Close
elegantweb.agency

Request
form

Tell us a few details about your project. We’ll get back to you with a recommended scope, an estimated price and a suggested next step.

What is your budget?

Personal Data Processing Statement

This Personal Data Processing Statement has been prepared in accordance with Act No. 110/2019 Coll., on the Processing of Personal Data, as amended, and Regulation (EU) 2016/679 of the European Parliament and of the Council, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, commonly referred to as the General Data Protection Regulation (“GDPR”), as well as other applicable legal regulations.

In this Personal Data Processing Statement, we would like to inform you about how we process your personal data.

I. Basic Provisions

The operator of this website and the controller of personal data within the meaning of Article 4(7) of Regulation (EU) 2016/679 (GDPR) is:

Jan Frydrych
registered office: Trutnov, Czech Republic
Business ID No.: 21221090
trading under the business name Elegant Web
(hereinafter referred to as the “Controller”).

2. Type and Source of Personal Data Processed

We process the personal data of data subjects primarily for the purpose of preparing or fulfilling contractual and legal obligations arising from our business activities, so that we can provide our services to clients. Where we act as a processor of personal data, the purpose and means of processing are determined by the relevant controller.

Processing means any operation or set of operations performed on personal data, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

We obtain the personal data we process directly from our clients during the provision of our services or, where applicable, through the monitoring of their activity on our website. In some cases, we may also process personal data obtained in accordance with applicable data protection laws from publicly available sources, such as public registers, commercial registers or other official records.

3. Purposes of Processing by the Controller and Legal Bases for Processing

Where we act as the controller of personal data, we process personal data only for permitted purposes and in accordance with applicable legal regulations.

3.1 Processing of Personal Data for the Performance of Contractual Obligations

We process personal data for the purpose of fulfilling our contractual obligations towards our clients or for taking pre-contractual steps at the request of clients.

In such cases, we process personal data primarily for the purpose of ensuring the provision of ordered services, in particular on the basis of reservation agreements, purchase agreements, contracts for work, intermediary agreements and similar contractual arrangements.

The personal data processed for these purposes mainly includes contact details, such as first name, surname, address, telephone number, email address and bank details.

3.2 Processing of Personal Data for Legitimate Interests

We also process personal data where it is necessary for the purposes of the legitimate interests pursued by the Controller. These interests include, but are not limited to:

  • client care and handling of complaints;
  • measures aimed at improving our services and strengthening relationships with clients, such as client satisfaction surveys, development and improvement of website content, and website traffic measurement;
  • protection of the Controller’s rights in the event of a legal dispute relating to the services provided;
  • ensuring the security of the Controller and its services.

For these purposes, we may process personal data that we have available, including contact details, data obtained through cookies and similar technical identifiers, and other data necessary for the above purposes.

3.3 Processing of Personal Data Based on Consent

In certain cases, we process your personal data where you have given us your consent to do so. You may withdraw your consent at any time. However, the withdrawal of consent does not affect the lawfulness of any processing carried out before the withdrawal.

3.4 Processing of Personal Data for Compliance with Legal Obligations

We are required to process certain personal data in order to comply with legal obligations imposed on the Controller. These obligations may arise from the laws of the Czech Republic as well as from applicable European Union legislation. Such obligations may include, in particular, obligations to retain, store, report or collect information for control purposes by competent public authorities or other authorised bodies.

3.5 Information on Changes of Purpose

If we ever process your personal data for a purpose other than the purpose for which it was originally collected, we will inform you of this new purpose in accordance with applicable legal regulations.

4. Purposes of Processing Where We Act as a Processor

If we process personal data as a processor, the purpose and means of such processing are always determined by the relevant personal data controller. Even in such cases, we comply with all applicable legal regulations relating to the processing of personal data and ensure an appropriate level of security for such data.

We do not conceal the purpose for which personal data is collected and further processed.

5. Recipients of Personal Data

In some cases, personal data may be made available to third parties acting as processors, in particular to external suppliers, providers of technologies used by the Controller, or, to the extent necessary, legal or tax advisers.

In addition, we may disclose personal data to other recipients where we are required to do so by law. In all other cases, we will disclose your personal data to third parties only where you have given us the relevant consent or where another lawful basis applies.

