Statement on the Protection of Personal Data
humancraft s.r.o. – Statement on the Protection of Personal Data
If you are our client, receiver of news or web visitor, you trust us with your personal data. We are responsible for their protection and safety. Please familiarise yourself with the Statement on the Protection of Personal Data, and the principles and rights that you have in relation to GDPR (General Data Protection Regulation).
Karlínské nám. 399/11
Reg. no.: 26213672
Responsible person: David Fojtík
We are a company registered at the City Court in Prague under file number C 80270, which operates the website www.humancraft.cz. As the administrator we process your personal data, i.e. we designate how the personal data will be processed and for what purpose, for how long, and we select potential further channels of processing that will help us.
If you wish to contact us while we process your data, you can email us at: firstname.lastname@example.org.
We declare that as administrators of your personal data we meet all legal obligations required by law, in particular the law on the protection of personal data and GDPR, and therefore we will:
- process your personal data only on the basis of valid legal reasons, in particular with legitimate interest, meeting contractual and legal obligations or upon being granted permission,
- comply with the information requirements of GDPR article 13 before processing personal data,
- allow you and support you in applying your rights according to the protection of personal data law and GDPR.
Extent of personal data and purposes for processing them
We process personal data that you allow us to yourselves, for the following reasons (for meeting these purposes):
- Providing services and fulfilling contracts
Your personal data to the extent of: invoicing data, email, telephone, and correspondence address as essential for completing a contract.
- Accounts management
If you are a client, it is essential for us to have your personal data (invoicing data) in order to satisfy legal requirements for creating and recording tax documents.
- Communication with you regarding news and products – sending newsletters
We use your personal data (email and name), gender, what you click on in an email and when you most often open them for the purposes of direct marketing – sending business communications. If you are our client, we do it from legitimate interest because we reasonably assume that you are interested in our news, and for a period of 5 years from your last order. If you are not our client, we only send you newsletters on the basis of your agreement, either until agreement is retracted from your side or up to a maximum period of 5 years. In both cases you may retract your agreement by using the unsubscribe link in every email sent.
- Photographs and video recordings from seminars
At some of our live events – training, seminars, etc. – we take photos or make video recordings. We use photos for promotional materials, mainly for the website. Video recordings are for online course participants to see. The names of participants are never on these materials, except in the case of a reference and then only with your agreement. If you do not wish to be recorded in any way, please let us know before the live event takes place. We keep your personal data for the period until the deadline of the statute of limitations, provided the law does not set a longer period for keeping them or we have not managed certain individual cases differently.
Safety and protection of personal data
We protect personal data to the maximum level possible using modern technology corresponding to the level of technical development. We protect them as if they were our own. We have adopted and maintain all possible (currently known) technical and organisational measures to prevent the abuse, damage or destruction of your personal data.
Passing your personal data to third parties
My colleagues and I have access to your personal data and we are bound to confidentiality and trained in the security of processing personal data. When carrying out certain specific operations that we are able to conduct by ourselves, we utilise services and applications of providers who specialise in this field and follow GDPR rules. They are providers of the following platforms and services:
Lumina Learning Ltd. (UK) – Lumina personal typology TTI Success Insights (USA) – Success Insights personal typology TTC online s.r.o. (CZ) – online diagnostic tools Mailchimp (USA) – application for sending news and event invitations Google (USA) – Google Web Analytics It is possible that in the future we will decide to use other applications or providers for simplifying and improving the quality of processing data. However, we promise you that when choosing, we will impose at least the same level of demands on the security and quality of processing data as we would on ourselves.
Transferring data outside the EU
We process data exclusively in the EU or in countries that ensure a corresponding level of protection based on the decisions of the European Commission.
Your rights in accordance with the protection of personal data
In accordance with the protection of personal data you have a set of rights. If you wish to exercise any of those rights, please contact us via email: email@example.com.
You have the right to information that is covered on this information page regarding the principles of processing personal data.
Due to laws on access you may contact us at any time and within a 30-day deadline I will provide evidence of how we process your personal data and why.
If something changes on your side or you see that your personal information is outdated or incomplete, you have the right to add to and change your personal data.
You can utilise the right to limit the processing of your personal data if you feel that we process inaccurate data or that we process it illegally, but you do not want to remove all of your data, or you lodge an objection to their processing.
You can limit the extent of personal data or the purposes for which they are processed (e.g. by unsubscribing from a newsletter you limit the purpose of processing data for sending business communications).
The right to erasure (to be forgotten) - An additional right that you have is to be erased (forgotten). We do not want to forget about you but if you wish it, you have that right. In such a case we will erase all your personal data from our system and from the systems of all our providers and back-ups. We need 30 days to apply the right of erasure.
In some cases we are bound by legal obligations and, for example, we must keep a record of issued tax documents for the period set by law. In this case we will erase all such personal data that are not bound by another law. We will inform you by email once the erasure has occurred.
Complaints to the Office for the Protection of Personal Data
If you have the feeling that we do not handle your personal data in accordance with the law, you have the right to complain at any time to the Office for the Protection of Personal Data. We would be glad if you informed us of any suspicions first, in order that we can do something about the situation and correct any possible mistakes.
Unsubscribing from the sending of newsletters and business communications
We send emails with inspirations, blogs or products and services if you are our client and on the basis of our legitimate interest.
If you are not our client, we only send them with your agreement. In both cases you may cancel the sending of our emails by clicking on the unsubscribe link in every email sent.
We would like to ensure you that all our employees and collaborators who will process your personal data are obliged to maintain confidentiality and secure practices in cases that their publication would threaten the security of your personal data. This confidentiality continues even once your business relationship with us has ended. Without your prior agreement your personal data will not be shared with any third party.
These principles for processing personal data are valid from 1.2.2020 and replace the previous Statement on the Protection of Personal Data.