en
Cart
0
0.00 €

Privacy Policy

1. Basic Information About the Online Store www.muoiatelier.com

The identity and contact details of the Controller are as follows:

Lucie Okániková, s.r.o.
Karpatské nám. 10/A
831 06 Bratislava
Company Registration Number (IČO): 52777707
Tax Identification Number (DIČ): 2121185572
Bank Account: SK56 0900 0000 0051 3518 7725 (SLSP)

The Seller is not a VAT payer (Value Added Tax).

Email and phone contact for the Controller:

  • Email: info@muoiatelier.com
  • Phone: +421 915 479 110

As a customer or visitor of www.muoiatelier.com, you share your personal data with us. We are responsible for their protection and security, determining how they are processed, for what purpose, and for how long. We also select any third-party processors who assist us in processing the data.

The Controller hereby, in accordance with Article 13 (1) and (2) of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter referred to as the "Regulation"), provides the Data Subject from whom the Controller collects personal data with the following information, instructions, and clarifications.

2. References

2.1 These policies and instructions regarding the protection of personal data form part of the General Terms and Conditions published on the Seller's online store.


2.2 In accordance with §3, para. 1, letter n) of Act No. 102/2014 Coll., the Seller informs the consumer that there are no specific codes of conduct to which the Seller has committed. A code of conduct is understood as an agreement or set of rules defining the behavior of the Seller, which the Seller has committed to follow concerning one or more specific business practices or sectors if not stipulated by law or another legal regulation or measure of a public authority. Additionally, the Seller informs about how the consumer can access or obtain the text of such codes of conduct if they exist

3. Personal Data Protection and Use of Cookies
Information and Explanation About Cookies

3.1 Importance of Cookies

A cookie is a small text file that a website stores on your computer or mobile device when you browse it. This file allows the website to remember your actions and preferences (such as login, language, font size, and other display settings) over time, so you don't have to re-enter them whenever you return to the site or navigate between its pages.

Our website and partners collect data and use cookies to enhance your experience, analyze traffic, and customize and measure advertisements. You can restrict or block cookies using your browser settings.

3.2 Types of Cookies Used on Our Online Store

  • Essential Cookies: These do not collect any information that could identify you personally but are necessary for the basic operation of the website. They include cookies that enable you to log into your account. Without these cookies, the website cannot function properly. If you prefer not to store these cookies, adjust your browser settings.

  • Statistical Cookies: These help us understand how visitors interact with the website by anonymously collecting and reporting information, thereby allowing us to improve the site.

  • Marketing Cookies: Used for providing and displaying advertisements based on users' interests or for collecting personal data for future marketing purposes. They help us target direct marketing communication more effectively and limit the frequency of ad displays.

  • Analytical Cookies: These help us gather data on website traffic, identify the origin of visits, and understand how users interact with the website. They serve to improve and simplify the user interface.

Statistical, marketing, and analytical cookies are used only if you give us consent to do so.

3.3 Information About the Use of Cookies

3.3.1 The Controller's website uses cookies to store:

  • a) Whether you have already answered a survey displayed in a pop-up window to share your opinion about the website (so it won't show up again);
  • b) Whether you have agreed (or not agreed) to the use of cookies on this website.

3.3.2 Marketing and Remarketing

Certain subpages of the Controller's website use cookies to anonymously collect statistical data about the referral source and the method by which users arrived at the domain.

Allowing cookies is not essential for the website to function properly but provides a better user experience. You can delete or block cookies.

The information stored in cookies will not be used to personally identify you, and the data structure remains fully under our control. Cookies are not used for any other purposes than those mentioned here. Some pages or subdomains may use additional or different cookies from those described. In such cases, detailed information will be provided in a specific cookie notice on the respective page.

3.4 How to Control Cookies

3.4.1 You can control and/or delete cookies at your discretion—visit aboutcookies.org for details. You can delete all cookies stored on your computer and set most browsers to prevent cookies from being stored.

