Who we are
Suggested text: Our website address is: https://stavoklimapartners.com.
Comments
Suggested text: When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
Media
Suggested text: If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Cookies
Suggested text: If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select „Remember Me“, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Suggested text: Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Who we share your data with
Suggested text: If you request a password reset, your IP address will be included in the reset email.
How long we retain your data
Suggested text: If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
What rights you have over your data
Suggested text: If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Where your data is sent
Suggested text: Visitor comments may be checked through an automated spam detection service.
GDPR
1. Identification of the administrator.
The company STAVOKLIMA s.r.o., ID No.: 608 27 980, registered office: Budějovická 450, 370 01 Homole, company registered in the Commercial Register maintained by the Regional Court in České Budějovice, file No. C 21455, contact details for GDPR matters: www.stavoklima.cz, e-mail: info@stavoklima.cz; the authorised representative of the controller is JUDr. Martin Šimák, tel. 387 001 932, or the company secretariat – assistant to the managing director, GSM: 778 706 373.
2. Scope of processed personal data.
Identification and billing data (in particular name, surname, date of birth, VAT number)
contact details (in particular address of residence or place of business and registered office, telephone, fax, e-mail, identifiers for electronic communication), bank details (e.g. account number)
other data of a common category (e.g. the likeness and figure of persons according to CCTV footage, details of goods or services received or used, or details of your agent or authorised employee or other contact person, if any)
special categories of personal data in the form of biometric data enabling unambiguous identification of a person, namely fingerprints of employees.
3. Purposes of the processing of personal data.
for the purpose of fulfilling obligations arising from a contract concluded between you and the controller (e.g. purchase contract, work contract, loan or lease contract, service contracts, employment contracts and agreements, etc.)
for the purposes of fulfilling obligations under applicable law, in particular in connection with the controller’s business activities, e.g. in the area of consumer protection, liability for defects or the fulfilment of accounting, tax or customs obligations, including obligations related to the performance of inspections by the competent authorities
for the exercise of the rights and legitimate interests of the controller or a third party, in particular for the purposes of asserting the controller’s claims, ensuring safety in production, the correctness of production processes and assessing the validity of complaints (using CCTV footage), for the performance of its obligations under guarantees or liability for defects or for the purposes of improving the level of sales of goods and services, or for the purposes of so-called direct marketing by the controller or a third party.
4. Legal basis for processing personal data.
The controller shall always process personal data in accordance with the legal basis given by the GDPR, namely Article 6(1)(a), (b), (c) and (f), in the case of special categories of personal data in the case of Article 9(2)(a), if:
consent has been given to the processing of their personal data for one or more specified purposes,
the processing is necessary for the performance of a contract or for the implementation of measures taken before the conclusion of the contract at your request,
the processing is necessary for compliance with a legal obligation to which the controller is subject,
the processing is necessary for the protection of the vital interests of the natural person,
the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller,
processing is necessary for the purposes of the legitimate interests of the controller or of a third party, except where those interests are overridden by the interests or fundamental rights and freedoms of the data subject requiring the protection of personal data, in particular where the data subject is a child.
5. Duration of processing of personal data.
Your personal data will be processed for the entire duration of the contractual relationship between you and the controller and, after its termination, for the duration of the limitation and archiving periods provided for by law, but for no longer than ten years from the end of the accounting period in which the last contractual relationship ended, unless a longer period is provided for by law and unless any of the purposes for which the personal data may continue to be processed (e.g. Your personal data will be destroyed after the expiration of these periods
6. Definition of possible recipients of personal data.
Public authorities, tax advisors, accountants, auditors, courts and other competent control and financial authorities, in the case of transport of goods also postal service providers or contractual carriers and in the case of international transport also customs authorities and the customs clearance company; with your consent, other persons; your personal data may also be transferred to recipients abroad in order to fulfil contractual or legal obligations, only under the conditions set out in Article 44 et seq. of the GDPR, provided that sufficient safeguards are in place to protect your personal data.
7. Sources of personal data processed and updating.
The personal data is or will be obtained mainly from the controller’s own activities, from you and your representatives or other authorised persons, and from publicly available information sources, the Internet, public lists, registers and debtors‘ registers, as well as from documents and communications submitted or received by the controller.
Updating of your personal data will be based mainly on information received from you or your representatives or other authorised persons, as well as from publicly available information, the Internet and social networks, public lists and registers.
