Zpět na úvod

Privacy policy

I. BASIC PROVISIONS

  1. The purpose of these principles is to clarify what we do and why we do it to ensure the confidentiality and security of your personal data.
  2. Personal data refers to any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be directly or indirectly identified, in particular by reference to an identifier such as a name, identification number, location data, network identifier, or one or more specific elements of the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
  3. The data controller, as defined in Article 4(7) of the European Parliament and Council Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as the “GDPR”), is Ravoko PB s.r.o., ID number: 0991994, with its registered office at Hněvkovská 1293/54, 148 00 Praha 4 – Chodov, registered in the Commercial Register kept by the Municipal Court in Prague, Section B, Insert 25746 (hereinafter referred to as the “Controller”). Contact details of the Controller: Tomáš Šilinger, tel.: +420 776 526 111, e-mail: t.silinger@ravoko.cz
  4. The Controller is authorized to entrust the processing of personal data to processors. A processor is any entity that processes personal data on behalf of the controller based on a special law, authorization, or mandate. In this case, the same protection of your data is contractually and regulatory ensured as by the Controller. The processor utilized by the Controller for processing personal data is Blackfish & Co. s.r.o., ID number: 06526411, with its registered office at Vinohradská 1367/24, Vinohrady, 120 00 Prague 2, registered in the Commercial Register kept by the Municipal Court in Prague, Section C, Insert 283664. In addition to the aforementioned processor, we may disclose your personal data to other authorized entities, especially IT service providers (management, development, and support of information systems), postal services and couriers, legal service providers under the conditions prescribed by law, entities providing services enabling electronic communication with the Controller, and entities providing services enabling the distribution of marketing materials, as well as other institutions or entities, particularly relevant state administration authorities, courts, law enforcement authorities, or the Office for Personal Data Protection.
  5. The Controller intends to transfer personal data to a third country (a country outside the EU) or international organizations. Recipients of personal data in third countries are providers of mailing, cloud, or promotional services. If the Controller transfers personal data outside the EU to third countries or international organizations, their protection will be ensured based on standard contractual clauses adopted in accordance with the mechanism established in the GDPR or based on a Commission decision on the adequate level of protection of personal data.
  6. The Controller has appointed a Data Protection Officer, Mr. Tomáš Šilinger, born on May 22, 1988, residing at Klášterní nám. 125, Moravský Krumlov 67201 (hereinafter referred to as the “Officer”).
  7. Contact details of the Officer: t.silinger@ravoko.cz Klášterní nám. 125, Moravský Krumlov 67201

 

II. WHAT PERSONAL DATA DO WE PROCESS, LEGAL BASIS FOR PROCESSING PERSONAL DATA, AND PURPOSE OF PERSONAL DATA USAGE

  1. We process primarily identification data (such as name, surname, personal identification number, date of birth, place of birth, permanent or other residence, and in case you are a business entity, also company registration number, tax identification number) and contact data (email address, mobile phone number, bank account, postal address), information about your financial situation for the purpose of assessing the suitability of services, transaction history (data on deposits, withdrawals, invested amounts, received income, charged fees), data necessary for fulfilling the obligation of your identification and verification under Act No. 253/2008 Coll., on certain measures against the legalization of proceeds from crime and the financing of terrorism (for example, copy of identification document, photograph, information about the source of income, purpose of the business, politically exposed person status, place of birth).
  2. We may process your personal data only if there is an appropriate legal basis or if at least one of the following conditions is met: Processing is necessary to fulfill the legal obligations of the Data Controller, especially for providing cooperation to public authorities, data protection registration, tax and accounting obligations, archiving, and record-keeping services.
    1. Processing is necessary for the performance of a contract between you and the Data Controller.
    2. Processing is necessary for legitimate interests, especially for the internal functioning and reporting of the company, defense of legal claims, direct marketing.
    3. Processing based on your consent, especially for personalized product and service offers, marketing processing of your data, surveys, and user testing with the aim of adapting our offer to your needs and improving the provided services.

