Based on Regulation (EU) 2016/679 of 27/4/2016 with effect from 25/5/2018

This information is provided by PST CLC, a.s., Identification number: 25397249, VAT number: CZ25397249, Nádražní 969/112, 702 00 Ostrava, registered in the Companies Register leg by the Regional Court in Ostrava, file number: section B, insert 1895 (hereinafter referred to as the “Administrator”) on the basis of Article 13 of Regulation (EU) 2016/679 (hereinafter referred to as “Regulation”).

  1. Explanation of terms:
    1. Personal data are data leading to the identification of a natural person, in particular: name and surname, residential address, email address, telephone number, identification number of a self-employed natural person and taxpayer identification number of a self-employed natural person (hereinafter referred to as “Entity of data”).
    2. The administrator (the above-mentioned company) is an entity that determines the purpose and means of personal data processing, performs processing and is responsible for these activities. The administrator may authorize or entitle the compiler to process personal data, unless otherwise stated in a special law.
    3. A compiler is any entity that processes personal data in accordance with a special law or – based on authorization of the administrator – processes personal data according to the Law and Regulation on the basis of a concluded contract on the processing of personal data or on the basis of a consent of the entity of data.
    4. The database is an internal list of data on natural persons and of their personal data, maintained by the administrator.
    5. Profiling is any form of automated processing of the personal data consisting in their using for the assessment of some personal aspects related to the natural person, especially to analysis or estimation of aspects related to his/her working performance, economic situation, health state, personal preferences, interests, reliability, behavior, place where he/she is situated, or movement;
    6. Cookies are small amounts of data that a web server sends to a browser, which stores them on a user’s computer. Each time you visit the same server, the browser then sends this data back to the server. Cookies are usually used for varying individual users and saving user’s preferences, etc.
  2. The administrator (the above-mentioned company) processes personal data according to the Regulation based on the following principles:
    1. Legality – it only processes those data that are necessary to fulfill contractual obligations.
    2. Purposefulness – data are collected only for certain, explicit and legitimate purposes.
    3. Minimization – it processes the maximum amount that is necessary to perform the expressed tasks.
    4. Storage time – personal data are processed only for the time necessary for the particular tasks.
    5. Integrity and confidentiality – the administrator has taken appropriate technical and organizational measures to secure and protect against unauthorized or unlawful processing and against loss, destruction or damage.
  3. Protection of personal data and information on processing
    1. The administrator obtains personal data from the entities themselves within the negotiations on the conclusion of the contract, for example, personally, via email, inquiry form, order or telephone.
    2. The administrator shall inform the entity of data when the provision of personal data is necessary for the performance of the contractual relationship or when it is voluntary.
    3. Personal data will be processed during the negotiations on the conclusion of the contract and for the duration of the contractual relationship.
    4. Personal data will be further processed in the necessary form to fulfill the legal obligation to archive accounting documents for a period specified by legislation.
    5. Personal data will be processed and stored for the next 24 months in the event of a possible dispute between the administrator and the entity of data.
  4. Purpose of processing
    1. The administrator processes Personal Data for the following purposes:
      • order fulfillment.
      • settlement of a claim.
      • maintaining purchase history for the purposes of bid targeting
      • responses and answers to your questions.
      • fulfillment of legal obligations of the administrator (accounting, tax and archive management).
      • marketing and business offers of the administrator.
      • keeping a database of natural persons.
      • protection of the rights and legal interests of the administrator (legitimate interest).
  5. Rights and obligations of the entity of data
    1. The entity is obliged to provide the administrator only with true and accurate personal data.
    2. The entity is obliged to allow the administrator to verify the provided data.
    3. The entity has the right to require the administrator to have access to its personal data.
    4. The entity has the right to correct the provided personal data.
    5. The entity has the right to delete the provided personal data.
    6. The entity has the right to limit the processing of personal data.
    7. If the consent of the entity is required for the processing of personal data, the entity may withdraw it at any time.
    8. The entity may exercise its rights:
      • Personally at the company’s registered office during working hours: 7:30 a.m. – 5:00 p.m.
      • Via data box: magvx56
      • By e-mail:
      • By post (signature must be officially verified)
  6. Rights and obligations of the administrator
    1. The administrator has the right to verify the truthfulness and accuracy of the personal data provided
    2. The administrator is obliged to provide the entity of data with information on the scope and manner of the personal data provided, if the entity of data so requests. The administrator shall do so immediately within 30 working days at the latest.
    3. In the case of repeated and unreasonable requests, the administrator has the right to refuse to provide such information or to charge for its provision.
    4. The administrator shall provide the information in electronic form, unless otherwise is required by the entity of data.
  7. Legitimate interest of the administrator – purposes
    1. Protection of the administrator, its basic or other rights arising from general legal obligations, regulations and contracts. Especially within the scope of various disputes, inspections, investigations and in relation to contractual partners. The processing time is determined by generally binding regulations, but no later than 10 years after the termination of the contractual relationship.
    2. Protection of the administrator’s property, the life and health of employees and persons entering the administrator’s premises. For a period of 3 days from the recording.
    3. Debt collection during the statutory limitation periods, but no longer than 10 years.
  8. Consent to the processing of personal data
    1. The entity of data provides consent to the processing of data which, for their purposes, do not belong among the data requested by law, or among the data necessary for the fulfillment of contractual relationships, or among the legitimate interests of the administrator. The consent shall be granted in a written form or as a confirmation of the electronic version of the consent.
    2. The entity of data may, according to point 5.7., revoke this consent at any time.
    3. The purposes and processing of the data provided on the basis of the consent are indicated in the consent form.
  9. Method of the processing of personal data
    1. The personal data of an entity are processed both automatically and manually
    2. Personal data may be disclosed to authorized employees of the administrator if this is necessary for the performance of the contractual relationship and if it is strictly necessary for the performance of their duties.
    3. Personal data can be made accessible to compilers with whom the administrator has a contract on the processing of personal data and, where applicable, to other persons in accordance with the law and the Regulation.
  10. Cookies
    1. On its website, the administrator uses “cookies”, which are stored on the computer of a visitor, and automatically recognize him on the next visit. For example, cookies make it possible to adapt the website to the interests of the entity of data or to store a user’s name, which then does not have to be re-entered each time. If the entity of data does not want his/her computer to be recognized, it is necessary to adjust the Internet browser settings in such a way that cookies are deleted from the computer’s hard disk, cookies are blocked or a warning is set before the cookie is saved.
  11. Validity
    1. The wording of the Information on the processing of personal data may be changed or supplemented by the administrator. The Administrator shall inform the natural person of any such change by e-mail or via another suitable communication channel at least 5 days before the changes take effect. If a natural person does not agree with the change, he has the right to require deletion from the database without any sanction.
    2. This document takes effect on the day of publication, i.e. 25/05/2018.


In Ostrava, 6/3/2020

PST CLC, a.s.