To provide the best possible experience, we use technologies such as cookies to store and/or access information on your device. Consent to these technologies allows us to process data such as browsing behaviour or a unique ID on this site. Refusing or withdrawing consent may adversely affect certain features and functions.
Personal Data Protection
PERSONAL DATA PROTECTION POLICY
www.majdovan.com
Protecting the personal data you entrust to us is important to us, and we do everything we can to ensure you feel safe with us. The purpose of these Terms of Personal Data Processing is to explain how your personal data that you provide to us when using our website www.majdovan.com (hereinafter the “Website”) will be processed and protected. At the same time, we would like to inform you about your rights in connection with the processing of your personal data.
These Terms inform you about the general rules for processing personal data when using the Website and social media Accounts.
1. DEFINITIONS
1.1. Controller or majdovan technologies s. r. o., Ul. Orechová 901/3A, 919 27 Brestovany, Company ID: 47434 171, Tax ID: 2023871586, registered in the Commercial Register of the District Court Trnava, Section: Sro, Insert No. 32700/T
1.2. Personal data – information about a natural person who is identified or identifiable by one or more specific factors determining physical, physiological, genetic, mental, economic, cultural or social identity, including the device IP, location data, an online identifier, and information collected through cookies and other similar technologies.
1.3. Policy – this Personal Data Protection Policy, which contains information about the processing of Personal Data on the Website.
1.4. GDPR – Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of Personal Data and on the free movement of such data, and repealing Directive 95/46/EC.
1.5. Website – websites managed by the Controller under the domain www.majdovan.com, accessible via web browsers.
1.6. Shop – the online shop www.majdovan.com accessible via the Website, through which majdovan technologies sells goods remotely.
1.7. User – any natural person visiting the Website or using one or more services or functions described in the Policy.
1.8. Device – means an electronic device through which the User accesses the Website.
2. GENERAL INFORMATION
2.1. In connection with your use of the Website, we collect data necessary to provide the offered services as well as information about your activity on the Website. In this regard, we are the controller of your personal data and we place great emphasis on its adequate protection. We ensure that our data processing processes comply with the relevant legal provisions, in particular the GDPR. Our aim is to enable you to obtain complete information about how we process your Personal Data and to provide you with tools that allow you to exercise your rights. Below we provide information on how we process your Personal Data.
2.2. We process your personal data in accordance with the law and ensure that it is up to date and accurate. From time to time, we may therefore remind you to update it by sending a message to the email address you provided or by displaying a relevant message on the Website after you log in to your account.
3. HOW CAN I CONTACT THE CONTROLLER?
3.1. If you have any questions about how we process your personal data, or you wish to exercise your rights, please write directly to our Data Protection Officer at: info@majdovan.com or to Ul. Orechová 901/3A, 919 27 Brestovany, or use the contact form via the link: https://test.majdovan.com/
4. HOW DO WE OBTAIN YOUR PERSONAL DATA?
4.1. We obtain your Personal Data directly from you for the proper provision of our services and the smooth operation of our Website. You provide us with your data primarily through dedicated forms by contacting us, e.g. via the contact form at: https://test.majdovan.com/ We also obtain your data when you use other services available on the Website, e.g. when you browse products offered in the Shop.
5. IS PROVIDING PERSONAL DATA MANDATORY?
5.1. It is entirely up to you whether and what personal data you provide to us – it is not mandatory. Please note, however, that in some cases providing Personal Data is necessary for the proper provision of the services we offer or is a condition for concluding and performing a contract, as described in detail below.
