Privacy and Data Protection Policy

INFORMATION ON PROCESSING PERSONAL DATA for clients and suppliers

according to the General Regulation on Personal Data Protection (GDPR)

NOTICE:
The translated version is provided for your convenience. A legally binding and determining version of these rules is the Czech original, which is also published here: http://www.avmc.cz/pravidla-pro-nakladani-s-osobnimi-udaji/

The company provides information on the processing of personal data by the data subject Data Provider provided in   within the framework of the start-up of a contractual relationship :

(1)      Privacy Manager:

Personal data manager is AV Medical Consulting sro

Contact person: Alexandros Valsamis

tel: 603 156 548

e-mail: [email protected]

(2)      Purpose of processing :

The data controller will process the personal data of the data subject for the purposes of performing the contractual relationship in   sales of medical technology and supplies including related activities .

(3)      Legal basis :

             Data subject’s consent : for marketing purposes

             Performance or conclusion of the contract : for the purpose of the supply of goods and services

             Legal duty ( Act No. 89/2012 Coll., The Civil Code , Act No. 499/2004 Coll., On archival and filing service , Act No. 455/1991 Coll., Trades Licensing Act , Act No. 563/1991 Coll. , on Accounting ; Act No. 235/2004 Coll   added value )

             Interesting interests: For direct marketing and reporting of company activities

(4)      Personal data processors :

Personal data is provided by data controller to   further processing by external providers of accounting services, legal services , shipping companies whose identity will be communicated on request to the data subject .

(5)      Other recipients :

Data Manager can from   due to a legitimate interest in disclosure of the personal data provided by the data controller to the contracting partners in the   IT services and technologies, marketing services, advisory services,certification services , whose identity will be communicated on request to the data subject .

Due to the necessary transfer, backup and archiving electronic data are personal data provided to non-EU countries (proven cloud-based services outside the EU servers of Google, Inc.).

(6)      Other third parties :

Data Manager Provides from   the prevention, investigation, detection or prosecution of criminal offenses or the execution of criminal offenses, including protection against threats to public security and their prevention, personal data to competent public authorities or other entities authorized to process personal data.

(7)      Other processing purposes :

The data controller may use the provided personal data for both business and marketing purposes.

(8)      Time to store personal information :

The data controller holds personal data for the duration of the performance of the contractual relationship and for the period required by law. An exception may be the retention of personal data for business and marketing purposes.

(9)      Automated processing of personal data:

There is no company in the company   automated processing of the OO

(10)   Rights of data subject :

Right of access to   personal data – the data subject has the right to access   the data controller is obliged to provide a copy of the processed personal data.

Right to rectify and supplement personal data – data subject has the right to the data controller without undue delay, corrected or supplemented the inaccurate personal data concerning him / her.

Right to cancel – data subject has the right to the data controller without undue delay, erase personal data concerning him / her if:

      personal data are not needed for the purposes for which they were processed

      data subject revokes consent to   processing of personal data

      data subject opposes the processing

      personal data was processed unlawfully

      the retention of personal data does not impose other relevant legal regulations

      with it does not work public interest in   public health, archiving, scientific or historical research, statistics

      it is not the exercise or defense of legal claims.

The right to limit the processing – the data subject has the right to keep the data controller in   legitimate cases limited the processing of personal data.

Right to the portability of personal data – data subject has the right to obtain personal data relating to it in a structured, commonly used and machine-readable format, and the right to pass this data to another controller.

Automated Individual Decision Making – An entity has the right not to be the subject of any decision based solely on automated processing including profiling if this is not necessary for the performance of the contract.

Right to file a complaint with the Supervisory Authority – the data subject has the right to file a complaint with the Supervisory Authority, Office for Personal Data Protection.

(11)   Non-disclosure of personal information:

The data subject must provide personal data for legal reasons or listed in   commercial contract, v   Otherwise it would be impossible to fulfill the business contract.

(12)   Other provisions:

If the data subject provides the data administrator with the consent   handling with   personal data or do not enter into a business relationship with the trustee and are no other reason for processing , his or her personal data will bein   Written Shredded and v   electronic form deleted.

Other personal data that the data subject has not provided personally to the data controller may be obtained from   publicly available sources.

Web analytics
Web analytics is provided by Google through Google services such as Google Analytics and other services. Web analytics does not provide identifiable information to website operators. In relation to the GDPR, Google is the processor, controller, and data administrator. To learn more about your dates, visit https://policies.google.com/privacy or contact Google directly.

Web analytics is provided by Automattic, through the Jetpack wordpress service. For full details of the relationship to the GDPR, please see https://en.support.wordpress.com/automattic-gdpr/ Automattic is the processor, controller, and data controller in relation to GDPR.

Cookies
This page uses cookies. Your consent is required for cookies. Based on your consent, cookies are stored for up to one year. You can delete cookies at any time through your browser.