Personal Data protection
Personal Data protection at DATALAN Quality Instruments s.r.o.
Valid as of 25.5.2018
We, DATALAN Quality Instruments s.r.o., with our Registered Office in Púchovská 8, 831 06 Bratislava – Rača, Corporate ID (IČO): 31 403 964, registered in the Commercial Register maintained by the District Court in Bratislava I, Section Sro, Registration File 9708/B respect our clients, suppliers, business partners and all persons with whom we communicate in the course of our business. We honour mutual trust and strive to adhere by all legislative rules including, in particular, those dealing with protection of personal data and privacy of the persons involved; thus, we apply in the fullest extent the requirements contained in the General Data Protection Regulation (“GDPR”).
In this text, you will find information concerning processing of personal data, i. e. information concerning the manner in which we obtain and process personal data when we provide our services.
Should there be any question or non-clarity, please do not hesitate to contact us through gdpr@dqi.sk or over the telephone at +421 2 323 70 101, or write to our address: DATALAN Quality Instruments s.r.o., Púchovská 8, 831 06 Bratislava – mestská časť Rača.
What Are Personal Data
Personal data are any information relating to an identifiable natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
What Does Processing of Personal Data Mean
Processing of personal data means any operation or set of operations which is performed on personal data, whether or not by automated means, such as collection, organisation, storage, review, retrieval, use, making available, erasure or destruction.
Who Processes Personal Data
The controller of personal data is DATALAN Quality Instruments s.r.o., with our Registered Office in Púchovská 8, 831 06 Bratislava – Rača, Corporate ID (IČO): 31 403 964, registered in the Commercial Register maintained by the District Court in Bratislava I, Section Sro, Registration File 9708/B.
Types of Processing Activities We Carry Out
As part of our business activities, we process personal data for a variety of purposes and objectives. When accepting orders and requests for our services through our website, the collected personal data are processed in particular through the following processing activities:
Registration of Users on the Website
Processing Activity | Registration of users on the portal online.h3d.sk. |
Purpose/ Objective | Establishment and maintenance of customer’s personal profile, including an overview of orders.
|
Legal Grounds | Legitimate interest under Article 6(1)(f) of GDPR. Legitimate interest corresponds to creation of a user account that cannot be done without collection of personal data.
|
Scope of Data | Identifying data in the following scope: title, name, surname, e-mail address, telephone number, affiliation with a business identified through business name, VAT Reg. Number; registered office/place of business or permanent residence; job position – all these data are required for your registration.
|
Data Subjects | Registered users of our company’s website and our registered customers.
|
Term of Storage of Personal Data
| As long as you are registered on portal online.h3d.sk |
Supplementary Information | Disclosure of your personal data to us in the above scope and for the above purpose is neither a statutory nor contractual obligation.
|
Marketing activities
Processing Activity | Marketing aimed at registered users and former and/or existing customers
|
Purpose/ Objective | Delivery of information on news, current offers, mailing of newsletters |
Legal Grounds | Legitimate interest under Article 6(1)(f) of GDPR. Legitimate interest corresponds to supporting and developing business activities, and acquisition of new customers
|
Scope of Data | Identifying Data in the following scope: title, name, surname, e-mail address, telephone number, affiliation with a business identified through business name
|
Data Subjects | Our customers and prospective customers and/or employees, representatives, or contact persons of our customers and prospective customers
|
Term of Storage of Personal Data
| Up to three (3) years of the end of the year in which an order for services was executed, or in which registration on online.h3d.sk was created
|
Supplementary Information | Disclosure of your personal data to us in the above scope and for the above purpose is neither a statutory nor contractual obligation.
|
Performance of Contract
Processing Activity | Performance of obligations under the contract and communication with clients/customers in the contract performance process
|
Purpose/ Objective | Delivery of ordered services, identification of contractual partners and identification of and communication with contractual partners
|
Legal Grounds | Performance of contractual (including pre-contractual) obligations under Article 6(1)(b) of GDPR.
|
Scope of Data | Customers’ data:
payment information, and other data collected in the course of performance of the contract and handling of orders
|
Data Subjects | Customers and/or their employees, representatives and points of contact
|
Term of Storage of Personal Data
| During the term of the contractual relationship and additional five (5) years of its termination |
Supplementary Information | Disclosure of personal data to us in the above scope and for the above purpose is a statutory and/or contractual obligation.
