Privacy Policy
These Privacy Policy Terms describe how we handle the personal data of our customers and website visitors. The text complies with current legislation and has been written in a way that is as understandable as possible for every reader.
The main laws and regulations on which this text is based include:
Act No. 480/2004 Coll., on Certain Information Society Services
Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (GDPR)
If you need more detailed information on the rules, obligations, and rights that govern us, we recommend reviewing these laws and regulations.
Hlavní zákony a nařízení, ze kterých text vychází, jsou zákon č. 480/2004 Sb., o některých službách informační společnosti
nařízení Evropského parlamentu a rady (EU) 2016/679 o ochraně fyzických osob v souvislosti se zpracováním osobních údajů a o volném pohybu těchto údajů (GDPR)
Pokud potřebujete získat ještě podrobnější informace o pravidlech, povinnostech a právech, kterými se řídíme, doporučujeme nahlédnout do těchto zákonů a nařízení.
1. Identity and Contact Details of the Data Controller
1.1 The data controller according to Article 4, Point 7 of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter: “GDPR”) is Itziar Lanas Rodríguez, ID No. 11970928, with registered office at Kaštanová 1055/14, 779 00 Olomouc. Email: itziar@bluelibelula.com.
1.2 According to Article 4, Paragraph 1 of the GDPR, personal data means any information relating to an identified or identifiable natural person (“you” or “data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
1.3 The data controller has not appointed a data protection officer.
2. Sources and Categories of Processed Personal Data
2.1 The data controller processes personal data that you have provided or personal data that the controller has obtained based on fulfilling your order.
2.2 The data controller processes your identification and contact details as well as data necessary for the performance of the contract.
3. Zákonné důvody pro zpracování osobních údajů
3.1 The legal grounds for processing personal data are or may be (depending on your specific situation):
The performance of the contract (most commonly related to processing your order) between you and the controller, or taking steps by the controller prior to entering into such a contract, actions directly related to fulfilling the contract, and the fulfillment of rights and obligations arising directly from the contractual relationship
When placing an order, personal data necessary for successfully processing the order (e.g., name combined with address and other contact information) are required. Providing personal data is a necessary requirement for entering into and performing the contract, as without this data, it is impossible to enter into the contract and therefore impossible for the controller to fulfill it
The buyer acknowledges that they are obliged to provide their personal data (during registration, in their user account, or when placing an order via the online store interface) correctly and truthfully and that they are obliged to inform the seller without undue delay of any changes to their personal data
The legitimate interests of the controller, in accordance with the GDPR, as defined below
Your consent to processing for the purposes of direct marketing (especially for sending commercial communications and newsletters) according to Article 6(1)(a) of the GDPR in conjunction with § 7(2) of Act No. 480/2004 Coll., on Certain Information Society Services, if no order for goods or services has been placed
4. Purposes of Personal Data Processing
4.1 The purposes of personal data processing are or may be (depending on your specific situation):
Fulfilling the contract concluded with the customer, most commonly processing an order, and fulfilling the legal obligations arising from the performance of the contract
Marketing activities, most commonly sending commercial communications, in accordance with legal grounds
Reasonable assessment of satisfaction with the provided goods or services
4.2 The data controller does not engage in automated individual decision-making as defined in Article 22 of the GDPR.
5. Legitimate Interests of the Data Controller
5.1 The legitimate interests of the data controller in relation to the processing of personal data are defined in accordance with Article 6(1)(f) of the GDPR and Recital 47 of the GDPR preamble.
5.2 These legitimate interests of the controller include:
Providing direct marketing (especially for sending commercial communications and newsletters) in accordance with Article 6(1)(f) of the GDPR and Recital 47 of the GDPR preamble
Surveying customers about their satisfaction with their purchase and the services provided
6. Other Recipients of Personal Data
6.1 Other recipients of your personal data are primarily shipping companies or other entities involved in the delivery of goods or the execution of payments based on the purchase contract.
6.2 Other recipients of your personal data may also include service providers who perform activities related to the operation of the controller, such as companies providing programming services, information technology services (e.g., databases, economic systems), accounting services, or marketing services. The controller declares that in such cases, all necessary organizational and technical measures have been and will be taken to ensure the proper protection of personal data in accordance with the GDPR.
6.3 The controller processes data within the Czech Republic and, if necessary, in other EU countries. For legal reasons (such as an order with delivery outside the EU and the necessary transfer of data to a local carrier), processing may also occur outside the EU. In cooperation with global entities, data may also be processed outside the EU, but in such cases, the entity is always a participant in the Privacy Shield, ensuring an adequate level of protection.