6. Transfers to Third Countries or International Organisations

We do not transfer your personal data to recipients in countries that do not provide an adequate level of personal data protection, unless such transfer is permitted under applicable legal regulations and appropriate safeguards are in place.

7. Retention Periods for Personal Data

We process personal data for the purpose of fulfilling contractual obligations only for as long as necessary to fulfil those obligations. Once the data is no longer necessary for that purpose, it is generally erased.

In order to comply with certain legal obligations or to protect the legitimate interests of the Controller, certain data may need to be retained even after the termination of the contractual relationship.

When assessing the retention period for personal data, we take into account the periods laid down by applicable legal regulations. If the retention period is not expressly stated in this document or prescribed by law, we determine the appropriate retention period in particular with regard to limitation periods, a reasonable reserve period to determine whether a claim or other legal proceedings have been initiated, the likelihood of legal claims being raised against the Controller, expected periods for detecting attacks on our network or other security breaches, standard practices, recommendations of supervisory authorities, and the likelihood and seriousness of potential risks.

8. Obligation to Provide Personal Data

You generally provide personal data to us voluntarily. However, the provision of certain personal data may be necessary in order to use our services. Where there is a legal obligation to provide personal data, we will always inform you of this fact.

9. Automated Decision-Making and Profiling

We do not use automated decision-making or profiling within the meaning of Article 22 GDPR where such decision-making would have legal effects concerning you or similarly significantly affect you.

10. Use of Cookies and Website Analytics

Cookies are small data files or short text files that are stored in the web browser of visitors to the Controller’s website. We use cookies on our website to improve its functionality, evaluate website traffic and optimise our marketing activities.

Cookies are not used to directly identify website visitors and do not, by themselves, enable such identification.

Where required by applicable law, non-essential cookies are used only on the basis of your consent. You can manage or withdraw your consent at any time through the cookie settings available on our website.

11. Use of Social Plugins

The Controller’s website may contain social plugins provided by third parties, which allow visitors to share content with their friends and other contacts. These may include, in particular:

  • a Facebook plugin operated by Meta Platforms, Inc., 1601 Willow Road, Menlo Park, CA 94025-1452, USA;
  • an Instagram plugin operated by Meta Platforms, Inc., 1601 Willow Road, Menlo Park, CA 94025-1452, USA;
  • a LinkedIn plugin operated by LinkedIn Ireland Unlimited Company, Wilton Place, Dublin, Ireland.

These social plugins are not operated by us. The Controller is therefore not responsible for any processing of personal data carried out by the operators of these plugins or by the websites to which they refer, nor for their functionality or for any damage they may cause.

12. Your Rights in Connection with the Processing of Personal Data

In connection with the processing of personal data by the Controller, data subjects have the following rights under the GDPR, within the limits laid down by law:

  • the right to receive information about the processing of personal data;
  • the right of access to personal data;
  • the right to rectification or erasure of personal data;
  • the right to restriction of processing;
  • the right to data portability;
  • the right to object to processing;
  • the right to lodge a complaint with a supervisory authority.

The supervisory authority in the Czech Republic is the Office for Personal Data Protection, with its registered office at Pplk. Sochora 27, 170 00 Prague 7, Czech Republic. Its official website is uoou.cz.

If we receive a request under this section, we will inform the applicant of the measures taken without undue delay and in any event within one month of receiving the request. This period may be extended by up to two additional months where necessary, taking into account the complexity and number of requests.

The Controller is not obliged to comply with a request where the request is manifestly unfounded or excessive, in particular because it is repetitive. In such cases, the Controller may charge a reasonable fee taking into account the administrative costs of providing the requested information or may refuse to act on the request.

Where the Controller has reasonable doubts concerning the identity of the applicant, the Controller may request additional information necessary to confirm the applicant’s identity.

You also have the right to withdraw your consent to the processing of personal data at any time. The withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.

13. Contact Details

If you have any questions regarding the processing of personal data or wish to exercise any of your rights set out in this statement, you may contact the Controller by email at info@elegantweb.agency or at the address V Ráji 20, Adamov, Trutnov, Czech Republic.