Consent to the processing of personal data and information on the processing of personal data

Basic summary

Mergado Technologies, Ltd., carries out processing of your personal data as it is necessary for the performance of a contract with you (or for the implementation of measures taken prior to the conclusion of such a contract), and also carries out the processing of your personal data that is necessary for the fulfillment of its public duties.

1. Identity and contact details of controllers 
   
   1. The controller of your personal data is Mergado technologies, Ltd., with registered office at Pavlovská 502/12, Kohoutovice, 623 00 Brno, IČ: 035 70 061, registered in the Commercial Register maintained by the Regional Court in Brno, Section C, Insert 85012 (hereinafter referred to as “the controller”).
   2. The contact details of the controller are as follows: address for delivery Pavlovska 12, 623 00, Brno, e‑mail address mergado@mergado.cz, phone +420 608 44 00 67.
   3. The controller did not appoint a Data Protection Officer.
2. The legal basis for the processing of personal data
   
   1. The legal basis for the processing of your personal data is the fact that such processing is necessary for:
      
      1. the fulfillment of the contract between you and the controller or for the execution of a measure by the controller before the conclusion of such a contract within the meaning of Article 6 (1) (b) Regulation (EC) No 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (General Regulation on the protection of personal data);
      2. the fulfillment of the legal obligations applicable to the controller, within the meaning of Article 6 (1) c) of the Regulation, in particular the fulfillment of the obligations imposed on controllers by generally binding legal regulations, in particular Act No. 235/2004 Coll., on Value Added Tax, as amended, Act No. 586/1992 Coll. as amended, and Act No. 563/1991 Coll., on Accounting, as amended.
3. The purpose of processing of personal data
   
   1. The purpose of processing your personal data is to perform a contract between you and the controller or to execute the arrangements by the controller before the conclusion of such a contract and the fulfillment of the related public duties by the controller.
   2. The controller does not have automatic, individual decision-making within the meaning of Article 22 of the Regulation.
4. Period of storage of personal data 
   
   1. Your personal data will be processed for the duration of the effects of the rights and obligations of the contract and for the time necessary for the purposes of archiving under the relevant generally binding legal regulations, but at the latest for the period stipulated by generally binding legal regulations.
5. Other recipients of personal data 
   
   1. Other recipients of your personal information will be those who provide the accounting and tax services, the persons providing technical services, including software operation and data storage, and the developers of applications for the controller’s platform in accordance with the controller’s instructions (processors of personal data).
   2. The recipients of your personal data for the fulfillment of statutory obligations may also be the financial authorities or other competent authorities in cases where the generally binding legal regulations impose so on the controller.
   3. The controller does not intend to transfer your personal data to a third country (non-EU country) or an international organization, except for the transfer of your personal data to the United States of America to SendGrid, Inc., located at 1801 California Street, Suite 500 Denver, Colorado 80202 and Zendesk, Inc., located at 1019 Market Street, 6th Floor, San Francisco, California 94103. Both SendGrid, Inc. and Zendesk, Inc. are subjects certified under the EU-US Privacy Policy within the meaning of the Commission Implementing Decision (EU) 2016/1250 of 12 July 2016 issued under Directive 95/46 / EC of the European Parliament and of the Council on an adequate level of protection afforded by the EU-US Privacy Policy.
6. Rights of the data subject 
   
   1. Under the terms and conditions set forth in the Regulation, you have the right to request from the controller access to your personal data, the right to repair or delete your personal data, or to limit their processing, the right to object to the processing of your personal data, and the right to the portability of your personal data.
   2. If you believe that the processing of your personal data has been violated or the regulation is violated, you have the right to file a complaint with the Supervisory Authority.
   3. You are under no obligation to provide personal information. The provision of your personal data is a necessary requirement for the conclusion and performance of the contract and without providing your personal data, it is not possible to conclude the contract or to fulfill it by the controller.