Vlastní unikátní receptury Vlastní unikátní receptury
Působivý design a vůně Působivý design a vůně
Ručně vyrobeno Ručně vyrobeno
Zero waste Zero waste
emailinfo@almarasoap.com
Almara Soap Česká republika Almara Soap Italia Almara Soap Deutschland Almara Soap Polska Almara Soap Slovensko Almara Soap España
  • Home
  • Privacy Policy Terms

Privacy Policy

Basic Provisions

  1. The data controller according to Article 4 point 7 of the Regulation of the European Parliament and Council (EU) 2016/679 on the protection of natural persons in relation to the processing of personal data and on the free movement of such data (hereinafter referred to as "GDPR") is Almara Soap, s.r.o., Company ID 08730601, with its registered office at Ve Žlíbku 1800/77, 193 00 Prague - Horní Počernice (hereinafter referred to as "controller").
  2. The contact details of the controller are
    • address: Almara Soap, s.r.o., Ve žlíbku 1800/77, 193 00 Prague - Horní Počernice, Czech Republic
    • email: info@almarasoap.com
  3. Personal data means any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, especially by reference to a specific identifier, such as a name, identification number, location data, online identifier, or one or more specific elements of the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
  4. The controller has not appointed a data protection officer.

Sources and Categories of Processed Personal Data

  1. The controller processes personal data that you have provided or personal data that the controller has obtained based on the fulfillment of your order (name, surname, delivery/invoice address, email address, phone number, Company ID and VAT ID in the case of an entrepreneur).
  2. The controller processes your identification, contact details, and other data for the purpose of fulfilling the purchase agreement, for potential user registration and account creation, and possibly also for marketing purposes.

Legal Basis and Purpose of Processing Personal Data

  1. The legal basis for the processing of personal data is
    • fulfillment of the contract between you and the controller according to Article 6(1)(b) GDPR (contract for the establishment of a user account, purchase agreement),
    • the legitimate interest of the controller in providing direct marketing (especially for sending business communications and newsletters) according to Article 6(1)(f) GDPR,
    • your consent to the processing for the purposes of providing direct marketing (especially for sending business communications and newsletters) according to Article 6(1)(a) GDPR in connection with Section 7(2) of Act No. 480/2004 Coll., on certain services of the information society in the event that no order for goods or services has been made.
  2. The purpose of processing personal data is
    • to process your order and to exercise rights and obligations arising from the contractual relationship between you and the controller; when ordering, personal data is required that is necessary for the successful processing of the order (name and address, contact), providing personal data is a necessary requirement for concluding and fulfilling the contract, without providing personal data it is not possible to conclude the contract or to fulfill it on the part of the controller,
    • to create and maintain a user account, without providing personal data it is not possible to conclude a contract for the establishment of a user account,
    • to send business communications and conduct other marketing activities.
  3. The controller does not engage in automated individual decision-making within the meaning of Article 22 GDPR.

Data Retention Period

  1. The controller retains personal data
    • for the period necessary to exercise rights and obligations arising from the contractual relationship between you and the controller and to assert claims arising from these contractual relationships (for a period of 15 years after the termination of the contractual relationship).
    • for the duration of consent to the processing of personal data for marketing purposes, for a maximum of 2 years from the granting of consent.
  2. After the expiration of the retention period, the controller will delete personal data.

Recipients of Personal Data (Subcontractors of the Controller)

  1. Recipients of personal data are persons
    1. participating in the delivery of goods/services/realization of payments based on the contract,
    2. providing services for the operation of the e-shop and other services related to the operation of the e-shop,
    3. providing marketing services.
  2. The controller intends to transfer personal data to a third country (to a country outside the EU) or to an international organization.

Your Rights

  1. Under the conditions set out in the GDPR, you have
    1. the right to access your personal data according to Article 15 GDPR,
    2. the right to rectify personal data according to Article 16 GDPR, or to restrict processing according to Article 18 GDPR.
    3. the right to erasure of personal data according to Article 17 GDPR.
    4. the right to object to processing according to Article 21 GDPR
    5. the right to data portability according to Article 20 GDPR
    6. the right to withdraw consent to the processing of personal data according to Article 7 GDPR, either in writing or electronically to the address or email of the controller provided at the beginning of these conditions.
  2. You also have the right to lodge a complaint with the Office for Personal Data Protection if you believe that your right to personal data protection has been violated.

Conditions for Securing Personal Data

  1. The controller declares that it has taken all appropriate technical and organizational measures to secure personal data.
  2. The controller has taken technical measures to secure data storage and storage of personal data in physical form.
  3. The controller declares that only authorized persons have access to personal data.

Final Provisions

  1. By submitting an order via the online order form, you confirm that you are familiar with the personal data protection conditions and that you accept them in their entirety.
  2. The controller is entitled to change these conditions. The new version of the personal data protection conditions will be published on its website and will also be sent to you via the email address you provided to the controller.

These conditions come into effect on January 1, 2020.