Privacy Policy and Terms
I. Introductory Provisions
In order to offer, provide access to, and deliver our products and services to our customers, we must manage the personal data of individuals such as customers, suppliers, and visitors to the sales premises. FEROBET s.r.o. ensures compliance with legal regulations concerning personal data protection and respects the principles and rules of processing such data. The information below acquaints individuals whose personal data may be processed, particularly with the scope and reasons for personal data processing, as well as the rights of these individuals.
1. The data controller in connection with the operation of the website www.ferobet.cz according to Article 4 point 7 of the Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter: "GDPR") is FEROBET s.r.o., located at Slavkovská 1229/25, Rousínovec, 683 01 Rousínov, Company ID: 26250209, registered in the Commercial Register maintained by the Regional Court in Brno, Section C, File 39972 (hereinafter: "controller").
2. The contact details of the controller are:
Name and surname: FEROBET s.r.o.
Address: Slavkovská 1229/25, Rousínovec, 683 01 Rousínov
3. Personal data refers to any information relating to an identified or identifiable natural person; an identifiable natural person is a person who can be identified, directly or indirectly, particularly by reference to a specific identifier, such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.
4. When processing personal data, the controller ensures that it is handled fairly and in a lawful and transparent manner in relation to the data subject. Personal data is processed with purpose limitation, data minimisation, accuracy, storage limitation, integrity, and confidentiality (Article 5 GDPR).
5. The controller has not appointed a data protection officer.
II. Sources and Categories of Processed Personal Data
1. The Controller processes personal data that you have provided or personal data that the Controller has obtained based on the fulfilment of your order.
2. The Controller processes your identification and contact details and the data necessary for the fulfilment of the contract, the legal obligations of the Controller, and, in the case of your consent, also for marketing purposes.
III. Legal Reason and Purpose of Personal Data Processing
1. The legal reason for processing personal data is
· the performance of a contract between you and the controller according to Article 6, paragraph 1, letter b) of GDPR,
· your consent to processing for the purposes of direct marketing (especially for sending commercial communications and newsletters) according to Article 6, paragraph 1, letter a) of GDPR in connection with Section 7, paragraph 2 of Act No. 480/2004 Coll., on certain services of the information society in the event that no goods or services have been ordered.
· the performance of a legal obligation that applies to the controller. (Article 6, paragraph 1, letter c) of GDPR)
2. The purpose of processing personal data is
· the handling of your order and the exercise of rights and obligations arising from the contractual relationship between you and the controller; personal data required for the successful processing of the order (name and address, telephone contact, email address) are needed, the provision of personal data is a necessary requirement for concluding and fulfilling the contract, without providing personal data it is not possible to conclude or for the controller to fulfil the contract,
· sending commercial communications and carrying out other marketing activities.
3. There is no automated individual decision-making by the controller in the sense of Article 22 of GDPR.
IV. Period of Data Retention
1. The administrator retains personal data
· for the period necessary to exercise the rights and obligations arising from the contractual relationship between you and the administrator and to assert claims from these contractual relationships (for 15 years from the end of the contractual relationship). This period is necessary to fulfill the administrator's legal obligation, especially the document archiving period for VAT purposes.
· for the period until the consent to the processing of personal data for marketing purposes is withdrawn, a maximum of 5 years, if personal data are processed based on consent.
2. After the personal data retention period expires, the administrator will delete the personal data.
V. Recipients of Personal Data
1. The recipients of personal data are individuals to the necessary extent
· involved in the delivery of goods/services/payment execution under the contract,
· providing services for the operation of the e-shop and other services related to the operation of the e-shop,
· providing marketing, accounting, legal and other services.
2. Recipients of personal data may also be public authorities in the performance of their duties.
3. The data controller does not intend to transfer personal data to a third country (outside the EU) or to an international organisation. Recipients of personal data in third countries are providers of mailing services or cloud services.
4. For the purpose of analysing website traffic and improving its functionality, access data to our websites (e.g., IP address, browser type, visited pages, time of visit) may be transferred for processing to a contractual partner within the European Union. This entity processes data only based on our instructions and in accordance with the relevant provisions of the GDPR regulation. Processing of data by this entity serves exclusively for the technical evaluation of traffic, user behaviour, and website content optimisation. We have a data processing agreement with this partner according to Article 28 of the GDPR regulation, ensuring the protection of data at an appropriate level.
VI. Your Rights
1. Under the conditions set out in GDPR, you have
· the right to access your personal data according to Article 15 GDPR,
· the right to rectification of personal data under Article 16 GDPR, or restriction of processing according to Article 18 GDPR.
