We process personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons regarding the processing of personal data and the free movement of such data (hereinafter referred to as the "GDPR") and Act No. 18/2018 Coll. on the Protection of Personal Data (hereinafter referred to as the "Personal Data Protection Act"). Ensuring the security and lawful processing of personal data is our top priority. Here, you can learn how we handle your personal data and the measures we take to secure it.
Our Data
Personal data is being processed
Business name: Healtern s.r.o.
Registration: Commercial Register of the District Court in Prešov, Section Sro, File No. 44332/P
Headquarters: Záhradná 536/7, 059 35 Batizovce, Slovakia
IČO: 54 707 579
Representative: B.Sc. Barbara Kantorová
(hereinafter referred to as the “Operator”).
Responsible Person
The person responsible for personal data protection is
Name and surname: Bc. Barbara Kantorová
Email: info@healtern.com
phone: +421 907 996 419
Categories of Personal Data, Purpose, Legal Basis, and Retention Period
What personal data do we process, for what purpose, on what legal basis, and for how long?
We only process the personal data that is necessary to achieve the stated purpose. We process personal data for the following purpose:
Accounting purposes
We process the personal data of suppliers, customers, and their employees, members of the statutory body, or other individuals, including [name, surname, address, email address, phone number], for the purposes of maintaining accounts and fulfilling obligations under the Accounting Act and other relevant legal regulations. The legal basis for processing personal data is the fulfillment of legal obligations. We retain accounting documents for 10 years.
Eshop
We process the personal data of customers, specifically their name and email address, for the following purpose:
marketing communications
The legal basis for their processing is:
Fulfillment of the contract
We process personal data within the user account only with the customer's consent. We retain personal data from pre-contractual communication for 6 months. Personal data processed for the purpose of concluding and fulfilling the contract is kept for 5 years. Personal data in the user account is stored for the duration of the registration on the website.
Complaints
We process the personal data of customers, including [name, surname, address, email address, phone number], primarily for the following purpose:
processing the customer's complaint as quickly as possible.
The legal basis for processing this personal data is:
the fulfillment of a legal obligation.
We store personal data for 5 years from the date the complaint was resolved.
Contact form
We process the personal data of interested parties, including name and email, with the intention of receiving and handling your inquiry. The legal basis for their processing is the fulfillment of the contract, or pre-contractual relations related to the conclusion of the contract. We retain personal data for 6 months.
Form on the website
We process personal data, including name and email, with the intention of receiving and handling your inquiry. The legal basis for their processing is the fulfillment of the contract, or pre-contractual relations related to the conclusion of the contract. We retain personal data for 6 months.
Marketing
We process the personal data of customers, including name and email, for direct marketing purposes to inform you about our offers, news, and promotions. If you are our customer, the legal basis for processing this data is our legitimate interest. If you are not our customer, we process your personal data for this purpose only with your consent. We retain personal data for 5 years, or less if you withdraw your consent or object to the processing of your personal data.
Social Media Management
We process the personal data of fans of our official social media pages for the purpose of managing our social networks. The legal basis for processing personal data is our legitimate interest, which is to promote the operator and its services through social networks. We process personal data as long as you remain a fan of our page.
Cookies
You can find information about how we process cookies on the "Cookie Policy" subpage.
CONSENT
We also process personal data based on the consent of the individual, in cases where processing is not necessary for the fulfillment of a contract, a legal obligation, or if it is not in our legitimate interest. We process this data only for the duration of the consent. The individual can withdraw their consent at any time.
Persons Under 16 Years of Age
Are you under 16 years of age?
The offer of goods and services on this website is not intended for persons under the age of 16. If we process personal data in connection with information security services based on your consent, you can only give us this consent if you are over 16 years of age. We do not process personal data of persons under the age of 16.
Recipients
To whom do we provide your personal data?
We provide personal data to third parties only when required by law or necessary for the performance of the contract. These are primarily public administration bodies and other authorized entities.
We also share your personal data with intermediaries who provide us with professional and specialized services. We have entered into a contract with each intermediary for the processing of personal data and have bound them to confidentiality. We have entrusted the processing of personal data to:
Accounting firm
Web designer
Email marketing provider
Third Country
Where do we transfer your personal data?
We transfer personal data to a third country, specifically to the countries where MailerLite, Facebook, and Instagram are based. These countries provide adequate guarantees for the security of your personal data.
COMPLAINT
Not satisfied?
If you are not satisfied with how we process your personal data, you can let us know by emailing info@healtern.com. You also have the option to file a complaint with the Office for Personal Data Protection if you believe we are processing your personal data unlawfully.
Office for the Protection of Personal Data
Hraničná 12, 820 07 Bratislava
Email: statny.dozor@pdp.gov.sk
Method of Processing Personal Data
How do we process your personal data?
We process personal data in both electronic and paper form. We do not use any automated means of individual decision-making.
We maintain records of all processing activities and have implemented the necessary technical and organizational security measures to ensure the protection of personal data. These measures include anti-virus programs, strong password policies, and encryption. We regularly back up the entrusted personal data to ensure that we can restore it immediately in case of accidental damage or loss. Those who process personal data have been trained and bound by confidentiality agreements. We take great care in selecting intermediaries, ensuring that the chosen intermediaries provide adequate guarantees for the security of your personal data.
Rights of the Individuals Affected
What rights do you have as a data subject?
The GDPR grants you certain rights that allow you to influence how we process your personal data. However, not all rights may apply in every circumstance. The legal basis for processing personal data must be considered when exercising these rights.
Right of Access to Data
You have the right to know whether we are processing your personal data. As long as we are processing your data, you can request access to it. Upon your request, we will provide a confirmation along with information regarding the processing of your personal data by our company.
Right to Rectification
You have the right to have your personal data that we process corrected, completed, and kept up-to-date. If the data is inaccurate or outdated, you can request us to correct or update it. We will make the necessary corrections without undue delay, taking into account technical possibilities.
Right to Erasure
In certain circumstances, you have the right to have your personal data deleted. You can request us to delete it at any time. We will delete your personal data if:
We no longer need them for the purpose for which you provided them;
You withdraw your consent;
You object to the processing of your personal data;
We are processing your personal data unlawfully;
The personal data must be deleted to comply with a legal obligation;
You are a child or the parent of a child who consented to the processing of personal data over the internet.
Right to restriction of processing
You can ask us to restrict the processing of your personal data. If we grant your request, we will only store your data and will no longer process it. The processing of your data will be restricted if:
You notify us that the data is incorrect, and we are in the process of verifying its accuracy;
We process the data unlawfully, but you do not want them deleted and instead request that we limit the processing of your personal data;
We no longer need the data, but you need it to establish, exercise, or defend your rights;
You object to the processing of your personal data, and we are in the process of verifying whether our legitimate interests outweigh your reasons.
Right to Data Portability
As we do not process your personal data in the required electronic form, it is not possible to exercise the right to data portability.
The Right to Object
In cases where we process your personal data based on the legal basis of legitimate interest, you have the right to object to their processing. Unless we can demonstrate that there are compelling legitimate grounds for continuing the processing that outweigh your interests or rights, the processing of your personal data will be terminated without undue delay based on your objection.
You can send your request to exercise any of the rights mentioned to us via email or post at the address provided above. We will address all your requests and inform you of the outcome in the same manner in which you submitted your request.
Final Provisions
These personal data protection policies take effect on the date of their publication, 1 October 2022. We reserve the right to modify these policies if there is a change in the processing of personal data within our company.