8. Basic rights given by the GDPR in relation to the processing of personal data.
You have the right to have your personal data processed fairly and in a lawful and transparent manner, for legitimate purposes, to the extent reasonably necessary and for the necessary period of time, and the data must be secured against unauthorised processing, accidental loss, destruction or damage, which is ensured in particular by its mechanical and electronic security (including encryption during transmission) and by the appropriate measures and procedures that are in place, including regular training of those who have access to your personal data.
You have the right to free access to your personal data and to confirm whether your personal data is being processed, and you will be charged an administrative fee to cover the cost of providing a further copy or further confirmation.
You have the right to have missing data completed and inaccurate personal data corrected.
You have the right to erasure of personal data that are no longer necessary for the purposes set out above if you object to their processing and if there are no overriding reasons for processing them; if the personal data have been unlawfully processed; or if the law of the European Union or its Member States so provides; however, you do not have the right to erasure if the processing of personal data is necessary in particular for compliance with a legal obligation under the law of the European Union or its Member States, for archiving purposes or for the establishment, exercise or defence of legal claims.
You have the right to restrict the processing of your personal data, which will mean, in particular, temporarily transferring the selected data to another processing system, making the selected personal data unavailable to users or temporarily removing the published data from the website.
According to Article 21 GDPR, you have the right to object to the processing of personal data that is processed for the purposes of the legitimate interests of the trader and for the purposes of so-called direct marketing.
You have the right to file a complaint with the supervisory authority, which is the Office for Personal Data Protection, located at Pplk. Sochor 27, 170 00 Prague 7 (uoou.cz)
9. Processing of personal data of job applicants.
The administrator processes personal data of job applicants who have applied for a specific job and have sent, in particular, their CV and cover letter. The administrator processes their personal data in the following scope: name and surname of the applicant, home address, e-mail, telephone number and other information contained in the submitted CV and cover letter.
The legal basis for the processing of the job applicant’s personal data is the performance of the contract, including the pre-contractual negotiation phase.
The controller processes the personal data for the duration of the selection procedure for the specific position requested by the candidate. At the end of the selection procedure, the controller erases the personal data unless the applicant has given consent to further processing of the personal data. The controller does not pass on the personal data of applicants to any recipient, nor does it use them for automated decision-making or profiling.
10. Principles of personal data processing by the controller
When processing the personal data of data subjects, the controller shall always act in accordance with the principles set out below, which are derived from Article 5 of the GDPR:
principle of lawfulness, fairness and transparency of processing – personal data of data subjects are processed on the basis of a valid legal title, in a fair and transparent manner – i.e. within the scope and for the purposes set out in this information document;
the principle of purpose limitation of processing – personal data of data subjects are processed exclusively for certain legitimate purposes explicitly expressed in this information document, personal data are not processed in a way that is incompatible with these purposes;
the principle of minimisation of personal data processed – the controller shall only process personal data to the extent that it is proportionate, relevant and necessary in relation to the purpose for which it is processed;
the principle of accuracy of the personal data processed – the controller shall process personal data in an accurate and, where necessary, up-to-date form and shall implement reasonable measures to ensure that personal data which are inaccurate in relation to the purposes for which they are processed are erased or rectified without delay; the principle of limitation of the period of storage and processing of personal data – personal data shall be processed in a form which permits identification of data subjects for no longer than is necessary to achieve the purposes for which they are processed;
the principle of integrity and confidentiality of the personal data processed – the controller shall process personal data in a manner that ensures appropriate security of the personal data, including protection by appropriate technical or organisational measures against unauthorised or unlawful processing and against accidental loss, destruction or damage;
the controller’s employees and staff follow the rules and procedures set out in the internal data protection directive when processing personal data, including the security measures put in place to protect personal data, where they observe the obligation of confidentiality.
11. Exercise of rights.
You may exercise your rights specified in Article 8, points a) to f) in person at the address of the controller’s registered office or by sending an e-mail to the address mentioned under point 1 above. As a rule, your complaints will be dealt with within thirty days, whereby the time limit thus set may be extended to two months in justified cases.
Under the conditions set out in Article 79 of the GDPR, you have the right to effective judicial protection if you consider that your rights have been violated as a result of the processing of personal data by the controller in breach of the rules of the GDPR.