I. The controller of personal data pursuant to Art. 4(7) of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter: "GDPR") is DoorHan s.r.o., ID No: 27352820, with its registered office at Královský Vrch 2018, 432 01 Kadaň (hereinafter: "the controller").
II. The contact details of the controller are:
address: Královský Vrch 2018, 432 01 Kadaň
e-mail: kadan@doorhan.com
phone: +420 702 185 654
III. Personal data means any information about an identified or identifiable natural person. This policy applies to the processing of personal data of visitors to the doorhan.cz website and customers in the EEA.
I. The controller processes personal data that you have provided (e.g., when placing an order, registering, or making an inquiry) or that the controller has obtained from public sources or automatically (e.g., IP address).
II. Categories of personal data: identification (name, surname), contact (address, e-mail, phone), transactional (orders, payments), technical (cookies, IP).
III. Legal grounds for processing:
a. Performance of a contract (Art. 6(1)(b) GDPR) – processing of orders.
b. Legitimate interest (Art. 6(1)(f) GDPR) – direct marketing, website security.
c. Consent (Art. 6(1)(a) GDPR) – sending newsletters, marketing cookies.
d. Legal obligation (Art. 6(1)(c) GDPR) – accounting, tax obligations.
IV. Purposes: processing orders, sending commercial communications, improving services, statistics, protection of rights.
I. The controller retains data for the period necessary to exercise the rights and obligations arising from the contractual relationship between you and the controller and to assert claims from these contractual relationships.
II. Data processed based on a legal obligation (e.g., accounting documents) are retained for the period stipulated by the relevant legal regulations (e.g., 10 years).
III. Personal data processed based on your consent (e.g., for sending newsletters) is retained for the duration of the consent, but for a maximum of 3 years from its granting, unless you withdraw it sooner.
IV. After the retention period expires, the controller will securely delete or anonymize the personal data.
I. Recipients: carriers (e.g., courier services), accounting firms, IT service providers (hosting, system administration), marketing agencies.
II. The controller intends to transfer personal data to a third country (outside the EU) or an international organization. The transfer is secured by standard contractual clauses issued by the European Commission, which ensure an adequate level of protection.
Under the conditions set out in the GDPR, you have the right:
You also have the right to lodge a complaint with the Office for Personal Data Protection (www.uoou.cz) if you believe that your right to personal data protection has been violated.
I. Our website uses cookies. A cookie is a small text file that a website stores on your computer or mobile device when you browse it.
II. We divide cookies into:
III. On your first visit to the website, an information bar (cookie bar) will be displayed, where you have the option to accept all cookies or grant consent only for selected categories. You can change or withdraw your consent at any time through the settings in the footer of our website.
IV. You can also restrict or block the use of cookies in your web browser settings. Please note, however, that deactivating necessary cookies may affect the functionality of the pages.
The controller declares that it has taken all appropriate technical and organizational measures to secure personal data, including data encryption, access control, and regular employee training.
This policy may be updated from time to time. The current version will always be available on our website. We recommend that you check this page regularly.