The principles of processing and protecting personal data
Introduction – GDPR
The owner of this website, www.sothebysrealty.cz (hereinafter referred to as the “Website”), is the company Sirelux spol.s r. o., having its registered office at Seberíniho 21, 821 03, Bratislava, Company Number: 44 693 249, Taxpayer Identification Number: 2022800131, entered in the Commercial Register maintained at the Metropolitan Court in Bratislava, file 57724/B (hereinafter referred to as “Sirelux” or the “Controller”) as the owner of Real Deluxe Living (hereinafter reffered to as “RE”).
Controller declares that all personal data of natural persons (hereinafter referred to as “Personal Data”) is considered strictly confidential and is handled in accordance with the legal regulations in force in the sphere of Personal Data protection.
The security of your Personal Data is a priority to us. We therefore pay the required attention to Personal Data and its protection. We would like to use these Principles of Processing and Protecting Personal Data to inform you of the Personal Data which we collect about you and the way in which we use it thereafter.
Please contact us at email@example.com with any questions you might have regarding Personal Data processing or the Website.
Processing personal data
We only approach to the processing of your personal data in a legal, professional and sensitive way.
GDPR= Regulation (EU) 2016/679 of the EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of retural persons with regard to the processing of personal data on the free movement of such data, and repealing Directive 95/46/EC/General Data protection Regulation.
Your personal data is stored in secured information system. All persons who come into contact with your personal data from operator are properly instructed about the lawful treatment of them and bound by the confidentiality. We only obtain from you the data required to meet the purpose because of which you have contacted us. If you do not wish to receive e-mail with our actions and specila offers you have requested, you can inform us via e-mail. You can always ask us to delete your order history or our e-mail communication by e-mail, in a written form, personally or by phone.
Based on consent given by sending a completed contact or registration website form, we, as the Personal Data Controller, process the following Personal Data about customers:
- first name and surname;
- e-mail address;
- telephone number.
We also process the following Personal Data:
- data from e-mail communication between the workers of the Controller and the customer;
- records of customer behaviour on the Website.
If you submit a job application form to us, we also process all Personal Data stated in the CV which you send and information about the selected employment position.
The purpose of the processing of personal data is a pre-contractual relationship, the processing of document for the contract conclusion, the order confirmation, either by telephone or by e-mail, sending offers and newsletters, if the customer is interested in this service and to issue a tax document – invoices pursuant.
Purpose of processing
The purpose of processing is to allow the Controller to provide its services and to improve them. Specifically:
- The registration of inquiries for and offers of cooperation from customers;
- Marketing offers:
Newsletter sent to an e-mail address (commercial communications);
a) We send customers commercial communications regarding the products and services which we are offering at the time.
b) You can always refuse such commercial communications using the link for cancelling registration found in every e-mail.
c) If you cancel the receipt of commercial communications, we will not thereafter use the relevant electronic contacts for these purposes.
The marketing offers which are shown in commercial communications may be selected based on other information which we have obtained about a customer over time according to contact data, favourite items and data on the use of our products and Website (cookies, IP address, data provided by your browser, data about click-throughs, the commercial communications displayed, products visited). This is not fully-automated processing in the sense of the legal regulations in force regarding Personal Data protection.
We also use the Personal Data collected to communicate with customers – by telephone or e-mail, via an application or in another way.
- Improving services
We use Personal Data to improve our services and systems, to add new functions and to enable us to take informed decisions using summary analyses and business intelligence, all in our legitimate interest stemming from the freedom to undertake business and consisting of the requirement to improve the services provided to succeed in the face of economic competition. However, your Personal Data is made anonymous during such processing.
- Processing cookies from the Website, if cookies are permitted in the web browser, meaning processing records of behaviour from the cookies located on the Website for the purposes of ensuring better operation of the Website and for the purposes of Internet advertising. You will find more information about this in a separate section of these Principles of Processing and Protecting Personal Data.
Transferring Personal Data to third parties
Your data is secure – we use applications from renowned global companies to process it. Data is stored and backed-up predominantly in cloud repositories operated by global suppliers within the EU region, or by suppliers who comply with the terms and conditions of the Data Privacy Shield – you can find more information about such suppliers and data protection here: https://www.privacyshield.gov/. The data stored in cloud repositories is secured by encryption and measures have been put in place at our company to ensure Personal Data protection. The Data that we collect in regard to the client are stored and processed only within the territory of the EU, or within the the territory or states that have undertaken to comply with EU Standards for the processing and security of personal data (USA) outside of the EU, personal data are processed or stored only with processors/recipients whho are certified according to the EU-U.S. Privacy Shield: Dropbox International Unlimited Company (data repository), having its registered office at One Park Place, Floor 5, Upper Hatch Street, Dublin 2, IEThe principles of working with Personal Data are available here: https://www.dropbox.com/privacy2018 Google Inc. USA having its registered office at 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. Collected cookies files are subsequently processed by Google Inc in accordance with the privacy protection principles available at https://www.google.com/intl/cs/policies/privacy/#nosharing. Personal Data might also be processed by other providers of processing software, services and applications; however, the company does not currently use these with respect to third parties which conduct surveys among customers.