7. Use of Cookies
Cookies are text files containing a small amount of information that are downloaded to your device when you visit my website. These cookies are then sent back to the website or another website that recognizes them on each subsequent visit.
Cookies perform various functions, such as enabling efficient navigation between web pages, remembering your preferences, and generally improving the user experience. They can also ensure that the advertisements displayed online are better tailored to you and your interests.
On this website, we use the following cookies:
Necessary Cookies: These are essential for the operation of the website, allowing you to log in to secure areas of the site and perform other basic functions. This category of cookies cannot be disabled.
Analytical/Statistical Cookies: These help us recognize and count the number of visitors and see how visitors use our website. They assist us in improving the way the website works, for example, by ensuring that users can easily find what they are looking for. These cookies are only activated with your prior consent.
Advertising Cookies: These are used to track your preferences and allow us to display advertisements and other content that best match your interests and online behavior. These cookies are only activated with your prior consent.
Please note that third parties (including, for example, external service providers) may also use cookies and/or access data collected by cookies on this website.
For more information about cookies and the current list of cookies, please refer to the individual web browsers, most commonly under the Developer Tools section.
Consent can be expressed through a checkbox included in the so-called cookie banner. You can also later refuse cookies or set the use of only certain cookies in your browser settings.
For more information on managing cookies in specific browsers, please visit the following links:
Internet Explorer: https://support.microsoft.com/cs-cz/help/17442/windows-internet-explorer-delete-manage-cookies
Google Chrome: https://support.google.com/chrome/answer/95647?co=GENIE.Platform%3DDesktop&hl=cs
Firefox: https://support.mozilla.org/cs/kb/povoleni-zakazani-cookies
Microsoft Edge: https://docs.microsoft.com/cs-cz/sccm/compliance/deploy-use/browser-profiles
Safari: https://support.apple.com/cs-cz/guide/safari/sfri11471/mac
Opera: https://help.opera.com/cs/latest/security-and-privacy
8. Duration of Personal Data Storage
8.1 If the data is processed for legal reasons, it will be processed for the duration of the effects of the rights and obligations arising from the contract, and thereafter for the period necessary for archiving purposes according to the relevant generally binding legal regulations, but no longer than the period specified by these generally binding legal regulations.
8.2 If personal data is processed based on consent, it will be processed until the consent for personal data processing is revoked, but no longer than 10 years from the date the consent was given, or from the date of the last completed order (whichever occurs later).
9. Rights of the Data Subject
9.1 You are not obligated to provide personal data to the data controller. However, if the provision of your personal data is a necessary requirement for entering into and performing the contract (e.g., email for order confirmation, name, and physical address for delivery), without providing your personal data, it is not possible to enter into the contract (i.e., complete the order) or for the controller to fulfill it.
9.2 In accordance with Article 21(1) and (2) of the GDPR, you have the right to object to the processing of personal data or withdraw consent for personal data processing at any time, especially if the data is processed for direct marketing purposes. The controller will then no longer process these personal data unless compelled by other legal reasons that outweigh the interests or rights of the data subject.
9.3 Additionally, under the conditions set forth in the GDPR, you have the right:
9.3.1 to access your personal data according to Article 15 of the GDPR,
9.3.2 to rectify your personal data according to Article 16 of the GDPR,
9.3.3 to erase your personal data according to Article 17 of the GDPR,
9.3.4 to restrict processing according to Article 18 of the GDPR,
9.3.5 to data portability according to Article 20 of the GDPR,
9.3.6 to object to processing according to Article 21 of the GDPR.
If you have such requests, please contact the data controller using the contact details provided above.
9.4 If you believe that the processing of your personal data has violated or is violating the GDPR, you also have the right to file a complaint with the supervisory authority, which is the Office for Personal Data Protection.
10. Conditions for Securing Personal Data
10.1 Správce prohlašuje, že přijal veškerá vhodná technická a organizační opatření k zabezpečení osobních údajů a jejich úložišť v elektronické i listinné podobě a že ke zpracovávaným osobním údajům mají přístup pouze jím pověřené osoby.
11. Final Provisions
11.1 By submitting an order through the online order form, you confirm that you have read and fully accept the privacy policy terms.
11.2 You also agree to these terms by ticking the consent checkbox via the online form. By ticking the consent checkbox, you confirm that you have read and fully accept the privacy policy terms.
11.3 The data controller is authorized to change these terms. The new version of the privacy policy will be published on the website. In case of material changes, the new version of these terms will be sent to your email address, provided it has been given to the data controller.
Date of last update: 13.06.2024