For more information about managing cookies in specific browsers, see the following links:

  • Internet Explorer
  • Google Chrome
  • Firefox
  • Safari
  • Opera
  • Microsoft Edge


4. Processed Personal Data

4.1 The Controller processes the following personal data on its website:

  • Name
  • Surname
  • Address
  • Email address
  • Phone number
  • Data obtained from cookies
  • IP addresses

5. Contact Details of the Person Responsible for Personal Data Collection and Processing, Representative of the Controller

5.1 The Controller has not appointed a person responsible for the collection and processing of personal data.

5.2 The Controller has not appointed a representative for personal data collection and processing.

5.3 The Controller is also the Seller, as defined in the General Terms and Conditions of this website.

6. Purposes of Personal Data Processing

6.1 The purposes of processing the Data Subject's personal data include, in particular:

  • 6.1.2 Recording, creation, and processing of contracts and client data for the purpose of concluding agreements with third parties.
  • 6.1.3 Processing accounting documents and records related to the business activities of the Controller.
  • 6.1.4 Compliance with legal obligations concerning document and record archiving, e.g., under Act No. 431/2002 Coll., the Accounting Act, as amended, and other relevant regulations.
  • 6.1.4 Marketing and similar promotional activities of the Controller.
  • 6.1.5 Activities related to the Controller's presence on social networks, such as Facebook, Instagram, and others.
  • 6.1.6 Internet activities of the Controller, including targeted advertising through Facebook Ads, Google Ads, and others.
  • 6.1.7 Activities of the Controller concerning the fulfillment of requests, orders, contracts, and similar instruments of the Data Subject.

7. Legal Basis for the Processing of the Data Subject's Personal Data

7.1 The legal basis for processing the personal data of Data Subjects, depending on the specific data processed and the purpose of processing, is the consent of the Data Subjects to the processing of their personal data.

8. Recipients or Categories of Recipients of Personal Data

8.1 Recipients or potential recipients of the Data Subject's personal data may include:

  • 8.1.1 Statutory bodies or their members of the Controller.

  • 8.1.2 Individuals performing work for the Controller under an employment or similar relationship.

  • 8.1.3 Sales representatives and other persons cooperating with the Controller in fulfilling its tasks. For this document's purposes, employees are considered any individuals performing dependent work for the Controller based on employment contracts or other agreements.

  • 8.1.4 The Controller's collaborators, business partners, suppliers, and contractual partners, including accounting firms, software development and maintenance providers, legal service providers, consulting firms, logistics and delivery companies, marketing companies, and social media platforms.

    For transport and delivery:

    • Zásielkovňa s. r. o., Kopčianska 3338/82A, 851 01 Bratislava, Company ID: 48136999

    For marketing and service improvement:

    • Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland
    • Facebook Ireland Ltd., 4 Grand Canal Square, Dublin, Ireland

    For other purposes:

    • BRAINTREE Ltd., Unit 6 North Downs Business Park, Lime Pit Lane, Dunton Green, Sevenoaks, Kent, England

  • 8.1.5 Courts, law enforcement agencies, tax authorities, and other state authorities if required by law. Personal data will be provided to these institutions by the Controller in compliance with the legal regulations of the Slovak Republic.

9. Information on Data Transfer to Third Countries and Data Retention Period

9.1 Not applicable — the Controller does not transfer personal data to third countries.

9.2 Personal data will be stored in compliance with legal regulations for the period necessary to fulfill the contract and for subsequent archiving.

  1. Information about the Existence of Relevant Rights of the Data Subject:

10.1 The Data Subject has, among others, the following rights, whereas:

10.1.1 Section 10.1 does not affect other rights of Data Subjects.

10.1.2 The Data Subject's right of access to data under Article 15 of the Regulation, which includes:

The right to obtain confirmation from the Controller whether personal data concerning the Data Subject are being processed and, if so, to what extent. If processed, the Data Subject has the right to obtain information on the content and to request details from the Controller about the purpose of processing, including:

  • The purpose of the processing;

  • Categories of personal data concerned;

  • Recipients or categories of recipients to whom personal data have been or will be disclosed, particularly recipients in third countries or international organizations;

  • The anticipated period for which the personal data will be stored or, if that is not possible, the criteria used to determine that period;

  • The existence of the right to request from the Controller rectification or erasure of personal data, or restriction of processing, or to object to such processing;

  • The right to lodge a complaint with a supervisory authority;

  • If the personal data were not collected from the Data Subject, any available information regarding their source;

  • The existence of automated decision-making, including profiling under Article 22(1) and (4) of the Regulation, and in such cases, at least meaningful information about the logic involved and the significance and envisaged consequences of such processing;

  • Appropriate safeguards under Article 46 of the Regulation related to the transfer of personal data to a third country or international organization.

