Sign in ↗

First class for CZK 150

CS
EN
Yoga Movement Classes
Close
Based on to the class
By yoga style
Useful
Contact

Personal Data Protection (GDPR)

COMPANY

Vieworks s.r.o.
Vejvodova 445/1
Prague 1, 110 00
ID No.: 26148021
VAT No.: CZ26148021

Registered with the Municipal Court in Prague, Section C, File 74489

BUSINESS PREMISES

Yoga Movement

Na Zatlance 1151/8, Prague 5 – 150 00

CONTACT DETAILS OF THE PROVIDER

Reception:

info@yogamovement.cz
+420 702 157 021

RESPONSIBLE PERSON

Adéla Porubská
adela@yogamovement.cz
+420 777 117 299

Information on the processing of clients' personal data.

The provider processes personal data that it needs to offer and provide goods and services, comply with legal obligations, and protect the interests of clients or the interests of the provider.

This includes your first name, last name, date of birth, address, email address, and phone number.

How is client data processed and protected?

Personal data processing is carried out at the business address or through processors (accountants). Processors undertake to comply with all necessary security measures to protect the personal data provided to the provider.

Personal data is processed using computer technology in compliance with security principles. To this end, measures have been taken to ensure the protection of personal data so that there can be no unauthorized or accidental access to personal data, its alteration, destruction or loss, unauthorized transfers, unauthorized processing, or other misuse of personal data. Personal data is processed only by authorized persons who have access only to personal data corresponding to their authorization; personal data is protected by passwords, access rights, etc.

How long is personal data processed for?

This is the period necessary to ensure the rights and obligations arising from both the contractual relationship and the relevant legal regulations, or the period for which clients have given their consent to processing.

Consent to the processing of personal data

The personal data controller may process personal data without the client's consent in the following cases:

  • processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
  • processing is necessary for compliance with a legal obligation to which the controller is subject,
  • processing is necessary to protect the vital interests of the data subject or another natural person,
  • processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller,
  • processing is necessary for the purposes of the legitimate interests pursued by the controller or a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data.

With the exception of cases specified by law where the processing of personal data does not require the consent of the data subject, data is processed exclusively with the consent of clients (this refers to consent to the processing of email addresses for the purpose of sending offers of goods and services and telephone numbers for the purpose of contacting clients in connection with the fulfillment of our obligations).

What are the rights of clients (data subjects)?

  1. In accordance with Article 12 of the GDPR, the controller shall, upon request, provide information on the right of access to personal data and the following information: - the purpose of the processing, - the category of personal data concerned, - the recipients or categories of recipients to whom the personal data have been or will be disclosed, - the envisaged period for which the personal data will be stored, - any available information on the source of the personal data, if not collected from the data subject, - whether automated decision-making, including profiling, is carried out.
  • Any data subject who discovers or believes that the controller or processor is processing their personal data in a manner that is contrary to the protection of the data subject's private and personal life or contrary to the law, in particular if the personal data are inaccurate with regard to the purpose of their processing, may:- ask the controller for an explanation; - request that the controller remedy the situation (in particular, this may involve blocking, correcting, supplementing, or deleting personal data, or objecting to such processing); - request all available information about the source of the personal data, if it has not been obtained from the data subject.

If the data subject's request is found to be justified, the controller shall remedy the situation without delay.

If the controller does not comply with the data subject's request under paragraph 1, the data subject has the right to contact the supervisory authority, i.e. the Office for Personal Data Protection, directly.

The above procedure does not preclude the data subject from contacting the supervisory authority directly with their complaint.

c) Right of access to personal data:

The data subject has the right to obtain confirmation from the controller as to whether or not personal data concerning him or her are being processed, and, where that is the case, has the right to access the personal data.

The data subject also has the right to request from the controller a copy of the personal data processed concerning him or her, provided that this does not adversely affect the rights and freedoms of others. For further copies requested by the data subject, the controller may charge a reasonable fee based on administrative costs. If the data subject submits the request in electronic form, the information shall be provided in a commonly used electronic form, unless the data subject requests otherwise.

d) Right to rectification

The data subject has the right to have the Controller correct inaccurate personal data concerning him or her without undue delay. Taking into account the purposes of the processing, the data subject has the right to have incomplete personal data completed, including by means of providing a supplementary statement.

e) Right to erasure (right to be forgotten)

The data subject has the right to have the controller erase personal data concerning the data subject without undue delay, and the controller has the obligation to erase personal data without undue delay if one of the following reasons applies:

1) personal data is no longer necessary for the purposes for which it was collected or otherwise processed;

2) the data subject withdraws consent on which the processing is based and there is no other legal ground for the processing;

3) the data subject objects to the processing of personal data for direct marketing purposes;

4) personal data has been processed unlawfully;

5) personal data must be erased to comply with a legal obligation laid down in European Union or Czech Republic law;

6) personal data has been collected in connection with the provision of information society services on the basis of consent given by the child.

f) Right to restriction of processing

The data subject has the right to have the controller restrict processing in any of the following cases:

1) the data subject disputes the accuracy of the personal data, for a period enabling the Controller to verify the accuracy of the personal data;

2) the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead;

3) The controller no longer needs the personal data for the purposes of processing, but the data subject requires it for the establishment, exercise, or defense of legal claims.

4) Right to data portability

The data subject has the right to obtain personal data concerning him or her, which he or she has provided to the controller, in a structured, commonly used, and machine-readable format, and the right to transmit those data to another controller without hindrance from the controller, where:

1) processing is based on consent to the processing of personal data or involves the processing of personal data for the purposes of concluding and performing a contract with the data subject; and at the same time

2) Processing is carried out automatically.

When exercising their right to data portability, data subjects have the right to have their personal data transferred directly from one controller to another, where technically feasible. The right to data portability shall not adversely affect the rights and freedoms of others.

h) Right to object

Where personal data are processed for direct marketing purposes, the data subject shall have the right to object at any time to processing of personal data concerning him or her for such marketing, which includes profiling (i.e., any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to the data subject) to the extent it is related to such direct marketing. If the data subject objects to processing for direct marketing purposes, personal data will no longer be processed for these purposes.

i) The right not to be subject to automated decision-making, including profiling

The data subject has the right not to be subject to any decision based solely on automated processing, including profiling (i.e., any form of automated processing of personal data consisting of the use of personal data to evaluate certain personal aspects relating to the data subject), which produces legal effects concerning him or her or similarly significantly affects him or her. This right does not apply if the automated decision is necessary for the conclusion or performance of a contract between the data subject and the Controller or is based on the data subject's explicit consent; in such cases, however, the data subject has the right to human intervention in the automated decision by the controller, the right to express their opinion, and the right to challenge the automated decision.

j) Right to lodge a complaint with a supervisory authority The data subject has the right to lodge a complaint against the processing of their personal data by the controller with the supervisory authority, which is the Office for Personal Data Protection, with its registered office at Pplk. Sochora 27, 170 00 Prague 7.

Using Data for Social Media Marketing (Meta Custom Audiences)

We may share your email address in encrypted form with Meta Platforms Ireland Ltd. (Facebook, Instagram) for the purpose of displaying relevant ads. This consent is voluntary, and you may withdraw it at any time.