Principles of personal data processing and information for the data subject in connection with the acquisition and processing of personal data. | Foxydepot

Principles and instructions on the protection of personal data provided by the operator to the data subject when obtaining personal data from the data subject when using the foxidepot.com website and using all its parts, including the contact form, email addresses and the non-binding order form.

The operator hereby, in accordance with Article 13 par. 1 and 2 of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 May 2016 on the protection of natural persons in the processing of personal data and on the free movement of such data, which repeals Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as the "Regulation") provides the Data Subject from whom the Operator obtains personal data, which the following information concerns her:

Identity and contact details of the Website Operator: Business name: Foxy Depot s.r.o. Headquarters: Železničná 363, 905 01 Senica Registered in the register of the Trnava District Court, Division Sro, Insert number: 52240/T ID number: 54 664 128 TIN: VAT: Bank account IBAN (SWIFT): The seller is a VAT payer /Value Added Tax/

Identity and contact details of the Operator's representative:

Contact details of the responsible person:
Adam Jakubac
+421 911 101 200
adam.jakubac@foxydepot.com

Who collects your personal data?
The administrator of your personal data is the Website Operator.

How can you contact the Administrator?
Address any requests regarding the protection of personal data to:
By phone at +421 911 101 200 or
By e-mail at the address info@foxydepot.com
or
In writing at the address
Foxydepot s.r.o.
Železničná 363
905 01 Senica
Slovensko

Generally

the term "personal data" means any information associated with an identified natural person or a natural person who can be identified ("data subject"); natural person who can be identified is a person who can be identified directly or indirectly, through an identifier such as name, identification number, location data, online identifier or according to one or more symptoms, specific to physical, physiological, genetic, psychological, the intellectual, economic, cultural or social identity of the natural person in question;
"processing" means any operation or several operations with personal data or a set of personal data through automatic or other means such as collection, recording, organization, structuring, storage, modification or change, advisory service, use, publication by transfer, dissemination or another way in which the data is made available, arranged or combined, restricted, deleted or destroyed;
"restriction of processing" means the designation of stored personal data for the purpose of limiting their processing in the future;
"pseudonymization" means the processing of personal data in such a way that personal data can no longer be associated with a specific data subject without the use of additional information, provided that this is stored separately and is the subject of technical and organizational measures for the purpose of guaranteeing that personal the data is not linked to an identified natural person who could be identified;
"register of personal data" means any structured set of personal data that is accessed in accordance with certain criteria, regardless of whether it is centralized, decentralized or distributed according to a functional or geographical principle;
"administrator" is a natural or legal person, public body, agency or other structure that alone or together with others determines the goals and means of personal data processing; if the goals and means for this processing are determined by Union law or the law of a Member State, the administrator or special criteria for its determination may be determined by Union law or the law of a Member State;
"personal data processor" is a natural or legal person, public body, agency or other structure that processes personal data on behalf of the administrator;
"recipient" is a natural or legal person, public body, agency or other structure to which personal data is provided, regardless of whether it is a third party or not. At the same time, public authorities that may receive personal data within a specific procedure in accordance with Union law or the law of a Member State are not considered "recipients"; the processing of this data by said public authorities complies with the rules for data protection in accordance with the purpose of processing;
"third party" is a natural or legal person, public body, agency or other body, other than the data subject, administrator, personal data processor and persons who, under the direct control of the administrator or personal data processor, have the right to process personal data;
"data subject consent" means any freely expressed, specific, informed and unambiguous expression of the will of the data subject through a statement or a clearly affirming act, which expresses his consent for the personal data related to him to be processed;
"breach of personal data protection" means a security breach that leads to accidental or unauthorized destruction, loss, alteration, unauthorized disclosure or access to personal data that is sold, stored or otherwise processed;
"supervisory body" means an independent public body established by a member state in accordance with Art. 51 of the General Regulation on Personal Data Protection.