|
Compliance With Legal Obligations for Accounting Purposes
Processing Activity | Maintenance of accounting |
Purpose/ Objective | Preparation of tax documents and maintenance of accounting according to applicable legal regulations
|
Legal Grounds | Compliance with a legal obligation pursuant to Article 6(1)(c) of GDPR
|
Scope of Data | Identification data in the following scope: title, name, surname, telephone number and e-mail address of the point of contact, and name, surname, business name and place of business of a business partner, Corporate ID (IČO), Tax ID (DIČ) and VAT Reg. No, (IČ DPH).
|
Data Subjects | Customers and/or their employees, representatives and points of contact
|
Term of Storage of Personal Data
| Ten (10) years of the end of the calendar year in which an accounting proof was created |
Supplementary Information | Disclosure of personal data to us in the above scope and for the above purpose is a statutory obligation.
|
Who Can Access Your Personal Data
Your personal data will be accessed by DATALAN Quality Instruments s.r.o. employees. However, personal data may be provided and/or made accessible to a company providing to us cloud and webhosting services, and also to our supplier of accounting services.
Transfer of Data to Other Countries
At the moment, we neither transfer nor plan to transfer personal data to third countries.
Your Rights In Your Capacity As Data Subject
We believe that exercise of the rights guaranteed to data subjects under GDPR enhances the trust of our customers and their representatives that we process personal data in a lawful manner. Thus, you are entitled to exercise the following rights:
- Right of access to data: The data subject shall have the right to obtain from the controller confirmation as to whether or not personal data concerning him or her are being processed. This right is associated with the right of gaining access to such data and obtaining the related information.
- Right to rectification: The data subject shall have the right to obtain from the controller without undue delay the rectification of inaccurate, incomplete or outdated personal data concerning him or her, regardless of the reason of the occurrence of the inconsistency.
- Right to erasure: The data subject has the right to request that we discontinue processing and erase all personal data, provided that the conditions set out by GDPR have been satisfied. This applies in particular where personal data are no longer needed for the purposes for which they have been obtained, or the data subject has successfully objected to the processing.
- Right to restriction of processing: The data subject has the right to obtain from the controller restriction of processing if, for example, there are doubts as to the accuracy of the personal data, for a period allowing for the verification of the accuracy of the personal data.
- Right to data portability: Data subjects have the right to request the transmission of their personal data that are being subjected to processing in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller or to themselves. The exercise of this right does not affect the provision or delivery of services.
- Right to object: Data subjects have the right to object to processing of personal data that are being processed on legal grounds of legitimate interest, including to object to processing of personal data for direct marketing purposes on the grounds of legitimate interest. In such a case, we will no longer process personal data, unless we prove the necessity of the processing through the proportionality test.
- Right to withdraw consent: Data subjects have the right to withdraw the consent to processing of their personal data at any time, if those personal data are subjected to processing under the data subject’s consent.
Where you can exercise your rights
Data subjects may exercise their rights through e-mails sent to: gdpr@dqi.sk, or by a letter addressed to DATALAN Quality Instruments s.r.o., Púchovská 8, 831 06 Bratislava – mestská časť Rača.
Contact information of the supervisory authority
Data subjects have the right to file a compliant relating to processing of personal data to the Office For Personal Data Protection:
Úrad na ochranu osobných údajov Slovenskej republiky
(Office For Personal Data Protection of the Slovak Republic)
Hraničná 12
820 07 Bratislava 27
Slovenská republika
IČO: 36064220
e-mail: statny.dozor@pdp.gov.sk
Security is on our mind
Protection of personal data is not just a formality to us. In order to secure both protection of personal data and comfort to data subjects, we have implemented a variety of safety, technical and organizational measures. We keep updating all these measures to prevent, in a maximum possible extent, any security incidents.
We use encryption when we transit personal data and processing itself occurs within a protected VPN.
Having regard to ongoing development of our activities or changes in the environment, we reserve the right to amend or modify these conditions at any time and in any scope. Should we subject these conditions to any significant modifications, we will keep you updated either directly on this website or through an e-mail sent to your address.