT services to our company, web hosting and server and/or data storage management companies or other consulting companies. Specific companies and activities may be subject to change according to the current needs of the company. Recipient is anyone to whom personal data is disclosed, regardless of whether they are a third party. A public authority which processes personal data on the basis of a special regulation shall not be considered a recipient.

 

Persons involved in the delivery of goods, services, making payments under the contract.

GLS (Receiving, processing and delivering parcels, SMS notifications to the consignee)

 

Privacy Policy Terms and Conditions

The Controller declares that it has taken appropriate personnel, technical and organisational measures to ensure the protection of personal data.

The Controller has taken technical measures to secure data repositories and repositories of personal data in file form.

The Controller declares that only authorised persons have access to personal data.

There is no automated decision-making or profiling in the personal data processing activities we carry out in the course of our business.

 

What are your rights in relation to the processing of your personal data?

Under the conditions set out in the GDPR, you have:

  • Right of access to your personal data under Article 15 of the GDPR

  • Right to rectification of personal data under Article 16 of the GDPR

  • Right to restriction of processing

  • Right to deletion under Article 17 of the GDPR

  • Right to object under Article 21 of the GDPR

  • Right to data portability under Article 21 of the GDPR

  • Right to withdraw consent (electronically or to a mailing address)

  • The right to lodge a complaint with the Data Protection Authority if you believe that your data protection rights have been violated.

 

How can you fulfill your rights?

Right of access

Upon your request, we must tell you whether or not we process your personal data. If we process them, then you have the right to have us tell you:

  1. for what purpose we process your data

  2. to what extent this data is processed

  3. how long it will be retained

  4. to whom it will be disclosed

  5. whether you can file a complaint with the Office for Personal Data Protection.

You can submit your request electronically by e-mail to info@topcore.cz or by post to: Dolní Sklenov 158, 739 46 Hukvaldy

           

Right to rectification

If you believe that your personal data we are processing is incorrect (inaccurate), you have the right to have it rectified. If you discover such an inaccuracy in your personal data, please let us know and we will rectify it without undue delay. You can submit your request electronically by e-mail to info@topcore.cz or by post to: Dolní Sklenov 158, 739 46 Hukvaldy

Right to delete

In certain circumstances, you have the right to have us delete your personal data. You can ask us to delete your data at any time. We will delete your personal data if:

  • we no longer need your personal data for the purpose for which you provided them,

  • you withdraw your consent,

  • you object to the processing of your personal data,

  • we process your personal data unlawfully,

  • your personal data must be deleted to comply with a legal obligation,

  • you are a child or parent of a child who has consented to the processing of personal data via the Internet.

 

Right to restriction of processing

You can ask us to restrict the processing of your personal data. If we comply with your request, we will only retain your personal data and will not process it further. The processing of your data will be restricted if:

  • your personal data is incorrect until we verify its accuracy,

  • we process personal data unlawfully, but you do not consent to its deletion and instead request that we only restrict the processing of your personal data,

  • we no longer need your data, but you need it to establish, exercise or defend your rights

  • you object to the processing of your personal data until we verify whether our legitimate interests outweigh your reasons

 

Right to data portability

You have the right to request that we provide your personal data in an electronic form (e.g. an XML or CSV file) that allows you to easily transfer the data to another company. You can also ask us to transfer your personal data directly to the selected company. We will comply with your request if you have provided us with personal data directly and have given us your consent to process it

 

Right to object

You have the right to object to our processing of your personal data. Where we process your personal data in the following cases:

  • because of our legitimate interest,

  • creating a customer profile,

  • you can object to their processing if you have personal reasons.

 

How can you exercise these rights?

You can contact us with your request in any of the following ways:

By email to info@topcore.cz or by post to: Dolní Sklenov 158, 739 46 Hukvaldy

 

If you believe that your personal data protection rights have been violated, you have the right to file a complaint with the supervisory authority, which is the Office for Personal Data Protection at:

Office for Personal Data Protection

Pplk. Sochora 27
170 00 Praha 7

Company ID: 70837627

 

Phone:
PBX: +420 234 665 111 (not providing consultations)
Information: +420 234 665 800 (information line is always available on Tuesdays and Thursdays from 13.00 to 15.30

WWW: https://www.uoou.cz

E-mail: posta@uoou.cz

Data box ID: qkbaa2n

bottom of page