 

III. DATA RETENTION PERIOD

  1. We retain your personal data for the period necessary, which is based on the legal grounds and purposes of their processing.
  2. Unless stated otherwise in the previous points, the Data Controller retains personal data:
    1. For the periods specified by relevant legal regulations when fulfilling a legal obligation.
    2. For the duration necessary for the exercise of rights and obligations under the relevant contract when processing is necessary for the performance of the contract.
    3. For the duration of validity or until the withdrawal of consent when processing is based on your consent.
  3. After the expiration of the data retention period, the Data Controller will erase the data.

 

IV. Cookies

  1. You will learn below what cookies we process on our websites, for what purpose, and how you can influence the cookies we store on your devices.
  2. Cookies are small data files that are sometimes necessary for certain website functions and are stored on your devices. With each subsequent visit, the information from these cookies is sent to our server, and we use this data for further processing.
  3. We use the following cookies on our website:
    1. Technical cookies: These are cookies necessary for the proper functioning of the website, which cannot be disabled. If you disable these cookies, the website may not function correctly.
    2. Preference cookies: These are cookies that facilitate browsing the website and are used to display content in the preferred settings.
    3. Analytical cookies: These are cookies that allow us to track aggregated information about website visits and the use of various features, helping us improve the website. We use the services of Google Analytics and Meta to process these cookies.
    4. Marketing cookies: These cookies and the data you provide enable us to connect our website with social and advertising networks of third parties. We use the services of Meta (Facebook and Instagram), Seznam, and Google to process these cookies.
  4. Each user can configure the rules for using or blocking cookies in their web browser, thereby giving consent to their processing.
  5. You can delete all cookies already stored on your computer at any time. Most browsers also allow you to block the placement of cookies on your devices. However, in such cases, you may not be able to fully utilize all the online services offered by the website. For detailed information on how to set cookie storage in your browser, please refer to the provider’s specific browser pages.

 

V. YOUR RIGHTS REGARDING PERSONAL DATA PROCESSING

  1. When processing your personal data, you have the following rights:
    1. Right to access personal data: You have the right to request a copy of the personal data that the Controller holds about you.
    2. Right to rectification: You have the right to request the correction or completion of inaccurate personal data.
    3. Right to erasure: You have the right to request the erasure of your personal data if one of the legal grounds specified by the applicable laws is fulfilled, and your personal data should be deleted without undue delay.
    4. Right to restriction of processing: You have the right to request the restriction of processing your personal data until the matter is resolved, if you contest the accuracy of the personal data, the processing is unlawful, or you object to the processing.
    5. Right to notification: You have the right to be notified by the Controller in case of rectification, erasure, or restriction of processing of your personal data.
    6. Right to data portability: You have the right to request your personal data that you have provided to the Controller, and, where technically feasible, you have the right to request the transmission of this data to another controller, if a person authorized by the respective controller is properly identified and authorized.
    7. Right to object: You have the right to object to the processing of your personal data based on the legitimate interests of the Controller. If the Controller cannot demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, the Controller will terminate the processing without undue delay.
    8. Right to withdraw consent: You have the right to withdraw your consent to the processing of personal data for commercial purposes at any time.
    9. Right to lodge a complaint: You have the right to lodge a complaint with the supervisory authority, which is the Office for Personal Data Protection (www.uoou.cz), if you believe that your right to personal data protection has been violated.

 

VI. PERSONAL DATA SECURITY CONDITIONS

  1. The Controller declares that appropriate technical and organizational measures have been taken to secure personal data.
  2. The Controller declares that only authorized persons designated by the Controller have access to personal

 

VII. LEGAL REGULATIONS

  1. When processing your personal data, we comply with applicable legal regulations, including:
    1. Regulation (EU) 2016/679, the General Data Protection Regulation (GDPR)
    2. Act No. 110/2019 Coll., on the processing of personal data
    3. Act No. 89/2012 Coll., the Civil Code
    4. Act No. 253/2008 Coll., on certain measures against money laundering and financing of terrorism