Čeština English

PERSONAL DATA PROCESSING AND PROTECTION POLICY

30. 12. 2025

PURPOSIA Group a.s.

1. Introduction

PURPOSIA Group a.s., Company ID No.: 17585562, with its registered office at Lihovarská 689/40A, 718 00 Ostrava-Kunčičky, Czech Republic (hereinafter referred to as the “Controller”), processes personal data in accordance with:

  • Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR);

  • Act No. 110/2019 Coll., on the processing of personal data;

  • Act No. 480/2004 Coll., on certain information society services;

  • and other applicable legal regulations.

This Policy applies to all visitors to the Controller’s website and to other individuals whose personal data are processed by the Controller (hereinafter referred to as “Data Subjects”).

2. Scope of Personal Data Processed

The Controller processes only personal data which:

  • the Data Subject provides voluntarily (e.g., through a contact form, email communication, or telephone contact);

  • are necessary for the performance of a contract or for pre-contractual communication;

  • are collected during visits to the website.

Such data may include, in particular:

  • first and last name;

  • email address;

  • telephone number;

  • company name;

  • IP address;

  • technical information about the device and browser;

  • data obtained through cookies.

The Controller does not process special categories of personal data (sensitive data) unless there are legal grounds for doing so.

3. Purposes and Legal Bases for Processing

Personal data are processed for the following purposes:

a) Communication and handling of inquiries
(Legal basis: performance of a contract or taking steps prior to entering into a contract pursuant to Article 6(1)(b) GDPR)

b) Sending commercial communications and newsletters
(Legal basis: consent of the Data Subject pursuant to Article 6(1)(a) GDPR or legitimate interest pursuant to Act No. 480/2004 Coll.)

c) Website traffic analysis and improvement of website functionality
(Legal basis: legitimate interest of the Controller pursuant to Article 6(1)(f) GDPR)

d) Compliance with legal obligations
(Legal basis: Article 6(1)(c) GDPR)

4. Data Retention Period

Personal data are retained only for the period necessary to fulfil the purpose of their processing, but no longer than:

  • for the duration of the contractual relationship and subsequently for the period required by applicable legal regulations;

  • for the duration of the consent granted;

  • or for the period necessary to protect the legitimate interests of the Controller.

After the expiration of the relevant retention period, personal data are securely deleted or anonymized.

5. Disclosure of Personal Data

The Controller does not disclose personal data to third parties for their own marketing purposes.

Personal data may be made available to:

  • IT and hosting service providers (data processors);

  • external suppliers responsible for website administration;

  • public authorities, where required by law.

The Controller has concluded appropriate data processing agreements with all processors.

6. Rights of Data Subjects

In accordance with the GDPR, the Data Subject has the following rights:

  • the right of access to personal data (Article 15 GDPR);

  • the right to rectification of inaccurate data (Article 16 GDPR);

  • the right to erasure (“right to be forgotten”) (Article 17 GDPR);

  • the right to restriction of processing (Article 18 GDPR);

  • the right to data portability (Article 20 GDPR);

  • the right to object to processing (Article 21 GDPR);

  • the right to withdraw consent at any time;

  • the right to lodge a complaint with the Office for Personal Data Protection
    (www.uoou.cz, Pplk. Sochora 27, 170 00 Prague 7, Czech Republic).

7. Cookies

The Controller’s website uses cookies and similar technologies for the purpose of:

  • ensuring the proper functioning of the website;

  • analyzing website traffic;

  • conducting marketing activities.

The use of non-essential cookies is based on the user’s consent, which may be withdrawn at any time through the cookie settings.

Further details are provided in the separate Cookie Policy.

8. Controller’s Contact Details

If you have any questions regarding the processing of personal data, you may contact the Controller at:

PURPOSIA Group a.s.
Lihovarská 689/40A
718 00 Ostrava-Kunčičky
Czech Republic
Email: info@purposia.eu

9. Final clauses

The administrator is entitled to update these principles at any time. The current version is always published on the company's website.