CONTACT INFORMATION

Keihin Thermal Technology Czech, s.r.o.
Unhošťská 2747
272 01 Kladno, Česká republika
tel: 312 700 700
fax: 312 700 500

ID schránky: 5y6sftv

 

GDPR

INFORMATION MEMORANDUM ON PROCESSING PERSONAL DATA

 

Dear partners,

 

the document you are currently reading contains basic information on how we process your personal data.

 

In view of the new European Union legislation, this information memorandum was prepared in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive Directive 95/46 / EC (GDPR).

 

You will learn the information in the following order:

 

  1. Who is the controller of personal data?
  2. What purpose do we need personal data for?
  3. How have personal data been collected?
  4. What categories of personal data are processed?
  5. What is the legal basis for processing personal data?
  6. Will we pass the personal data to anyone else?
  7. Will we transfer personal data to a third country or to an international organization?
  8. How long will we store personal data?
  9. What are your rights related to processing personal data and how can you exercise them?

 

If you have any questions regarding processing your personal data, please do not hesitate to contact us at e-mail address gdpr@keihin.cz.

 

1.Who is the controller of personal data?

 

 

A controller is a person who, alone or together with other persons, determines the purposes and decides how the personal data will be processed.

 

The personal data controller is Keihin Thermal Technology Czech, s.r.o., identification number 25149318, company registered in the Commercial Register of the Municipal Court in Prague, file number C 53721. The controller may be contacted on e-mail address gdpr@keihin.cz.

 

 

2.What purpose do we need personal data for?

 

The controller processes personal data to ensure the conclusion and subsequent fulfilment of a contractual obligation between the controller and you.

 

3.How have personal data been collected?

 

The controller has collected the personal data directly from you, especially from completed forms, mutual communication or from concluded contracts. In addition, personal data may also come from publicly available sources, registers and records, for example, from the Commercial Register.

4.What categories of personal data are processed?

 

In order to ensure fulfilment of the obligation, to secure fulfilment of the statutory obligations, the following categories of personal data are processed by the controller:

 

< >basic identification data - name, surname, registered seat of your company, identification number, VAT numbercontact details - phone number and e-mail address;information on using products and services of the controller - information on what products you agreed with the controller in the past and what products you are currently using, including product settings, etc.;information from your mutual communication - information from emails, phone call records or other contact forms;invoicing and transaction data - in particular, information appearing on invoices, agreed invoicing terms and payments received.5.What is the legal basis for processing personal data?

 

The lawfulness of processing is governed by Article 6 (1) of the GDPR, according to which the processing is lawful, if it is necessary to fulfil the contract, in order to fulfil the statutory duty of the controller, to protect the legitimate interests of the controller, or when processing takes place on the basis of the consent that you have granted to us.

 

The lawfulness of the processing is also based, for example, on Act No. 563/1991 Coll., on Accounting, according to which accounting data are processed and stored, according to Act No. 89/2012 Coll., the Civil Code, according to which the controller defends its/his legitimate interests, or on Act No. 235/2004 Coll., on the Value added tax.

 

6.Will we pass the personal data to anyone else?

 

We will further pass on personal data to other third parties only if you are properly acquainted with it and express your consent to it, or to comply with our statutory obligations.

 

7.Will we pass personal data to a third country or to an international organization?

 

We will not pass your personal data to countries outside the European Union or the European Economic Area or to any international organization.

 

8.How long will we store personal data?

 

Personal data will be processed and stored for at least the duration of the contract. Some personal data needed for tax and invoicing obligations, for example, will be stored for a longer time, usually for 5 years starting from the year following the termination of the business relationship.

 

Personal data will never be stored longer than is the maximal time determined by the legal regulations. After the archiving time has expired, personal data will be safely and irrecoverably destroyed so that they can not be misused.

 

9.What are your rights related to processing personal data and how can you exercise them?

 

The controller does everything to ensure that your data are processed properly and safely. You are guaranteed the rights described in this article that you can exercise at the controller.

 

How can you exercise your rights?

 

Individual rights can be exercised by sending an email to the address gdpr@keihin.cz. You can also exercise your rights by a written request sent to our mailing address Unhošťská 2747, 27201 Kladno.

 

All communications and statements concerning the rights exercised by you are provided by the controller free of charge. However, if the request is manifestly unreasonable or inappropriate, in particular because it is repeated, the controller is entitled to charge a reasonable fee, taking into account the administrative costs associated with the provision of the required information. In the event of a repeated request for the provision of copies of the processed personal data, the controller reserves the right to charge a reasonable administrative fee for this reason.

 

Statements concerning and, if applicable, information on the measures taken will be provided to you by the controller as soon as possible, but at the latest within one month. The controller may extend the time limit by two months, if necessary, taking into account the complexity of the request and the number of requests. The controller will inform you of the extension, including its reasons.

 

Right to information on processing your personal data

 

You are entitled to request information on whether personal data are processed or not from the controller. When personal data are processed, you are entitled to request information from the controller, in particular, on the identity and contact details of the controller, its /his representative and, where applicable, a personal data protection officer, processing purposes, categories of personal data concerned, recipients or categories of recipients of personal data, authorised controllers, enumeration of your rights, the possibility to contact the Office for Personal Data Protection, the source of processed personal data and on automated decision making and profiling.

 

Right of access to personal data

 

You are entitled to request information from the controller on whether or not your personal data are processed and, if yes, you have access to information on the processing purposes, categories of personal data concerned, recipients or categories of recipients, the time limit  of storing personal information, information on your rights (the right to request correction or deletion from the controller, limitation of processing, object to such processing), the right to file a complaint to the Office for Personal Data Protection, information on the source of personal data. You have the right to be provided with copies of the processed personal data. The right to obtain such copies, however, must not adversely affect the rights and freedoms of other persons.

 

 

Right to correction

 

 

If, for example, a change of residence address, telephone number, or other personally identifiable information has occurred on your part, which may be considered personal data, you have the right to request the controller to correct the processed personal data. In addition, you have the right to complete incomplete personal information, including by providing an additional statement.

 

 

Right to deletion (right to be forgotten)

 

In certain specified cases, you have the right to require the controller to delete your personal information. Such cases include, for example, that the data processed are no longer needed for the purposes mentioned above. The controller will automatically delete your personal information after the expiration date, but you can always contact the controller with your request at any time. Your request is then subject to an individual assessment (despite your right to deletion, the controller may have a duty or legitimate interest to keep your personal data) and you will be informed in detail of your request managing.

 

Right to limit processing

 

The controller processes your personal data only to the extent necessary. However, if you feel that the controller, for example, exceeds the above-mentioned purposes for which personal data is being processed, you may file a request that your personal data shall be processed solely for the most legitimate reasons or that personal data are blocked. Your request will then be subject to an individual assessment and you will be informed in detail of your request managing.

 

Right to data portability

 

If you want the controller to provide your personal information to another controller, or another company, the controller will pass your personal data in the appropriate format to the entity designated by you unless the controller is prevented from doing so by any legitimate or other significant obstacle.

 

Right to object and automated individual decision-making

 

If you have found out or believe that the controller is processing your personal data in breach of your private and personal life protection or in breach of the legal regulations, you can contact the controller and ask it/him for an explanation or correction of the improper condition.

 

You can also raise an objection directly against automated decision making and profiling.

 

Right to file a complaint with the Office for Personal Data Protection

 

You may at any time address your complaint or complaint regarding the processing of your personal data to the surveillance authority, namely to the Office for Personal Data Protection, with its seat at Pplk. Sochora 27, 170 00 Prague 7, website https://www.uoou.cz/.