Privacy Policy

Information on the protection and processing of personal data in connection with the activities of ATEsystem s.r.o.

We handle personal data in ATEsystem s.r.o., hereinafter referred to as the company, exclusively in accordance with the applicable legislation. The company’s personal data processing principles are compiled into a generally applicable document that guides our employees in the collection, protection and processing of personal data of natural persons (data subjects).

This notice informs:
– how the company collects personal data,
– how it handles it,
– from what sources it obtains it,
– for what purposes it uses it,
– to whom it may disclose it,
– how long it keeps personal data,
– where the data subject can obtain information about his or her personal data that the company processes,
– what security options are available to everyone.

Legal basis for the collection and processing of personal data:

  • Act No. 262/2006 Coll., Labour Code, as amended,
  • Act No. 89/2012 Coll., Civil Code, as amended,
  • Act No. 187/2006 Coll., on Sickness Insurance, as amended,
  • Act No. 453/2004 Coll., on Employment, as amended,
  • Act No. 155/1995 Coll. on Pension Insurance, as amended,
  • Act No. 101/2000 Coll., on the Protection of Personal Data, as amended
  • Regulation (EU) No 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation),

and other regulations related to these legal norms, as well as contractual relations between the company and the data subject.

The collected personal data is used only within the company and is provided only to entities that are legally or contractually entitled to receive it.

Personal data, which means all information relating to an identified or identifiable natural person, in particular identification data, i.e. in particular, name, surname, title, birth number or date of birth, permanent address, identity card number (ID card, passport number or other similar document), signature – in the case of a natural person who is an entrepreneur, also tax identification number and ID number, as well as contact details such as contact address, telephone number, e-mail address and other similar information, and may also include health data if provided under a contractual or similar condition, as well as data relating to the use of services – marker data (applies only to natural – not legal – persons) is collected only on the basis of a legal obligation, a contractual relationship or on the basis of the data subject’s consent:

1. Processing with the consent of the data subject – processed with the consent of the data subject – marketing activities, mutual information in the context of the use of the company’s services or activities, contractual relationship between the company and the data subject. The data subject may withdraw the consent given at any time. The withdrawal must be communicated in writing to the processor, i.e. the company.

2. Processing without the consent of the data subject – performance of the company’s obligations arising from the concluded contracts, performance of obligations imposed on the company by special legal regulations, ensuring the protection of the company’s rights and legally protected interests (e.g. when filing claims with courts, insurance companies), the scope of the personal data provided is limited to personal data that are necessary for the successful filing of a claim, performance of a task carried out in the public interest (e.g. in criminal or administrative proceedings based on a request from an authorized state authority or administration).

Personal data is collected and stored on secure electronic media and, where justified, in paper form, and access to such data is restricted to persons authorised to handle it in the course of their work and job, either as employees of the company or as partners of the company.

The company’s statutory representatives have unlimited access to the personal data collected and are only authorised to handle it within the legal or contractual framework.

Any further handling of personal data is excluded.

Personal data is retained for the necessary period of time as required by legal or contractual obligations.

The data subject may obtain information about his or her personal data processed by the company from the company’s statutory representatives, i.e. the managing directors, whose contact details are provided on the company’s website.

The company processes the collected personal data transparently, fairly and in accordance with legislative requirements. At the same time, the data subject has the right to contact the company at any time to obtain information about the processing of his/her personal data or to exercise the rights listed below related to personal data.

– The data subject has the right to request a copy of his or her personal data that the company processes about the data subject.

– If the data subject considers that the personal data held about him or her by the company are inaccurate or incomplete, he or she has the right to request that they be updated or completed.

-The data subject has the right to request the erasure of his or her personal data if they are no longer necessary for the purpose for which they were processed, if consent to the processing of personal data is withdrawn, if they were processed unlawfully, or if they must be erased to comply with a legal obligation or if they were collected in connection with the offer of information society services.

– The data subject shall have the right to request the restriction of processing if he or she denies the accuracy of his or her personal data or the processing is unlawful but refuses to erase such personal data, or, if he or she so requests, the company may process the personal data collected even after they are not necessary for the purpose for which they were provided to the company by the data subject or when the data subject has objected to the processing, where it is not clear that the company’s interest outweighs the legitimate interests of the data subject.

