Privacy Policy

We respect your privacy. Here you can learn how we manage your personal data responsibly and in line with GDPR requirements.

GDPR – FAMALO Personal Data Protection Rules

In our company, we value the right to the protection of personal data, which the Constitution of the Slovak Republic considers an inseparable part of fundamental rights and freedoms. Therefore, we have implemented procedures and measures to protect your personal data, which we apply when processing it as a data controller.

This Privacy Policy (hereinafter referred to as the “Policy”) contains information about how we handle our customers’ personal data and provides options for you to contact us if necessary. The Policy applies to all customers who use the services provided by our company, including interactions on social networks such as Facebook, Instagram and others.

Our platform is a database system that offers an online space for professionally organized advertising activities. The terms of use of our services are defined in the General Terms and Conditions.

The processing of personal data is carried out in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, as well as with Act No. 18/2018 Coll. on the protection of personal data and other relevant legal regulations.

Our company – data controller:
We are the data controller of this website, our company:
Famalo, s.r.o.
Landererova 8, Bratislava – city district Staré Mesto
811 09, Slovak Republic
ID number: 56 146 035

Contact:
+421 948 127 553
[email protected]

1. PROCESSING OF PERSONAL DATA

Processing of personal data by the company Famalo, s. r. o. is carried out in accordance with a number of legal regulations that ensure the protection of personal data. The main regulations include, first of all, the Personal Data Protection Act and the General Data Protection Regulation (GDPR).

Specific legal standards that regulate the conditions of data processing in more detail apply to data processing in the provision of our services, including:

  • Act No. 40/1964 Coll. Civil Code in a modified form,
  • Act No. 513/1991 Coll. Commercial Code in a modified form,
  • Law no. 250/2007 Coll. on consumer protection and amendments to the Act of the Slovak National Council No. 372/1990 Coll. on Misdemeanors, as amended,
  • Act No. 22/2004 Coll. on Electronic Commerce and amendments to Act No. 128/2002 Coll. on the control of the internal market in matters of consumer protection,
  • Law no. 351/2011 Z. z. on electronic communications in a modified form,
  • Law no. 102/2014 Coll. on consumer protection when selling goods or providing services at a distance or outside the seller’s business premises.

This order reflects the chronological order of laws according to their enactment.

All of these legal regulations provide the basis for the processing of personal data and enable us to ensure the protection of our customers’ rights and compliance with applicable legislation.

2. IDENTIFICATION AND CONTACT INFORMATION

Company name, data controller: Famalo, s. r. o. Registered address: Landererova 8, Bratislava – city district Staré Mesto 811 09, Slovak Republic, ID number: 56 146 035 Registered: District Court in Žilina, file no. 84611/L, section: Sro

3. RESPONSIBILITY

Person responsible for personal data protection in our company Famalo, s. r. o. will be happy to answer all your questions regarding the processing of your personal data. You can contact her using the following information: E-mail: [email protected], Headquarters address: Landererova 8, Bratislava – city district Staré Mesto 811 09, Slovak Republic

When you send us a written request to the address of the company headquarters, mark the envelope with the text: person responsible for GDPR.

4. PROCESSED DATA

Company Famalo, s. r. o. processes personal data solely for the purpose of providing professional services with an emphasis on professional care. The scope of personal data we process is determined in accordance with the purpose of their processing.

The processing of personal data is carried out using automated and manual procedures on secure devices specifically intended for this purpose. Famalo, s. r. o. ensures the protection of personal data against unauthorized access, damage, destruction, loss, alteration or disclosure. For this purpose, we have adopted appropriate technical and organizational measures in accordance with the way personal data is processed.

Only authorized and trained persons who are expressly authorized to work with personal data have access to personal data.

Information on the nature of personal data provided:

  • Contractual relationship: If the legal basis for the processing of personal data is a contract, the provision of data is a contractual requirement. Without this data, the conclusion of a contract is not possible.
  • Legal requirement: If the processing of personal data is a legal obligation, the data subject is obliged to provide the data. Without this data, the controller cannot fulfill the obligations arising from the relevant legal regulations.
  • Legitimate interest: If the processing is based on the legitimate interest of the controller or a third party, the purpose of the processing is defined according to the specific legitimate interest.