Personal data processed:

The administrator processes the following personal data:

name and surname
gender
residence
e-mail address
telephone number
data obtained from cookie files
IP addresses
IBAN of the consumer – when concluding a contract for the purchase of goods and for the purpose of returning the relevant amounts in the event of a complaint and/or withdrawal from the contract

The data according to points 1, 3, 4, 5 and 8 are processed on the basis of Art. 6, par. 1 letter B) from the GDPR and for the purpose and fulfillment of the distance contract concluded between the Company and the consumer in accordance with the EUROPEAN PARLIAMENT AND COUNCIL DIRECTIVE 2011/83 / EU of October 25, 2011 on consumer rights, amending Council Directive 93/13/ EEC and European Parliament and Council Directive 1999/44/EC and which repeals Council Directive 85/577/EEC and European Parliament and Council Directive 97/7/EC, and for the purpose of concluding it.

Data according to points 1, 2, 4, 5, 6, 7 are processed for the purpose of marketing activities based on the Company's legal interest and only on the basis of receiving express consent to processing for the purpose of marketing activities. The aforementioned consent is provided electronically by recording it on the front page of the Company's website or in the consumer's profile in the Settings program. The consent given under this regulation can be withdrawn by the consumer at any time on the homepage of the Company or in his profile in the Settings section.

When the consumer expressly gives his consent in electronic form by indicating on the home page of the Company's website or from the consumer's profile in the "Settings" menu to the processing of his personal data for the purpose of marketing activities, he consents to the personal data being processed for the purpose of offering goods and services to the consumer through by e-mail, by telephone and/or by means of a newsletter sent to e-mail, for the purpose of detecting interest in the offered goods, as well as for carrying out business analyses, researching the behavior of consumers, what they prefer, and also for the purpose of advertising. The company does not have access to bank card data or authentication data when paying by credit or debit card and does not register or store them in any way.

Personal data is processed for the purpose of marketing activities on the basis of the Company's legal interest and only on the basis of express consent to processing for the purpose of marketing activities through the use of cookies. The aforementioned consent is provided electronically by recording it on the bottom line on the homepage of the Company's website or in the Cookies Settings section. The consent given in this form can be revoked by the consumer at any time by adjusting the settings in the Cookies Settings section. When the consumer expressly consents to the processing of his personal data for the purpose of marketing activities through the use of cookies in electronic form by indicating in the bottom bar on the home page of the Company's website or in the "Cookie settings" menu, he consents to the data being processed for the purpose of monitoring his behavior, which he prefers, and also for the purpose of advertising.

Purposes of processing personal data of the Data Subject:

The purposes of processing the Personal Data of the Data Subject are:

processing of accounting documents
records of contracts and clients for the purposes of concluding and fulfilling contract
archiving of documents in accordance with legal regulations
marketing activities of the operator

Legal basis for the processing of personal data of the concerned person:

Depending on the specific personal data and the purpose of their processing, the legal basis for the processing of personal data of the affected person will be the consent of the affected person to the processing of personal data, the fulfillment of the legal obligation of the operator, the fulfillment of the contract, the contractual party to which the affected person is.

Policy regarding the processing of personal data:

the principle of compliance with the law, conscientiousness and clarity of personal data processing - the collection of personal data must be within the scope of what is necessary. The method of information collection is legal and objective;
the principle of limiting the amount of data to a minimum, as well as the limitation of purposes and storage - personal data may not be used for purposes other than those for which they were collected, only if the person concerned agrees to it, or in cases expressly required by law. Personal data may not be stored longer than is necessary for the purposes for which they were processed;
principle of accuracy - personal data must be accurate, complete and up-to-date as required by the purpose for which they are processed;
principle of completeness and confidentiality - personal data must be processed in such a way as to ensure an appropriate level of security of personal data, including protection against unauthorized or illegal processing and against accidental loss, destruction or damage, and therefore appropriate technical or organizational measures are taken.

What personal data do we process? For what purpose and on what legal basis? How long do we keep personal data?