10.1.3 The right to obtain a copy of the personal data being processed, provided that the right to obtain such a copy does not adversely affect the rights and freedoms of others.

10.1.4 The Data Subject's right to rectification under Article 16 of the Regulation, which includes:

  • The right to have the Controller rectify inaccurate personal data concerning the Data Subject without undue delay;

  • The right to have incomplete personal data completed, including by means of providing a supplementary statement.

10.1.5 The Data Subject's right to erasure (the "right to be forgotten") under Article 17 of the Regulation, which includes:

  • The right to have the Controller erase personal data without undue delay where one of the following grounds applies:

    • Personal data are no longer necessary for the purposes for which they were collected or otherwise processed;

    • The Data Subject withdraws consent on which the processing is based, provided there is no other legal basis for processing;

    • The Data Subject objects to the processing under Article 21(1) of the Regulation and there are no overriding legitimate grounds for processing, or objects under Article 21(2);

    • The personal data have been unlawfully processed;

    • The personal data must be erased to comply with a legal obligation under European Union or Member State law;

    • The personal data were collected in connection with the offer of information society services under Article 8(1) of the Regulation.

10.1.6 The right for the Controller who has made the personal data public, considering available technology and the cost of implementation, to take reasonable steps, including technical measures, to inform other Controllers processing the personal data that the Data Subject has requested the deletion of any links to or copies or replications of such personal data.

10.1.7 The right to erasure does not apply if processing is necessary:

  • For exercising the right of freedom of expression and information;

  • For compliance with a legal obligation requiring processing under European Union or Member State law or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller;

  • For reasons of public interest in public health under Article 9(2)(h) and (i) and Article 9(3) of the Regulation;

  • For archiving purposes in the public interest, scientific or historical research, or statistical purposes in accordance with Article 89(1), where the right is likely to render impossible or seriously impair the achievement of the objectives of that processing;

  • For the establishment, exercise, or defense of legal claims.

10.1.8 The Data Subject's right to restriction of processing under Article 18 of the Regulation, which includes:

  • The right to require the Controller to restrict processing in any of the following cases:

    • The Data Subject contests the accuracy of personal data for a period allowing the Controller to verify its accuracy;

    • Processing is unlawful, and the Data Subject opposes erasure and requests restriction instead;

    • The Controller no longer needs the personal data for processing purposes, but they are required by the Data Subject for the establishment, exercise, or defense of legal claims;

    • The Data Subject has objected to processing under Article 21(1) of the Regulation pending verification whether the Controller's legitimate grounds override those of the Data Subject.

10.1.9 If processing is restricted, such personal data may only be processed, except for storage, with the Data Subject's consent, for the establishment, exercise, or defense of legal claims, for the protection of the rights of another natural or legal person, or for reasons of important public interest of the European Union or a Member State.

10.1.10 The right to be informed in advance about the lifting of the restriction of processing.

10.1.11 The Data Subject's right to notification concerning rectification or erasure of personal data or restriction of processing under Article 19 of the Regulation, which includes:

  • The right for the Controller to notify each recipient to whom personal data have been disclosed of any rectification or erasure of personal data or restriction of processing unless it proves impossible or involves disproportionate effort;

  • The right for the Controller to inform the Data Subject about these recipients upon request.

10.1.12 The Data Subject's right to data portability under Article 20 of the Regulation, which includes:

  • The right to receive personal data concerning the Data Subject provided to the Controller in a structured, commonly used, and machine-readable format and the right to transmit those data to another Controller without hindrance from the current Controller if:

    • The processing is based on the Data Subject's consent under Article 6(1)(a) or Article 9(2)(a) or on a contract under Article 6(1)(b); and

    • The processing is carried out by automated means.

