Privacy Policy
We process personal data in accordance with Regulation (EU) 2016/679, the General Data Protection Regulation (“GDPR”), applicable Czech data protection laws, and other relevant EU legislation.
1. Data Controller
The data controller responsible for the processing of your personal data is:
Misterine s.r.o.
Registered office: Karolinská 661/4, Karlín, 186 00 Praha
Company ID: 05249899
Email: info@misterine.com
Website:
https://misterine.com
If we appoint a Data Protection Officer, their contact details will be listed here. If no Data Protection Officer is appointed, privacy-related requests may be sent to the contact email above.
2. What Personal Data We Process
Depending on how you use our website or services, we may process the following categories of personal data:
Data You Provide to Us
- name and surname,
- email address,
- company name,
- billing or invoicing details,
- communication content, such as support requests or emails,
- account registration details, if user accounts are available,
- any other information you voluntarily provide to us.
Technical and Usage Data
- IP address,
- browser type and version,
- device type,
- operating system,
- date and time of access,
- pages visited,
- referring URL,
- server logs,
- approximate location derived from technical data,
- information about your interaction with our website.
Cookies and Similar Technologies
We may use cookies and similar technologies to operate our website, remember user preferences, measure website traffic, and, where applicable, provide embedded content or marketing features.
Non-essential cookies, such as analytics or marketing cookies, are used only where legally permitted and, where required, only after your consent.
3. Purposes and Legal Bases of Processing
We process personal data only where we have a valid legal basis under GDPR.
| Purpose | Personal Data | Legal Basis |
|---|---|---|
| Operating and securing our website | IP address, server logs, technical data | Legitimate interest |
| Providing our services | Account data, contact data, service-related data | Performance of a contract |
| Responding to enquiries and support requests | Name, email, message content | Performance of a contract or legitimate interest |
| Managing customer relationships | Contact data, communication history | Legitimate interest |
| Billing and accounting | Billing data, payment-related records | Legal obligation |
| Website analytics | Cookie identifiers, usage data | Consent, unless legally exempt |
| Marketing communication | Email, name, preferences | Consent or legitimate interest, depending on the situation |
| Displaying embedded third-party content, such as YouTube videos | IP address, browser data, cookie data | Consent, where required |
| Preventing abuse, fraud, and security incidents | Technical data, logs | Legitimate interest |
| Complying with legal obligations | Relevant personal data | Legal obligation |
4. Cookies
Our website may use cookies and similar technologies. Cookies are small text files stored on your device that help us operate the website, improve user experience, measure traffic, and provide certain features.
To manage the cookies and similar technologies used (tracking pixels, web beacons, etc.) and related consents, we use the consent tool "Real Cookie Banner". Details on how "Real Cookie Banner" works can be found at https://devowl.io/rcb/data-processing/.
The legal basis for the processing of personal data in this context are Art. 6 (1) (c) GDPR and Art. 6 (1) (f) GDPR. Our legitimate interest is the management of the cookies and similar technologies used and the related consents.
The provision of personal data is neither contractually required nor necessary for the conclusion of a contract. You are not obliged to provide the personal data. If you do not provide the personal data, we will not be able to manage your consents.
Strictly Necessary Cookies
These cookies are required for the website to function properly. They may be used for page navigation, security, session management, and remembering your privacy preferences.
Legal basis: legitimate interest or necessity for providing the requested service.
Analytics Cookies
Analytics cookies help us understand how visitors use our website, which pages are visited most often, and how we can improve our services.
We may use tools such as Google Analytics, subject to your consent where required.
Legal basis: consent.
Marketing Cookies
If used, marketing cookies may help us measure advertising effectiveness or display relevant content.
Legal basis: consent.
Embedded Content Cookies
Our website may include embedded content from third-party providers, such as YouTube. These providers may place cookies or process personal data when you interact with the embedded content.
Legal basis: consent, where required.
You can manage or withdraw your cookie consent at any time through our cookie settings, if available, or by adjusting your browser settings.
5. Google Analytics
We may use Google Analytics to understand how visitors use our website.
Google Analytics may process information such as pages visited, session duration, browser and device information, approximate location, IP address or shortened IP address, and cookie identifiers.
Where required by law, Google Analytics is used only after your consent. You may withdraw your consent at any time through our cookie settings.
Google may process personal data in accordance with its own privacy terms.