Types of personal data we process:

  • Identification and contact information: for example, title, first name, last name, address, telephone number, e-mail, bank details; this information forms part of the contracts concluded with us.
  • Transaction data: information about payments received and sent.
  • Communication data: data from mutual contacts, such as data from the use of the web application, business communications or data from contact with our contact points, including your requests and complaints.
  • Information about interactions with us: includes data about the use of our services, how you log in, where you access them, how long you use the pages, response times, and any errors you encounter during access.

The source of personal data is usually you as the person whose data is being processed. In some cases, we may process information about you provided to us by other users when using our services. If you post information about another person through our platforms, we expect that you have that person’s consent and that you will comply with our Terms of Use.

Processing of personal data in connection with payments:

When processing payments for our services, we process personal data necessary to complete the transaction, such as name, email address, billing information, IP address, chosen payment method, and website activity data. Payments are facilitated through third-party providers: Stripe, PayPal, and banking institutions. These entities may place cookies and use other technologies for the purposes of authentication, fraud prevention, and secure payment processing. Your payment details (e.g., card number) are processed exclusively through the secure interfaces of these providers and are not stored on our servers. The processing of such data is necessary for the performance of a contract pursuant to Article 6(1)(b) of the GDPR and for compliance with our legal obligations (e.g., accounting).

The provider of Stripe payment services is:

Stripe Payments Europe, Ltd.,
The One Building, 1 Grand Canal Street Lower, Dublin 2, Ireland

Privacy and security policies within Stripe:
https://stripe.com/privacy

Stripe Cookie Policy:
https://stripe.com/cookies-policy/legal

Stripe Services Agreement:
https://stripe.com/legal

The provider of PayPal payment services is:

PayPal (Europe) S.à r.l. et Cie, S.C.A.,
22–24 Boulevard Royal, L-2449 Luxembourg

PayPal Privacy Policy:
https://www.paypal.com/webapps/mpp/ua/privacy-full

PayPal Cookie Policy:
https://www.paypal.com/webapps/mpp/ua/cookie-full

PayPal User Agreement:
https://www.paypal.com/webapps/mpp/ua/useragreement-full

5. PURPOSES AND LEGAL BASIS FOR PROCESSING PERSONAL DATA

We process your personal data to the extent necessary, with most activities justified by the need to provide the requested services, requirements related to the provision of our services, compliance with the legal obligations of the controller, or legitimate interest in data processing.

The processing of personal data is carried out for the following purposes:

Advertising on the Famalo portal
Personal data is processed for the purpose of advertising on the Famalo portal. The terms of use are governed by the General Terms and Conditions. The legal basis for data processing for this purpose is the conclusion of a contract. The data is stored for 10 years after the year of conclusion of the contract.

Pursuing and defending legal claims
In certain cases, we may go to court in order to protect our rights or legally protected interests, or participate in judicial or administrative proceedings. The legal basis for data processing is the legitimate interest of the controller. The data is stored for 10 years after a final decision of a court or other public authority.

Marketing and sending information about news and services
Company Famalo, s. r. o. has a legitimate interest in contacting you (as a customer) and sending business offers and information about our products and services by email, phone or SMS. This interest includes being informed about news and other important events related to the Services Famalo, s. r. o. The legal basis is the legitimate interest of the controller. The data is kept for 5 years from the last login to the user account or the last use of the Famalo portal services.

Accounting records management
As a business entity, Famalo, s. r. o. is subject to tax and accounting obligations under legal regulations. We process your personal data in order to meet these obligations. The legal basis is the fulfillment of the legal obligations of the controller. The data is kept for 10 years after the year to which the payments related to a specific user relate.

Handling of requests from data subjects
In order to be able to respond to your requests and exercise your legal rights, you need to identify yourself. We process your personal data for the purpose of handling the request. The legal basis is the legitimate interest of the controller. Requests are kept for 5 years after the year in which the request was handled.

Handling complaints, appeals and inquiries
You can submit complaints and appeals in accordance with the Terms of Use of the Famalo portal. To handle complaints, we need your identification and contact information, and then we process the data contained in the complaint or appeal. When handling complaints, we act in accordance with the Famalo Terms of Use and applicable legislation. The legal basis is the legitimate interest of the controller. Documents related to complaints are kept for 10 years after the year of completion of the complaint handling.