– In the case of automated processing of personal data based on a contract or consent given by the data subject to the company, the data subject has the right to the so-called portability of such data to be provided in a structured, commonly used and machine-readable format.

– The data subject may object to the processing of personal data at any time. Likewise, he or she may object to the processing if the personal data are processed for direct marketing purposes. In this case, the personal data of the data subject will no longer be processed for this purpose.

– Where consent has been given to the processing of personal data for purposes requiring consent, the data subject has the right to withdraw that consent at any time. The processing of personal data that occurred before the withdrawal of consent is lawful. Consent means the signature of the data subject on a document accompanying this Directive (employees, co-workers, etc.) or any other relevant consent given in written form (paper or electronic) which the company has or can be shown to have (content of a contractual agreement, explicit communication from a business partner, explicit expression of consent in another written form, etc.).

– In order to exercise their rights, the subject of the consent may contact the statutory representative of the company at its registered office or use the electronic communication channels used by the company (e-mail, written communication – by regular mail to the company’s address, etc.).

The company will respond to the data subject’s requests concerning the exercise of his or her rights without undue delay within 30 days of receipt of the request. The time limit may be extended by a further month if necessary. The company will always inform the data subject of such an extension, including the reasons for it. The communication will be conducted in the manner initially chosen by the data subject (i.e. e-mail, letter in paper form)

– The data subject has the right to lodge a complaint with the supervisory authority (Office for Personal Data Protection, located at Pplk. Sochora 27, 170 00 Prague 7, telephone: +420 234 665 111) if he/she believes that the processing of his/her personal data has violated the rules of personal data protection.

The company, i.e. the personal data controller, does not have an appointed data protection officer, since the law does not impose this obligation on it.

Cookies

The controller processes the personal data of website visitors for the purpose of determining their browsing behaviour on the website on a computer or mobile device, to track the number of visitors to the website and to measure its functionality, using cookies and Google Analytics.

Marketing cookies help to select services that may be of interest to you. They also connect our e-shop with third-party social and advertising networks, which can then show you their advertising outside our website. These include Google Ads, Seznam SKlik and LinkedIn Ads.

Cookies are information stored in simple text files placed on a computer from a web network. These cookies can be read by the website during subsequent visits to the Administrator’s website. The information stored in a cookie may be related to a person’s browsing behaviour or contain a unique identification number so that the website can remember it on their next visit. The analytics software stores anonymous cookies each time you visit the Administrator’s website. These help to identify how many repeat visitors come to the Administrator’s website, how visitors behave on the website, what they prefer and what interests them. For these purposes, the Administrator also uses a Google tool called Google Analytics, which enables website owners to obtain statistical data about the users of their websites. Thanks to this service, it is possible to track current and historical traffic, visitor behaviour and characteristics, sales and more.

The controller may only collect personal data of visitors to this website via cookies on the basis of their demonstrable active consent (the so-called opt-in principle). This consent is not required only for technical cookies, which are necessary for the correct display of the page, the transmission of messages, the provision of secure communication, etc.

The administrator stores the following cookies:

  • Technical, which are required for the website to function properly. It always stores them.
  • Statistical, so that the Administrator can learn what needs to be improved on the websites you browse. It stores them on the basis of the active consent of the website visitor.
  • Preferential, thanks to which a visitor to the website can find what they are looking for faster. The administrator stores them on the basis of his active consent.
  • Marketing, based on which the visitor is shown advertisements of interest to him/her. They are also stored by the administrator only on the basis of the visitor’s active consent.
  • Unclassified/security cookies, which we have in the process of classifying together with the providers of each cookie.

The legal basis for processing the personal data of visitors to the Administrator’s website using cookies is the legitimate interest of the Administrator, whereby the Administrator provides the Data Subjects with the ability to browse the content of the website thanks to cookies, and the actively granted consent of the visitor to the Administrator’s website, on the basis of which the Administrator can provide the visitor with customised website content.