Terms of personal data protection

I. Basic provision

  1. The controller of personal data pursuant to Article 4 (7) of Regulation (EU) of the European Parliament and of the Council 2016/679 on protection individuals with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as "GDPR") is COLORprofi, spol s r.o, IČ: 46982621 with its registered office at Chrudichromská 2403/16, 680 01 Boskovice (hereinafter: "administrator").

  2. The contact details of the administrator are

    • address: COLORprofi, spol s r.o, Chrudichromská 2403/16, 680 01 Boskovice

    • e-mail: info@colorprofi.cz, telefon: +420 516 454 538

  3. Personal data means any information identified or identifiable natural person; an identifiable natural person is a natural person who can directly or indirectly identify, in particular by reference to a specific identifier, such as name, identification number, location data, network identifier or to one or more specific physical, physiological, genetic, mental, economic, cultural or the social identity of that natural person.

  4. The administrator did not appoint a data protection officer.

II. Legal reason for processing personal data

  • The legal reason for processing personal data is the performance of the contract between you and the administrator according to Article 6 (1) (a) b) GDPR. (hereinafter referred to as “Performance of the Contract”) - processing is necessary for the performance of the contract whose is a contracting party data subject, or for the implementation of measures taken before the conclusion of the contract upon request this data subject.

  • legitimate interest of the administrator in the provision of direct marketing (especially for sending commercial communications and newsletters) pursuant to Article 6 (1) (a) f) GDPR

  • There is no automatic individual decision by the administrator within the meaning of Article 22 GDPR.

III. Purpose of processing, categories and sources of personal data

Legal reason Purpose Data Data Source Recipients of personal data (processors)
Performance of the contract Order fulfillment or response to a request sent via the contact form Client personal data, contact and client identification data Contact form, order providing web / e-shop services, subcontractors
Legitimate interest Providing direct marketing (especially for sending business messages and newsletters *) Client contact information Order information Mailing Services
Legitimate interest Routine traffic analysis and prevention of server fraud and attacks Pseudo-anonymized identifiers of registered users as UserID, IP addresses Register and create an anonymized user ID, view the error page Web User Tracking Services

* Direct marketing (legitimate interest)

  • If you become our customers, the processing of personal data may also include newsletter sending and commercial communications for direct marketing purposes. These will contain especially special ones promotions and discounts.

  • We will send direct marketing messages only to a reasonable extent (usually once per month, maximum 3 times monthly) and only if we have reason to believe that you may be interested in the offer.

  • You may refuse to process your personal data for direct marketing purposes at any time and it will not affect to our other mutual relations. Just click on the logout link in the received business communicate or to us send an e-mail with the relevant request to the address from which you received the business from us communication.

IV. Data retention period

  1. The administrator stores personal data

    • In case of demand, we manage the personal data contained in the form only for the purpose answers or settlement your question or demand / only for the duration of the contract negotiations / for a maximum of 1 year from your demand, unless you consent to further processing.

    • In the case of an order for the time necessary to exercise the rights and obligations arising from the contractual relationship between You and the Administrator and the assertion of claims under these contractual relationships. (for 15 years since the end contractual relationship).

    • as long as disagreement with the processing of personal data for the purposes is expressed direct marketing /log out from the newsletter /

  2. After the retention period of personal data, the administrator will delete the personal data.

V. Recipients of personal data (administrator's subcontractors)

  1. The recipients of personal data are persons

    • providing web / e-shop services (Alexandr Zlesák, DiS. - AZ Computers, ID 70163278) a other services in connection with the operation of the website / e-shop

    • The data subject's personal data may be for the purposes of proper performance of the contract provided to the provider delivery services, as well as to persons provided by administrators with legal, accounting and IT services of interest ensuring the proper fulfillment of the obligations laid down by generally binding legal regulations. Admin does not have v intends to transfer the personal data of the data subject to a third country, an international organization or other than above to those third parties.

VI. Your rights

  1. Under the conditions set out in the GDPR, you have

    • the right of access to their personal data pursuant to Article 15 of the GDPR,

    • the right to correct personal data according to Article 16 of the GDPR, or restrictions on processing according to Article 18 of the GDPR,

    • the right to delete personal data pursuant to Article 17 of the GDPR,

    • the right to object to processing under Article 21 of the GDPR a

    • the right to data portability according to Article 20 of the GDPR.

  2. You also have the right to file a complaint with the Office for Personal Data Protection if you you think it was violated your right to personal data protection.

VII. Terms of personal data security

  1. The administrator declares that he has taken all appropriate technical and organizational measures to security of personal data.

  2. The administrator has taken technical measures to secure data repositories and personal repositories data in paper form, especially passwords, antivirus program, backup, locking.

  3. The administrator declares that only persons authorized by him have access to personal data.

VIII. Final provisions

  1. By submitting an order from the online order form or inquiry from internet demand form, you confirm that you are familiar with the terms of personal data protection and that it is in in full you accept.

  2. The administrator is entitled to change these conditions. New version of the terms of personal data protection publish on their website.


These conditions take effect on May 25, 2018.

Váš prohlížeč (Internet Explorer) je zastaralý.

Již nevydává pro systém Windows žádné aktualizace. Stáhněte si jeden z těchto aktuálních, svobodných a vynikajících prohlížečů: