Information on the Processing of Personal Data

Here you will find up-to-date information regarding the processing of personal data.

The company COVENERGO s.r.o., acting as the personal data controller (hereinafter referred to as the “Controller”), collects and processes personal data in accordance with applicable legal regulations, in particular Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as “GDPR”), and Act No. 110/2019 Coll., on the Processing of Personal Data, as amended. All acquired personal data is processed on the basis of legal titles, for legitimate and clearly defined purposes, and only to the extent necessary and for the period required to achieve the stated purpose.

This Personal Data Processing Information applies to:

  1. Our business partners and clients (natural persons),

  2. Representatives of our business partners and clients,

  3. Persons whose personal data we use for our marketing activities,

  4. Job applicants, and

  5. Users of the website www.covenergo.com.

This information does not apply to employees who perform work directly for COVENERGO s.r.o. or for another company within the COVENERGO s.r.o. group.

This personal data processing information also describes the categories of personal data we collect about you, how we use, process, and protect it, how long we retain it, with whom we share it, where we transfer it, and the rights you have as an individual in connection with the processing of your data.

Contents

  • Data Controller

  • Personal Data We Collect

  • How We Process and Protect Your Personal Data

  • How Long We Retain Collected Personal Data

  • Personal Data We Share

  • Your Rights and Options as a Data Subject

  • Contact Details of the Data Protection Officer

Data Controller

The data controller is COVENERGO s.r.o., with its registered office at Voctářova 2497/18, Libeň, 180 00 Prague 8.

Personal Data We Collect

We may collect personal data about you in various ways, for example, through our websites, social media channels, or other online applications; at our events; via phone and fax; during in-person meetings related to employment mediation; or in connection with interactions with our business partners and clients. We may process selected categories of personal data:

  • Identification data

  • Contact data

  • Descriptive data

  • Video recordings from the CCTV camera system

How We Use Collected Personal Data

The Controller uses the collected data for the following purposes:

  • a) Managing relationships with our clients and business partners;

  • e) accurately aligned with the Cookie Policy;

  • f) Informing about and providing participation in special events, programs, offers, surveys, competitions, and market research;

  • g) Responding to your inquiries and requests;

  • h) Operating, evaluating, and improving our business (including developing, enhancing, analyzing, and improving our services; managing our communications; performing data analytics; and handling accounting, auditing, and other internal functions);

  • i) Protection against, detection of, and prevention of fraud and other illegal activities;

  • j) Handling complaints and defending legal claims; and

  • l) Complying with and enforcing applicable legal requirements, relevant industry standards, contractual obligations, and our policies.

Monitored Premises

For the purpose of protecting legitimate interests, property, and persons, CCTV camera systems are installed at the Controller’s registered office. Visitors are always informed about the placement of CCTV systems via information signs upon entering such areas. Recordings from the CCTV systems are archived by the Controller for one week and are not processed further except for the stated purpose. Camera recordings may be handed over to law enforcement authorities for the purpose of clarifying the facts of a matter. Detailed information regarding the respective CCTV system is available at the reception of the monitored building.

Legal Basis for Processing

All processing will be carried out on the basis of appropriate legal grounds, which notably include:

  • Your consent or explicit consent, if required by applicable legal regulations.

  • Compliance with our legal obligations. In these cases, providing your personal data is a legal requirement, and there is an obligation to provide this data. If you fail to provide the requested data, damage may occur to us or to you.

  • Performance of a contract concluded with you, or to take steps necessary prior to entering into a contract at your request. In these cases, providing your personal data is a necessary requirement for the contract or its conclusion. If you do not provide the requested personal data, we would not be able to fulfill our contractual obligations, and consequently, we will not be able to enter into the contract with you at all.

  • Necessity for the legitimate interest of the Controller, as described in more detail below.

Legitimate Interest

The Controller may process your personal data for specific legitimate business purposes, which may include:

  • Improving and personalizing our services and communications for the benefit of our business partners and clients;

  • Detecting and preventing fraud;

  • Enhancing the security of our network and information systems;

  • Better understanding how people interact with our website;

  • Direct marketing;

  • Sending communications that we believe may be of interest to you;

  • Determining the effectiveness of promotional campaigns and advertising;

  • Exercising our rights against our clients and business partners;

  • Fulfilling contractual obligations towards our clients or business partners.

Whenever we process data for these purposes, we will ensure that we maintain a high level of your rights and take those rights into account. You have the right to object to this processing. If you wish to exercise it, please contact any address listed in the Contact Details of the Data Protection Officer section. Please keep in mind that if you exercise your right to object, it may affect our ability to provide and deliver our services for your benefit.

