1. Personal Data Controller

1.1 The personal data controller, BEKOR s.r.o., with its registered office at Puškinova 700/90, 924 01 Galanta, Slovak Republic, Company ID: 36291749, Tax ID: 2022165387, VAT ID: SK2022165387, registered in the Commercial Register of the District Court in Trnava, Section Sro, Entry No.: 18385/T. (hereinafter referred to as the “Controller”), declares that all personal data processed by the Controller are strictly confidential. The Controller handles them in accordance with national legal regulations and European Union regulations applicable in the field of personal data protection.

1.2 The Controller collects, stores, and uses your personal data in accordance with Act No. 18/2018 Coll. on Personal Data Protection (hereinafter referred to as the “Personal Data Protection Act”), or Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter referred to as the “GDPR Regulation”). The individual purposes for which the Controller processes personal data are further defined below.

1.3 The Controller also collects this personal data through its websites at www.kupaliskodiakovce.sk (hereinafter referred to as the “websites”).

1.4 These personal data protection principles are issued by the Controller to ensure you are sufficiently informed about what personal data the Controller processes, for what purpose, for how long, who will have access to your personal data, and what rights you have. These principles apply to all personal data collected by the Controller, whether collected for the purpose of fulfilling a contractual relationship, legal obligation, legitimate interest, or granted consent.

2. Processed Data

2.1 The Controller is authorized to process personal data according to the purpose, categories of personal data, categories of data subjects, categories of recipients, and retention period.

2.2 The individual purposes of processing are as follows:

  • fulfillment of a contractual relationship means: the relationship between you and the Controller arising from an order, registration, a concluded contract, an application and participation in a competition, and similar;
  • sending commercial communications and offering products and services means: sending commercial offers via electronic mail (email), short text messages, or telephone calls;
  • accounting and tax purposes means: maintaining accounting records in accordance with accounting and tax legislation;
  • personnel and payroll agenda means: concluding employment contracts, payroll processing, social and health insurance contributions according to Act No. 311/2001 Coll., the Labor Code as amended;
  • statistical purposes means: anonymized tracking of website traffic, monitoring the number of page views, time spent on the websites, and the type of device from which you access the websites. We collect data to improve the services provided and offer relevant content to clients;
  • displaying advertisements means: displaying advertisements on the websites based on statistically determined customer preferences;
  • legitimate interest means: effective defense in case of a dispute; the processing period for personal data in such a case is 4 years from the expiration of the service usage period and is extended by the duration of the dispute. We constantly strive to improve our services and provide new and better services; we want to prevent the obstruction of such activities; therefore, activities that contribute to achieving this goal are our legitimate interest. Legitimate interest also includes processing for fraud prevention purposes (e.g., assessing the risk of concluding a contract), direct marketing (e.g., offering relevant services to existing customers), transfer of personal data within a group of undertakings for internal administrative purposes, reporting criminal offenses and transferring personal data to the competent authority, ensuring network and information security. These interests are merely examples;
  • fulfillment of other legal obligations means: providing information to law enforcement authorities, providing information to other public authorities, and similar.

We process your personal data for the period strictly necessary to ensure all rights and obligations arising from the mutual legal relationship, specifically for at least the period required to process an order, complete a transaction, set up a service, etc., and further for the period during which the Controller is obliged to retain personal data according to generally binding legal regulations, or for the period for which you have granted consent to the Controller. Otherwise, the processing period results from the purpose for which the personal data is processed, or is determined by legal regulations.

Personal data is processed by the Controller both manually and automatically. The Controller is authorized to process some information automatically, for example, to create statistical information about the traffic to its websites.

3. Personal Data Processed Based on Consent

3.1 If we have obtained your consent for the processing of personal data, it was for one of the following purposes:

  • processing a request from the contact form.

4. Rights of the Data Subject

4.1 As a data subject, you have the following rights arising from legal regulations, which you can exercise at any time. These include:

  • the right to access personal data, according to which you have the right to obtain information from the operator as to whether the Controller processes your personal data. The Controller is obliged to provide you with this information without undue delay. The content of the information is determined by the provisions of Article 15 of the GDPR Regulation. The Controller has the right to request a reasonable fee for providing the information, not exceeding the costs necessary for providing the information;
  • the right to rectification or erasure of personal data, or restriction of processing, according to which you have the right to rectify personal data that is inaccurate or incorrect. If your personal data is no longer necessary for the purposes for which it was collected, or is being processed unlawfully, you have the right to request its erasure. If you do not wish to request the erasure of personal data, but only to temporarily restrict its processing, you may request a restriction of processing;
  • the right to request an explanation if you suspect that the processing of personal data by the Controller is in violation of legal regulations;
  • the right to contact the Office for Personal Data Protection if you have doubts about compliance with obligations related to personal data processing;
  • the right to data portability, the right to receive personal data concerning you, which you have provided to the Controller, in a structured, commonly used, and machine-readable format, in accordance with Article 20 of the GDPR Regulation;
  • the right to object to the processing of personal data that is processed for the performance of a task carried out in the public interest or in the exercise of official authority, or for the purposes of protecting the legitimate interests of the Controller. The Controller shall cease processing without undue delay unless it demonstrates compelling legitimate grounds for the processing which override your interests, rights, and freedoms;
  • the right to withdraw consent to the processing of personal data at any time if you have granted the Controller consent to process personal data.

5. Cookies

Our websites use cookies for their functionality. More information about their use can be found on the cookie policy subpage.

6. Information and Questions

6.1 Further information about rights and obligations regarding personal data protection can be obtained by you as a data subject on the websites of the European Commission or by contacting us.