Here's how we do it:

What service or situation is it?	What categories of personal data do we provide to third parties, or recipient?	List of recipients of personal data	Designation of the third country and organization when transferring the OU outside the EEA
Visiting the website www.foxydepot.com – cookies	See section COOKIES files	See section COOKIES files	Personal data is not transferred
Using the contact form at www.foxydepot.com	Name and surname, e-mail address, telephone number, company name, area of interest	Foxy Depot, s.r.o. Železničná 363, 905 01 Senica Slovakia; Entity performing marketing services for Foxy Depot, s.r.o., administrator of the website www.foxydepot.com	Personal data is not transferred
Accounting - when selling/purchasing products and services	Name and surname, address of permanent residence or residence, or business name, seat, ID number, account number, telephone number, e- mail	Tax office, Accounting firm – legal entity	Personal data is not transferred
Marketing - sending product information, sending newsletters,	contests Name and surname, street and number, city, zip code, country, e-mail, phone number, sum of values of all purchases	Entity performing marketing services for Foxy Depot , s.r.o., administrator of the website www.foxydepot.com; Mailchimp	USA service provider - Mailchimp service provider for sending newsletters and invitations to corporate events (https://mailchimp.com/help/ about-mailchimp-the-eu-swiss- -privacy-shield-and-the-gdpr/)
Transport of goods	Name and surname, street and number, city, zip code, telephone number, e-mail	Contractual carrier	Personal data is not transferred
Camera and registration system at the headquarters of Foxdepot spol. s r.o.	Visual camera recording capturing individual characteristics and data of a natural person	Administrative authority or law enforcement authority	Personal data is not transferred

To whom do we disclose personal data?

We provide some personal data to our partners or recipients resulting from the law. In these cases, we make the data available to these recipients. At the same time, in some situations we provide your personal data to third countries outside the European Economic Area (EU, Iceland, Norway and Liechtenstein).

What service or situation is it?	What categories of personal data do we provide to third parties, or recipient?	List of recipients of personal data	Designation of the third country and organization when transferring the OU outside the EEA
Visiting the website www.foxydepot.com – cookies	See section COOKIES files	See section COOKIES files	Personal data is not transferred
Using the contact form at www.foxydepot.com	Name and surname, e-mail address, telephone number, company name, area of interest	Foxy Depot, s.r.o. Železničná 363, 905 01 Senica Slovakia; Entity performing marketing services for Foxy Depot, s.r.o., administrator of the website www.foxydepot.com	Personal data is not transferred
Accounting - when selling/purchasing products and services	Name and surname, address of permanent residence or residence, or business name, seat, ID number, account number, telephone number, e- mail	Tax office, Accounting firm – legal entity	Personal data is not transferred
Marketing - sending product information, sending newsletters,	contests Name and surname, street and number, city, zip code, country, e-mail, phone number, sum of values of all purchases	Entity performing marketing services for Foxy Depot , s.r.o., administrator of the website www.foxydepot.com; Mailchimp	USA service provider - Mailchimp service provider for sending newsletters and invitations to corporate events (https://mailchimp.com/help/ about-mailchimp-the-eu-swiss- -privacy-shield-and-the-gdpr/)
Transport of goods	Name and surname, street and number, city, zip code, telephone number, e-mail	Contractual carrier	Personal data is not transferred
Camera and registration system at the headquarters of Foxdepot spol. s r.o.	Visual camera recording capturing individual characteristics and data of a natural person	Administrative authority or law enforcement authority	Personal data is not transferred

Personal data are processed on an electronic medium.

The administrator entrusts the processing of personal data to persons in an employment-legal relationship. The rights and obligations of individual persons who process data are listed in the relevant job description.

The administrator entrusts the processing of personal data based on the fulfillment of the contract of the named companies that provide courier services for the delivery of goods ordered by consumers, concluded between them and the contractual carrier.

