Privacy Policy
Privacy Policy
I.
Basic Provisions
The data controller responsible for the processing of personal data in accordance with Article 4, point 7 of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter: "GDPR") is Vingo s.r.o., ID No.: 14013843, VAT No.: CZ14013843, with registered office at Řepice 60, 386 01 Řepice, C 31623, registered with the District Court in České Budějovice (hereinafter referred to as the "Data Controller").
The contact details of the data controller are as follows:
Address: Martina Zábranská, Světova 542/6, 180 00 Prague
Email: info@rackito.com
Personal data are all information about an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
The data controller has not appointed a data protection officer.
II.
Sources and Categories of Processed Personal Data
The data controller processes personal data that you have provided to the data controller or personal data obtained by the data controller in the course of fulfilling your order.
The data controller processes your identification, contact, and contractual data.
III.
Legal Basis and Purpose of Personal Data Processing
The legal basis for the processing of personal data is:
- to fulfill a contract between you and the data controller pursuant to Article 6(1)(b) GDPR,
- the legitimate interest of the data controller in providing direct marketing (particularly for sending commercial communications and newsletters) pursuant to Article 6(1)(f) GDPR,
- your consent to processing for the purposes of direct marketing (particularly sending commercial communications and newsletters) pursuant to Article 6(1)(a) GDPR in connection with Section 7(2) of Act No. 480/2004 Coll. on certain services of the information society, if no order for goods or services exists.
The purpose of processing personal data is:
- to process your order and exercise the rights and obligations arising from the contractual relationship between you and the data controller; for an order, personal data necessary for the successful execution of the order are required (name and address, contact), and providing personal data is a necessary condition for concluding and fulfilling the contract; without providing personal data, concluding or fulfilling the contract by the data controller is not possible,
- sending commercial communications and other marketing activities.
The data controller does/does not engage in automated individual decision-making within the meaning of Article 22 GDPR. You have given your explicit consent for this processing.
IV.
Duration of Data Storage
The data controller stores personal data:
- for the period necessary to exercise the rights and obligations arising from the contractual relationship between you and the data controller and to assert claims from this contractual relationship (15 years after termination of the contract),
- for the period until consent to the processing of personal data for marketing purposes is withdrawn, but not longer than 5 years if personal data are processed based on consent.
After the storage period expires, the data controller will delete the personal data.
V.
Recipients of Personal Data (Subcontractors of the Data Controller)
Recipients of personal data are the following persons:
- involved in the delivery of goods/services/payment execution under the contract,
- providing services for the operation of the e-shop (Shoptet) and other services related to the operation of the e-shop,
- providing marketing services.
The data controller intends to transfer personal data to a third country (non-EU country) or to an international organization. Recipients of personal data in third countries are mailing service providers/cloud service providers.
VI.
Your Rights
Under the conditions set out in the GDPR, you have:
- the right to access your personal data under Article 15 GDPR,
- the right to rectify your personal data under Article 16 GDPR or to restrict processing under Article 18 GDPR,
- the right to erase personal data under Article 17 GDPR,
- the right to object to processing under Article 21 GDPR, and
- the right to data portability under Article 20 GDPR.
You also have the right to withdraw consent to processing in writing or electronically to the address or email of the data controller listed in Article III of these terms.
You also have the right to lodge a complaint with the data protection authority if you believe that your privacy rights have been violated.
VII.
Conditions for the Security of Personal Data
The data controller declares that all appropriate technical and organizational measures have been taken to protect personal data.
The data controller has implemented technical measures to secure the storage and storage of personal data in paper form, in particular: software security of all PCs and devices that connect to the database, regular updating of antivirus software, use of a firewall, encryption of access to all devices.
The data controller declares that only authorized persons have access to personal data.
VIII.
COOKIE POLICY
In accordance with the law, this website places small data files, commonly referred to as cookies, on your device. They are used to ensure the full functionality of the website and user convenience, for statistical purposes, and to tailor information and advertising to your interests, e.g., according to the content of the website you visited.
Cookies remember the actions and settings you made on this website so that you do not have to enter this information repeatedly. Cookies do not pose a risk as they are not used to collect sensitive personal data, but they are important for privacy protection. We do not use cookies to identify website users or misuse login credentials.
TECHNICAL COOKIES
|
Cookie |
Purpose |
|---|---|
|
CookiesOK |
Consent to the use of cookies |
|
externalFontsLoaded |
Helps us load fonts |
|
informationBanner |
Information banner |
|
pcart |
After adding to the cart, a hash is created linking the user to their current stored cart. |
|
NOCACHE |
Disables caching for administrators |
|
PHPSESSID |
Visitor session |
|
SRV_ID |
Internal information to ensure high availability |
THIRD-PARTY COOKIES
We also use third-party cookies (e.g., Google, Facebook, Instagram, YouTube). These cookies are controlled by third parties, who may use their own cookies and active components, and we do not have access to read or write this data; we have no influence over the processing of personal data by these service providers. For information on the use of cookies and handling of your data, as well as your rights and settings, please visit the website of the respective provider:
We provide information about how you use our website within Google Analytics, which is provided by Google Inc. More information: https://www.google.com/intl/cs/policies/technologies/cookies/ and https://policies.google.com/privacy?hl=cs
Our website contains social media cookies that display our latest posts from the respective social network on this website. Additionally, some cookies allow users logged into their social media account to share content via this service. We use the social plugins of Facebook and Instagram. If you are logged into your social network account, the operator of the social network may link your visit to your account. If you do not want social network operators to collect your data via our website, you must log out of your accounts on the social networks before visiting our website.
We use the social plugins of the following networks:
Facebook.com, operated by Facebook, Inc. More information in Facebook's privacy policy: https://www.facebook.com/privacy/explanation
Instagram, operated by Instagram, LLC. More information about the privacy policy: https://help.instagram.com/519522125107875?helpref=page_content
We also use the video platform YouTube operated by YouTube LLC. YouTube is a platform for playing audio and video files. If a page on our website contains an embedded YouTube player, a connection to YouTube is made to stream the video. When a connection to YouTube is made, data is transmitted to YouTube. More information is available in YouTube's privacy policy: https://policies.google.com/privacy?hl=cs&gl=cz
We also use cookies for advertising purposes to select ads according to information relevant to you (remarketing). Remarketing data are used only for visitor segmentation to deliver more relevant advertising messages. Segments are created based on general patterns of web behavior and the content of visited pages. As part of segmentation, we may also collect general information about the approximate geographic location of your computer or mobile device. These data are collected to provide personalized content based on your geographic location. More information about this policy can be found on the websites of the advertising systems we operate:
Google: https://www.google.com/intl/cs_cz/po