6. HOW DO WE PROCESS YOUR PERSONAL DATA?
USE OF THE WEBSITE
6.1. If you use the Website, your Personal Data (including your IP address or other identifiers and information collected through cookies or other similar technologies) is processed by us:
6.1.1. for the purpose of providing electronic services to the extent of providing you with content collected on the Website – in such case, the legal basis for processing is the necessity of processing for the performance of a contract (Article 6(1)(b) GDPR);
6.1.2. for analytical and statistical purposes – in such case, the legal basis for processing is the legitimate interest of the Controller (Article 6(1)(f) GDPR), consisting in analysing Users’ activity and preferences in order to improve the functions used and the services provided;
6.1.3. for the purpose of possible establishment and enforcement of claims or defence against claims – the legal basis for processing is the legitimate interest of the Controller (Article 6(1)(f) GDPR), consisting in protecting its rights and business interests;
6.1.4. for marketing purposes of the Controller and other entities, in particular related to the presentation of behavioural advertising – the rules for processing Personal Data for marketing purposes are described in the MARKETING section.
6.2. Your activity on the Website, including your personal data, is recorded in system logs (a special computer program used to store a chronological overview containing information about events and activities related to the information system used to provide our services). Information collected in logs is processed primarily for the purpose of providing services. We process it for technical and administrative purposes, to ensure the security of the information system and system management, as well as for analytical and statistical purposes – in this respect, the legal basis for processing is the legitimate interest of the Controller (Article 6(1)(f) GDPR).
PLACING ORDERS
6.7. Ordering goods or services offered by us involves the processing of your Personal Data. Providing data marked as mandatory is required for accepting and fulfilling the order, and failure to provide it will result in the order not being fulfilled. Providing additional data is voluntary.
6.8. Your Personal Data is processed:
6.8.1. for the purpose of fulfilling the placed order – the legal basis for processing is the necessity of processing for the performance of a contract (Article 6(1)(b) GDPR); with regard to non-mandatory data – the legal basis for processing is your consent (Article 6(1)(a) GDPR);
6.8.2. for the purpose of fulfilling legal obligations imposed on the Controller, arising in particular from tax and accounting regulations – the legal basis for processing is a legal obligation (Article 6(1)(c) GDPR);
6.8.3. for analytical and statistical purposes – the legal basis for processing is the legitimate interest of the Controller (Article 6(1)(f) GDPR), consisting in analysing Users’ activity on the Website and Users’ purchasing preferences in order to improve the functions used;
6.8.4. for the purpose of possible establishment and enforcement of claims or defence against claims – the legal basis for processing is the legitimate interest of the Controller (Article 6(1)(f) GDPR), consisting in protecting its rights and business interests.
COMPLAINTS AND RETURNS
6.9. Submitting a complaint or returning goods involves the processing of your Personal Data. Providing data in the complaint form is not mandatory, but it is necessary for proper handling of the complaint. Providing data in the return form is not mandatory, but it is necessary for an effective withdrawal from the contract.
6.10. Your Personal Data is processed:
6.10.1. for the purpose of handling the submitted complaint – the legal basis for processing your personal data is the Controller’s obligation arising from the provisions of the law on warranty for defects of the sold item (Article 6(1)(c) GDPR);
6.10.2. for the purpose of handling the return of goods – the legal basis for processing your Personal Data is the Controller’s obligation arising from the provisions of consumer law (Article 6(1)(c) GDPR), if the basis for the return is the provision on the right to withdraw from the contract, or the necessity of processing for the performance of a contract (Article 6(1)(b) GDPR), if the basis for the return is the rules of our Shop;
6.10.3. for the purpose of fulfilling other legal obligations imposed on the Controller, arising in particular from tax and accounting regulations – the legal basis for processing is a legal obligation (Article 6(1)(c) GDPR);
6.10.4. for analytical and statistical purposes – the legal basis for processing is the legitimate interest of the Controller (Article 6(1)(f) GDPR), consisting in analysing Users’ activity on the Website and Users’ purchasing preferences in order to improve the functions used;
6.10.5. for the purpose of possible establishment and enforcement of claims or defence against claims – the legal basis for processing is the legitimate interest of the Controller (Article 6(1)(f) GDPR), consisting in protecting its rights and business interests.