6. YouTube and Embedded Content
Our website may contain embedded videos or other content from YouTube, a service provided by Google.
When you view or interact with embedded YouTube content, Google may receive technical information about your device and browser, including your IP address. Google may also use cookies or similar technologies, depending on your settings and consent.
Where required, such embedded content will be loaded only after you have provided consent.
7. Recipients of Personal Data
We may share personal data with trusted service providers who help us operate our website and services.
These may include:
- hosting providers,
- IT infrastructure providers,
- email service providers,
- analytics providers,
- accounting and tax advisors,
- legal advisors,
- payment service providers, if applicable,
- customer support tools,
- security and monitoring tools.
These providers process personal data only under our instructions and subject to appropriate contractual safeguards, unless they act as independent controllers.
We do not sell your personal data.
8. Transfers Outside the European Economic Area
Some of our service providers, such as Google, may process personal data outside the European Economic Area.
Where personal data is transferred outside the EEA, we ensure that appropriate safeguards are in place, such as an adequacy decision issued by the European Commission, the EU-US Data Privacy Framework where applicable, Standard Contractual Clauses approved by the European Commission, or supplementary technical and organisational safeguards where required.
9. Data Retention
We keep personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required by law.
| Data Category | Retention Period |
|---|---|
| Server logs | Usually up to 180 days |
| Contact form or support communication | For the duration of communication and then up to 180 days |
| Customer account data | For the duration of the account and a reasonable period after deletion |
| Billing and accounting data | For the period required by applicable tax and accounting laws |
| Analytics data | According to the analytics tool settings, e.g. 6 month |
| Marketing consent records | Until consent is withdrawn and for a reasonable period necessary to prove compliance |
| Backups | Usually up to 6 months |
After the relevant retention period expires, personal data is deleted or anonymised.
10. Your Rights
Under GDPR, you have the following rights regarding your personal data:
- the right to access your personal data,
- the right to rectification of inaccurate data,
- the right to erasure,
- the right to restriction of processing,
- the right to data portability,
- the right to object to processing based on legitimate interest,
- the right to withdraw consent at any time,
- the right not to be subject to automated decision-making with legal or similarly significant effects,
- the right to lodge a complaint with a supervisory authority.
If you are located in the Czech Republic, you may contact:
Úřad pro ochranu osobních údajů
Website:
https://www.uoou.cz
To exercise your rights, please contact us at: info@misterine.com.
We may need to verify your identity before responding to your request.
11. Withdrawal of Consent
Where processing is based on your consent, you may withdraw that consent at any time.
Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.
You can withdraw cookie consent through our cookie settings, where available, or by changing your browser settings.
12. Marketing Communications
If you subscribe to our newsletter or agree to receive marketing communication, we may use your email address to send you updates about our products, services, or related content.
You can unsubscribe at any time by clicking the unsubscribe link in the email or contacting us directly.
If you are our customer, we may send you relevant commercial communication about similar products or services where permitted by law. You may opt out at any time.
13. Security
We use appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration, or disclosure.
These measures may include:
- access control,
- encryption where appropriate,
- secure server infrastructure,
- backups,
- monitoring and logging,
- regular updates and maintenance,
- confidentiality obligations for persons handling personal data.
However, no method of transmission or storage is completely secure.
14. Automated Decision-Making and Profiling
We do not use personal data for automated individual decision-making that would produce legal effects concerning you or similarly significantly affect you within the meaning of Article 22 GDPR.
15. Children’s Privacy
Our website and services are not intended for children under the age of 16.
We do not knowingly collect personal data from children. If you believe that a child has provided us with personal data, please contact us and we will take appropriate steps to delete such data.
16. Links to Third-Party Websites
Our website may contain links to third-party websites.
We are not responsible for the privacy practices or content of third-party websites. We recommend that you read their privacy policies before providing any personal data.
17. Changes to This Privacy Policy
We may update this Privacy Policy from time to time.
The latest version will always be available on our website. If we make significant changes, we may notify you by appropriate means, such as by posting a notice on our website or contacting you directly.
18. Contact
If you have any questions about this Privacy Policy or the processing of your personal data, please contact us at:
Misterine s.r.o.
Email: info@misterine.com
Address: Karolinská 661/4, Karlín, 186 00 Praha
Note: Before publishing, please replace all placeholders in square brackets with your actual company details, contact email, cookie tools, service providers, and retention periods.