Privacy Policy

prepared in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR) and Act No. 110/2019 Coll., on the Processing of Personal Data

Data Controller

Business Name: SOGOS – FANAM s.r.o.

Registered Office: Objízdná 1628, 765 02 Otrokovice

Company ID: 109 64 789

Legal Form: Limited Liability Company

Registered: C 137725, Regional Court in Brno

Statutory Representative: Tamás Zoltán Nagy

Contact: Karel Horčík – [email protected], +420 730 513 350

Definition of Personal Data

Personal data means any information relating to an identified or identifiable natural person. Personal data may be general (e.g., name, age, phone number, personal status) or special categories of data (biometric data, union/political membership, ethnic origin, religious or philosophical beliefs, genetic data, criminal convictions, health data, sexual orientation).

Data Processing Definition

Processing covers any systematic operation performed on personal data, such as collection, recording, storage, structuring, alteration, retrieval, use, disclosure, restriction, deletion, or destruction.

Sources and categories of personal data

The Controller processes:

  • data you provide directly,
  • data obtained in relation to fulfilling your order.

These include identification and contact details necessary for contract performance.

Legal Basis and Purpose of Processing

Legal bases:

  • Your consent for direct marketing (Art. 6(1)(a) GDPR),
  • Contract performance (Art. 6(1)(b) GDPR),
  • Compliance with legal obligations (Art. 6(1)(c) GDPR).

Purposes:

  • Processing your order and fulfilling contractual obligations (payments, delivery, claims).

Scope of Processed Personal Data

To provide services, we process:

  • General personal data: name, address, delivery address, phone number, email.

Data Retention Period

Personal data are stored for the duration of the contractual relationship and thereafter for mandatory archiving periods defined by law (e.g., accounting and tax regulations).

Recipients of Personal Data

Categories of recipients:

  • Providers of legal, tax, accounting, and technical services.
  • Public authorities or courts, if required by law or upon your explicit consent.

Data are transferred to processors only under data processing agreements.

The Controller does not transfer data to third countries.

Security Measures

The Controller has implemented appropriate technical, organisational, and personnel measures to ensure data protection. Only authorised persons have access to personal data. No automated decision-making or profiling is carried out.

Your Rights Under GDPR

You have the right to:

  • access your data (Art. 15 GDPR),
  • rectification (Art. 16 GDPR),
  • erasure (Art. 17 GDPR),
  • restriction of processing,
  • data portability (Art. 20 GDPR),
  • object (Art. 21 GDPR),
  • withdraw consent at any time,
  • lodge a complaint with the supervisory authority.

How to Exercise Your Rights

Submit requests via email: [email protected] or by post: Objízdná 1628, 765 02 Otrokovice

Supervisory Authority

Office for Personal Data Protection

Pplk. Sochora 27, 170 00 Prague 7

ID: 70837627

Phone: +420 234 665 111

Website: https://www.uoou.cz

Email: [email protected]

Data Box ID: qkbaa2n

Effective from: 24 April 2019

Updated on: 21 October 2025