Personal data processing statement according to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/ES (General Data Protection Regulation) („Regulation“).
1. Who is the Administrator of your data?
The Administrator of your personal data is the company RM Corporation s.r.o. with its registered office in Oldřichovice 738, 739 61 Třinec, with ID number 268 76 957. The Company is registered in the commercial register, led by the Regional Court in Ostrava, section C, insertion 51004 („Administrator“) and operates the e-shop www.blackcomb.fr („E-shop“).
The Administrator is available on phone no.: +420 776 333 233 (Mo-Fri 7.30 – 16.00) or on the e-mail address: email@example.com.
2. The purposes of the processing for which the personal data are intended and the legal basis for the processing
The legal basis for the processing of your personal data is the fact that such processing is necessary for:
a) the fulfillment of the agreement between you and the Administrator under Article 6, Paragraph 1, Character b) Regulation;
b) the compliance with legal obligations that apply to the Administrator under Article 6, Paragraph 1, Character c) Regulation; in particular, the fulfillment of the obligations imposed on the Administrator by generally binding legal regulations and in particular the Value Added Tax Act, the Income Tax Act, the Accounting Act, etc.;
c) the purposes of the Administrator 's legitimate interests under Article 6, Paragraph 1, Character f) Regulation.
3. What type of your personal data do we process?
a) Customer personal information
The Company processes your personal information in order to fulfill the rights and obligations arising from the purchase contract and fulfillment of the obligations imposed by the Czech legal order.
The Company processes your personal data in the following range: name, surname, address and contact address, bank account, e-mail, phone number, ISIC card number, IP address.
For the registered customers, we further process personal data in the following range: date of birth, gender, and the login details of the customer account in the range of the login name.
4. Legitimate interest of the Administrator
The Administrator further processes your personal information in order to send newsletters, for marketing support, to measure the effectiveness of advertising messages, to monitor web site traffic and sales statistics.
We process our customers details such as the electronic e-mail contact in order to support the sale of our products and we subsequently use the electronic e-mail contact for the purpose of distributing business messages (newsletters sending). Customers always have a clear and distinct option to reject the newsletter in a simple way and for free.
We only process the necessary personal information (e.g. e-mail) and we do not process special categories of personal data in any way. The Administrator does not use technical or other means and technologies which would lead to excessive interference with the privacy of the subjects and data.
b) Google Analytics
We use Google Analytics in order to monitor website traffic and thanks to which we can better optimize our website (e.g. how many visitors visited the E-shop website, how many pages they viewed, from what location (city, town) do they visit website).
The E-shop server uses two types of cookies. The first are session cookies, which are automatically deleted once the user leaves the website. This kind of cookies helps the Company memorize user data. Partly they are also used for statistical purposes in order the Administrator can find out how many people have visited the website and subsequently e.g. improve the content of websites accordingly.
The second type of cookies are so-called persistent cookies, which remain on the user's computer or mobile for the time specified in the cookie parameters or until they are deleted from the browser. Persistent cookies facilitate the sharing of information through social networking plugins (e.g. Facebook.permanent popup counter), they help the Administrator to measure the effectiveness of advertisements and limit advert serving.
Cookies are not harmful, do not contain viruses, therefore we recommend not to block these files. The users can certainly change their web browser settings so that no cookies are stored. Respectively, it is possible to delete previously saved cookies.
5. Who do we transfer your data to?
Your personal information we pass on to the forwarding companies and other persons involved in the delivery of goods or in the payment process according to a sales contract and to persons providing technical services related to the operation of the E-shop including software operation and data storage.
The recipients of your personal data processed in order to comply with legal obligations, they may also be financial authorities or other competent authorities in cases when the Administrator impose generally binding legal regulations.
The Administrator can transfer personal data within the scope of e-mail and the name of the user account to third parties which provide services through which users will receive e-mail messages. These third parties are registered and provide their services from the United States. In relation to the USA, there is a decision of the European Commission so called Privacy Shield, which aims to ensure the same level of protection of personal data as in the European Union. Third parties to whom the Company may transfer personal data are certified and filed for the project Privacy Shield and do everything necessary to function in accordance with the Regulation.
In order to ensure fair and transparent processing of personal data we provide you with additional information:
6. The period of time for which the personal data are stored
Business documentation with customers is kept for the duration of the contract, extended by the warranty period of the quality of goods and furthermore for a period that we impose laws (e.g. the Accounting Act, the Value Added Tax Act, Income Tax Act, etc.).
Orders and purchase contracts with customers, eventually your other data that you have provided to us in connection with the purchase or goods complaint, we keep for an indefinite time. Invoices we keep for a period of 10 years, and the accounting documents for a period of 5 years. Upon expiry of these periods, the Administrator will perform physical shredding of the documentation.
Personal information you provide to us in connection with your registration in our E-shop we keep for an indefinite time. You can request your account and data cancellation from the e-mail address with which the registration is linked to on to our e-mail firstname.lastname@example.org.
7. Your rights
You are not obliged to provide us with your personal information. Although providing your personal data is a necessary requirement for the conclusion of the contract and without providing your personal information, it is not possible to conclude the agreement or to fulfill it by the Administrator.
The Administrator hereby informs all data subjects which may be affected, especially on the law
(i) request the administrator access to the processed personal data,
(ii) data repairs or deletions, or eventually processing restrictions,
(iii) to object to processing and
(iv) data portability.
These rights may be exercised by an authorized person which you can contact using email@example.com e-mail.
Any data subject is entitled to submit a complaint at any time by the supervisory authority with regard to the processing of personal data by the Administrator. Any data subject is entitled to seek redressal of the situation which is contrary to the law in particular by suspending or stopping the handling of personal data, their repair, addition or removal. You have the right to contact the Office for Personal Data Protection in the case of the above suspect or refusal to provide redress the situation which is contrary to the law.
The complaint may be filed with the supervisory authority, The Office for Personal Data Protection, with its registered office 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07, web: www.cnil.fr, Tél : 01 53 73 22 22.
8. Automated decision making, including profiling
The Administrator does not perform automated decision making or profiling, nor does it collect or process personal data for that purpose. Therefore, no further details are given on this point.