PRINCIPLES OF PERSONAL DATA PROTECTION

MAROSSA, s.r.o. (data controller according to §5 letter o) of Act No. 18/2018 Coll.)

Registration: District Court Trnava, Section: Sro, Insert No. 54068/T

Company ID: 55365442

Address: Nám. Slobody 4744/23A, 926 01 Sereď

Mobile: +421 903 627 459

Operated e-shop: www.MAROSSA.eu

We consider it very important that our clients’ and partners’ personal data is always kept secure. For this reason, all processes for processing personal data in our company are set up to comply with applicable legal regulations (Regulation (EU) 2016/679 of the European Parliament and Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, which repeals Directive 95/46/EC – General Data Protection Regulation (GDPR), and Act No. 18/2018 Coll. on the protection of personal data and on amendments and supplements to certain laws in the valid wording). Personal data refers to any information (or set of information) related to an identified or identifiable natural person (e.g., name, address, email, etc.).

Processed Personal Data:

To provide our services, we process the following personal data:

Name and surname
Address, permanent residence
Email and phone number
IP address

Purpose of Personal Data Processing:

Our company collects your personal data when creating an electronic order (via the e-shop), registering through an electronic form, and uses it for concluding a mutual contract/agreement. If this contract is already concluded, it is used for its performance, as well as for recording and managing your client file (client database). We process your personal data for the following purposes:

Providing goods and services to the client, i.e., fulfilling the contract/order – accounting, tax evidence, i.e., fulfilling the legal obligation to issue tax and accounting documents.
Marketing – we are entitled to send additional information and relevant commercial offers to clients with whom we have already concluded a contract, within the limits of legitimate expectations and in a non-intrusive manner, based on our legitimate interest. If we send you any notifications or information in this way, they will always be of interest to you.
Cookies – our company uses cookies on the e-shop pages to measure website traffic and tailor their display to improve our services. Cookies for targeted advertising will be processed only with your consent. You can disable cookies on your computer.

Legal Basis for Personal Data Processing:

The legal basis for processing your personal data for the purposes of concluding and fulfilling the contract is the contract itself or your order. Once the contract is fulfilled, our company is required to archive your personal data for the period required by relevant legal regulations. The legal basis for processing personal data is fulfilling a legal obligation. If there is an existing relationship between you and our company under which we are entitled to send you marketing notifications, our legitimate interest is the legal basis for processing your personal data.

Retention Period for Personal Data:

We retain your personal data for the entire duration of our mutual contract. After the contractual relationship ends, we will retain your personal data for the duration necessary to fulfill the mandatory archiving obligations under applicable legal regulations (e.g., accounting law, mediation law, archives and records law, etc.). Personal data processed solely on the basis of our legitimate interest will be retained for 10 years. This period begins on the day you entered into a contract with our company or from your order.

Your Rights in Connection with the Processing of Your Personal Data:

You have the right to:

a) Access to personal data – upon request, we must inform you whether we are processing your personal data. If we are, you have the right to information on:

The purpose of processing your data,
The scope of data being processed,
How long it will be retained,
To whom it will be made available,
Whether you can lodge a complaint with the Data Protection Authority.

b) Accuracy – if you believe that we are processing incorrect/inaccurate personal data, you have the right to correction. If you find such inaccuracies in your personal data, please inform us at our contact details, and we will make the necessary corrections.

c) Erasure – we will erase your personal data if it is no longer needed, if all legal reasons for processing cease, or if you object to the processing and there are no overriding legitimate reasons to continue processing, or if required by legal regulations.

d) Object – to direct marketing based on our legitimate interest. Processing of your personal data for direct marketing purposes based on legitimate interest will be immediately stopped.

e) Restriction of processing – we will retain your personal data in a restricted processing mode while we resolve discrepancies regarding the processing of your personal data. To exercise your rights, please contact us.

Who We Share Your Personal Data With:

Your personal data may be provided to the following persons: marketing service providers, legal, tax, and accounting service providers, technical solution providers (especially cloud service and web hosting providers), or persons processing and sending goods to clients. These processors receive your personal data only on the basis of a processing agreement (or another contract related solely to the provided service) and in accordance with the minimum required standard of personal data protection as required by GDPR. We process client data exclusively within the European Union, ensuring an appropriate level of data protection.

Correction/Protection of Your Personal Data Processing:

We handle and process client personal data responsibly and in accordance with applicable legal regulations. We use both automated and non-automated means for processing personal data. All data is stored on secure servers/devices located exclusively within the European Union. If you believe your personal data is processed in violation of applicable legal regulations, please notify us at: info@marossa.eu. If you remain dissatisfied with how your concern is handled by our company, you may file a complaint with the Data Protection Authority. Details can be found here: https://dataprotection.gov.sk/uoou/

Confidentiality:

We assure you that our company will maintain confidentiality regarding personal data during processing and adhere to security measures whose disclosure could jeopardize the security of clients’ personal data. This confidentiality extends even after the end of the contractual relationships between us and our employees. Without the client’s consent, their personal data will not be disclosed to any third party.