Visu, s.r.o., Company ID No. 070 91 346, Tax ID No.: CZ07091346, with its registered office at Hakenova 561, 463 03 Stráž nad Nisou, registered in the Commercial Register maintained by the Regional Court in Ústí nad Labem, File Ref. C 41477 (hereinafter referred to as the “Controller”) as a personal data controller within the meaning of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons in connection with the processing of personal data and free movement of this data (GDPR), collects and processes the personal data of its customers in order to meet the terms of its contractual relationships and to satisfy relations between the Controller and the customer for the duration of such contractual relationship, as well as after its termination. The Controller declares that the personal data of customers is processed in accordance with GDPR, local data protection laws and company directives.
Data protection laws also require individuals to be informed about the processing of their personal data (and require their consent to processing under certain circumstances) and about the transmission of data to third parties and third countries. In accordance with Article 13 of the GDPR, the Controller hereby informs customers about the conditions under which their personal data is processed and about the rights of customers as data subjects pursuant to the GDPR.
The legal basis for processing certain customer personal data is the performance of a contract between the Controller and the customer.
The legal basis for processing certain customer personal data, such as bank or accounting data, is the necessity to fulfil legal obligations.
The legal basis for processing certain customer personal data, particularly in the case of physical likenesses (photographs, video recordings – trainings, lectures, seminars, etc.) or voice (audio) recordings is the consent of the respective customer.
The information that the Controller may store (in printed or electronic form) about customers conducting work as entrepreneurs in connection with agreements with the Controller shall contain the following personal data: name and address, business name and place of business, identification number, tax identification number, e-mail address, telephone number and financial data, as well as data necessary for invoicing.
The information that the Controller may store (in printed or electronic form) about customers not conducting work as entrepreneurs in connection with agreements with the Client includes the following personal data: name and address, date of birth, e-mail address, telephone number and bank details.
Customer personal data is collected and processed for the following purposes:
Categories of personal data recipients
The Controller shall provide the personal data of customers to the following categories of recipients:
The Controller intends to transmit your personal data to a third country (a non-EU member state) or to an international organisation. The recipients of personal data in third countries are cloud service providers.
Personal data will be processed and stored for the necessary time according to applicable legislation. In the absence of a specified time period, the personal data shall be processed and stored for a period of 5 years after the termination of the contract.
The Controller hereby informs customers of the following rights that customers, as data subjects, may exercise within the scope of the information provided herein
Customers have the right to confirmation from the Controller as to whether personal data relating to their person is being processed and, if so, to obtain access to the personal data and information on data processing conditions (e.g. purposes of processing, personal data categories, recipients, expected retention period, etc.).
Customers have the right to ask the Controller for access, to correct or delete their personal data, or to request restrictions on the processing of certain personal data relating to their person, as well as to object to processing by contacting the Controller at the following address: firstname.lastname@example.org
Customers shall have the right to obtain from the Controller, without undue delay, rectification of inaccurate or incomplete personal data relating to their person, regardless of the reason for such inaccuracy or incompleteness.
Customers shall have the right to obtain from the Controller, without undue delay, confirmation of the termination of processing and deletion of personal data relating to their person, and the Controller shall be obliged to delete certain personal data without undue delay if any of the reasons from the GDPR are specified.
Customers have the right to restriction of personal data processing under the GDPR, especially in case of doubt about the accuracy of the processing.
Customers have the right to receive the personal data that they have provided to the Controller in a structured, commonly used and machine-readable format, and the right to share such data with another controller without hindrance from the Controller. This right applies if the personal data is processed for the purpose of performing a contract, and the data is processed by automated means.
At any time for reasons relating to their specific situation, Customers shall have the right to object to the processing of personal data which relates to their person and which is processed on the grounds of a legitimate interest of the Controller or tasks carried out in the public interest.
Customers have the right to lodge a complaint with a supervisory authority if they believe that the Controller is processing their personal data in conflict with the GDPR or other legislation. The supervisory authority in this case shall be the Office for Personal Data Protection of the Czech Republic.
Depending on the purpose of personal data processing, the provision of personal data by customers may be a legal or a contractual obligation. In such cases, customers shall be obliged to provide personal data. Failure to do so would prevent the Controller from fulfilling its legal obligations and from meeting other conditions of the contractual relationship.
Automated individual decision making, including profiling. The Customer acknowledges that the Controller may use automated decision making, including profiling, in order to establish fair market value remuneration.