A legal advisor or attorney has access to the personal data of a person from the Consumers section in connection with the protection of the Company's rights in a dispute between the parties and/or if consultation is necessary.

Access to the personal data of a person from the Consumers section is allowed to third parties by order of the court and/or on the basis of a specific regulation.

On the basis of the express consent of the consumer, namely in electronic form by marking it on the home page of the Company's website or from the consumer's profile in the "Settings" menu, the administrator authorizes the processing of personal data of the administrator of the website company RECO, s.r.o. Sadová 3046/39A, 905 01 SENICA, on the basis of a contractual legal relationship between this company and the Company with the subject: provision of marketing services connected with direct marketing (sending announcements about promotions, campaigns or the sale of certain goods via a newsletter via e-mail or providing information by telephone ), conducting business analyzes and consumer behavior research on the Company's website.

Based on the express consent of the consumer, namely - in electronic form by marking on the home page of the Company's website or from the consumer's profile in the "Settings" menu, consumers receive notifications about promotions, campaigns or the sale of certain goods via a newsletter via e-mail or receive this information by phone, their behavior on the website and preferred goods are examined.

What are your rights regarding the protection of personal data?

From the EU regulation GDPR respectively from Act 18/2018 Coll. As a data subject, you have rights in the protection of personal data, and we respect all of them. To exercise your rights, contact us orally, in writing or electronically via the contact details listed above.

Personal data subjects have the following rights relating to their personal data:

right of access;
the right to correction;
the right to transfer data;
the right to erasure (the right to be forgotten);
the right to restrict processing;
the right to object to the processing of personal data;
the right to fulfill the notification obligation towards the recipients
the subject's right not to be the object of a decision based solely on automated processing, including profiling.

COOKIES files

Marketing activities, associated with the analysis of consumer behavior and advertising on the basis of express consent, namely in electronic form by marking in the bottom bar on the home page of the Company's website or in the "Cookie settings" menu, from this Policy are also carried out through the processing of data that does not allow identification of a natural person (e.g. first name, last name, telephone number, address, etc.) and also through the activity of the consumer through the relevant browser with the help of the so-called cookies or advertising banners. The information includes the following data:

events related to the activity of the Company's pages (number of pages visited, products viewed, searches on the Company's pages);
information related to the consumer's device (device type, operating system and version);
approximate location extracted from the IP address;

These activities are carried out through the so-called cookies used by the Company or third parties, partners of the Company. Cookies are small packages of information sent from websites to the consumer's browser and stored on his device. Some cookies the website needs for its proper functioning - Necessary cookies, we use some to improve your experience when visiting our website and mainly to offer you a personalized and the most correct offer and display of information and products. You can adjust cookie settings in Cookies settings.

We use these cookies Necessary cookies (2)

These files are a basic prerequisite for the operation of our website. Without these cookies, we do not guarantee the correct and problem- free functioning of Smart Light s.r.o. web portals and pages. These cookies form the basis for the operation of our website and enable the use of basic functions. Basic cookies are e.g. remembering login, enabling Access to secure areas without re-login, pre-filling of forms and the like. Without these cookies, we cannot provide the services that form the basis of our website. If you disable these cookies, we will not be able to guarantee flawless operation of the website.

Name

Provider

Purpose

Validity until

Type

CookieConsent

foxydepot.com

Saves the user's cookie consent status for the current domain.

1 year

HTTP Cookie

PHPSESSID.

foxidepot.com

Monitors the user's session status within

page requests

13 days

HTTP Cookie

Statistical cookies (4)

Using statistical cookies, we collect information about how you use our website. Thanks to this information, we have an overview of the use of our pages, which pages were viewed by how many visitors, etc. Thanks to this information, we can optimize our pages so that they respond as best as possible to the requests of our visitors.

