CZ EN

Mission

Our primary aim is customer satisfaction resulting from honest work of our employees. The best results are achieved with motivated specialists, enjoying their job. We work precisely paying attention to every detail.

You can rely on us, because we will do the maximum.
And something more…

Information memorandum

General Information

In this document we provide you as the subject of personal data with the information and instruction about your rights regarding the processing of your personal data in accordance with the Decree of the European Parliament and the Council of Europe (EU) No. 679 / 2016 on protection of natural persons in relation to processing personal data and on free movement of these data known as „General Data Protection Regulation“, abbreviated as „GDPR“.

We would like to assure you that we process your personal data with due care and in accordance with the legal regulations in force. We protect your personal data in full measure that is derived from the technology level of the available means. In our company we follow strict regulations declaring the conditions under which a particular employee can access your personal data and exactly what personal data he or she can process.

We recommend that you read the information carefully. We did our best to make this document as comprehensible as possible. If there is still anything that is not clear, we will be glad to explain any of the terms or extracts to you personally.

Information about the Processing of Personal Data

Personal Data Administrator

The Personal Data Administrator is our company, i.e. NextSoft spol. s r. o. based on the address Antala Staška 510/38, 140 00 Praha 4 – Krč, registered in Register of Companies at Municipal Court in Prague, Chapter C, Section 7952, represented by Ing. Pavel Patera. ID: 45307296

We are prepared to answer your questions at the headquarters of the company, via e-mail gdpr@nextsoft.cz or by the phone +420 226 202 284

Personal Data Processor

Our company does not have a Personal Data Processor.

Personal Data Inventory

Purposes of processing the personal data and the legal basis for such processing.

Due to the operation of the business activities our company is entitled to process your personal data in order to fulfil a number of obligations required by the law and following the legal regulations. This is related namely to the following purposes of processing your data:

Conclusion of a contract with a supplier

Processing of commissions

Providing your personal data is a condition for the conclusion and continuation of a contract.

Categories of the processed personal data of the data subjects.

Our company processes your personal data to the extent necessary for fulfilling the above mentioned purposes. We process namely contact and identification data of natural persons and legal bodies related to the identification of these in the contracts, i.e. degree, first name and surname, name of the company, address, headquarters of the company, email, phone number, bank contact, company registration number, tax identification.

Personal Data Recipients

Your personal data are made available to the employees of our company, mainly to the executive director, office manager and project manager, as it is requisite for the fulfilment of their job requirements in those cases when it is essential to deal with the personal data of suppliers and customers up to the extent that is necessary while abiding by the safety measures.

Apart from that your personal data are made available to third persons who participate in processing the personal data of the suppliers/customers of our company and also to the inspecting authorities or as the case may be the data are made available to these bodies for different reasons in accordance with the law.

In accordance with the relevant legal regulations, our company is empowered or even, without your permission, obliged to hand on your personal data to the relevant state authorities in charge, courts and prosecuting authorities so that they can fulfil their duties and for the purpose of execution of the law.

Personal Data Processing Time

The personal data of our suppliers and customers are processed only for the period of time necessary for the purpose of their processing. We are continually assessing if it is still necessary to process certain data for a specific purpose. If we find out that it is not necessary to store the data for any of the purposes they had been processed, we delete such data.

However, internally we have already assessed the usual period of exploitability of personal data based on specific purposes of their processing. At the moment of expiration of such a period, we exceptionally conscientiously assess the necessity of processing the relevant personal data for the given purpose. In relation to this it also stands that we process personal data for the following purposes:

We process the conclusion and fulfilment of the contract for the period of the contractual relation with the customer or supplier; then the personal data are exploitable for the period of 3 to 12 months;

Fulfilment of the archives duties – after the end of the contractual relation we process the personal data in order to fulfil the archives duties for the period of five years.

Personal Data Resources

We obtain the personal data directly from the subjects of personal data.

Personal Data Transfer Into Foreign Countries

Your personal data are processed within the territory of the Czech Republic.

We do not transfer your personal data into any other foreign country or international organisation and we are not planning any such transfer.

As the subject of personal data you have the following rights

To demand access to the personal data we process about you as the administrator within the meaning of section 13, paragraph 2, article b), also section 14, paragraph 2, article c) and also section 15, paragraph 1, article c) of the GDPR regulation);

To demand correction or erasure of your personal data within the meaning of section 13, paragraph 2, article b), also section 14, paragraph 2, article c) and also section 15, paragraph 1, article c) and also articles 16 a 17 of the GDPR regulation);

To demand restriction of the personal data processing within the meaning of section 13, paragraph 2, article b), also section 14, paragraph 2, article c) and also section 15, paragraph 1, article c) and also section 18 of the GDPR regulation;

To object to personal data processing within the meaning of section 13, paragraph 2, article b), also section 14, paragraph 2, article c) and also section 15, paragraph 1, article c) and also section 21 of the GDPR regulation;

To transfer your personal data within the meaning of section 13, paragraph 2, article b), also section 14, paragraph 2, article c) and also section 15, paragraph 1, article c) and also section 20 of the GDPR regulation;

Not to be the subject of automatic decision making, including profiling within the meaning of section 13, paragraph 2, article b), also section 14, paragraph 2, article c) and also section 15, paragraph 1, article c) and also section 22 of the GDPR regulation;

To withdraw the permission to process your personal data at any time;

To announce that the protection of your personal data has been violated within the meaning of section 34 of the GDPR regulation;

To file a complaint with the supervisory authority within the meaning of section 13, paragraph 2, article d), also section 14, paragraph 2, article e) and also section 15, paragraph 1, article f) of the GDPR regulation.

The exercise of the rights must be done in a written form, including your verifiable personal identification and submitted at the headquarters of our company. As far as your remote authentication is regarded, our company does not have any communication channel that would allow sufficient authentication at our disposal.

The required information or documents and/or the information on the adopted measures will be provided without any delay or within the one month period after your request had been submitted, at the latest. However, in some cases this period might be prolonged and you will be informed on that without delay. If it is not possible to grant your request, we will inform you on this fact as well as on the reasons, including the instructions about your rights (about your right to file a complaint and your right for legal protection).

In case of necessity we are allowed to require additional information related to your request in order to specify your request or verify your identity.

Withdrawal of the Permission to Process Your Personal Data

At any time, as the subject of the personal data you have the right to withdraw your permission to process your personal data that you had already provided. However, this act does not affect the legitimacy of the processing that was based on the already provided permission. We would also like to remind you that we are entitled to process personal data for other purposes without your permission.

In case you would like to withdraw your permission to process your personal data, please contact us in writing or personally at the address NextSoft spol. s r. o., Antala Staška 510/38, 140 00 Praha 4, via e-mail gdpr@nextsoft.cz or by phone +420 226 202 284.

When withdrawing your written permission you have to:

Identify yourself (state your name, surname, permanent residence, date of birth) at the minimal extent which enables your authentication;

Claim explicitly that you do not want us to process your personal data any longer;

Sign it in your own hand.

This information memorandum is valid with effect from May 25, 2018.