Zásady zpracování osobních údajů
General Data Protection Regulation (GDPR) is a European Union regulation that regulates the collection, use, and storage of personal data. The following is an example GDPR policy for a webshop:
1. Data Controller
The data controller is Kim.Love sro , VAT CZ 08751404 with its registered office at Švýcarská 2436, Kročehlavy, 272 01 Kladno,Czech Republic . The data controller is responsible for ensuring that all personal data collected from users of the webshop is processed in accordance with the GDPR.
2. Collection and Use of Personal Data
We collect personal data in order to fulfill our contractual obligations to our customers, including:
- Name and contact details: We collect your name, address, email address, and phone number so that we can deliver your order and communicate with you about your order.
- Payment information: We collect payment information such as credit card details or bank account information in order to process payment for your order.
We do not collect any sensitive personal data such as information about race, religion, political opinions, or health.
We will use your personal data only for the purposes for which it was collected, unless we have obtained your consent for additional uses.
3. Legal basis for processing
The legal basis for processing your personal data is the performance of a contract between you and us. By placing an order on our webshop, you enter into a contract with us and we require your personal data in order to fulfill our contractual obligations.
4. Data Retention
We will retain your personal data for as long as necessary to fulfill our contractual obligations to you and to comply with any legal requirements. Once the data is no longer necessary for these purposes, we will delete it or make it anonymous.
5. Data Subject Rights
- Under the GDPR, you have the right to:
- Access your personal data: You have the right to request access to the personal data we hold about you.
- Rectification: You have the right to request that we correct any inaccuracies in your personal data.
- Erasure: You have the right to request that we delete your personal data.
- Restriction of processing: You have the right to request that we restrict the processing of your personal data.
- Data portability: You have the right to request a copy of your personal data in a structured, commonly used, and machine-readable format.
- Object: You have the right to object to the processing of your personal data.
If you wish to exercise any of these rights, please contact us at hello@kimlove-store.com
6. Data Security
We take the security of your personal data seriously and have implemented appropriate technical and organizational measures to ensure that your personal data is secure. We also require our third-party service providers to implement appropriate security measures to protect your personal data.
7. Data transfers
We may transfer your personal data outside the European Economic Area (EEA) in order to fulfill our contractual obligations to you. In such cases, we will ensure that appropriate safeguards are in place to protect your personal data, such as standard contractual clauses.
8. Complaints
If you believe that we have not complied with our obligations under the GDPR, you have the right to lodge a complaint with a supervisory authority. The supervisory authority in the UK is the Information Commissioner's Office (ICO).
9. Changes to this Policy
We may update this policy from time to time in order to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will provide you with notice of any significant changes to this policy.