Privacy policy (GDPR) and cookies

If you are our customer, newsletter subscriber or website visitor, you are entrusting us with your personal data. We are responsible for their protection and security. Please familiarize yourself with the data protection, policies and rights you have in relation to the GDPR (General Data Protection Regulation).

Who is the data controller

The controller of your personal data is STAV Systems International s.r.o., nám. T. G. Masaryka 128, 1760 01 Zlín – Czech Republic, ID No.: 22269266. We operate the website https://www.stav-systems.com. We are in the position of a controller with respect to your personal data: we determine how the personal data will be processed and for what purpose, for how long and we select any other processors who will assist us with the processing.

Contact details

We take care of our website visitors with love. If you have any questions or comments, please contact our customer support at info@stavsystems.com or by phone at (+420) 725 741 887.

We declare

We declare that, as the controller of your personal data, we comply with all legal obligations required by applicable legislation, in particular the Data Protection Act and the GDPR, and therefore that:

  • we will only process your personal data on the basis of a valid legal ground, in particular a legitimate interest, the performance of a contract, a legal obligation or consent,
  • we comply with the information obligation under Article 13 of the GDPR before we start processing personal data,
  • enable and support you in exercising and fulfilling your rights under the Data Protection Act and the GDPR.

Personal data and purpose of processing

We process personal data that you entrust to us for the following reasons (to fulfil these purposes):

Bookkeeping

If you order a product from our range, we need your personal data (billing data) to comply with a legal obligation to issue and record tax documents.

Direct marketing via email

We use your personal data (email and name), what pages you visit on our website and what you click on in the email for the purpose of direct marketing – sending and displaying commercial communications. If you order one of our products on our e-shop, we see a legitimate interest in sending you newsletters with news, promotions or other motivational topics from the blog, as we reasonably assume that you are interested in our news. We will do this for a maximum of 5 years from your last order.

We will retain your personal data for the duration of the statute of limitations, unless the law provides for a longer period to retain it or we have specified otherwise in specific cases.

Cookies

When you browse our website, we record your IP address, how long you stay on the site, which site you come from and if you come through one of our affiliate partners. We see the use of cookies to measure website traffic and to personalise the display of the website as a legitimate interest of our administrator, as we believe that this enables us to offer you an even better service.

If you visit our website and have cookie processing enabled in your browser, we see it as a legitimate interest to track what pages you visit on our website through cookies.

Our website can also be browsed in a mode that does not allow the collection of personal data. You can disable the use of cookies on your computer.

Who do we use to process cookies?

Google Analytics, operated by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. The cookies collected are subsequently processed by Google Inc. in accordance with its Privacy Policy, available at https://www.google.com/intl/cs/policies/privacy/#nosharing.

Security and protection of personal data

We protect personal data to the maximum extent possible by using modern technologies that correspond to the state of the art. We protect it as if it were our own. We have adopted and maintain all possible (currently known) technical and organisational measures to prevent the misuse, damage or destruction of your personal data.

Transfer of personal data to third parties

Your personal data can be accessed by our employees and associates who are bound by confidentiality and trained in the security of personal data processing.

We handle most of the processing operations ourselves and do not need 3rd parties.

For some specific processing operations that we cannot provide in-house, we use the services and applications of processors who specialize in the processing and are GDPR compliant.

These are providers of the following platforms and services:

Hosting and server service providers

  • Hosting and server service providers Webglobe, s.r.o.
  • Web Hosting Webglobe, s.r.o. Pobřežní 620/3, 186 00 Praha 8 IČ: 26159708
    *Free hosting is only valid for our end clients for the first year of operation and is included as part of the web development fee

Analytical tools

  • Google Analytics – statistiky návštěvnosti webu
  • Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA

Website development fubah.cz

  • Fubah s.r.o., K Pasekám 2984/45, 760 01 Zlín, IČ: 28308638

Supplier of web and other solutions

  • Jan Bureš, Na honech 4905, 76005, Zlín, IČ: 14064961

 It is possible that in the future we may decide to use other applications or processors to facilitate and improve the quality of processing. However, we promise you that in such a case we will place at least the same demands on the processor in terms of security and quality of processing as we place on ourselves.

Data transfer outside the EU

We only process data in the European Union or in countries that provide an adequate level of protection based on a decision of the European Commission.

Your rights in relation to the protection of personal data

You have a number of rights in relation to data protection. If you wish to exercise any of these rights, please contact us by email: info@stavsystems.com.

You have the right to information, which is already fulfilled by this information page with the personal data processing policy.

Thanks to the right of access, you can challenge us at any time and we will document within 30 days what personal data we are processing and why.

If something changes or you find your personal data outdated or incomplete, you have the right to have your personal data completed and amended.

You can exercise your right to restrict processing if you believe that we are processing your inaccurate data, if you believe that we are processing unlawfully but do not want to delete all your data, or if you object to processing. You can limit the scope of personal data or the purposes of processing. (For example, by unsubscribing from the newsletter you limit the purpose of processing for sending commercial communications.)

Right to portability

If you would like to take your personal data and transfer it to someone else, we will follow the same process as for exercising your right of access – except that we will supply the information to you in machine-readable form. Here we need at least 30 days.

Right to erasure (to be forgotten)

Your other right is the right to erasure (to be forgotten). We don’t want to forget you, but if you wish, you have the right to do so. In this case, we will delete all your personal data from the system and from the system of all sub-processors and backups. We need 30 days to secure the right to erasure.

In some cases, we are bound by a legal obligation and, for example, we must keep records of tax documents issued for a period of time specified by law. In this case, we will therefore delete all such personal data that is not bound by another law. We will inform you by e-mail when the deletion is completed.

Complaint to the Office for Personal Data Protection

If you feel that we are not treating your data in accordance with the law, you have the right to contact the Data Protection Authority at any time with your complaint. We would be very happy if you first inform us of this suspicion so that we can do something about it and correct any wrongdoing.

Privacy

Please be assured that our employees, collaborators and processors who will process your personal data are obliged to maintain the confidentiality of personal data and security measures, the disclosure of which would compromise the security of your personal data. Your personal data will not be released to any other third party without your consent.