Business partners privacy notice
according to the Regulation (EU) 2016/679 of the European Parliament and of the Council, the General Data Protection Regulation ("GDPR").
This Data Privacy Notice informs you about how and for which purposes we will process your personal data and explains your rights under applicable data protection law. We are strongly dedicated to handling your personal data always responsibly, diligently and in compliance with all legal requirements. State of the art professional standards will be applied to protect the integrity and security of your personal data.
Who is responsible for your personal data?
We, Contally s.r.o. , office at Bárdošova 2/A, 83101 Bratislava, IČO: 35787708 (here in after referred to as „Company“) is the responsible controller for the personal data you provide to us in connection with the business relationship that has arisen between you as a data subject and the Company or in connection with the business relationship that has arisen between the Company and the entity on whose behalf you are acting, eventually which are necessary to take measures prior to the establishment of a business relationship in accordance with your request or with the request of the entity on whose behalf you are acting (hereinafter referred to as the "business relationship").
Which personal data do we collect?
Unless otherwise agreed, the Company will process only the personal data requested in connection with our business relationship. This includes, your contact details, in particular the name and surname, the name of the subject in whose name you are acting, your job and position, address, telephone number, e-mail address and other contact details and your signature, then the data concerning business activity, type and number of document proving the authorization to perform business activities and the entry in the relevant register, including the data contained therein, then the account number and the amount, as well as the data necessary to protect the rights of the Company, in particular data about your reliability, receivables and debts expected or incurred in connection with the business activity.
How do we collect and use personal data?
We will collect your personal data directly from you, in particular within starting a business communication, through participation in the Company's selection procedure, or by accepting an Company’s purchase order, or if you submit to the Company the offer for possible future business, by registering on our website or by other usual business way. We do not obtain personal data from third parties. We will not make any automated decisions affecting you or create profiles using your personal data.
Why we process personal data?
We use your personal data solely for the purpose of negotiating and concluding of the business relationship, commercial communication, fulfilment of all obligations arising from the business relationship as well as their termination, fulfilment of legal obligations, especially in the area of taxes and customs, and protection of rights and legitimate interests of the Company, in particular, to apply the right from defects or claim, or to defend the legal rights of the Company. The legal basis for the processing of personal data in the context of a business relationship may in particular be the performance of a contract under Article 6 par. 1 letter b) of GDPR, or the processing of personal data on the Company's legitimate interest pursuant to Article 6 par. 1 letter (f) of GDPR, for example, in relation to the processing and storage of the data subject’s contact data, or processing necessary to meet the Company’s legal obligations, for example in the area of taxation, in accordance with Article 6 par. 1 letter d) of GDPR. If you do not provide us with the necessary personal data, we may make it difficult or impossible for us to make a business communication or to provide the fulfillment and realization of a business relationship.
Where do we process personal data?
We will store and process your personal data within the European Economic Area. In the course of our business activities, we may transfer your personal data also to recipients in countries outside of the European Economic Area (“third countries”), in which applicable laws do not offer the same level of data protection as the laws of the Slovak republic. When doing so we will comply with applicable data protection requirements and take appropriate safeguards to ensure the security and integrity of your personal data. You may contact us anytime using the contact details below if you would like further information on such safeguards.
Who we share personal data with?
We may instruct service providers (e.g. a cloud provider), in Slovakia or abroad, to process your personal data on our behalf and in accordance with our instructions. We will retain control over your personal data. We may also share your personal data with third parties if we sell or buy any business or assets, in which case we may disclose personal data to the prospective seller or buyer of such business or assets, along with its professional advisers. If Company or substantially all of its assets are acquired by a third party, personal data held by us about business partners will be one of the transferred assets. Otherwise, no third parties will have access to your personal data unless there is a legal obligation or you give us permission to do so.
How long do we store personal data?
We retain your personal data only for the necessary period of time, that is, especially for the duration of the business relationship, at last 10 years from the end of the year in which the relationship ended. We will also retain your personal data for as long as it is needed or necessary to defend or enforce the Company's legal claims until the end of the relevant retention period or until settlement of the claim. In the event that your personal data is contained in documents necessary for tax purposes or for other purposes for which they are subject of public authority control, then your data will be retained for possible inspection by the public authority according to the relevant legislation.
You have the right to request from us access to and rectification or erasure of your personal data or restriction of processing concerning you and to object to processing as well as the right to data portability in accordance with the EU General Data Protection Regulation. In particular you have the right to request a copy of the personal data that we hold about you. If you use this service repeatedly, we may make an appropriate charge for this. If you would like to transfer your personal data to another controller, we will provide you with the personal data which you provided to us and which has been processed by automated means in a machine readable portable format free of charge. As we want to make sure that your personal data is accurate and up to date, you may also ask us to correct or remove any information which you think is inaccurate. For any of the above requests, please send clear description of your requirement including concerning personal data and state your name and surname, your contact details and your date of birth as proof of identity to the email address stated below. We may require additional proof of identity to protect your personal data against unauthorized access. If you have any concerns about how your personal data is handled by us or wish to raise a complaint on how we have handled your personal data, you can contact us at the email address stated below to have the matter investigated. If you are not satisfied with our response or believe we are processing your personal data not in accordance with the law you can complain to the Office for personal data protection.
Changes to this notice
This Business Partners Privacy Notice was last updated in May 2018. In case of changes of procedures described by this notice, this change will be announced by websites www.contally.com. If you have any questions regarding your rights or if you have any specific requests relating to your personal data please contact us at the email address stated below: