The controller within the meaning of the General Data Protection Regulation and other national data protection laws of the Member States, as well as other data protection provisions, is:
DM Automation spol. s r.o.
Mutne 233
02963 Mutne, Slovakia
+421907840886
info@dmautomation.eu
Website: https://dmautomation.eu/
We generally process personal data of our users only to the extent necessary to provide a functional website and our content and services. The processing of personal data of our users regularly takes place only with the user's consent. An exception applies in cases where obtaining prior consent is not possible for factual reasons and the processing of the data is permitted by legal provisions.
Where we obtain the consent of the data subject for processing operations of personal data, Article 6(1)(a) of the EU General Data Protection Regulation (GDPR) serves as the legal basis.
For the processing of personal data that is necessary for the performance of a contract to which the data subject is a party, Article 6(1)(b) GDPR serves as the legal basis. This also applies to processing operations that are necessary for carrying out pre-contractual measures.
Where processing of personal data is necessary for compliance with a legal obligation to which our company is subject, Article 6(1)(c) GDPR serves as the legal basis.
In the event that vital interests of the data subject or another natural person require the processing of personal data, Article 6(1)(d) GDPR serves as the legal basis.
If the processing is necessary for the purposes of the legitimate interests pursued by our company or by a third party, and such interests are not overridden by the interests or fundamental rights and freedoms of the data subject, Article 6(1)(f) GDPR serves as the legal basis for the processing.
The personal data of the data subject are deleted or blocked as soon as the purpose of storage no longer applies. Storage may also take place if this is provided for by the European or national legislator in EU regulations, laws or other provisions to which the controller is subject. Blocking or deletion of the data also takes place when a storage period prescribed by the aforementioned standards expires, unless further storage of the data is required for the conclusion or performance of a contract.
Each time our website is accessed, our system automatically collects data and information from the computer system of the accessing device. The following data are collected:
The data are also stored in the log files of our system. This does not include the user's IP addresses or other data that enable an assignment of the data to a user. No storage of these data together with other personal data of the user takes place.
The legal basis for the temporary storage of the data is Article 6(1)(f) GDPR.
The temporary storage of the IP address by the system is necessary in order to deliver the website to the user's computer. For this purpose, the user's IP address must remain stored for the duration of the session.
These purposes also constitute our legitimate interest in data processing pursuant to Article 6(1)(f) GDPR.
The data are deleted as soon as they are no longer necessary to achieve the purpose of their collection. In the case of the collection of data for the provision of the website, this is the case when the respective session has ended.
The collection of data for the provision of the website and the storage of data in log files is absolutely necessary for the operation of the website. Consequently, there is no possibility of objection on the part of the user.
A contact form is available on our website which can be used for electronic contact. If a user takes advantage of this option, the data entered in the input mask are transmitted to us and stored. These data are:
Your consent is obtained for the processing of the data as part of the submission process and reference is made to this privacy policy.
Alternatively, contact can be made via the provided email address. In this case, the personal data transmitted with the email are stored.
There is no transfer of the data to third parties in this context. The data are used exclusively for processing the conversation.
The legal basis for processing the data, where the user's consent has been obtained, is Article 6(1)(a) GDPR.
The legal basis for processing the data transmitted in the course of sending an email is Article 6(1)(f) GDPR. If the email contact aims at the conclusion of a contract, the additional legal basis for processing is Article 6(1)(b) GDPR.
The processing of the personal data from the input mask serves solely to handle the contact request. In the case of contact via email, this also constitutes the necessary legitimate interest in processing the data.
The other personal data processed during the submission process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.
The data are deleted as soon as they are no longer necessary to achieve the purpose of their collection. For the personal data from the input mask of the contact form and those transmitted by email, this is the case when the respective conversation with the user has been concluded. The conversation is concluded when it can be inferred from the circumstances that the relevant matter has been finally clarified.
The additional personal data collected during the submission process are deleted at the latest after a period of seven days.
The user has the possibility at any time to revoke their consent to the processing of personal data. If the user contacts us via email, they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued.
If you wish to exercise your right of withdrawal or your right to object, an email to: info@dmautomation.eu is sufficient.
All personal data stored in the course of contacting us will be deleted in this case.
For security reasons and to protect the transmission of confidential content, such as inquiries sent to us via the contact form, our website uses SSL or TLS encryption. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in the browser line. When SSL or TLS encryption is activated, the data transmitted to us cannot be read by third parties.
If personal data concerning you are processed, you are a data subject within the meaning of the GDPR and you have the following rights vis-à-vis the controller:
You can request confirmation from the controller as to whether personal data concerning you are being processed.
If such processing is taking place, you can request information from the controller about the following:
1. the purposes for which the personal data are processed;
2. the categories of personal data that are processed;
3. the recipients or categories of recipients to whom the personal data concerning you have been disclosed or will be disclosed;
4. the planned duration of the storage of the personal data concerning you or, if specific information is not possible, criteria for determining the storage duration;
5. the existence of a right to rectification or erasure of the personal data concerning you, a right to restriction of processing by the controller, or a right to object to such processing;
6. the existence of a right to lodge a complaint with a supervisory authority;
7. all available information about the source of the data if the personal data were not collected from the data subject;
8. the existence of automated decision-making including profiling pursuant to Article 22(1) and (4) GDPR and—at least in these cases—meaningful information about the logic involved, as well as the significance and the intended consequences of such processing for the data subject.
You have the right to be informed whether personal data concerning you are transferred to a third country or to an international organization. In this context, you may request to be informed of the appropriate safeguards pursuant to Article 46 GDPR in connection with the transfer.
You have the right to obtain from the controller the rectification and/or completion of personal data concerning you, if the processed personal data are incorrect or incomplete. The controller must perform the rectification without undue delay.
Under the following conditions, you may request the restriction of the processing of personal data concerning you:
1. if you contest the accuracy of the personal data concerning you for a period enabling the controller to verify the accuracy of the personal data;
2. the processing is unlawful and you oppose the erasure of the personal data and request the restriction of the use of the personal data instead;
3. the controller no longer needs the personal data for the purposes of the processing, but you need them for the establishment, exercise or defense of legal claims; or
4. you have objected to processing pursuant to Article 21(1) GDPR and it has not yet been determined whether the legitimate grounds of the controller override your grounds.
If the processing of personal data concerning you has been restricted, such data may—apart from storage—only be processed with your consent or for the establishment, exercise or defense of legal claims, or for the protection of the rights of another natural or legal person, or for reasons of important public interest of the Union or of a Member State.
If processing was restricted under the above conditions, you will be informed by the controller before the restriction is lifted.
a) Obligation to Erase
You may request from the controller that personal data concerning you be erased without undue delay, and the controller is obliged to erase such data without undue delay where one of the following grounds applies:
1. The personal data concerning you are no longer necessary in relation to the purposes for which they were collected or otherwise processed.
2. You withdraw your consent on which the processing is based pursuant to Article 6(1)(a) or Article 9(2)(a) GDPR, and there is no other legal basis for the processing.
3. You object to the processing pursuant to Article 21(1) GDPR and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21(2) GDPR.
4. The personal data concerning you have been unlawfully processed.
5. The erasure of the personal data concerning you is required for compliance with a legal obligation under Union or Member State law to which the controller is subject.
6. The personal data concerning you have been collected in relation to the offer of information society services pursuant to Article 8(1) GDPR.
b) Information to Third Parties
If the controller has made the personal data concerning you public and is obliged pursuant to Article 17(1) GDPR to erase the personal data, the controller, taking account of available technology and the cost of implementation, shall take reasonable steps, including technical measures, to inform controllers which are processing the personal data that you, as the data subject, have requested the deletion of any links to, or copies or replications of, those personal data.
c) Exceptions
The right to erasure does not exist to the extent that processing is necessary
7. for exercising the right of freedom of expression and information;
8. for compliance with a legal obligation that requires processing under the law of the Union or of the Member States to which the controller is subject, or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller;
9. for reasons of public interest in the area of public health in accordance with Article 9(2)(h) and (i) as well as Article 9(3) GDPR;
10. for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes pursuant to Article 89(1) GDPR, insofar as the right referred to under section a) is likely to render impossible or seriously impair the achievement of the objectives of that processing; or
11. for the establishment, exercise or defense of legal claims.
If you have asserted the right to rectification, erasure or restriction of processing against the controller, the controller is obliged to communicate this rectification or erasure of data or restriction of processing to all recipients to whom the personal data concerning you have been disclosed, unless this proves impossible or involves disproportionate effort.
You have the right to be informed by the controller about these recipients.
You have the right to receive the personal data concerning you, which you have provided to the controller, in a structured, commonly used and machine-readable format. You also have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where
1. the processing is based on consent pursuant to Article 6(1)(a) GDPR or Article 9(2)(a) GDPR, or on a contract pursuant to Article 6(1)(b) GDPR; and
2. the processing is carried out by automated means.
In exercising this right, you also have the right to have the personal data transmitted directly from one controller to another, where technically feasible. This must not adversely affect the freedoms and rights of others.
The right to data portability does not apply to processing of personal data that is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
You have the right, on grounds relating to your particular situation, to object at any time to the processing of personal data concerning you which is based on Article 6(1)(e) or (f) GDPR; this also applies to profiling based on these provisions.
The controller will no longer process the personal data concerning you unless the controller demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing serves to establish, exercise or defend legal claims.
Where personal data concerning you are processed for direct marketing purposes, you have the right to object at any time to processing of personal data concerning you for such marketing; this also applies to profiling to the extent that it is related to such direct marketing.
If you object to processing for direct marketing purposes, the personal data concerning you will no longer be processed for these purposes.
You have the option, in connection with the use of information society services—without prejudice to Directive 2002/58/EC—to exercise your right to object by automated means using technical specifications.
If you wish to exercise your right of withdrawal or your right to object, an email to: info@dmautomation.eu is sufficient.
You have the right to withdraw your consent under data protection law at any time. The lawfulness of processing carried out on the basis of the consent up to the withdrawal is not affected by the withdrawal.
If you wish to exercise your right of withdrawal or your right to object, an email to: info@dmautomation.eu is sufficient.
Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, your place of work or the place of the alleged infringement, if you consider that the processing of personal data concerning you infringes the GDPR.
The supervisory authority with which the complaint has been lodged shall inform the complainant of the status and outcome of the complaint, including the possibility of a judicial remedy pursuant to Article 78 GDPR.