Managing fan pages on social networks
For better communication with customers and fans, Famalo, s. r. o. runs fan pages on social networks (e.g. Facebook). Personal data available on Facebook and other social networks are also accessed by social networks. Personal data is processed in accordance with the privacy policy of the social networks. Famalo, s. r. o. when processing data based on legitimate interest, it takes care of the minimal impact on your privacy, in order to maintain a balance between the company’s legitimate interests and your privacy.

6. PROTECTION OF PERSONAL DATA

We process your personal data by automated and manual means within information systems that are protected and secured in accordance with appropriate security standards and legislation aimed at the protection of personal data.

Only persons authorized by Famalo, s. r. o. have the right to work with personal data. These persons are duly informed of the instructions of the controller and informed of the consequences of not following those instructions.

Famalo, s. r. o. consistently applies the principle of data minimization and processes only those data that are necessary to achieve a specific purpose. The data is processed exclusively for predefined purposes and is not used for any other purpose.

When processing personal data, Famalo, s. r. o. acts in accordance with internal regulations governing the protection of personal data and the security of information systems. Famalo, s. r. o. regularly assesses and analyzes whether there is a high risk to the privacy of the individuals whose data is processed. Based on this analysis, a detailed risk and privacy impact assessment is carried out, which further influences the setting up and implementation of our procedures.

We use appropriate technical and organizational security measures to protect personal data from unauthorized access or accidental disclosure to third parties.

  • Technical measures include technologies that prevent unauthorized access to personal data, as well as encryption and password protection for access to internal databases or company servers.
  • Organizational measures consist of rules of conduct for our employees, which are included in the internal regulations of the controller.

Internal company regulations Famalo, s. r. o. are confidential and serve to ensure data security.

7. PARTNERS AND THIRD PARTIES

In exceptional cases, your personal data may be made available to third parties, especially in situations where this is required or permitted by applicable legal regulations.

Suppliers and business partners
We carry out certain data processing activities through our trusted suppliers. When selecting them, we pay special attention to their professional, technical, organizational and personnel capabilities in order to ensure the security of the personal data processed.

Our suppliers and partners include:

  • server providers,
  • programming service providers,
  • delivery service providers,
  • accounting and legal service providers,
  • system support providers.

Supervisory authorities
Your personal data may be made available to authorities that supervise or control our business, such as the Office for Personal Data Protection of the Slovak Republic or the Slovak Trade Inspectorate, if necessary to fulfill legal obligations.

Exercising claims and protecting rights
When exercising rights or protecting legitimate interests, we may disclose your personal data to the relevant courts, bailiffs, notaries, lawyers, court experts or other entities involved in exercising claims or protecting rights.

Public administration bodies
Based on legal regulations, we are obliged to provide your personal data to state administration bodies, courts, prosecutor’s offices, criminal prosecution bodies or the Financial Administration of the Slovak Republic, if these bodies request cooperation.

Other bodies, institutions and entities
Other entities to which data may be accessible include, for example, Social Security, auditing firms, archives and other institutions.

8. ARCHIVING AND STORAGE OF PERSONAL DATA

We store and protect your personal data in accordance with the deadlines set by applicable legal regulations. If the data is processed based on your consent, we store it for as long as you have given us that consent. The length of time for which personal data is stored varies depending on the specific purpose of the processing. The established deadlines are based on the principle of minimization, which ensures that we only store data for as long as is strictly necessary.

9. RIGHTS OF THE PERSON TO WHOM THE DATA APPLIES

As a data subject, you have the following rights:

  • Right to access data
  • Right to correction or addition of data
  • Right to delete data
  • Right to restriction of processing
  • Right to data portability
  • Right to object
  • Right to file a complaint with a supervisory authority

Exercising your rights
You can exercise your rights by contacting us via our official contact details. We will resolve any request without undue delay, within the deadlines prescribed by applicable legislation.

10. FINAL PROVISIONS

Company Famalo, s. r. o. reserves the right to update these rules at any time, especially in the event of changes in legislation. The current version will always be available on the FAMALO website. If there are significant changes to the protection of personal data, including the way in which they are processed, Famalo, s. r. o. fulfills its obligation to inform by visibly posting notices before implementing changes.

These rules aim to assure you that we approach personal data with the utmost care and respect, in accordance with applicable legislation, using all available technical means to protect it.

In case of questions related to the protection of personal data that you have not found the answer to in this document, you can contact us via e-mail at [email protected].