Privacy policy ENG

1.    General – the purpose of this privacy policy

1.1.    The website available at enter hyperlink address (hereinafter referred to as the “Website”) is operated by and the property of name of entity, company number      , with its registered office in       (hereinafter referred to as “NAME”, “we” or “us”).

1.2.    This privacy policy applies to your personal data and aims to inform you about the processing thereof by NAME, on or via the Website, among other media. This privacy policy aims to ensure the proper and transparent processing of your personal data.

This privacy policy does not cover the privacy policy of third parties (e.g. companies or entities that advertise with services of NAME), nor of other websites or applications that are referred to via hyperlinks on the Website (permitted or otherwise).

NAME strongly recommends that you carefully read this privacy policy. 

1.3.    We are responsible for the processing of your personal data. As the controller, we take all appropriate technical and organisational measures to ensure that processing complies with Regulation (EU) 2016/679 of 27 April 2016 (hereinafter referred to as the “GDPR”). Representatives or employees of NAME who have access to your personal data, as well as processors engaged by us, are obliged to comply with the GDPR.
 
1.4.    This privacy policy is made available to you either physically or electronically and can be consulted under the section ‘description’ on the Website, at any time. In case of requests or additional questions, you can always send an e-mail to: e-mail address. NAME will normally notify you within one month of receiving your request or question about the action it has taken in response. 

1.5.    NAME reserves the right to change this privacy policy at any time. This privacy policy was last amended on enter date.

2.    Who are we and how can you contact us?
Legal form:                             
Name of company:                      
Trade name:                          
Registered office:                  
Company no.:                  
Telephone number:                      
E-mail:                              
Hyperlink of Website:     
                 
3.    How can you contact our Data Protection Officer?

    Enter - if applicable

4.    For what purposes do we process your personal data?

4.1.    NAME processes your personal data for the following purposes:

Enter purposes.

4.2.    Your personal data may or may not be used for direct marketing purposes - specify.

4.3.    The processing of your personal data may or may not be the subject of automated individual decision-making/profiling - specify.

5.    What is the legal basis for processing your personal data?

5.1.    We process your personal data if: 

Determine legal basis/bases: consent, implementation of agreement, legal obligation, vital interests, general interest, legitimate interests.

5.2.    In any case, from the moment that you accept our privacy policy - either by signing a written statement with our privacy policy or ticking/checking a box on the Website - you give NAME unrestricted, specific, informed and unambiguous consent to process your personal data and you explicitly agree to the way in which they are processed as set out in this privacy policy.

6.    The personal data we process

We process the following personal data from you (insofar as provided by you): 

specify.

7.    What other parties receive and/or processes your personal data (in addition to NAME)?

    Enter - if applicable

8.    Do we pass on your personal data to (companies or entities in) non-EU countries?

    Enter - if applicable

9.    Where and for how long do we store your personal data?

9.1.    Your personal data are stored on a secure server specify.

9.2.    We do not store your personal data for any longer than necessary to achieve the purposes specified in Article 4. Once the purpose has been achieved, we, in principle, will delete your personal data and in any case not retain them for longer than insert maximum retention period.

10.    What are your rights?    

10.1.    You have the right to request us to: inspect your personal data;

correct or delete your personal data; limit processing in relation to you.

10.2.    You have the right to object to the processing of your personal data. You can at all times object to the processing of your personal data for direct marketing purposes, without incurring costs.

10.3.    You have the right to transfer your personal data to another controller.

10.4.    If the processing of your personal data is based on your consent, you have the right to withdraw your consent at any time. However, the withdrawal of your consent does not have retroactive effect and does not affect the legality of processing based on your consent given prior to its withdrawal.

10.5.    You have the right to submit a complaint to the Data Protection Authority (provide hyperlink to DPA website).

10.6.    Exercising the above rights depends on the requirements and conditions as set out in the GDPR.

10.7.    In order to exercise any of the above rights, simply send your request to NAME at e-mail address. Note that you will be asked to adequately identify yourself.

11.    What are our obligations?

11.1.    We will take all appropriate security measures to protect your personal data. This includes the necessary measures as regards access control, encryption, physical and operational security, particularly so with regard to the Website and the servers of NAME.

11.2.    We keep a processing register that also describes the (category of) processing of your personal data.

11.3.    We cooperate with the competent data protection authorities (upon their request). 

11.4.    We will, where necessary and/or mandatory, immediately report any breaches of your personal data to the Data Protection Authority (including unlawful processing, loss, unavailability, destruction, damage or the unauthorised distribution thereof), yet no later than 72 hours after being notified thereof. 

In the event that such an infringement is likely to jeopardise your rights, we will report this to you under the conditions set out in the GDPR.

In the event that you somehow become aware of a breach of your personal data or those of others, you can contact NAME at enter e-mail address.

11.5.    If we use certain new technologies or applications to process your personal data, which could well entail high data protection risks for you, we will carry out a so-called “Data Protection Impact Assessment (DPIA)” under the conditions set out in the GDPR and, if required, consult the Data Protection Authority about this beforehand.

Questions? Feel free to contact us at: e-mail address.