We recommend that you get acquainted with these Personal Data Processing Principles thoroughly. In case you have any questions, do not hesitate to contact us via the contact details below.
The personal data controller is company Luciferlights, sro. , Služská 779, Prague 8, 18200, VAT identification number: CZ05495482
Contact details are:
The data controller appointed a manager of personal data protection, Petr Dvorak, to whom you can turn if you have any questions concerning personal data protection.
We, or our hosting provider, collect data on the basis of our legitimate interests within the meaning of Art. 6 para. 1 lit. f. of the GDPR regarding each access to the server on which this service is located (known as server log files). Access data includes the name of the requested website, file, date and time of access, amount of data transferred, notification of successful retrieval, browser type along with version, the operating system of the user, referrer URL (previously visited), IP address, and the requesting provider. Log file information is stored for a maximum of seven days for security reasons (e.g. to investigate misuse or fraud) and then deleted. Data whose further storage is required for evidence purposes are excluded from deletion until the relevant incident has been finally clarified.
We process your personal data for these reasons:
In these cases we provide your data to third parties:
The data may be used for business and marketing purposes, i.e. to maintain a database of website customers and to offer goods and services for the duration of the legal reason for such method of processing and use of personal and other data. In other words, we collect your personal data for you to be able to use our services and to inform you about new products. We also need your personal data for warranty and after-warranty services.
We use and store personal data for fulfilment of legal obligations that arise for us from the generally binding legal regulations. For example we must archive all tax documents at least 10 years from date they were issued.
We try to secure all personal data that we process against leakage or theft. For this reason, we restrict its handling, copying, transfer or access to it just for strictly necessary purposes, for which you have granted your consent, or where the purpose is defined by law.
Our website has HTTPS protocol (valid SSL certificate), TLS 1.3 and PHP 7.3 or higher for encrypted connection between the website and the user, which minimises the possibility of personal data theft during data transfer (registration, login, sending in the form, etc.).
In compliance with the law, you have the right to require information about the ways your personal data is processed and the right to have the data we keep about you – data subject corrected. In certain cases, you have the right to require deleting your personal data, to access your personal data or to transfer your personal data (for example to transfer it to a different service provider). In some cases, you have the right to raise objections and the right to require restriction of your personal data processing. In case you have provided us with your consent to process your personal data, you can withdraw it at any time. Individual rights and ways how to exercise them are described below.
You may also lodge a complaint with the supervisory authority at any time regarding the personal data processing or the failure of the controller to perform the obligations resulting from GDPR. The supervisory authority in the Czech Republic is the Office for Personal Data Protection, with its registered office at Pplk. Sochora 27, 170 00 Prague 7, www.uoou.cz.
You can change your personal data when logged into your user account. You can delete, change basic personal data.
According to Art. 16 GDPR, you have the right to request the completion of data concerning you or the correction of inaccurate data concerning you.
You have the right to require information whether we process your personal data and to what extent. You also have the right to require us to disclose your personal data and other personal details you have provided us with to you.
You can withdraw your consent to process your personal data at any time and without giving reasons. In that case, we will immediately erase your personal data and ensure our data processors do the same.
Please, be aware that withdrawing your consent doesn’t influence the lawfulness of any processing which had been done before you withdrew your consent.
You can ask us to erase your personal data at any time. If you contact us with such a request, we will immediately erase all your personal data we have at our disposal in case we don’t need it to perform contractual or legal obligations anymore or to protect our legitimate interests described above.
In case we process your personal data on the basis of our legitimate interest (e.g. when we process personal data of you as a contact person of our customer) you have the right to object to such processing at any time, concerning your particular situation. If we fail to prove legitimate grounds for processing which would override your interests or rights and freedoms or to prove this data is necessary to establishment, exercise and defence of our legal claims, we will not process the data any longer and erase it immediately.If we process your personal data for direct marketing purposes on the basis of our legitimate interest and you object to processing of your personal data for such marketing, we will immediately stop processing your personal data for this purpose.