CONTACT FORM
6.11. We offer the option to contact us via the contact form. Using the form requires providing Personal Data necessary for us to contact you and respond to your enquiry. Providing data marked as mandatory is necessary to accept and handle the enquiry, and if you do not do so, it will not be possible to process the enquiry. Providing other data (e.g. in the content of the enquiry) is voluntary.
6.12. Your Personal Data is processed:
6.12.1. for the purpose of identifying and handling your enquiry sent via the provided form – the legal basis for processing is the legitimate interest of the Controller (Article 6(1)(f) GDPR), consisting in the need to resolve the reported case and conduct correspondence addressed to it in connection with its business activities;
6.12.2. for analytical and statistical purposes – the legal basis for processing is the legitimate interest of the Controller (Article 6(1)(f) GDPR), consisting in keeping statistics of enquiries submitted by Users via the Website in order to improve its functionality.
FRAUD PREVENTION
6.13.1. In order to ensure the proper operation of our shop, we verify whether users are not engaging in activities that prevent other customers from shopping, in particular by placing excessive and unusual orders, which indicate that they do not intend to keep the ordered products, or by declaring that they are shopping as consumers and then reselling the Goods as entrepreneurs. This analysis is carried out based on the history of your transactions. By analysing the history of your orders, payments made and returns, our algorithm assesses whether it is necessary to block or delete your account to prevent its misuse. Decisions to block or delete your account are based solely on automated processing and are necessary for the performance of the contract concluded with you (Article 22(2)(a) GDPR). You have the right to express your own viewpoint and challenge such a decision and request that our employees re-examine your data. In such a case, please contact us in the manner specified in section 3.
7. MARKETING
7.1. We process your Personal Data for the purpose of carrying out marketing activities, which may include:
7.1.1. displaying marketing content tailored to your interests (behavioural advertising);
7.1.2. carrying out activities related to direct marketing of goods and services (sending commercial information by electronic means and telemarketing activities).
7.2. For the purpose of carrying out marketing activities, in some cases we use profiling. This means that through automated data processing we evaluate selected factors relating to you in order to analyse your behaviour or create a forecast for the future. This enables better tailoring of the displayed content to your individual preferences and interests.
BEHAVIOURAL ADVERTISING
7.3. Together with our trusted partners, we process your Personal Data, including Personal Data collected through cookies and other similar technologies, for marketing purposes related to targeting you with behavioural advertising (i.e. advertising tailored to your preferences). Processing personal data in such a situation also includes profiling, the result of which is only the display of tailored advertising based on your Personal Data obtained by us and our partners.
DIRECT MARKETING
7.5. If you give consent, we may use your data to send marketing content through various channels, i.e. by email (in the form of a newsletter), via MMS/SMS, or by phone. The legal basis for processing your Personal Data in this case is the legitimate interest of the Controller (Article 6(1)(f) GDPR) in connection with your consent, consisting in marketing the offered goods and services. We carry out such activities only if you have given your consent, which you may withdraw at any time. You may withdraw your consent at any time by clicking the link we send in every email containing commercial information, by contacting us at: info@majdovan.com, or via the contact form. Withdrawal of consent does not affect the lawfulness of processing carried out before its withdrawal.
7.6. We may also carry out direct marketing via the traditional postal address you provided. The legal basis for processing your Personal Data in this case is the legitimate interest of the Controller (Article 6(1)(f) GDPR), consisting in marketing the offered goods and services. You may object to the processing of your Personal Data for this purpose at any time. You may submit your objection by contacting us at: info@majdovan.com or via the contact form.
GOOGLE ADS CUSTOMER MATCH
<p”>7.8. Marketing of the products and services we offer may also be carried out using Google Ads Customer Match. Google Ads Customer Match is a tool that allows the Controller to upload a hashed database of email addresses (customer list) to Google tools in order to verify whether user accounts were created in Google services using the same email addresses (e.g. YouTube, Gmail, others). If a match is confirmed, the Controller’s ads may be displayed to Google service users after they log in.