Name	Provider	Purpose	Validity until	Type
_ga	googleanaytics.com	It registers a unique ID that is used to generate statistical data about how the visitor uses the website.	2 years	HTTP Cookie
_gat	googleanaytics.com	Used in Google Analytics to reduce request rates - limits data collection on high-traffic pages. It will expire after 10 minutes	1 day	HTTP Cookie
_gid	googleanaytics.com	It registers a unique ID that is used to generate statistical data about how the visitor uses the website.	1 day	HTTP Cookie
History.store	foxydepot.com	It contains the visitor ID - it is used to monitor the navigation and interaction of visitors on the website for the purpose of internal website optimization.	Session	HTML Local Storage

Advertising system cookies (6)

We use these cookies to effectively display advertising offers on our pages, as well as on the pages of partners involved in cooperation through advertising systems and networks. Files are used to collect information about your habits while browsing the pages. Thanks to these files, we can effectively target the display of advertisements and show you relevant offers not only on our pages, but also on the Internet. These files also help us evaluate our advertising activities.

Name	Provider	Purpose	Validity until	Type
_fbp	facebook.com	Used by Facebook to provide a series of advertising products, such as real-time bidding from third-party advertisers.	3 months	HTTP Cookie
_hjInclude- dInSample	hotjar.com	Specifies whether the user's navigation should be registered in a specific temporary statistical label.	Session	HTTP Cookie
fr	facebook.com	Used by Facebook to provide a series of advertising products, such as real-time bidding from third-party advertisers.	3 months	HTTP Cookie
r/collect	doubleclick.net	This cookie is used to send data to Google Analytics about the visitor's device and behavior. Follows the visitoracross devices and marketing channels and helps better understand our users' experience with our website.	Session	Pixel Tracker
tr	facebook.com	Used by Facebook to provide a series of advertising products, such as real-time bidding from third-party advertisers	Session	Pixel Tracker
hjViewportId	hotjar.com	Uncategorized	Session	HTML Local Storage

How to control cookies

You can control and/or delete cookies at your discretion - see aboutcookies.org for details. You can delete all cookies stored on your computer, and you can set most browsers to prevent them from storing them. However, in this case, you may need to manually adjust some settings each time you visit the website, and some services and features may not work.

On the websites and portals of Foxydepot spol. Ltd. content from our third-party partners may be integrated. It is in our utmost interest to make sure that only trusted and verified partners have content posted on our pages. Thanks to third-party content inserted into our pages, these partner sites can also save cookies to the browser on the user's end device during the user's visit to our pages. These files are not subject to the direct control of Foxydepot spol. Ltd. These are, for example, tools from Google, used to measure traffic to our pages, evaluate the success of marketing activities, or collect data necessary for effective marketing communication of Foxydepot spol. Ltd. Tools from partners such as Facebook, Twitter, Youtube, etc. Foxydepot spol. Ltd. as an operator, it has no control over the data stored in third-party cookie files. If you want to know how our partners - third parties use cookies, please familiarize yourself with the policy on the use of cookies and the privacy policy on our partners' sites.

1. Google Analytics – a web analysis service provided by Google LLC, 1600 Amphitheater Parkway Mountain View, CA 94043, USA, which uses cookies stored on the consumer's computer to enable the analysis of the use of the website by consumers. Information about this site, acquired with the help of cookies, is sent to and stored by Google LLC, 1600 Amphitheater Parkway Mountain View, CA 94043, USA (data processor) on servers located in the USA. The data that comes to Google Analytics is pseudonymized on the Company's electronic platform. Based on the contractual legal relationship with Google LLC, the Company authorizes it to use this information to assess the use of the site, to compile web activities and to provide other services to the site administrator in connection with the use of the site and Internet use of the Company's site. Google LLC will not associate the IP address sent by the consumer's browser via Google Analytics with other data stored by Google LLC. Google LLC processes data in compliance with the requirements of applicable EU legislation in the area of personal data protection and the "EU-US Privacy Shield" agreement.