Security of personal data
Personal Data is transferred in encoded format. The SSL (secure socket layer) coding system is used when securing. The Website and other systems are secured using technical and organisational measures against the loss and destruction of Personal Data, against access by unauthorised persons to Personal Data and against the alteration or distribution of Personal Data.
When transferring Personal Data to processors, we require them to prove that their systems comply with the legal regulations in force to protect Personal Data.
The period of processing
We process and store your Personal Data, with your consent, for a period of 5 years or until you withdraw the consent you have given. In other cases, the period of processing ensues from the purpose of processing or is based on legal regulations in the sphere of Personal Data protection.The rights of data subjectsYou have the following rights in connection with the Personal Data processing described above:
- to request free information from the Controller about the processing of your Personal Data;
- to request that the Controller provide an explanation regarding the Personal Data processed;
- to access your processed Personal Data and have your Personal Data updated or rectified;
- to request the erasure of Personal Data which the Controller does not have consent to process or which the Controller is not processing based on any other legal grounds;
- if you have doubts regarding adherence to obligations connected with Personal Data protection, you may contact the supervisory authority, in this case Úrad pre ochranu osobných údajov (Office for Personal Data Protection);
- you may withdraw your consent to Personal Data processing at any time by delivering written notification to the registered office of the Controller or to the following e-mail address: firstname.lastname@example.org. If you withdraw your consent, the relevant Personal Data will be erased or made anonymous; however, this does not concern the Personal Data which we need to comply with mandatory obligations or to protect our own legitimate interests. Personal Data is also erased when such Personal Data is not required for the specified purpose or if the processing of such Personal Data is not permitted for some other reason.
Our Website was created in such a way as to comply with the laws of the Slovak Republic, which is where it is hosted. All Website visits and any disputes arising in connection with the Website are subject to the Slovak legal order. See the section on copyright for details to concern copyright. We should point out that if the Website is linked by hypertext to any other sites operated by a third party, we are not responsible for the content of such sites. Moreover, a link shown to the site of a third party cannot be considered to be a recommendation of such a site on our part. Neither do we bear any responsibility for advertising or other forms of publicity done by any third party via the Website and we are not responsible for the content of such advertising. We are not responsible for the content of another located on the Website. Any information on the Website is up-to-date on the date of its publication, may contain factual and technical inaccuracies or typographical errors and may be updated without prior notification on our part. We do not, therefore, guarantee the factual accuracy and completeness of Website content. For this reason, any information or recommendations provided on the Website is/are merely informative and non-binding in nature and, in particular, cannot be interpreted as a declaration of the appropriateness of a product or services for any purpose. For this reason we do not provide any guarantees or warranties regarding Website content as far as accuracy, completeness or content of any information stated there is concerned and we are not responsible for any errors which might appear on the Website. We do not guarantee that the use of this Website will be uninterrupted and flawless. You use the pages and materials found on the Website at your own risk. We are not liable to any party for direct, indirect or subsequent material or non-material loss which might arise as a result of using this Website or relying on its content, including (although not exclusively) system failure, delay or interruption of access, computer viruses, breach of security or unauthorised use of systems as a result of attack by hackers, etc.
Some cookie files can gather information, which is subsequently used by third parties and which, for example, directly supports our advertising activities (“third-party cookies”). For example, information about the products and services visited on our Website might be displayed by an advertising agency as part of displaying and adapting Internet advertising banners on the websites which you display. However, such data cannot be used to identify you.
© Copyright Sirelux spol. s r. o.., registered office Seberiniho 21, 821 03 Bratislava, ID: 44 693 249, VAT ID: 2022800131, registered in the Commercial Register maintained by the Municipal Court in Bratislava I., Section Sro, Insert No. 57724 (hereinafter the “Sirelux”), www.realdeluxe.sk and www.realdeluxerealty.com All rights reserved. Materials published on the website www.realdeluxe.sk and www.realdeluxerealty.com (hereinafter the “Website”) are protected under the Copyright Act, as amended (hereinafter the “Copyright Act”). In particular trademarks, graphics, logos, text, design of the Website, videos, images, sound and animation, as well as their arrangement on the Website (hereinafter the “Copyright Work”) are the property of the company Sirelux. It cannot be excluded that the products, services, advertisements and/or other materials published on the Website by third parties. We note that images published on the Website may be subject to third party copyrights. We do not grant any authorisation for the copy, reproduction, alteration or download of the Website or any part of it.
These Principles of Processing and Protecting Personal Data are valid from 25th May 2018.