7.9. In order to increase the accuracy of measuring the effectiveness of our marketing activities using the Google Ads Customer Match described above, we will also use a tool provided by Google in the form of so-called “enhanced conversions”. This tool allows the Controller to increase the accuracy of conversion measurement (i.e. the purchase of goods on the Shop website as a result of a redirect from another website). To use it, we upload conversion data from the Shop website in encrypted form (including data in the scope of email addresses) in a privacy-protecting manner, i.e. using a one-way encryption algorithm. Information about enhanced conversions can be found at this link: Enhanced conversions – Google Ads – Help.
8. PROCESSING OF DATA OF USERS VISITING THE CONTROLLER’S SOCIAL MEDIA PROFILES
8.1. The Controller has public profiles on the social networks Facebook, Instagram and LinkedIn. In this context, it processes data left by persons visiting these profiles (e.g. comments, likes, online identifiers).
8.2. Personal data of such persons is processed:
8.2.1. to enable their activities on the profiles;
8.2.2. for the purpose of effectively operating the profiles, presenting Users of the portals with information about the Controller’s initiatives and other activities, and in connection with promoting various types of events, services and products;
8.2.3. for statistical and analytical purposes;
8.2.4. and, where applicable, for the purpose of pursuing claims and defending against claims.
8.3. The legal basis for processing Personal Data is the legitimate interest of the Controller (Article 6(1)(f) GDPR), consisting in:
8.3.1. promoting its own brand and improving the quality of the services provided,
8.3.2. carrying out analyses of activity and preferences,
8.3.3. where necessary – pursuing claims and defending against claims.
The above information does not apply to the processing of personal data by the administrators of social networking sites.
9. TO WHOM WILL YOUR PERSONAL DATA BE DISCLOSED?
9.1. We may disclose your Personal Data to entities with whom we cooperate in providing the services we offer.
9.2. Depending on the delivery method you choose for purchased or returned goods, we will provide your data necessary for delivery or return of goods to one of the entities with whom we cooperate at that time.
9.3. Depending on the payment method you choose for purchased goods, we will provide your data necessary to collect or execute the payment to one of the entities with whom we cooperate in the area of payment processing.
9.4. We also have the right to disclose selected information about our Users to competent authorities or third parties that have requested such information, on the basis of an appropriate legal basis and in accordance with applicable legal regulations.
10. HOW LONG WILL YOUR PERSONAL DATA BE PROCESSED?
10.1. The period for which your Personal Data is processed depends on the type of service provided and the purpose of processing. As a rule, data is processed for the duration of the service or the fulfilment of the order, until consent is withdrawn or an effective objection to processing is raised in cases where the legal basis for processing is the legitimate interest of the Controller.
10.2. The data processing period may be extended if processing is necessary to establish and enforce any claims or to defend against claims, and after that period only if and to the extent required by law. After the processing period has expired, the data is irreversibly deleted or anonymised in such a way that the data subject can no longer be identified.
11. HOW DO WE PROTECT YOUR DATA?
11.1. In order to minimise the risk of data leakage, destruction and corruption, we use a range of IT and organisational security measures. Security features include tools such as: firewall, antivirus and antispam security systems, internal processes, data processing and disaster recovery procedures, as well as a multi-level backup system.
11.2. Please note that using the Internet always carries the risk of certain security incidents. However, we assure you that thanks to the implemented procedures of regular reviews and updates of IT systems and active monitoring of critical points in the system, we strive to reduce this risk as much as possible.
