If you’re our customer or a visitor to our website, with your visit or purchase of goods you entrust us your personal data. Our company is responsible for their protection and security in accordance with the principles and rights deriving from the GDPR (General Data Protection Regulation).
Personal Data Administrator
The personal data administrator is AYSAN s.r.o., with its registered office at 1.máje 868/11, 460 07 Liberec, Business ID No.: 02262215. Office responsible pursuant to Section 71 par. 2 of the Trades Licencing Act: Municipal Office of Liberec. AYSAN s.r.o. as a website operator of www.aysan.com, they handle your personal data as an administrator, i.e. they determine how personal data will be processed and for what purpose, for how long and select any other processors.
Contact Information
If you wish to contact us during your data processing, please contact us on +420 485 103 369 or by e-mail: i.landova@aysan.com.
Declaration
We declare that, as the administrator of your personal data, we comply with all legal obligations required by applicable law, in particular, the Personal Data Protection Act and the GDPR, and therefore:
1. we will only process your personal data on the basis of a valid legal reason, in particular, the legitimate interest, the agreement performance, legal obligations or granted consent
2. pursuant to Article 13 of the GDPR we comply with the information obligation prior to personal data processing,
3. we will allow you to fulfil your rights under the Personal Data Protection Act and the GDPR.
The scope of personal data and purpose of processing
We process your personal data to fulfil the following purposes:
1. Service provision and agreement performance
your personal data to the extent of: billing information, e-mail, telephone, and correspondence address is absolutely needed to fulfil the agreement - sending goods, spare parts, and fulfilment of warranty conditions.
2. Bookkeeping
If you’re a customer, we need your personal data (billing information) to comply with the statutory obligation to issue and record tax documents.
3. Marketing - sending newsletters
We use your personal information (email and name), your place of residence, what you click on in e-mail and where you most often open it, for the purpose of direct marketing sending business messages. If you’re our customer, we are doing so for a legitimate interest because we reasonably believe that you have an interest in our news, for 5 years from your last order.
If you are not our customer, we’ll send you newsletters mainly based on a) your consent b) your prior request for company materials, especially catalogues, for a period of 5 years.
In all of the above cases, you can revoke this consent by using a sign-out link in every email you are sent.
4. Photos and videos
On some of our assemblies, we take photo documentation or a video recording. We use photos in promotional materials, especially on the web and print materials. Regarding these materials, you’ll never find the names and the locations of the site unless it’s a reference and it is based on consent.
We retain your personal data for the duration of the limitation periods, unless the law provides a longer period for its retention or we have stated otherwise in specific cases.
Cookies
While browsing our websites, we do not record your IP address, how long you stay on the page and from which site you come from or any other data.
Ads targeting cookies will only be processed based on your consent.
Our website can also be browsed in a mode that doesn’t allow the collection of personal data. You can disable the use of cookies on your computer in the Internet browser.
Security and Privacy Policy
We protect personal data as much as possible using modern technologies that correspond to the level of technical development. We have accepted and maintained all possible (currently known) technical and organisational measures that prevent misuse, damage or destruction of your personal information.
Passing personal data to third parties
Our employees and co-workers, who are confidential and trained in the security of personal data processing, have access to your personal data.
In order to provide some specific processing operations that we can’t provide ourselves, we use the services and applications of processors who specialise in the processing and are in compliance with the GDPR.
They’re providers of the following platforms and services:
FedEx - Mail dispatching
TNT – Mail dispatching
DHL - Mail dispatching
PPL - Mail dispatching
Mailchimp – A newsletter distribution system
Facebook - Facebook pixel
Dropbox – Data storage
Google - Google Analytics, AdWords
OVH – Web hosting and other web services
KANZEN - Accounting firm
It’s possible that in the future we’ll decide to use other applications or processors to facilitate and improve processing. In this case, we always select companies in accordance with GDPR.
Data transmission outside the European Union
We process data only in the European Union or in countries that provide adequate protection levels on the basis of the European Commission's decision.
Personal data protection rights
If you wish to use any of these rights, please contact us by e-mail: j.samalova@aysan.com
Right to information - is already covered by this information page with the principles of processing personal data.
Right of access to information - you can invite us and we’ll provide you with information on what personal data we process and why within 30 days.
Right of completion and change - If something changes or you find your personal data outdated or incomplete, you have the right to add or modify your personal data.
Right to limit processing - If you believe we process your inaccurate data, but you don’t want to delete all data or have objected to the processing, you may restrict the scope of personal data or processing purposes. (For example, unsubscribing the newsletter restricts the purpose of processing for sending business announcements.)
Right to be deleted (be forgotten)
In this case, we’ll delete all your personal data from our system and the system of all partial processors and backups. We need 30 days to secure the right to delete. In legitimate cases, we are bound by a statutory duty. We must record the issued tax documents for the deadline stipulated by the law. In this case, we’ll delete all such personal data that is not bound by any other law. We’ll notify you by e-mail regarding the completion of the deletion.
Complaint to the Office for Personal Data Protection
You have the right to address your complaint at any time to the Office for Personal Data Protection.
Unsubscribe from newsletters and business announcements
Emails with news, articles or products and services are sent to you, if you’re our customer, based on our legitimate interest. If you’re not a customer yet, we’ll send it to you based on a) your consent b) your prior request for company materials, especially catalogues. In all cases, you can stop subscribing to our emails by clicking the logout link in every email you are sent.
Confidentiality
Our employees and co-workers who will process your personal data are required to maintain confidentiality on personal data and security measures whose disclosure would compromise the security of your personal data. This confidentiality persists even after the termination of the obligations.
This privacy policy applies from May 24th, 2018