The information below is published in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and on the repeal of Directive 95/46/EC (hereinafter also "GDPR").

Administrator's identity and contact details:

JUDr. Andrea Kanoczová
ID: 42380049, Tax ID: 1078141900
with registered office Laborecká 1892/48, 06601 Humenné - operation Kukorelliho 60, 06601 Humenné
e-mail: lace.cipka@gmail.com
(hereinafter referred to as "administrator")

We hereby inform you as a data subject in accordance with Art. 12 et seq. GDPR on the processing of your personal data and your rights.

1. Scope of personal data processing

Your personal data is processed by the administrator to the extent that you have provided this data to the administrator based on your consent when contacting the administrator or requesting news.

You are not obliged to provide personal data, but if you do not provide it, it will not be possible to provide you with some services associated with this web interface.

2. Source of personal data

Your personal data is obtained from you as the data subject.

3. Categories of personal data that are subject to processing by the administrator

The administrator processes the following categories of your personal data himself or through an intermediary:

• E-mail adress

4. Categories of data subjects

You are a natural person to whom the data relates, namely a customer or contractual partner of the administrator.

5. Categories of processors and recipients of personal data

The recipient of your personal data is primarily the administrator. It can also be an external entity that provides services to the administrator:

accounting services, tax advisor services

Legal Services

IT services, cloud storage

advertising, marketing services

services in the field of training, education.

We assure you that our colleagues who will process your personal data or have access to them are obliged to maintain confidentiality about personal data and security measures, the disclosure of which would endanger the security of your personal data. This obligation continues even after the end of our contractual relationship.

6. Purpose and reasons for processing personal data

The purpose and reason for processing your personal data is to answer your questions and improve the services we provide.

7. Method of processing and protection of personal data

The processing of personal data is carried out by the administrator. The processing is carried out in its operations and the administrator's seat. Computer technology is used for processing, or it is carried out manually for personal data in paper form in compliance with all security principles for the management and processing of personal data. For this purpose, the administrator has adopted technical and organizational measures to ensure the protection of personal data, especially measures to prevent unauthorized or accidental access to personal data, their change, destruction or loss, unauthorized transfer, their unauthorized processing, as well as other misuse personal data. All entities to which personal data may be made available are checked by the administrator, their respect for the data subject's rights to the protection of personal data and privacy is contractually ensured and they are obliged to proceed in accordance with applicable legal regulations regarding the protection of personal data.

8. Period of storage of personal data

In accordance with the administrator's internal regulations, the contract or the relevant legal regulations, in all cases it concerns the processing of personal data for the necessary period, which is necessary to ensure the requested services, ensure the rights and obligations arising from the concluded contract, legitimate interests, or from the relevant legal regulations.

9. Guidance

The administrator processes data with the consent of the data subject, with the exception of cases established by law when the processing of personal data does not require the consent of the data subject. In accordance with Art. 6 par. 1 GDPR, the administrator may process the following data without the consent of the data subject: the data subject has granted consent for one or more specific purposes, the processing is necessary for the fulfillment of a contract to which the data subject is a party, or for the implementation of measures taken prior to the conclusion of the contract at the request of the data subject , the processing is necessary for the fulfillment of a legal obligation that applies to the controller, the processing is necessary for the protection of the vital interests of the data subject or another natural person, the processing is necessary for the purposes of the legitimate interests of the relevant controller or a third party, except when these interests the interests or fundamental rights and freedoms of data subjects requiring the protection of personal data take precedence.

10. Rights of the data subject

In accordance with Art. 12 GDPR, the administrator informs you about your right to access personal data and the following information:

purpose of processing,

category of affected personal data,

to the recipient or category of recipients to whom personal data was provided or made available,

the planned period during which personal data will be stored,

all available information about the source of personal data,

if they are not obtained from the data subject, the facts, whether automated decision-making takes place, including profiling.

Furthermore, we inform you about your right to portability of your personal data. This consists in the administrator's obligation to transfer to the data subject all information processed about him in a structured, commonly used, machine-readable format. By exercising this right, you gain more control over your personal data and you also have the option to transfer them to another administrator in the form obtained in this way.

If you find out or believe that the administrator or processor is processing your personal data, which is in violation of the protection of your private and personal life or in violation of the law, especially if your personal data is inaccurate with regard to the purpose of their processing, you can:

• Ask the administrator for an explanation.
• Demand that the administrator remove the state thus created. This applies in particular to the blocking, correction, addition or deletion of personal data. If you are not sure about the content or form of such a request, contact us by e-mail (lace.cipka@gmail.com) and we will provide you with one of the following forms:

A5a: Request - objection to the processing of personal data

A5b: Request - restriction of processing

A5c: Request - correction

A5d: Request - portability

A5e: Request - access

A5f: Request - deletion

• If your request is evaluated as justified, the administrator will immediately remove the unsatisfactory status.
• If the administrator does not comply with the data subject's request, the data subject has the right to contact the supervisory authority, which is the Personal Data Protection Office.
• You have the right to address your complaint to the supervisory authority directly without taking the previous steps.
• You also have the right to request deletion of your personal data. The administrator will comply with your request without delay if the personal data are no longer needed for the purpose for which they were obtained, or if other legitimate reasons arise. However, the administrator will not comply with the request if it is not justified (especially if the shredding periods have not expired according to the applicable legal regulations); this fact will be communicated to you together with the reasons for further processing.

The administrator has the right to demand an adequate compensation for the provision of information not exceeding the costs unavoidable for providing the information.

11. Declaration of the administrator

As a personal data administrator, we declare that we fulfill all statutory obligations required by applicable legislation, in particular the Personal Data Protection Act, and therefore that:

we process the personal data of our subscribers only on the basis of consent or a legal legal title, we do not work with sensitive personal data such as personal data referring to national, racial or ethnic origin, political attitudes, membership in trade unions, religion and philosophical beliefs, criminal convictions, health and sexual life, genetic data or biometric data of the data subject,

we fulfill the information obligation according to the Data Protection Act,

we enable subjects to exercise their rights according to the Personal Data Protection Act,

we shred personal data after the expiry of the statutory shredding periods (determined mainly by tax regulations),

we fulfill all other obligations of the administrator of personal data according to the Personal Data Protection Act,

we do not and will not sell the data to third countries.

12. Final provision

In case of questions regarding the processing of your personal data, you can contact the administrator in writing or electronically via the following contact details:

JUDr. Andrea Kanoczová
ID: 42380049, Tax ID: 1078141900
with registered office at Laborecká 48, 06601 Humenné
e-mail: lace.cipka@gmail.com

Appendix: Declaration of compliance with GDPR