12. WHAT ARE YOUR RIGHTS RELATED TO THE PROCESSING OF YOUR PERSONAL DATA?
12.1. In connection with our processing of your Personal Data, you have the following rights:
12.1.1. the right to information about the processing of Personal Data – on this basis, the Controller will provide you with information about the processing of your Personal Data, in particular about the purposes and legal grounds for processing, the scope of stored data, the entities to whom it is disclosed, and the planned date of data deletion;
12.1.2. the right to obtain a copy of the data – on this basis, the Controller will provide you with a copy of your personal data that it processes;
12.1.3. the right to rectification – the Controller is obliged to remove any inconsistencies or errors in the processed Personal Data and to complete it if it is incomplete;
12.1.4. the right to erasure – on this basis, you may request the deletion of data whose processing is no longer necessary to achieve any of the purposes for which it was collected;
12.1.5. the right to restriction of processing – if such a request is made, the Controller will stop performing operations on your Personal Data – except for operations to which you have consented and storing data in accordance with the adopted retention rules – or until the reasons for restricting data processing cease (e.g. a decision of the supervisory authority is issued authorising further processing of data);
12.1.6. the right to data portability – on this basis, to the extent that data is processed by automated means in connection with a concluded contract or consent, the Controller provides the data you have provided in a format that allows it to be read by a computer. You may also request that this data be sent to another entity, provided that there are technical possibilities in this regard, both on the part of the Controller and on your part;
12.1.7. the right to object to the processing of data for marketing purposes – you may object to the processing of your Personal Data for marketing purposes at any time, without having to justify such objection;
12.1.8. the right to object to processing for other purposes – at any time, for reasons related to your particular situation, you may object to the processing of your Personal Data that is carried out on the basis of the Controller’s legitimate interest (e.g. for analytical or statistical purposes or for reasons related to the protection of property); the objection in this respect should include justification;
12.1.9. the right to withdraw consent – if information is processed on the basis of your consent, you have the right to withdraw it at any time; however, this does not affect the lawfulness of processing carried out before its withdrawal;
12.1.10. the right to lodge a complaint – if you believe that the processing of Personal Data violates the provisions of the GDPR or other provisions on Personal Data Protection, you may lodge a complaint with the supervisory authority for Personal Data processing competent for your habitual residence, place of work, or the place of the alleged infringement.
12.1.11. the right to human intervention by the controller, to express your own opinion, and to challenge decisions based solely on automated processing – in accordance with section 6.14.
13. SUBMITTING REQUESTS RELATED TO THE EXERCISE OF RIGHTS
13.2. You can exercise some of the above rights yourself. If you have an account in the Shop, you always have access to your Personal Data and can correct and update it.
13.3. You may submit a request regarding all of the above rights by contacting our Data Protection Officer at: info@majdovan.com or at Ul. Orechová 901/3A, 919 27 Brestovany, or use the contact form via the link: https://test.majdovan.com/
13.4. We will try to respond to your request as soon as possible and answer your questions regarding the processing of your data. You will receive a response within 30 days from the date we receive your request. If it turns out that due to the complexity of the request or the number of requests we have received, we are unable to provide you with information about the actions taken within this period, we will inform you of its extension.
13.5. If we have doubts as to whether it is you who is submitting a specific request, we may ask you a few additional questions to verify your identity. Providing this data is not mandatory, but failure to provide it will result in refusal to comply with the request. We may also need additional information to determine the exact content of your request.
13.6. A request may be submitted in person or through an authorised representative (e.g. a family member). For data protection reasons, we recommend using a power of attorney certified by a notary or an authorised legal adviser or representative, which will speed up verification of the authenticity of the request.
13.7. If the request was sent to us electronically, we will respond in the same form unless the applicant requests a response in another form. In other cases, the response will be provided in writing. If the deadline for handling the request does not allow a written response and the scope of the applicant’s data processed by us allows us to contact you electronically, the response will be provided electronically.
13.8. We retain information about the submitted request and the person who submitted it in order to ensure compliance and to be able to identify, prevent or prosecute any claims of data subjects. The register of requests is stored in a manner that ensures the integrity and confidentiality of the data contained therein.
14. CHANGES TO THE PERSONAL DATA PROTECTION POLICY
14.1. The Policy is continuously reviewed and, if necessary, updated.
10.04.2025