Privacy Policy
If you are a customer, newsletter subscriber or website visitor, you are entrusting us with your personal data. We are responsible for their protection and security. Please familiarize yourself with the data protection, principles and rights you have in relation to the GDPR (General Data Protection Regulation).
Who is the administrator?
The administrator is the company DIFOSIS, SE with its registered office at Zámocká 8, 811 01 Bratislava, Section: Po, Insert No. 8833/B, registered in the register of the Municipal Court of Bratislava III, ID No.: 54 304 695, which operates the website www.difosis.com. We process your personal data as a controller, i.e. we determine how the personal data will be processed and for what purpose, for how long, and we select any other processors who will assist us with the processing.
Contact details
If you wish to contact us during processing, you can contact us by email: info@difosis.com
Announcing
We declare that, as the controller of your personal data, we comply with all legal obligations required by applicable law, in particular the Data Protection Act and the GDPR, and therefore that:
- we will only process your personal data on the basis of a valid legal ground, in particular a legitimate interest, the performance of a contract, a legal obligation or consent,
- we will comply with the information obligation under Article 13 of the GDPR before processing personal data,
- we will enable and support you in exercising and fulfilling your rights under the Data Protection Act and the GDPR.
Scope of personal data and purposes of processing
We process the personal data you entrust to us for the following reasons (to fulfil these purposes):
- provision of services, performance of the contract
your personal data in the scope of: e-mail, telephone, which we need for the performance of the contract (e.g. bond negotiations,…). - Bookkeeping
If you are a customer, we necessarily need your personal data (invoicing data) in order to fulfil our legal obligation to issue and record tax documents. - marketing – telephone contact, sending newsletters
We use your personal data (phone, email, name), what you click on in the email and when you open it, most often for direct marketing purposes – sending you commercial communications. If you are a customer of ours, we do this out of legitimate interest, because we reasonably assume that you are interested in our newsletters, and we do this until you unsubscribe yourself. If you are not our customer, we only send you newsletters on the basis of your consent until you unsubscribe yourself. In either case, you can withdraw this consent by using the unsubscribe link in any email we send you, or you can request this when you contact us by phone. - advanced consent-based marketing Only with your consent, we may also send you inspirational offers from third parties or use your email address for e.g. re-marketing and targeting of Facebook ads until you unsubscribe yourself. You can of course withdraw this consent at any time via our contact details.
- Photographic documentation, references
We can only use your photographs, references, feedback, etc. with your consent until you withdraw your consent. We retain your personal data for the duration of the statute of limitations, unless the law provides for a longer retention period or we have determined otherwise in specific cases.
Security and privacy
We protect personal data to the maximum extent possible by using modern technologies that correspond to the current state of the art. We protect it as if it were our own. We have adopted and maintain all possible (currently known) technical and organizational measures to prevent the misuse, damage or destruction of your personal data.
Transfer of personal data to third parties
Your personal data can be accessed by our employees and associates. For specific processing operations that we are not able to provide ourselves, we use the services and applications of processors who are even better at data protection than we are and specialise in the processing in question. These providers include e.g:
- Facebook – FB pixel
- Google – Google Analytics and Adwords
It is possible that in the future we may decide to use other applications or processors to facilitate and improve the quality of processing. However, we promise you that in such a case, I will place at least the same demands on the processor for security and quality of processing as I place on myself.
Transfer of data outside the European Union
We only process data in the European Union or in countries that provide an adequate level of protection based on a decision of the European Commission.
Your rights in relation to the protection of personal data
You have several rights in relation to data protection. If you wish to exercise any of these rights, please contact us by email:.
You have the right to information, which is already fulfilled on this information page with the principles of the processing of personal data.
Thanks to the right of access, you can ask us at any time and we will provide you with evidence of what personal data we process and why within 14 days.
If something changes or if you discover that your personal data is outdated or incomplete, you have the right to have your personal data completed and amended.
You can exercise your right to restriction of processing if you believe that we are processing your data inaccurately, if you believe that we are processing your data unlawfully but you do not want us to delete all of your data, or if you have objected to the processing.
You can limit the scope of the personal data or the purposes of the processing (for example, by unsubscribing from the newsletter, you limit the purpose of the processing to sending commercial communications).
Right to portability
If you wish to take your personal data and transfer it to someone else, we will follow the same process as for exercising your right of access – except that we will provide the information to you in machine-readable form. In this case, we need at least 30 days.
Right to erasure
(to be forgotten)
Another right you have is the right to erasure (to be forgotten). We don’t want to forget you, but if you wish to be forgotten, you have the right to do so. In this case, we will delete all your personal data from our system and from the system of all sub-processors and backups. We need 30 days to secure the right to erasure.
In some cases, we are bound by a legal obligation and, for example, we must keep records of tax documents issued for a period of time prescribed by law. In this case, we will therefore delete any such personal data that is not bound by another law. We will notify you by email when the deletion has been completed.
Complaint to the Data Protection Authority
If you feel that we are not treating your data in accordance with the law, you have the right to complain to the Data Protection Authority at any time. We would be very pleased if you would inform us of this suspicion first so that we can do something about it and rectify any wrongdoing.
Unsubscribe from newsletters and commercial announcements
If you are a customer, we send you emails with inspiration, articles or products and services based on our legitimate interest.
If you are not yet a customer, we only send them to you on the basis of your consent. In either case, you can stop receiving our emails by clicking the unsubscribe link in any email we send.
Silence
We assure you that our employees and associates who process your personal data are obliged to maintain the confidentiality of personal data and security measures, the disclosure of which would compromise the security of your personal data. This confidentiality continues even after the end of the contractual relationship with us. Your personal data will not be disclosed to any other third party without your consent.
Thank you for taking the time to read this Privacy Policy. This document is effective from 01.08.2024.