General Data Protection Regulation for individuals in microHAM s.r.o.
Our company, microHAM s.r.o. located at Maticna 28, 92401 Galanta, Slovak Republic, processes your personal data as an administrator, and thus we determine how, for what purpose and for how long the personal data will be processed.
We Sincerely Declare
that as the administrator of your personal data we meet all statutory obligations required by valid legislation, in particular by the Personal Data Protection Act and the GDPR. In particular:
•we fulfill the information obligation before the processing of personal data as per the Article 13 of the GDPR,
•we will process your personal data only on the basis of a valid legal reason, in particular legitimate interest, contract performance, legal obligations or consent given by you,
•we will provide you full co-operation and support in the exercise of your rights as per the Personal Data Protection Act and the GDPR,
•we will use all the available modern technologies known to us to the greatest extent possible to protect your personal information. We have accepted, maintain and constantly improve all possible measures to prevent the misuse, damage or destruction of your personal data.
What Personal Data Are We Processing, For What Purpose And For How Long?
We process your personal data that you provide to us for the following reasons:
Products sale, provision of services and contract performance
Your personal data, i.e. billing information, email, telephone, correspondence address, necessarily needed to fulfill the contract (delivery of goods and services).
Accounting
If you are our customer, we necessarily need your personal data (billing information) because we are legally required to issue, record and archive tax documents.
Photos and video recordings
At some of our events, we produce photographic documentation or video footage to promote our newsletter. These pictures do not include names of the people, except for a reference on the basis of consent. If you do not want to be on the records, please let us know using our contact details prior the event. Of course, we will also remove these photos or videos as per your additional request. We retain your personal information during the limitation period unless the law states otherwise or we have stated otherwise in specific cases.
Cookies
When visiting our website, we record your IP address, how much time you spend on the site, and which site you are coming from. We consider the use of cookies to measure our site traffic and personalize our site view as our legitimate administrator interest because we believe it helps us offer you better services. You can disable cookies in your Internet browser on your computer. See the instructions for the relevant Internet browser.
Provision of Personal Data to Third Parties
Our employees and co-workers who are bound by confidentiality and training in the area of personal data protection have access to your personal data. We can do most of the processing operations on our own. However, we use third-party services and applications that are specialized in the given processing and comply with the GDPR to provide some specific actions we cannot provide on our own.
They are the providers of these services and platforms:
•webglobe.sk - operation of web and e-shop, hosting of our domains
•santu.com - payment gateway
•shopfactory.com - e-shop processing
•paypal.com - credit card processing
•google.com - Google Analytics (anonymous statistics on the traffic and usage of our site), Google Adwords
•Shipping companies for the goods delivery (DHL, EMS, TNT/FedEx, UPS)
We may decide to use third-party services and applications in the future. We will, however, surely have at least the same demands on security and quality of processing (with regard to GDPR) as on ourselves.
Providing Data outside the EU
We process personal data only in the European Union or in countries that provide an adequate level based on a European Commission decision.
What Are Your Rights Regarding the Personal Data Protection?
You have broad rights in relation to the protection of personal data. You have:
•Right to be informed – we are already fulfilling it with this document itself
•Right of access - you can ask us to provide the information on what kind of personal information about you we keep and why. We will respond to you as soon as possible, but not later than within 30 days.
•Right to rectification – you can ask us to add or change your data
•Right to erasure - upon request, we will delete your personal information, which we are not obliged to archive on other legal bases (e.g. Accountancy Act, Value Added Tax Act, etc.).
•Right to restrict processing – in case you do not want to delete all the data, but you just want to limit their scope or purpose for which we process them as well as the retention period.
•Right to object to data processing - in some cases we may process your personal information without your consent based on our so-called legitimate interest. You have the right to raise objections.
•Right to data portability – you have the right to request all your personal data we process about you.
•Right to complaint – if you feel that we do not handle your personal details in accordance with the law, you may file a complaint either directly with us or the relevant Data Protection Authority.
Confidentiality
We want to assure you that our employees and co-workers who are in any way processing your personal data are required to maintain confidentiality about personal data and security measures whose disclosure would jeopardize the security of your personal information. This confidentiality persists even after you end a business or employment relationship with us.