GDPR
Personal data protection policy
We try to respect your privacy by complying with all applicable regulations relating to data protection, including Act No. 18/2018 Coll. on the protection of personal data and on the amendment of certain laws (hereinafter referred to as the „Law“) in connection with the Regulation of the European Parliament and the Council no. 2016/679 on the protection of personal entity in the processing of personal data and on the free movement of such data (hereinafter referred to as „GDPR“). In this context, we have adopted appropriate technical, organizational and personnel measures, with which we ensure the protection of your personal data.
This policy is intended to inform you on which of your personal data we process, or what personal data you provide to us through this website. Please read the following carefully to understand our practices regarding the protection of your personal data.
Identification of the controller:
Deismartes, s.r.o. Kopcianska 10, Bratislava-Petrzalka 851 01
ICO: 47 521 309, company registered in the commercial register of the Municipal Court Bratislava III, insert no. 94257/B
e-mail: hricova@deismartes.com webpage: https://deismartes.com
(hereinafter also referred to as „the company“)
What personal data do we process?
In the execution of our activities, including the operation of this website, the company obtains certain information related to identified personal entity (or information that can potentially identify personal entities) provided by such personal entities as users of this website, directly (e.g. contact details) or indirectly (e.g. IP address).
We will process personal data for the following purposes, on the relevant legal basis specified for each of the purposes:
New client
| Processed personal data | Purpose | Legal basis |
| Your name and surname, correspondence address, telephone contact, e-mail, the data necessary for the invoice | Preparation of the service contract | Contract |
Answering and handling of questions and requests
| Processed personal data | Purpose | Legal basis |
| Your contact data, such as name and surname, email address, telephone and other information or data, which you provide us with in our correspondence, depending on the communication channel, through which you contact us | Answering your requests for information / other requests via electronic correspondence (e-mail) or in paper form. | Legitimate interest of the controller |
Automatic decision making and automatic profiling
Personal data are not subject to automatic decision-making, including profiling.
Who do we share your personal data with?
The personal data mentioned above may be made available or sent to third parties in the following, very limited situations:
- Foreign police
- Labour office
- Slovak embassies and consulates worldwide
- District offices, Tax offices, Custom offices, health insurance companies Dôvera, VsZP and Union
- Ministry of Foreign Affairs
- Translators
- Supervisory authorities, auditors or institutions authorized to carry out inspections of the association’s activities or assets, which request the association to provide information in accordance with its legal obligations
- within the framework of fulfilling legal requirements or protecting the rights/legitimate interests and property of the company or other entities, such as in the case of legal proceedings.
Transfer of personal data abroad
In the context of the processing activities described above, your personal data may be transferred abroad, i. e. to the states of the European Union („EU“) or the European Economic Area („EEA“). We hereby inform you that any transfer of your personal data carried out by a company in EU or EEA member state will be carried out in accordance with the legal requirements of the Act and the GDPR.
The transfer of personal data to third countries will only take place if, according to the Commission’s decision, the third country guarantees an adequate level of protection, or the controller (intermediary) has provided adequate guarantees of personal data protection.
How long do we keep your personal data?
We will only retain your personal data for as long as is necessary to fulfil the purposes of processing your personal data as described above. In the event that the company determines that it has a legitimate interest or legal obligation to continue to process your personal data, including for other purposes, we will duly inform you in advance.
We estimate that the processing activities with personal data described above will require the retention of data for the following periods:
| Purpose | Duration |
| New client | During admission period |
| Answering and handling of questions and requests | Maximum one year, or until the limitation period for bringing claims expires |
Processing of personal data of persons under the age of 16
Any processing of personal data shall only apply to persons over the age of 16. The use of the systems or the results of the processing is prohibited for persons under the age of 16 without the consent of their legal representative. If, despite our reasonable efforts to prevent it, personal data of persons is processed in violation of this provision, we will proceed to terminate the processing of personal data immediately upon such discovery.
Security of data processing
In connection with the processing of your personal data, we declare that we have taken appropriate technical, organisational and personnel measures to ensure the protection of your personal data, including the continuous evaluation and updating of security measures to ensure the secure processing of your personal data.
Rights of data subjects
You have the following rights in the context of the processing of your personal data:
- withdraw consent to the processing of personal data at any time,
- obtain confirmation from the company as to whether personal data relating to you is being processed and, if so, you have the right to obtain access to that personal data, information about the processing of the personal data and a copy of the data,
- for the company to correct incorrect personal data relating to you without undue delay,
- the right to erasure,
- the right to restrict the processing of personal data,
- the right to data portability, i.e. the right to obtain the personal data relating to you which you have provided to the company in a structured, commonly used and machine-readable format and the right to transfer that data to another controller,
- object at any time, on grounds relating to a particular situation, to processing of personal data concerning you which is carried out on the basis of legitimate interest, including objecting to profiling,
- the right not to be subject to a decision which is based solely on automated processing, including profiling, and which has legal effects concerning you or similarly significantly affecting you,
- lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work or place of the alleged infringement, if you consider that the processing of personal data concerning you is in breach of the GDPR. For the territory of the Slovak Republic, the supervisory authority is the Office for Personal Data Protection of the Slovak Republic, Hranicna 12, 820 07 Bratislava 27, tel: +421 2 3231 3214, e-mail: dozor@pdp.gov.sk.
Options for exercising rights
In order to protect the rights of data subjects and to prevent possible misuse or leakage of personal data, the rights of the data subject can only be exercised in the following ways:
- in person at the address of the company
- by postal mail sent to the address of the company’s registered office
- by e-mail to: hricova@deismartes.com
In order to accept a request for the exercise of rights, it is necessary to sufficiently identify the applicant and clearly and comprehensibly specify the subject of the request. Otherwise, the request may be rejected.
Updates to this Privacy Policy
The Company may change or update this Privacy Policy as necessary at any time by posting an updated version on the Website.
