In this summary you will find information about which of your personal data we process, why we process it and how we ensure that it is protected.
1 Who processes your data?
Hodinářství Bechyně s.r.o.
Registered address: V jámě 699/1, 110 00 Prague 1 – Nové Město
Reg. no.: 247 41 515
2 Why do we process your personal data?
We process your data primarily so that we can offer and provide you with the services that you have shown an interest in.
Specifically, it can be for the following purposes:
- reserving selected products and then contacting you as soon as the product is available;
- providing a repair service and communication relating to this;
- sending business messages, including interesting news from the world of watches or offers of new products (where each such message contains the option to easily cancel the service);
- improving the quality of our services and preparing new services;
- displaying relevant adverts that match your interests and preferences;
- carrying out analysis and measurements to determine how our services (in particular our website) are used.
3 How do we process your personal data?
We collect and process only data that we need in order to provide the services that you have shown an interest in, and for the purposes described above.
In the vast majority of cases this is information which you yourself provide to us when you visit our store or our website and general information about your movement on our website. Specifically, this could be the following information:
- name and surname, also possibly a title
- company and position (if you provide us with these data)
- e-mail or street address, or country of current residence
- phone number
- your hobbies (if you provide us with these data)
- your signature (when you give your consent in the store)
- history of the products you have purchased and the services you have used
- IP address (when you visit our website)
- cookies (when you visit our website, unless you prohibit their use)
- account / payment card number (when you use the non-cash payment option)
4 What entitles us to collect your personal data?
We process your personal data only in cases where we have legitimate reasons and a clear legal right to do so and only to the extent necessary to fulfil the purpose for which you have provided them to us. In normal cases this is processing of personal data which:
- is necessary to execute a concluded contract or to conclude it;
- is done based on our legitimate interest (personalisation of website offers, direct marketing, etc.);
- is done based on consent that you have given us; or
- is required in order to meet our statutory duty (in exceptional cases).
5 Where are our personal data stored and how are they secured?
Most of your personal data will be processed in our electronic information systems where they are safely stored in encrypted form and only authorised users who need to know them for the purpose for which you have provided them have access to them. These include in particular:
- ERP system (financial information, service requirements, etc.);
- CRM system (requests, communication);
- direct market system; or
- e-mail system.
Some personal data may also be stored in paper form, either for the temporary period necessary to transfer them to our electronic systems, or permanently. Physical documents containing personal data are always protected using appropriate measures corresponding to their degree of sensitivity (especially locked). Discarded paper documents containing personal data are always shredded.
We take privacy very seriously and use all recommended practices and measures to secure all the personal data we have at our disposal. Nevertheless, it can never be guaranteed that the personal data will not be leaked. Among other things, also for this reason we never collect and process any really sensitive information, and we always proceed as we would like others to handle our own personal data.
6 Who will have access to your data?
The protection of your personal data is very important to us. Therefore only our employees who need to know them in order to achieve the purpose for which they have been collected, and in some cases also carefully selected partners who provide us with certain services, will have access to them. All such partners are contractually bound to comply with the same strict rules as we are when processing your personal data.
The following third parties may have access to your personal data for the extent necessary:
- providers of our IT solutions and systems;
- payment gate and system operators;
- partners who provide personalisation of adverts and analytics for visits to our website; and
- courier companies that we work with to handle your orders.
In exceptional and precisely defined cases we may be obliged, under binding legal regulations, to also pass on certain personal data to various state authorities (for example customs administration, etc.).
7 How long do we process your personal data for?
We will process your data for as long as you actively use our services, and for business reasons for a further three years.
We will process personal data provided with your consent for a period of ten years (unless you withdraw your consent earlier, which you can do at any time – see Article 9) or longer if you subsequently renew the consent you have granted.
Personal data that we have to process under applicable law will be processed for as long as required by applicable regulations. We are not authorized to erase these data even if you request us to do so.
With regard to this we would like to point out that personal data necessary in order to:
- properly provide the services you have ordered; or
- fulfil our obligations under the contract between you and us or according to generally binding legal regulations
has to be processed for the period specified by applicable legislation, irrespective of anything else.
We process data obtained in connection with using our services or when registering on our website, which are not required in order to provide the relevant service (for example, summary of interests, products viewed, etc.):
- for the duration of your consent if we obtained them based on your consent;
- for a maximum of fifty months if we obtained them in a different way (for example, during your movement on our website).
8 Do I have to provide my personal data?
You always provide us with your personal data on a voluntary basis. However, if you do not provide it, we may not be able to provide you with certain services (for example, contact details for handling complaints).
We only collect personal data that we need or which helps us to provide the services that you are intending to use. However, you always have the option to decide not to hand over your personal data.
9 Is my consent necessary? How can I provide it and, if I choose, withdraw it?
We do not necessarily require your consent to collect and process your personal data. The processing of certain data is required by law, is necessary in order to provide a service (for example, a payment card number for non-cash payment – for more information see Article 4), or is done based on our legitimate interest.
Nevertheless, in cases where we consider it ethical, we will ask you to grant your voluntary consent. You always provide it to us freely, for a specific purpose, and knowing how your personal data will be handled. (This summary provides this information). Consent can be provided in paper form using our standard form or electronically - through our website, tablet or phone app, etc.
You may withdraw your consent to the processing of your personal data at any time and without giving any reason, either by sending an e-mail message to email@example.com or by using another option offered in our electronic communications or on our website. The withdrawal of consent does not have a retroactive effect and concerns only the further processing of your personal data. The withdrawal of consent also has no effect on cases where we can or have to process your personal data on another legal basis (for example, for performance of the contract, fulfilment of our legal obligations, etc.).
10 What rights do you have in relation to the protection of personal data?
With regard to the personal data that you provide us, you have the rights set forth in GDPR and applicable legislation. These include in particular:
- the right to withdraw consent at any time;
- the right to request the rectification or addition of personal data;
- the right to request the restriction of processing;
- the right to object to processing;
- the right to be informed about personal data breaches;
- the right to erasure of personal data (the right to be “forgotten”); and
- the right to be informed about how we process your personal data.
You can exercise some of these rights only in certain cases and taking into account the limitations of applicable legislation.
A cookie is a short text file which a website sends to a browser which stores it on your computer. Then, each further time you visit the website the browser sends this data back to the server.
Cookies are commonly used to distinguish individual users, store shopping cart content in e-shops, user preferences, etc. Each cookie contains information about how long it should be stored by the browser; this time may range from one-off use to several years.
Cookies are not used to obtain any sensitive personal data or to identify you as a specific person. They are not directly linked to your name or e-mail address, but they often include your login information. They are common to one browser installation. Cookies, including collected data, are not secured.
Our website uses Google cookies. You can find more information about these cookies and how they are used by Google here.
12 Rolex section
While navigating on the Rolex section of our website, some cookies are controlled by ROLEX SA which applies the following Cookies Policy.
13 How do I opt out of direct marketing or exercise my rights?
Opting out of direct marketing is very easy – you will find a one-click opt-out link in every message you receive from us.
To exercise your rights you can use the e-mail address firstname.lastname@example.org.
14 How can you contact us?
If you have any questions about personal data protection, you can contact us:
- by e-mail at email@example.com; or
- by post at the address: Hodinářství Bechyně, V jámě 699/1, 110 00 Praha 1 – Nové Město. Address your letter to the data protection officer.
For personal data protection, we may require proof of your identity before replying.