2. Google AdWords – a remarketing and behavioral targeting service provided by Google LLC, 1600 Amphitheater Parkway Mountain View, CA 94043, USA. Through this service, the advertising activity of smartlight.sk is connected to the AdWords advertising network through cookies. Information about the use of this site, acquired through cookies, is transmitted and stored by Google LLC 1600 Amphitheater Parkway Mountain View, CA 94043, USA (data processor) on servers located in the USA. Google LLC processes data in compliance with the requirements of applicable legislation in the EU in the area of personal data protection and agreements "EU-US Privacy Shield".

3. Facebook and Instagram - these services use Social Plugins ("Plugins") of the social network facebook.com and instagram.com, which is maintained by Facebook Inc., Menlo Park, California, USA. ("Facebook"). Plugins can be recognized by the Facebook logo (white "f" on a blue background or a thumbs up) or are often labeled "Facebook Social Plugin". When a consumer visits a given website, their browser immediately makes a direct connection to Facebook's servers. The content of this P- ulubguind-e transferred directly from Facebook to the consumer's browser, which connects it to the website. By connecting to these Plugins, Facebook receives information that the relevant Company page or platform has been visited. If the user has entered his Facebook profile, Facebook can add this visit to his profile. If the consumer interacts with these Plugins (e.g. presses the "like" button or writes a comment), the relevant information will be immediately transferred from his browser to Facebook and stored there. If the consumer is not registered with Facebook, Facebook also has the possibility to find out his IP address and remember it. Website operators can connect these Facebook Plugins to their own websites or platforms. With one click on these Plugins, consumers who are registered on Facebook can automatically leave a message on their Facebook profile that they like the information from the site operator's link. The plug-in associated with Facebook "communicates" with Facebook all the time and sends data to Facebook when the website is visited - even if the consumer has not clicked on the Plugins. If the consumer has not entered Facebook or is not registered there at all, a cookie that cannot be recognized and is valid for two years is also inserted. If the consumer has entered Facebook, information about the site and the cookie is transmitted - while it is possible for this information about the identification of the stay to be assigned to the relevant account. Regarding information about rights and options for personal data protection settings, the user must contact Facebook Inc. or follow the instructions for the protection of personal data on Facebook at this address: https:// www.facebook.com/policy.php. By means of add-ons, the consumer can block Facebook-Social-Plugins on his browser by using, for example, the "Facebook Blocker". Facebook Inc. processes data in compliance with the requirements of the applicable legislation in the EU in the field of personal data protection and the "Personal Data Protection Shield between the EU and the USA" agreement. Each individual natural person, subject of personal data, has the right to receive information about the administrator of personal data, as well as about the processing of his personal data. It is the following information:

data identifying the administrator, as well as his contact data, including the contact data of the person entrusted with data protection;
purpose and legal basis of processing;
recipients or categories of recipients of personal data, if any;
the administrator's intention to sell personal data to a third party (when applicable);
period of storage of personal data;
the existence of automated decision-making, including profiling (if any);
information about all rights of the subject;
the right to complain to the supervisory authority.

This information is not provided if the data subject already has it. If the data subject submits a request for information, the Company, together with the person responsible for data protection, will carry out an appropriate check and provide a response with the required information within 14 (fourteen) days, but no later than 30 (thirty) days from the date of receipt of the request. If necessary, this deadline can be extended by another two months, taking into account the complexity and number of requests from a certain person. The company informs the applicant of any such extension of the deadline within one month of receiving the application, stating the reasons for the delay. The request must contain the identification of the person (full name and date of birth), description of the request, requested form of providing access to personal data, signature, date, e-mail, address for correspondence and power of attorney if the request is submitted by an authorized person. The company is not obliged to respond to the request if it is unable to identify the data subject. The request will be recorded in a separate register of the company and can be submitted in one of the following ways: a) electronically to e-mail XXXXXXXXX b) in person at the office of the Company, Foxy Depot, spol. Ltd. Železničná 363, 905 01 Senica, Slovakia or c) by mail to Foxy Depot, spol. s.r.o., Železničná 363, 905 01 Senica, Slovakia. One extract of information is given to the data subject free of charge. For additional statements requested by the data subject or excessive requests of the subject, especially due to their repetition, the Company may request a reasonable fee in the amount of administrative expenses. When providing a statement of personal data, the Company cannot reveal the following categories of data:

personal data of third parties, only if these persons have given their express consent;
data that constitutes a trade secret, intellectual property or confidential information;
other information that is protected in accordance with applicable legislation;

