Information on Personal Data Protection and Privacy

This information on personal data protection and privacy applies to you and your personal data, as you are our customer. Our company acts as a data controller when processing your personal data. We would like to explain how we will use the personal data we obtain from you or from third parties during the term of our contractual relationship, as well as after its termination.

This document also serves to fulfill our obligation to provide information pursuant to Article 13 of Regulation (EU) No. 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation), and Act No. 18/2018 Coll. of 29 November 2017 on the Protection of Personal Data and on Amendments and Supplements to Certain Acts.

Controller Identification Details

Beaver creek s.r.o.
Zgútha Vrbického 732/2
Liptovský Mikuláš
031 01

1. Types of Personal Data

We process the following data:

  • Personal contact details. For example: your name, surname, permanent residence address, mailing address, email address, contact phone number, date of birth.

  • Work contact details. For example: company address you represent, work email address, and telephone number.

  • Contractual data. For example: the content of the contract concluded with our company, including all its amendments, scope of provided services, type of vehicle, and its identification.

  • Payment information.

  • Correspondence and communication data. For example: email correspondence, internet data transmissions, and IP address.

  • Access rights. Your access rights to various applications within our IT infrastructure.

  • Registration data, including access password.

  • Security-related information.

  • CCTV recordings.

2. Purposes and Objectives of Data Processing

We will process your data for the following purposes:

  • Provision of contractual services. We must maintain client records in accordance with specific regulations. The legal basis is the fulfillment of the controller’s legal obligation.

  • Loyalty program. Customer registration and sending of news about the latest offers and services related to membership in our program. The legal basis is the contract concluded between us and the legitimate interest of the controller.

  • Direct marketing. We focus on improving our services and creating tailored offers for you. The legal basis is the legitimate interest of the controller.

  • Taxes and accounting. To comply with obligations arising from tax law and other regulations related to financial performance, we are obliged to process certain personal data. The legal basis is the fulfillment of legal obligations.

  • Operational and network security. We monitor the functionality, security, and stability of our network in which you participate. The legal basis is the fulfillment of legal obligations and the legitimate interest of the controller.

  • CCTV system. We have installed a camera system on our premises to protect you. The legal basis is the legitimate interest of the controller.

  • Dispute resolution and investigation of offenses. We may process personal data for resolving disputes, complaints, or legal proceedings, or where we suspect misconduct requiring further investigation. The legal basis is the fulfillment of legal obligations and the legitimate interest of the controller.

  • Legal compliance. We may need to process your personal data to comply with the law (e.g., verifying your name against so-called designated party lists or compliance with anti-money laundering laws) or to comply with a court order.

  • Marketing consents. Other data may also be used exclusively based on specific consents we obtain from you in advance. The legal basis is your consent.

  • Customer administration. We maintain records of all our customers and their services. Based on analysis of these records, we also make strategic decisions on customer offers. The legal basis is the contract concluded between us and the legitimate interest of the controller.

3. Who Has Access to Your Data

The controller may share your data with third parties under the following circumstances: your personal data may be shared with third parties acting on our behalf, such as service providers. In such cases, these third parties may use your personal data only for the purposes described above and solely in accordance with our instructions. They are contractually bound to comply with security guidelines as prescribed by law.

Our employees will also have access to personal data. Access is limited only to those who need it to perform their work for the purposes stated above and only when bound by a duty of confidentiality.

If required by law or court order, we may share your personal data with our suppliers or clients, tax authorities, social security offices, law enforcement agencies, or other governmental bodies.

4. Location of Your Personal Data

Your personal data will be stored exclusively within the European Union and the European Economic Area. We protect your data within our systems to the highest possible standard.

5. Retention of Personal Data

We store your personal data for a limited period and delete it once it is no longer needed for processing purposes. In most cases, this means we retain your data for the duration of your relationship with us. Wherever possible, we delete data even during this relationship once it becomes unnecessary. In all cases, we delete your personal records no later than after the statutory retention periods following the termination of the contractual relationship, unless legislation requires further retention.

We may process your personal data for a longer period after termination of the relationship in case of an ongoing legal dispute or if you have granted permission for long-term storage.

6. Legal Basis for Processing Your Data

In most cases, we process your personal data because processing is necessary for our legitimate interests, on a contractual basis, or based on your consent as a data subject. You may withdraw your consent at any time by providing verifiable notice via our website. In many cases, we will also need to process your personal data based on a legal obligation under specific legislation. When processing is based on consent, you always have the option to withdraw that consent.

7. Rights of Data Subjects

It is important to understand that these are your personal data that we process, and we want you to be fully aware of your rights. Although we may process your personal data without your explicit permission when required by law or by contracts connected to our services, you have numerous rights regarding the processing of your personal data.

The above text answers most of your questions.

Right of Access

You may request information on how we process your personal data, including:

  • Why we process your personal data

  • Which categories of personal data we process

  • With whom we share your personal data

  • How long we retain your personal data or the criteria for determining this period

  • What rights you have

  • Where we obtained your personal data (if not directly from you)

  • Whether processing involves automated decision-making (so-called profiling)

  • If your personal data has been transferred outside the EEA, how we ensure its protection

All of the above information is available in this document. You may also request a copy of your personal data that we process; however, additional copies may be subject to a fee.

Right to Rectification

It is important that we have accurate information about you. Please inform us if any of your personal data is incorrect, e.g., if you have changed your name or address.

Right to Erasure

If we process your personal data unlawfully, such as retaining it longer than necessary or without justification, you may request that we delete such data.

Right to Restriction

From the moment you request correction of your personal data or object to processing, until we can investigate or verify the issue, you are entitled to restricted processing. This means that, except for storage, we may process your personal data only with your consent, in connection with legal claims, to protect another person’s rights, or where there is an overriding public interest. You may also request restriction of processing if the processing is unlawful but you do not wish the data to be deleted.

Right to Object

If you believe we have no right to process your personal data, you may object to the processing. In such cases, we may continue processing only if we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms. However, we may always process your data if necessary to establish, exercise, or defend legal claims.

Right to Data Portability

You may request that your personal data, which you have provided to us based on consent or to fulfill a contract, be delivered to you in a structured, commonly used, and machine-readable format. You also have the right to request the transfer of such data to another data controller.

Withdrawal of Consent

You have the right to withdraw your consent, after which we will cease processing based on that legal ground.

We will also inform other parties to whom your personal data has been provided about your request(s).

In case of doubt, you have the right to file a petition to initiate proceedings under § 100 of the Personal Data Protection Act with the competent supervisory authority, for example through www.dataprotection.gov.sk.

How Can I Complain About the Use of My Data or Exercise My Rights?

If you wish to file a complaint about how we process your personal data, including matters related to the above rights, you may contact us by email. Your comments and requests will be reviewed.

If you are not satisfied with our response or believe that we process your data unfairly or unlawfully, you may file a complaint with the competent supervisory authority, which is the Office for Personal Data Protection (ÚOOÚ). More information about the ÚOOÚ and its complaint procedures can be found at www.dataprotection.gov.sk.

8. Contact Details

If you have any additional questions regarding the processing of your personal data, you may contact us via the correspondence address provided on our website or by email.

 
 
Disclaimer

This document is an unofficial English translation of the original Slovak version of the General Data Protection Regulation (GDPR) as applied or referenced in Slovakia. It is provided for informational and convenience purposes only.

In the event of any discrepancy or inconsistency between this English translation and the official Slovak version, the Slovak version shall prevail. Only the Slovak text is legally binding and authoritative for interpretation and application.

No legal liability is assumed for any errors, omissions, or inaccuracies that may arise from this translation.