10.1.13 The right to obtain personal data in a structured, commonly used, and machine-readable format and the right to transfer them to another Controller without hindrance, provided it does not adversely affect the rights and freedoms of others.

10.1.14 The right to have personal data transmitted directly from one Controller to another where technically feasible.

10.1.15 The Data Subject's right to object under Article 21 of the Regulation, which includes:

  • The right to object, on grounds relating to their particular situation, at any time to the processing of personal data based on Article 6(1)(e) or (f), including profiling based on these provisions.

  • Where the Data Subject exercises this right, the Controller must cease processing personal data unless the Controller demonstrates compelling legitimate grounds for processing that override the Data Subject's interests, rights, and freedoms or for the establishment, exercise, or defense of legal claims.

  • The right to object at any time to processing for direct marketing purposes, including profiling to the extent related to such marketing, and upon such objection, personal data may no longer be processed for these purposes.

10.1.16 In connection with the use of information society services, the right to object to processing by automated means using technical specifications.

10.1.17 The right to object on grounds related to the Data Subject's particular situation to processing for scientific or historical research or statistical purposes under Article 89(1) unless the processing is necessary for public interest tasks.

10.1.18 The Data Subject's rights concerning automated individual decision-making under Article 22 of the Regulation, which includes:

  • The right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning them or similarly significantly affects them, except where the decision is:

    • Necessary for entering into or performing a contract between the Data Subject and the Controller;

    • Authorized by European Union or Member State law to which the Controller is subject, provided it also lays down suitable measures safeguarding the Data Subject's rights and freedoms and legitimate interests;

    • Based on the Data Subject's explicit consent.

11. Notice on the Right of the Data Subject to Withdraw Consent for Personal Data Processing:

11.1 The data subject is entitled to withdraw their consent for the processing of personal data at any time, without affecting the legality of the data processing carried out based on the consent before its withdrawal.

The data subject may withdraw their consent for personal data processing either in full or partially. Partial withdrawal of consent may concern a specific type of processing operation(s), with the legality of data processing for other operations remaining unaffected. Partial withdrawal may also apply to a specific purpose or purposes of data processing, with the legality of data processing for other purposes remaining intact.

The data subject can exercise the right to withdraw consent either in written form by sending a letter to the controller's address as registered in the commercial register at the time of withdrawal, or electronically via email to the address provided in this document or by filling out an online form published on the controller's website.

12. Notice on the Right of the Data Subject to Lodge a Complaint with a Supervisory Authority:

12.1 The data subject has the right to lodge a complaint with a supervisory authority, particularly in the member state of their habitual residence, place of work, or the location of the alleged infringement, if they believe that the processing of their personal data is in violation of the Regulation. This is without prejudice to any other administrative or judicial remedies.

The data subject has the right to be informed by the supervisory authority about the progress and outcome of their complaint, including the possibility of a judicial remedy as per Article 78 of the Regulation.

12.2 In the Slovak Republic, the supervisory authority is the Office for Personal Data Protection of the Slovak Republic.

13. Information on the Obligation/Non-Obligation of the Data Subject to Provide Personal Data and Information Regarding Automated Decision-Making, Including Profiling:

13.1 The controller informs the data subject that providing personal data is necessary for the conclusion and fulfillment of a purchase agreement. The data subject is informed that they are not obliged to provide personal data nor to grant consent for its processing. However, if personal data is not provided and/or consent is not granted, the controller will be unable to conclude and fulfill the purchase agreement.

13.2 Since the controller does not process personal data in the form of automated decision-making, including profiling, as defined in Article 22 (1) and (4) of the Regulation, there is no obligation to provide information as per Article 13 (2) (f) of the Regulation. Thus, automated decision-making and profiling are not applicable.

14. Final Provisions:

14.1 These Principles and Notices on Personal Data Protection and Cookies form an integral part of the General Terms and Conditions and the Complaints Procedure. These documents are published on the Seller's online store domain.

14.2 These principles of personal data protection become valid and effective upon their publication on the seller's online store on February 6, 2025.