· the right to erasure of personal data according to Article 17 GDPR.
· the right to object to processing according to Article 21 GDPR and
· the right to data portability under Article 20 GDPR.
· the right to withdraw consent to processing in writing or electronically at the address or email of the controller mentioned in Article I of these conditions.
2. Furthermore, you have the right to lodge a complaint with the Office for Personal Data Protection if you believe your right to data protection has been violated.
3. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal, nor the data that the controller is required to maintain based on legal obligation.
4. You have the right to request a copy of the data being processed. The controller may charge a reasonable fee for additional copies requested by the data subject.
VII. Terms of Personal Data Security
1. The Administrator declares that they have taken all appropriate technical and organisational measures to secure personal data.
2. The Administrator has implemented technical measures to secure data storage and personal data storage in physical form, particularly through personalised access protected by a password in the case of electronic data.
3. The Administrator declares that only persons authorised by them have access to personal data.
VIII. Use of Cookies and Website Access Analysis
1. Cookie usage policy and website access analytics are in a separate document accessible here
IX. Data Processing for Monitoring Sales and Exhibition Premises
1. The company's sales and exhibition premises located in Rousínov at Slavkovská 1229/25 and Kalouskova 937/14a are monitored. The camera system allows for video recording to be stored and does not allow for sound recording. The data controller of the camera system is FRBT production s.r.o. ID: 119 44 218 with its registered office at Slavkovská 1229/25, 683 01 Rousínov, registered in the Commercial Register maintained by the Regional Court in Brno, Section C, Insert 125487.
2. The data controller has decided to install and operate the camera system because it is necessary for the protection of the rights and legally protected interests of the data controller and FEROBET s.r.o. Specifically, it concerns protecting the property of the data controller and FEROBET s.r.o., as well as the property and health of the employees of the data controller, FEROBET s.r.o., and visitors to the production area. Last but not least, the reason is the prevention and supervision over the adherence to fire safety regulations.
3. The records are not stored externally and are isolated from the public network. Access to the records is granted only to an authorised person. The recording is kept for the minimum necessary period to achieve the objective, after which the records are automatically deleted by erasure.
4. The records may be provided to the data subjects, i.e., persons whose personal data are recorded, but only on the condition that there are no other data subjects on the recording, unless they have given written consent, or their identification would be prevented by blurring. The data controller is entitled to claim reasonable reimbursement for the provision of the recording and any blurring of other data subjects' recordings. Requests for the provision of records can be submitted via FEROBET s.r.o. at info@ferobet.cz.
X. Processing of Personal Data Provided by the Customer During the Sale of Goods
1. FEROBET s.r.o. processes customers' personal data at the moment when the customer provides it by filling it into the Fence Calculator or Paving Configurator application, or by sending an inquiry or order by email, phone, or in person.
2. The reason for processing personal data is to fulfill contractual obligations in connection with the inquiry made, the order, or a signed contract.
3. Personal data (name, surname, address, email address, phone number) provided during an inquiry are processed by the business department of FEROBET s.r.o. Personal data sent by electronic mail are subject to the legal regulation of postal secrecy. FEROBET s.r.o. has implemented a system of personalized access to individual email addresses.
4. When processing personal data, the Abra information system from ABRA Software a.s. is used. The provided data are stored outside the public network, and access to them is protected by personalized access.
5. In view of the provisions of relevant legal regulations (mainly tax-related), in the event of concluding a purchase contract or entering into another contractual relationship, personal data (name, surname, address, email address, phone number, or VAT number) are stored for 10 years. They are then removed by deletion in accordance with document archiving rules.
6. In the event that no contractual relationship is established based on the inquiry made personally, electronically, or by other means, the provided personal data are automatically removed from the database after six months by deletion.
7. If the goods are to be sent to the address provided by the customer according to the established contractual relationship, the customer's personal data (name, surname, phone contact, and delivery address for the goods) will be provided to the person ensuring the transport of the goods.
X. Final Provisions
1. By using the website www.fereobet.cz, by submitting a web form, you confirm that you are familiar with the privacy policy and that you fully accept it.
2. You agree with these terms by ticking the consent box via the online form. By ticking the consent box, you confirm that you are familiar with the privacy policy and that you fully accept it.
3. The administrator is entitled to change these terms. The new version of the privacy policy will be published on their website and at the same time, they will send the new version of these terms to your email address that you provided to the administrator.
