on the website www.mmarch.sk (hereinafter referred to as the "Website")
I. Basic Provisions
The personal data controller pursuant to § 5 letter o) of Act No. 18/2018 Coll. on Personal Data Protection, as amended (hereinafter the "Act"), is the company mmarch s. r. o., Company ID: 56 257 937, with registered office at Šúrska 136/A, 90001 Modra (hereinafter the "Controller").
Contact details of the Controller are:
- Address: Šúrska 136/A, 90001 Modra
- E-mail: martin@mmarch.sk
- Phone: (+421) 918 403 732
Personal data means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
The Controller has not appointed a Data Protection Officer.
II. Sources and Categories of Personal Data Processed
The Controller processes personal data provided by the visitor of the Website through completed web forms – first name, last name, phone number, email address.
III. Legal Basis and Purpose of Personal Data Processing
The legal basis for processing personal data is one or more of the following:
- the legitimate interest of the Controller in providing direct marketing (especially for sending commercial communications) under § 13(1)(f) of the Act,
- the user’s consent to processing for the purpose of registration on this Website under § 13(1)(a) of the Act.
The purpose of processing personal data is:
- Sending requested information, commercial communications, and performing other marketing activities.
- The Controller does not perform automatic individual decision-making pursuant to § 28 of the Act.
IV. Retention Period of Personal Data
The Controller retains personal data:
- for the duration of operation of this Website, or
- until consent to the processing of personal data for marketing purposes is withdrawn.
- After the retention period expires, the Controller will delete the personal data.
V. Recipients of Personal Data (Controller’s Subcontractors)
Recipients of personal data are persons:
- providing services for the operation of the Website, commercial communications, and other services related to the Website operation.
- The Controller does not intend to transfer personal data to third countries (outside the EU) or to international organizations.
VI. Your Rights
Under the conditions set forth in the Act, the visitor has the following rights:
- right of access to their personal data pursuant to § 21 of the Act,
- right to rectification of personal data pursuant to § 22 of the Act, or restriction of processing pursuant to § 24 of the Act,
- right to erasure of personal data pursuant to § 23 of the Act,
- right to object to processing pursuant to § 27 of the Act,
- right to data portability pursuant to § 26 of the Act,
- right to withdraw consent to processing in writing or electronically at the Controller’s address or email provided in Section III of these terms.
- Furthermore, the visitor has the right to lodge a complaint with the Office for Personal Data Protection if they believe their data protection rights have been violated.
VII. Personal Data Security Conditions
The Controller declares that it has taken all appropriate technical and organizational measures to secure personal data.
The Controller has implemented technical measures to secure data storage and storage of personal data in paper form, especially by securing computer access with passwords, using antivirus software, and regular computer maintenance.
The Controller declares that personal data is accessible only to authorized persons.
VIII. Final Provisions
By submitting a web form, the visitor confirms that they have been informed about the personal data protection conditions and accept them in full.
The customer agrees to these terms by ticking the consent box in the web form; by ticking the consent box, the visitor confirms that they have been informed about and accept these personal data protection terms in full.
The Controller reserves the right to amend these terms; the new version of the personal data protection terms will be published on the Website and sent by email to the address provided by the visitor to the Controller.