Personal data processing declaration

Data Controller:

Company Profi Pohoda s.r.o., Company ID : 27981126, Tax ID : CZ27981126

registered in the Commercial Register maintained by the Regional Court in Pilsen, Section C , Insert 19932, with registered office at Kraslická 629, 35137 Luby operating Pension Daniela - Boží Dar no. 161 and pension Arnika - Boží Dar 125 in order to fulfill its obligations to its clients, state and public authorities, as well as other legal requirements arising from applicable legislation, is obliged to process some of your personal data in accordance with the law and in particular Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC.

In accordance with Article 12 of the GDPR, we hereby inform you about the processing of your personal data and your rights.

Legal basis for processing:

The legal basis for the processing is the performance of a contract, namely the contract for accommodation, the contract for the rental of a means of transport and the performance of legal obligations, in particular the payment of the fee for a spa or recreational stay according to the Ordinance No. 6/2010 of 13.12.2013 of the City of Boží Dar.

For the purpose of informing about current offers, events, news, commercial communications, invitations to events, etc., the administrator uses the personal data of clients, in particular name, email address, residential address and date of birth. By filling in the booking form on the website or by sending an accommodation enquiry, the client expressly agrees, after having been informed of the relevant information on data processing, to receive direct marketing communications, including direct marketing or special offers from the hotel. This consent is voluntary and can be opted out at any time without giving any reason, by emailing daniela@penziondaniela.eu.

Purpose of processing:

The data is processed for the purpose of fulfilling the legal obligations described above and, in particular, to provide services in accordance with the contracts concluded with the client, to process orders and resolve complaints. The data may also be used and retained for accounting, billing and auditing purposes, for credit or other payment card verification, for anti-fraud checks, for immigration and customs checks, safety, security, system testing, maintenance, improvement and development, health, administrative and legal purposes, statistical and marketing analysis, we may also use it to communicate with the client for administrative or operational reasons.

To a limited extent, the controller uses personal data to perform analytics, for quality improvement, for service development, to improve the performance of the website, to measure the success of its advertising campaigns or to tailor its services to client demand. It may provide information that cannot personally identify the client for these purposes, such as, but not limited to, anonymous demographic information or online behavior to our contractors (e.g., third party service providers). No such information will be provided to third parties without it being in aggregate, non-personally identifiable form.

Recipients of Personal Information:

Personal data is only provided to government authorities, authorities and institutions where the obligation to transmit personal data about the client arises from the relevant legislation by public authorities (e.g. courts, administrative authorities), to the City of Boží Dar for the payment of the relevant fee, or to other recipients according to the needs and instructions of the client.Personal data is not provided for any commercial purposes to third parties. They are not transferred to third countries, international organizations.

Method of processing and protection of personal data:

The processing of personal data is carried out by the administrator, the processing is carried out at its headquarters and in its premises - guesthouses, by individual authorized employees of the administrator. The processing takes place by means of computer technology and manually for personal data in paper form, in compliance with all security principles for the management and processing of personal data. To this end, the controller has adopted technical and organisational measures to ensure the protection of personal data, in particular measures to prevent unauthorised or accidental access to personal data, their alteration, destruction or loss, unauthorised transfers, unauthorised processing and other misuse of personal data. All entities to which personal data may be disclosed shall respect the right of privacy of data subjects and shall comply with applicable data protection legislation. We pay particular attention to the secure transfer of personal and financial data.

Period of processing of personal data:

Personal data will be processed for the period of time necessary to ensure the rights and obligations arising from both the contractual relationship and the relevant legislation.

Client's rights:

1.The right of access to personal data means that the client has the right to obtain information from the controller as to whether it is processing their personal data and, if so, what the data is and how it is processed. The client also has the right to have inaccurate personal data concerning him or her rectified by the controller without undue delay at his or her request. The client has the right to complete incomplete personal data at any time.

2.The right to erasure of personal data is, in other words, the obligation of the controller to erase the personal data it processes about the client if certain conditions are met and the client so requests.

3.The client has the right to have the controller restrict the processing of his/her personal data in certain cases. The client has the right to object at any time to processing which is based on the legitimate interests of the controller, a third party or is necessary for the performance of a task carried out in the public interest or in the exercise of official authority.

4.The right to data portability gives the client the possibility to obtain the personal data that he himself has provided to the controller in a common and machine-readable format. He may subsequently transmit this data to another controller or, if technically feasible, request that the controllers transmit it between themselves.

5.The client has the right to withdraw consent to the processing of personal data at any time where the personal data is processed on the basis of a consent to processing entered into with the client and not because of a legal obligation or the performance of a contract entered into with the client.

6.If the client is in any way dissatisfied with the processing of his/her personal data by the controller, he/she may lodge a complaint directly with the controller or contact the Office for Personal Data Protection, located at Pplk. Sochor 27, 170 00 Prague 7. More information about the rights of the client is available on the website of the Office for Personal Data Protection.

In the event of any suggestions, questions or uncertainties in connection with the processing of personal data, including complaints, you can contact the administrator at the following contact person: Bc. Romana Argmannová, MBA, Ed.D., by filling in the application form below and sending it to the following email address: daniela@penziondaniela.eu

FORM OF APPLICATION