Privacy Policy
In this Privacy Policy you will find all the information about which Personal Data we, Absolute Ideas s.r.o. of Dlouha 715/38, 110 00 Prague 1 Czech Republic (hereinafter "us" or "we") acting as the data controller in accordance with the Czech Republic`s Data Processing Act implementing the GDPR has been introduced as Act. No. 110/2019 Coll. (“DPA”) and the EU's General Data Protection Act (“GDPR”) collect and process and for what purpose. You will also find out what rights you have and how you can assert them.
If you have any questions, you can reach us at info@absolute-ideas.com.
What is Personal Data?
Personal Data is any information relating to personal or material circumstances that relates to an identified or identifiable individual. This includes, for example, your name, date of birth, e-mail address, postal address, or telephone number as well as online identifiers such as your IP address. In contrast, information of a general nature that cannot be used to determine your identity is not Personal Data. This includes, for example, the number of users of a website.
What is processing?
"Processing" means any operation or set of operations which is performed upon Personal Data, whether or not by automatic means. The term is broad and covers virtually any handling of data.
Relevant legal basis
In the following, we inform you about the legal basis on which we process Personal Data. If more specific legal bases apply in individual cases, we will inform you of these separately.
- Consent - The data subject has given his/her consent to the processing of Personal Data relating to him/her for a specific purpose or purposes.
- Performance of a contract and pre-contractual enquiries - Processing is necessary for the performance of a contract to which the data subject is a party or for the performance of pre-contractual measures carried out at the data subject's request.
- Legitimate interests - Processing is necessary for the purposes of the legitimate interests of the controller or a third party unless such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require the protection of Personal Data.
Your rights
Under the DPA and GDPR, you can exercise the following rights:
a) Right to information
You have the right to request information and/or copies of the Personal Data stored about you.
b) Right to rectification
You have the right to request that Personal Data relating to you be corrected and/or completed without delay.
c) Right to object to processing
You have the right to request the restriction of the processing of your Personal Data, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defense of legal claims or you have lodged an objection to the processing.
d) Right to deletion
You have the right to request the erasure of your Personal Data stored by us, unless the exercise of the right to freedom of expression and information, the processing is necessary for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise, or defense of legal claims.
e) Right to information
Where you have exercised the right to rectification, erasure, or restriction of processing, we will notify all recipients to whom Personal Data relating to you has been disclosed of such rectification or erasure or restriction of processing, unless this proves impossible or involves a disproportionate effort.
f) Right to data portability
You have the right to have Personal Data that you have provided to us handed over to you or to a third party in a structured, common, and machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.
g) Right of objection
Insofar as your Personal Data are processed on the basis of legitimate interests, you have the right to object to the processing at any time. If we process your data for the purpose of direct marketing, you have the right to object at any time to the processing of Personal Data concerning you for the purpose of such marketing; this also applies to profiling insofar as it is related to such direct marketing.
h) Right to withdraw consent
You have the right to cancel your consent to the collection of data at any time with effect for the future. The data collected until the cancellation becomes legally effective will remain unaffected. Please understand that the implementation of your cancellation may take a little time for technical reasons and that you may still receive messages from us in the meantime.
i) Right to complain to a supervisory authority
If the processing of your Personal Data violates data protection law or if your data protection rights have otherwise been violated in any way, you may complain to your local supervisory authority.
j) Automated decision-making including profiling
You have the right not to be subject to a decision based solely on automated processing which produces legal effects concerning you or similarly significantly affects you.
If you wish to exercise any of the rights listed above, you can contact us. For your protection and the protection of all our users, we may need to request certain information from you to help us confirm your identity before we can respond to the above requests.
The Supervisory Authority
The Office for Personal Data Protection (OPDP) in the Czech Republic is the relevant authority in matters of data protection. You have the right to make a complaint at any time to the OPDP (www.uoou.cz). We would, however, appreciate the chance to deal with your concerns before you approach the OPDP, so please contact us in the first instance.
Updating your information
If you believe that the information we hold about you is inaccurate or that we are no longer entitled to use it and want to request its rectification, deletion, or object to its processing, please do so by contacting us using info@absolute-ideas.com.
Access Request
In the event that you wish to make a Data Subject Access Request, you may inform us in writing of the same using info@absolute-ideas.com.
We will respond to requests regarding access and correction as soon as reasonably possible. Should we not be able to respond to your request within thirty (30) days after receiving your request, we will inform you in writing within thirty (30) days of the time by which we will be able to respond to your request. If we are unable to provide you with any Personal Data or to make a correction requested by you, we shall generally inform you of the reasons why we are unable to do so (except where we are not required to do so under the respective legal regulations mentioned above).