Whether the request is serious or excessive is assessed by the Company separately for each case; In case of refusal of access to personal data, the Company justifies its refusal and informs the data subject of his right to file a complaint with the supervisory authority. Data subjects can request their personal data, processed by the Company, to be corrected in case of inaccuracy or incompleteness. In case of approval of the request for correction of personal data, the Company notifies the data recipients to whom this data was disclosed. Every natural person, subject of personal data, has the right to request the erasure of their data, the so-called "right to be forgotten" if one of the following conditions exists:

the person's personal data are no longer necessary for the purpose for which they were collected or processed in another way;
the data subject withdraws his consent on which the data processing is based and there is no other legal reason for the processing;
the data subject objects to the processing and there are no legal reasons for the processing that would take priority;
personal data were processed illegally;
personal data must be deleted in order to comply with a legal obligation to EU law or the law of a Member State that applies to the administrator;
personal data were collected in connection with the offer of information society services to children and consent is given by the bearer of parental responsibility for the child.

Every natural person, the subject of personal data, has the right to limit the processing of his personal data by the administrator, but for that purpose he must comply with specific conditions, among which are:

the data subject objects to the accuracy of the personal data;
the processing is illegal, but the data subject does not wish to delete his personal data, but instead requests the restriction of its use;
the administrator no longer needs the personal data for processing, but the data subject requires them for the establishment, fulfillment or defense of legal requirements;
the data subject raised an objection to the processing in anticipation of checking whether the administrator's legal reasons take precedence over the interests of the data subject.

Every natural person, the subject of personal data, has the right to receive personal data concerning him and which he has provided to the administrator in a structured, widely applicable and machine-readable form, and has the right to transfer this data to another administrator without hindrance from the administrator, to whom he provided these personal data, when the processing is based on consent or contractual obligation and is carried out in an automated manner. In the case of exercising his right to data transfer, the data subject has the right to direct transfer of personal data from one administrator to another, if this is technically feasible. The data subject has the right to object to the processing of his personal data by the Company if the data is processed on the basis of any of the following facts:

processing is necessary for the fulfillment of a task of public interest or for the fulfillment of official rights granted to the administrator;
processing is necessary for purposes related to the legitimate interests of the Company or a third party;
data processing includes profiling.

The administrator stops the processing of personal data, except in the event that he can prove that there are compelling legal reasons for further processing that take precedence over the interests, rights and freedoms of the data subject, or before the establishment, fulfillment or defense of legal objections. Every natural person, subject of personal data, has the right to be informed and the Company is obliged to inform them, in case of violation the security of her personal data and in the event of the likelihood that this breach will create a high risk of preserving the rights and freedoms of the data subject. The information must be provided without unnecessary delay after its discovery and must contain a description of the nature of the breach of personal data security, stating the manner of the breach, its consequences and the measures taken by the Company to correct the breach and reduce any adverse consequences. In the event of a violation of your rights or applicable laws on the protection of personal data, you have the right to file a complaint with the Office for Personal Data Protection or the competent data protection authority (Data Protection Authority) in your country. You can find more information on the ÚOOÚ website: http://www.dataprotection.gov.sk/.

Final provisions

These Principles and instructions on the protection of personal data form an integral part of the General Terms and Conditions and the Complaints Procedure. Documents - General terms and conditions and Complaints procedure of this online store are published on the domain of the Seller's online store.

This privacy policy becomes valid and effective upon its publication on the foxydepot.com website