GDPR

We would like to inform you that on the basis of the General Data Protection Regulation (GDPR), MiMa Group sro protects the personal data of its clients.

We respect the privacy of all persons with whom we are in contact and the protection of your privacy is our priority.

It is important for us that each person concerned understands what personal data we process about them, why we do it and what your rights are.

Therefore, we recommend that you read the Privacy Policy, which will provide you with more information about the processing of your personal data by MiMa Group sro.

The Privacy Policy determines how we process your personal information if you are a current or potential client, supplier or in any relationship with us in which we have access to your personal information.

We may process personal data about you in different ways and in different situations, depending on whether you are a client or a supplier. Regardless of the situation, we promise that we will never sell, commercialize or use your personal data in violation of applicable data protection regulations.

If you want to notify us of a breach of the use of personal data or send a request regarding the rights of the data subject, you can do so by sending a message to mimagroupsro@gmail.com , or by mail to the address of the registered office of Koniarekova 6752/21, Trnava, 91701.

I. Who is the Personal Data Administrator?

The administrator of personal data is the company MiMa Group sro, Koniarekova 6752/21, Trnava, 91701, IČO: 51741903.

We process your personal data as an administrator, ie we determine how personal data will be processed and for what purpose, for how long, and we may select other processors who will assist us with the processing.

II. Contact information

If you would like to contact us during processing, you can contact us by e-mail: mimagroupsro@gmail.com or by phone +421 910 688 588

III. Statement

We declare that, as the controller of your personal data, we comply with all legal obligations required by applicable legislation, in particular the Personal Data Protection Act and the GDPR, and thus that:

We will process your personal data only on the basis of a valid legal reason, in particular a legitimate interest, performance of the contract, legal obligation or consent.

According to Article 13 of the GDPR, we fulfill the information obligation before starting the processing of personal data.

We will enable and support you in exercising and enforcing your rights under the Personal Data Protection Act and the GDPR.

IV. Scope of personal data and purpose of processing

We process personal data that you entrust to us yourself, for the following reasons (to fulfill these purposes):

Provision of services, performance of the contract
Your personal data in the range: name, surname, address of residence, e-mail, telephone number, in the case of purchase as an entrepreneur or company also ID number and VAT number, account number, or we necessarily need the telephone number to fulfill the contract, ie the delivery of the ordered goods or services.

Bookkeeping
If you are a customer, we urgently need your personal data (invoicing data) in order to comply with the legal obligation to issue and record tax documents.

Marketing - sending information e-mails
We use your personal data (e-mail and name) for the purpose of direct marketing - sending business announcements. If you are our customer, we do so out of a legitimate interest, because we reasonably assume that you are interested in our news, for a period of 2 years from the last order.

Photographic documentation, references
Only with your consent can I use your photos, videos or written references on my site until you revoke your consent. You can revoke it at any time via our contact details.

V. Cookies

Our website can be browsed in a mode that does not allow the collection of personal data. The use of cookies on our website is not allowed.

VI. Security and protection of personal data

We protect personal data as much as possible using modern technologies that correspond to the level of technical development. We protect them as if they were our own. We have taken and maintain all possible (currently known) technical and organizational measures that prevent the misuse, damage or destruction of your personal data, and thus:

Secure access to our computers and tablets (password protected).

Secure access to our e-mail boxes (secured by username and password).

Secure access to e-mail applications (secured by name and password).

Secure access to accounting systems (secured by name and password).

Encrypted communication on our websites (valid https certificate).

Regular software updates and antivirus programs

Securely locked establishment (secured by a lockable door).

Personal data will be processed in electronic form in an automated manner or in printed form in a non-automated manner.

VII. Provision of personal data to third parties

No one but us (Mary Rybárová and Miloš Gábor) has access to your personal data.

To ensure specific processing operations that we cannot provide on our own, we use the services and applications of processors who know how to protect data even better than me and specialize in the given processing.

The processors of personal data are or may be:

Bc. Ľubica Jakubcová, lubica.still@gmail.com - Bookkeeping
Slovenská pošta, as, Partizánska cesta 9, 975 99 Banská Bystrica, ID 36 631 124, VAT ID SK 2021879959

We may make personal data that we process as both an administrator and a processor available only to collaborators and processors who provide administrative and technical support for the operation of applications necessary for the operation of the website and support applications or participate in the running of my business.

Other entities are allowed access only for the purpose of fulfilling legal obligations.

At the same time, this secrecy continues even after the end of our contractual relations with us. Your personal data will not be disclosed to any other third party without your consent.

It is possible that in the future we will decide to use other applications or processors, to facilitate and improve processing. However, we promise you that in such a case we will place at least the same demands on the processor for the security and quality of processing when selecting.

We will not provide your data to third countries. We process data exclusively in the European Union or in countries that provide an adequate level of protection based on a decision of the European Commission.

VIII. Your rights regarding privacy

You have a number of rights regarding the protection of personal data. If you wish to exercise any of these rights, please contact us via e-mail: mimagroupsro@gmail.com

You have the right to the information already filled in this information page with the principles of personal data processing.

Thanks to the right of access, you can call us at any time and we will prove to you within 15 days what your personal data is being processed and why.

If something changes or you consider your personal data to be out of date or incomplete, you have the right to supplement and change your personal data.

You can exercise the right to restrict processing if you believe that I am processing your inaccurate data, that you believe that I am processing illegally, but you do not want to delete all the data, or if you have objected to the processing.
You can limit the scope of personal data or the purpose of processing.

Right of portability: If you would like to take your personal data and transfer it to someone else, we will proceed in the same way as when exercising the right of access - except that we will send you the information in machine-readable form. In this case, we need at least 10 days.

Right to erase (be forgotten): Your next right is the right to erase (be forgotten). We don't want to forget you, but if you want to, you have a right to it. In this case, we will delete all your personal data from our system as well as from the system of all processors and backups. We need 10 days to secure the right to delete.

In some cases, we are bound by a legal obligation, and e.g. we must register the issued tax documents for the period stipulated by law. In this case, we will delete all such personal data that are not bound by other law. We will notify you by email when the deletion is complete.

Complaint to the Office for Personal Data Protection:

If you feel that we are not processing your data in accordance with the law, you have the right to contact your Personal Data Protection Office at any time with your complaint. We will be happy to inform us of this suspicion first so that we can do something about it and correct any mistakes.

IX. Silence

We would like to assure you of the confidentiality of personal data and security measures, the disclosure of which would jeopardize the security of your personal data. At the same time, this secrecy continues even after the end of our contractual relations with us. Your personal data will not be disclosed to any other third party without your consent.

These principles of personal data processing apply from 25.05.2018.

Thank you for your trust.