Privacy Policy

1.1. The controller of personal data pursuant to Article 4(7) of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as “GDPR”) implemented under Act No. 18/2018 Coll. on the protection of personal data and on the amendment of certain laws (hereinafter referred to as the “Personal Data Protection Act”) is:

Business Name: EM BAU Group s.r.o. With registered office at Lermontovova 911/3, 811 05 Bratislava, Slovak Republic. Business ID (IČO): 46543015, Tax ID (DIČ): 2023431905.

Contact details of the Controller:

EM BAU group s.r.o.

Lermontovova 911/3

811 05 Bratislava

Business ID (IČO): 46543015

Email: info@embau.eu

Phone: +421 944 321 330

Phone: +421 917 823 716

1.2. Personal data means data concerning an identified or identifiable natural person, which can be identified directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

1.3. A data subject is any natural person whose personal data are processed.

CATEGORIES OF PROCESSED PERSONAL DATA

2.1. EMBAU processes the following personal data of data subjects, respectively categories of personal data:

Identification and address data: e.g., name, surname, delivery address, billing address, registered office address, business ID (IČO), tax ID (DIČ); Electronic contact details: e.g., telephone number, email address; Other electronic data: IP address, cookies, identifiers in social networks, location data of the device used by the customer, etc.; Other personal data related to the contractual relationship: bank account number, data on the use of our services;

LEGAL BASIS FOR PROCESSING PERSONAL DATA

3.1. The legal basis for the processing of personal data is:

Performance of a contract between the data subject and the Controller pursuant to Article 6(1)(b) of the GDPR, Legitimate interest pursued by the Controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, especially if the data subject is a child (particularly for sending commercial notifications and newsletters) pursuant to Article 6(1)(f) of the GDPR, Your consent to the processing of personal data for the purpose of providing direct marketing (especially for sending commercial notifications and newsletters) pursuant to Article 6(1)(a) of the GDPR.

PURPOSE OF PROCESSING PERSONAL DATA

4.1. The purpose of processing personal data is to fulfill the order of the data subject and perform the rights and obligations arising from the contractual relationship between the Controller and the data subject; personal data required for successful order processing are requested during the order (name and address, contact information); providing personal data is a necessary requirement for concluding and fulfilling the contract, without providing personal data, it is not possible for the Controller to conclude the contract or fulfill it, sending commercial notifications, and performing other marketing activities.

DATA RETENTION PERIOD

5.1. The Controller retains personal data for the period necessary to perform the rights and obligations arising from the contractual relationship between the Controller and the data subject, and in asserting claims from these contractual relationships until consent to the processing of personal data for marketing purposes is revoked, if personal data is processed based on consent but for a maximum period of 10 years.

RECIPIENT OF PERSONAL DATA

6.1. Recipients of personal data are persons involved in the delivery of goods/services/payment execution based on the contract, providing services for the operation of the e-shop and other services related to the operation of the e-shop, providing marketing services. The website creation service was provided to us by the company Adatelier.

DATA SUBJECT RIGHTS

7.1. Subject to the conditions set out in the Personal Data Protection Act and in connection with Section 19(2)(b), you, as the data subject, have the right to:

The right of access to your personal data pursuant to Section 21 of the Personal Data Protection Act, The right to rectification of personal data pursuant to Section 22 of the Personal Data Protection Act, The right to erasure of personal data pursuant to Section 23 of the Personal Data

Protection Act, The right to restriction of processing pursuant to Section 24 of the Personal Data Protection Act, The right to data portability pursuant to Section 26 of the Personal Data Protection Act, The right to object to the processing of personal data pursuant to Section 27 of the Personal Data Protection Act, The right to withdraw consent to the processing of personal data concerning you at any time. Withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. The data subject may revoke consent in the same manner as consent was given, in writing or electronically to the address or email of the Controller specified in Article I of these terms.

7.2. Furthermore, you have the right to lodge a complaint with the Office for Personal Data Protection if you believe that your right to personal data protection has been violated.

CONDITIONS FOR ENSURING THE SECURITY OF PERSONAL DATA

8.1. The Controller declares that it has taken all appropriate technical and organizational measures to ensure the security of personal data.

8.2. The Controller has taken technical measures to secure data repositories and repositories of personal data in paper form.

8.3. The Controller declares that only persons authorized by it have access to personal data.

COOKIES

9.1. If you leave a comment on our site, you may opt-in to saving your name, email address, and website in cookies. This is for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

9.2. If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

9.3. When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

9.4. If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

FINAL PROVISIONS

10.1. By submitting an order via the online order form, you confirm that you are familiar with and accept the terms of personal data protection in their entirety.

10.2. By checking and submitting the online form, you agree to these terms. By submitting consent, you confirm that you are familiar with and accept the terms of personal data protection in their entirety. The Controller is authorized to change these terms. The new version of the personal data protection terms will be published on its website.