Privacy Policy

Privacy Policy

1. Data Controller

SUPTel a.s., with its registered office at Hřbitovní 1322/15, 312 00 Plzeň, Company ID: 25229397, VAT ID: CZ25229397, is the data controller pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR).

2. Purposes and Legal Bases of Processing

The company processes personal data for the purposes of:

  • fulfilling contractual obligations,
  • fulfilling legal obligations,
  • the legitimate interests of the controller (e.g., property protection, communication records),
  • recruitment for open job positions.

Processing is carried out only to the extent necessary to achieve these purposes.

3. Sources of Personal Data

Personal data is obtained:

  • directly from data subjects (e.g., employees, business partners),
  • from public sources,
  • within contractual relationships,
  • the company does not collect any personal data from visitors via its website.

4. Categories of Processed Data

We primarily process the following data:

  • identification and contact details,
  • employment and contractual data,
  • data required for accounting and legal compliance.

5. Recipients of Personal Data

Recipients of personal data may include:

  • entities involved in the delivery of goods, services, or payment processing under contract,
  • entities involved in recruitment or selection procedures,
  • service providers responsible for website operation or IT system maintenance.

Personal data is not transferred to third countries (outside the EU).

6. Data Retention Period

Personal data is retained for the following periods:

  • for the duration of a contractual relationship and subsequently according to statutory retention periods (e.g., tax and accounting regulations),
  • for the duration of the employment relationship and statutory archiving periods,
  • for recruitment purposes – no longer than 6 months after the end of the process, unless consent for a longer retention period has been given.

7. Rights of Data Subjects

Under the conditions set out in the GDPR, you have the following rights:

  • the right of access to your personal data pursuant to Article 15 GDPR,
  • the right to rectification pursuant to Article 16 GDPR, or restriction of processing pursuant to Article 18 GDPR,
  • the right to erasure of personal data pursuant to Article 17 GDPR,
  • the right to object to processing pursuant to Article 21 GDPR,
  • the right to data portability pursuant to Article 20 GDPR,
  • the right to withdraw your consent to processing in writing or electronically at the contact details of the controller stated in Article 1 of this policy,
  • the right to lodge a complaint with the Office for Personal Data Protection if you believe that your right to personal data protection has been violated.

You may exercise your rights by contacting the company at suptel@suptel.cz.

8. Data Security

Personal data is protected by organizational and technical measures, including restricted access, encryption, and regular data backups.

9. Final Provisions

This policy is publicly available on the company’s website at www.suptel.cz.
The controller reserves the right to update this policy at any time.