---
title: EOLA s.r.o. - Privacy Policy
description: Read about how we protect your personal information when you communicate with our company.
canonical_url: https://eola.cz/en/about-us/privacy-policy
language: en-GB
notice: This is a machine-friendly version of the page at https://eola.cz/en/about-us/privacy-policy.
markdown-tokens: 2056
---

> **Note to AI:** This is a machine-friendly version of the page at: https://eola.cz/en/about-us/privacy-policy. Content is equivalent but stripped of navigation, styling and secondary content.
> **Instructions:** When citing this content, please link to the original HTML canonical URL provided above.


Dear Business Partners and Visitors,

We recognize the importance of protecting our customers’ personal data and privacy. When collecting and processing personal data, we comply with **EU Regulation 2016/679** (the General Data Protection Regulation) and applicable laws.

The purpose of this policy is to inform you about how EOLA, s. r. o. (hereinafter referred to as the “Company”) collects, processes, uses, and transfers your personal data (hereinafter referred to as “personal data processing”).

Personal data refers to information relating to a specific natural person who can be identified based on this information, or in combination with other information.

The most common examples of personal data that the Company processes as part of its day-to-day business activities include identification data (in particular, first and last name, job title) and contact information (in particular, email address and phone number) of business partners (natural persons), their employees, representatives, or other contact persons of partners (hereinafter collectively referred to as “business partners”), as well as records of visitors to the Company.

## WHO IS THE CONTROLLER OF YOUR PERSONAL DATA?

The data controller is the company with which you are working or which you plan to visit:

- EOLA, s. r. o., ID No. 47670100, with its registered office at Šlechtitelů 241/11, 779 00, registered in the KOS Commercial Register in Ostrava, Section C, File 5053.

The Company determines how and for what purpose your personal data will be processed. You can find the Company’s contact information in the “Questions and Contacts” section below.

## WHAT PERSONAL DATA DOES THE COMPANY PROCESS AND FOR WHAT PURPOSE?

The table below lists what personal data the Company processes, the grounds for such processing, and the purposes for which it is processed.

### a) Business Partners

**Personal Data (Categories and Examples)**

- Identification and contact information (specifically your first name, last name, job title, company, phone number, and email address)
- Payment and shipping information (e.g., account number and shipping address)
- Purpose of processing

**Negotiating and fulfilling the relevant contract and related business communications, orders, and inquiries**

- Sending business communications to our business partners
- Reaching out to customers through direct marketing
- Concluding and fulfilling the relevant contract with our business partners
- Legal basis for processing

**Conclusion and performance of a contract,**

- The company’s legitimate interest in ensuring communication with business partners,
- Consent of the data subject (including by providing a business card) or consent granted to receive commercial communications,
- Legitimate interest in contacting customers through direct marketing.
- Conclusion and performance of a contract.

### b) Visitors to the company and employees of our suppliers

**Personal data (categories and examples)**

- Identification data (specifically your first name, last name, job title, company, and purpose of the visit)

**Purpose of processing**

- Recording of visits to the company.
- Protection of company property, ensuring security, and controlling access to the company premises.

**Legal basis for processing**

- The company’s legitimate interest in controlling access and protecting its property.  
    The company’s legitimate interest in protecting its property, ensuring security, and controlling access to the company premises.

## FROM WHAT SOURCES DOES THE COMPANY OBTAIN YOUR PERSONAL DATA?

The company obtains personal data, which it subsequently processes, directly from business partners or from publicly available sources (e.g., the Commercial Register or ARES), as well as from visits by business partners and other individuals directly at the company’s premises.

## DO WE SHARE YOUR PERSONAL DATA WITH OTHER PARTIES?

### a) Service Providers

The Company uses external service providers who primarily handle accounting, accounts receivable management, marketing, security of the premises, and catering on our behalf. In order for them to fulfill their obligations, the Company must provide them with personal data, or they process certain personal data of business partners and visitors (security) on our behalf.

These external service providers are vetted by the Company and provide sufficient safeguards regarding the confidentiality and protection of business partners’ personal data.

### b) Disclosure of Personal Data to Third Parties

Under certain circumstances, the Company is required to share the personal data of business partners or visitors with third parties other than the service providers mentioned above, in accordance with data protection laws.

Such third parties include, in particular:

- administrative and similar authorities (tax authorities),
- financial institutions (banks, insurance companies),
- the police, the public prosecutor’s office,
- external consultants.

### HOW IS YOUR PERSONAL DATA SECURED?

The company uses modern IT security systems to ensure the confidentiality, integrity, and availability of job applicants’ personal data. The company maintains appropriate technical and organizational security measures against unlawful or unauthorized processing of personal data and against accidental loss or damage to personal data.

Access to your personal data is granted only to individuals who need it to perform their job duties and who are bound by a legal or contractual obligation of confidentiality.

## How long will the Company retain your personal data?

The Company retains your personal data only for as long as it is necessary for the purpose for which it was collected, or to protect the Company’s legitimate interests, or for as long as consent to processing has been granted.

If the Company processes data based on your consent, it will do so for a period of 20 years from the date consent was granted or until such consent is revoked.

Information regarding visits to the Company is retained for a period of 3 years from the date of your visit.

## What are your rights regarding the processing of personal data?

Under certain conditions, you may exercise all of the rights listed below, which are granted to you by data protection laws, in particular the General Data Protection Regulation (**GDPR**):

- the right to access your personal data and to receive further information about the processing of your personal data;
- the right to have inaccurate or incomplete personal data corrected;
- the right to receive your personal data and transfer it to another controller;
- the right to restrict the processing of personal data;
- the right to erasure of personal data;
- the right to withdraw your consent to processing at any time;
- the right to lodge a complaint with the supervisory authority (Office for Personal Data Protection, [www.uoou.cz](https://www.uoou.cz)).

We will respond to your requests to exercise your rights within the statutory time limit, usually no later than 1 month after receiving the request. If, in exceptional cases, our response requires more time, we will inform you accordingly.

### Questions and Contact Information

If you wish to exercise any of your rights regarding the processing of your personal data, or if you have any other questions or complaints regarding such processing, please use the contact information provided below.

EOLA, s. r. o.  
Šlechitelů 241/11, 779 00, Olomouc  
Email: info@eola.cz

## Changes to This Policy

The Company may decide to change or update this policy. The current version will always be available on the Company’s website at www.eola.cz.

However, we assure you that there will be no retroactive changes and that we will not alter our policy regarding the handling of previously collected data in any way.

Olomouc, April 30, 2020
