Processing of personal data

The company SOFICO-CZ, a.s., with its registered office at T. G. Masaryka 64/12, 568 02, Svitavy - Předměstí, ID: 27509893 (hereinafter referred to as "the Company") ensures compliance with all personal data protection principles as outlined in the Regulation of the European Parliament and Council of the EU 2016/679 on the protection of natural persons in relation to the processing of personal data and the education of data subjects. The main objective of the Company in the field of personal data protection is to ensure consistency and a high level of protection for natural persons, our business partners, so that their data cannot be misused.

To this end, the Company conducted a comprehensive internal audit, based on which it implemented appropriate practical measures aimed at even greater protection of the personal data of customers, natural persons.

The Company expressly declares that all data obtained from customers is used exclusively for the internal needs of the Company and is not provided to third parties. Exceptions are external carriers to whom customer personal data is provided to the minimal extent necessary for the smooth delivery of goods, another exception is situations related to distribution or payment transactions related to ordered goods.

In our business activities, we are always and foremost prepared to defend the interests of our customers and business partners so that there are no infringements of their rights, especially in the area of personal data protection, specifically, we adhere to the principles of transparency and fair processing. We always ensure that all the rights of our customers as data subjects are preserved (including the right to be informed, the right to access personal data, the right to rectification, erasure, restricted processing, the right to data portability, the right to object or the right not to be subject to automated individual decision-making, including profiling).

RIGHT OF ACCESS to Personal Data. A data subject may at any time request confirmation from the Company as to whether or not Personal Data relating to them are being processed, or whether automatic decision-making, including profiling, based on Personal Data processing occurs. If Personal Data are processed, then for what purpose, to what extent, to whom they are disclosed, how long they will be processed, and whether they have the right to rectification, erasure, restriction of processing, or to object. The data subject may also request to be informed from where the Company obtained the Personal Data. The data subject has the right to obtain a copy of their personal data.

RIGHT TO RECTIFY Personal Data, which means that the data subject can ask the Company to correct or supplement Personal Data if they are inaccurate or incomplete.

RIGHT TO ERASURE of Personal Data means that the Company must delete the Personal Data of the data subject if they are no longer needed for the purposes for which they were collected or otherwise processed if the data subject withdraws their consent, and there is no other reason for processing, if the data subject objects to the processing and there are no overriding legitimate reasons, or if the processing or erasure is required by law.

RIGHT TO RESTRICT the processing of Personal Data means that if the data subject submits a request raising disputable issues regarding the processing of their Personal Data (e.g., accuracy disputes, purpose or reason for processing disputes), the Company may only have the Personal Data stored and further processing is subject to the explicit consent of the data subject or for the establishment, exercise, or defense of legal claims.

RIGHT TO DATA PORTABILITY means the data subject has the right to obtain their Personal Data, which they provided to the Company with consent for processing, or for performance of a contract, in a structured, commonly used, and machine-readable format, and if technically feasible, has the right to have these data transmitted to another controller.

RIGHT TO OBJECT to the processing of Personal Data means that the data subject may submit a written or electronic objection to the Company against the processing of their Personal Data. After raising an objection, the Company may not further process the Personal Data unless it proves serious legitimate grounds for processing that prevail over the interests, rights, and freedoms of the data subject.

For any questions, comments, or specific enforcement of rights, please contact us at this email d.klodner@sofico.cz or in writing at the Company's registered office address.

In Svitavy on April 16, 2020

On behalf of the data controller - SOFICO-CZ, a.s., Ing. David Klodner, d.klodner@sofico.cz, +420 608 207 091, in charge of the GDPR agenda