I. Basic Provisions

The controller of the personal data pursuant to Article 4(7) of Regulation (EU) 2016/679 of the European Parliament and of the Council (hereinafter referred to as “GDPR”) is [Company name], registration number: [Company registration number], with its registered office at [Company registered office] (hereinafter referred to as “Controller”).

The contact details of the controller are:
Name and surname of the data protection officer: [Name and surname]
Address of the data protection officer’s registered office: [Address]
E-mail address: info@kamagra-blog.info
Telephone number: [Telephone]

Personal data means any information relating to an identified or identifiable natural person, an identifiable natural person being one who can be identified, directly or indirectly, in particular by means of an identifier such as a name, an identification number, location data, a network identifier or one or more specific elements characterising the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

The controller has appointed a Data Protection Officer (DPO). The contact details of the DPO are the same as those of the controller.

II. Sources and categories of personal data processed

The controller processes personal data provided directly by the data subject or obtained in connection with the implementation of the contractual relationship, in particular for the purpose of fulfilling obligations under the order.

The categories of personal data processed include mainly identification and contact data and data necessary for the purpose of fulfilling contractual obligations.

III. Legal title and purpose of processing

The legal basis for the processing of personal data is:

  • the performance of a contract between the controller and the data subject pursuant to Article 6(1)(b) of the GDPR,
  • the legitimate interest of the controller in carrying out direct marketing, including sending commercial communications and newsletters, in accordance with Article 6(1)(f) of the GDPR,
  • consent of the data subject pursuant to Article 6(1)(a) GDPR in connection with Section 7(2) of Act No. 480/2004 Coll., unless the processing is related to the performance of a contract.

The purpose of processing personal data is:

  • the implementation and execution of the order, including the exercise of rights and obligations arising from the contractual relationship, where personal data necessary for the performance of the contract are required, in particular identification and contact data,
  • implementation of marketing activities, in particular sending commercial communications.

The controller points out that there is automated decision-making pursuant to Article 22 of the GDPR for which the data subject has given his or her explicit consent.

IV. Retention period of personal data

Personal data will be kept for the time necessary to fulfil the purposes of processing, in particular:

  • for the duration of the contractual relationship and for a period of 15 years from the date of its termination, for the purpose of asserting legal claims,
  • for the period of validity of the consent to the processing of personal data for marketing purposes, but no longer than 2 years from the date of its granting, unless the consent is withdrawn.

After these periods, the personal data will be deleted or anonymised in a way that prevents further processing.

V. Recipients of personal data

The recipients of personal data are:

  • contractors providing goods, services or payments,
  • entities providing IT and technical support for the operation of services,
  • marketing service providers.

The controller may also transfer personal data to third countries outside the EU, in particular to cloud service providers and mailing platforms.

VI. Rights of the data subject

In accordance with the GDPR, the data subject has the following rights:

  • the right of access to personal data under Article 15 GDPR,
  • the right to rectification of incorrect or incomplete data pursuant to Article 16 GDPR,
  • the right to restriction of processing pursuant to Article 18 GDPR,
  • the right to erasure of personal data (right to be forgotten) under Article 17 GDPR,
  • the right to object to processing under Article 21 GDPR,
  • the right to data portability under Article 20 of the GDPR,
  • the right to withdraw consent to data processing at any time by written or electronic notification to the contact details of the controller.

The data subject also has the right to lodge a complaint with the supervisory authority, i.e. the Office for Personal Data Protection.

VII. Measures for the security of personal data

The controller shall take all reasonable technical and organizational measures to ensure the protection of personal data against unauthorized access, loss, destruction or misuse, including the implementation of antivirus programs, the secure storage of backups, the control of access rights and the use of firewalls.

Only persons authorised by the controller and committed to confidentiality have access to personal data.

VIII. Final Provisions

By submitting an order via the online form, the data subject confirms that he/she has read the terms and conditions of personal data protection and agrees to them in full.

Consent is given by actively checking the appropriate box in the electronic form.

The Controller reserves the right to amend these data protection terms and conditions, and the current version will be published on the Controller’s website or sent to the e-mail address provided by the data subject.

These terms and conditions shall take effect on 04.06.2023.