Processing of Personal Data
In the course of our business and website operations, we process data, and this data is generally transferred to our Headquarters in France. However, this also includes disclosure by transmission to third parties and to so-called third countries outside the EEA. If we use third parties in third countries to provide our services, we take appropriate legal precautions as well as corresponding technical and organizational measures to ensure the protection of personal data in accordance with the relevant legal regulations.
a) access data and hosting
You can visit our website without providing any Personal Data. Each time you access a website, the web server automatically saves a so-called server log file, which contains, for example, the name of the requested file, your IP address, the date and time of the access, the amount of data transferred and the requesting provider (access data and log files) and documents the access.
This access data is evaluated solely for the purpose of ensuring trouble-free operation of the site and improving our services. In accordance with the DPA and GDPR, this serves to protect our legitimate interests in the correct presentation of our website, which outweigh our interests in the context of a balancing of interests. All access data is deleted at the latest seven days after the end of your visit to the site.
b) contacting us
If you contact us via email or social media, we store and process the following data from you: e-mail address, name, and telephone number, if provided, as well as other Personal Data that you provide when contacting us. This data is collected and processed exclusively for the purpose of contacting you and processing your request and then deleted, provided there is no legal obligation to retain it. The legal bases for processing are contract and our legitimate interest.
c) data collection and use for contract processing
We collect Personal Information if you voluntarily provide it to us in the context of your ordered services or if you use our services (advertising or affiliate) (your name, e-mail address). Mandatory fields are marked as such, as we need the data in these cases to process the contract and we cannot process the order without you providing it. We use the data you provide to process the contract.
d) marketing
Insofar as you have also given us your separate consent to process your data for marketing and advertising purposes, we are entitled to contact you for these purposes via the communication channels you have given your consent to.
You may give us your consent in a number of ways including by selecting a box on a form where we seek your permission to send you marketing information, or sometimes your consent is implied from your interactions or contractual relationship with us. Where your consent is implied, it is on the basis that you would have a reasonable expectation of receiving a marketing communication based on your interactions or contractual relationship with us.
Direct Marketing generally takes the form of e-mail but may also include other less traditional or emerging channels. These forms of contact will be managed by us, or by our contracted service providers. Every directly addressed marketing sent or made by us or on our behalf will include a means by which you may unsubscribe or opt out.
Data transfer
We sometimes use specialized service providers to process your data. Our service providers are carefully selected and regularly monitored by us. They process Personal Data only on our behalf and strictly in accordance with our instructions on the basis of corresponding contracts for commissioned processing.
We may also disclose Personal Data to third parties if we are legally obliged to do so e.g., by court order or if this is necessary to support criminal or legal investigations or proceedings at home or abroad or to fulfill our legitimate interests.
Data Security
Our data processing is subject to the principle that we only process the Personal Data that is necessary for the use of our services. In doing so, we take great care to ensure that your privacy and the confidentiality of all Personal Data are always guaranteed.
All transmitted data is protected by HTTPS encryption. HyperText Transfer Protocol Secure (HTTPS) is a protocol used to ensure secure data transmission on the Internet. The public-private key procedure is used here. This means that data encrypted with a publicly accessible key can only be decrypted again with a separate private key.
We also use technical and organizational security measures (TOMs) throughout the company to protect the data we manage from you against accidental or intentional manipulation, loss, destruction or against access by unauthorized persons.
Duration of data storage
We store Personal Data on our secure server and only for as long as it is necessary for the purposes for which it is processed or for as long as any consent you have given us has been revoked by you. Insofar as statutory retention obligations must be observed, the storage period for certain data may be up to 6 years, irrespective of the processing purposes.
Automated decision-making
Automated decision-making including profiling does not take place.
Personal Data and children
We will not knowingly collect, use or disclose Personal Data from minors under the age of 18 without first obtaining consent from a legal guardian through direct offline contact.
Changes and updates
We kindly ask you to regularly inform yourself about the content of our Privacy Policy. We will amend the Privacy Policy as soon as changes to the information processing activities we carry out make this necessary. This Privacy Policy was last updated on Monday, 21st of August 2023.
Concerns and Contact
If you have any concerns about a possible compromise of your privacy or misuse of your Personal Data on our part, or any other questions or comments, or wish to exercise your rights under applicable laws, please contact us.