How We Process and Protect Your Personal Data

We process collected personal data for the purposes stated in this Personal Data Processing Information and for the period necessary for the purposes for which we collected it. Various legal regulations may also impose obligations that require us to retain different data for different periods of time.

We have implemented administrative, technical, and physical measures designed to protect the personal data you provide against accidental, unlawful, or unauthorized destruction, loss, alteration, access, disclosure, or use. In order to ensure appropriate security and confidentiality of personal data, we apply the following security measures:

  • Encryption of transmitted data;

  • Strict user authentication controls;

  • Hardened network infrastructure;

  • Network surveillance and monitoring solutions.

How Long We Retain Collected Personal Data

We store collected personal data in our systems in a way that allows your identification for no longer than is necessary given the purpose for which your personal data was collected or for which the data is processed.

We determine this specific period taking into account:

  • The need to retain stored personal data for the purpose of offering and providing the services you requested;

  • Safeguarding the legitimate interest of the data controller, as described above;

  • The existence of specific legal or contractual obligations that make processing and related retention necessary for a specific period of time.

Personal Data We Share

We do not disclose the personal data we collect about you, except as described in this Personal Data Processing Information or in separate notices provided in connection with specific activities. We may share your personal data with our business partners who provide services on our behalf based on our instructions. These include, for example, processors or controllers involved in the execution of services, payments, or those providing us with administrative, transport, communication, software, or marketing products and services. However, your personal data may only be disclosed to these entities to the extent necessary to fulfill the individual purposes of processing, and based on an appropriate legal title for the transfer and processing of personal data.

In cases stipulated by law, we are authorized, or obliged, to transfer certain personal data based on applicable legal regulations, for example, to law enforcement authorities or other public authorities.

Personal Data of Website Visitors (Cookie Information)

When you visit and use the website, cookies or other technologies are activated on your device. These serve to store and receive identifiers and other information about the devices from which you access our website, thereby helping us provide, protect, and improve the services offered. The use of cookies allows us to offer you content and services that best match your needs and interests. Cookies enable us to record information about your visit to our website, making your next visit easier and faster. You can find more information about what cookies are here.

  • Functional cookies – When you visit and use our website for informational purposes only (i.e., if you do not fill out a contact form or grant us consent), we only collect the personal data that your browser transmits to our server, which is necessary to display our website to you and to guarantee the stability and security of its use.

  • Basic analytical and statistical cookies – These cookies serve to improve the functioning of our website. They allow us to recognize and count the number of visitors and to track how visitors use our website. They help us improve the way our website works, for example, by ensuring that users can easily find what they are looking for. These cookies do not collect information that could identify you. We use these tools to analyze and regularly improve the functionality of our website.

How long we process the data

Functional and basic analytical cookies are retained only for the period strictly necessary for the operation of our website and the creation of aggregated statistical data.

How you can influence our use of cookies

You can object to the use of cookies based on our legitimate interest by sending an email to privacy@covenergo.com. We will handle your objection within the statutory period of one month from its delivery. If you object to the processing of functional cookies necessary for the operation of our website, we cannot guarantee the full functionality and compatibility of our website.

You can reject cookies or set your browser to use only some of them (depending on the type of browser) in your internet browser settings. You can find cookie settings for the most commonly used browsers at the following links:

  • Chrome

  • Firefox

  • Opera

  • Microsoft Edge

Your Rights and Options as a Data Subject

Under the conditions set forth by the GDPR, as a data subject, you have the following rights in connection with the processing of your personal data, which you may exercise at any time:

  • a) Right of access: You have the right to access personal data relating to you to verify whether your personal data is being processed in accordance with legal regulations.

  • b) Right to rectification: You have the right to request the correction of any incorrect or incomplete data held about you, in order to protect the accuracy of such information and adapt it for processing.

  • c) Right to erasure (Right to be forgotten): You have the right to request that the controller erase your personal data and no longer process it.

  • d) Right to restriction of processing: You have the right to request that the controller restrict the processing of your personal data.

  • e) Right to data portability: You have the right to request data portability; this means you can receive the originally provided personal data in a structured and commonly used format, or you can request the transfer of the data to another data controller.

  • f) Right to object: You have the right to object at any time to the processing of your personal data for a number of reasons stated in the GDPR, without having to justify your decision.

  • g) Right not to be subject to automated individual decision-making: You have the right not to be subject to a decision based solely on automated processing, including profiling, if these profiling procedures have legal effects for you or significantly affect you in a similar manner.

  • h) Right to lodge a complaint with a supervisory authority: You have the right to lodge a complaint with a supervisory authority, particularly in the EU Member State of your habitual residence, place of work, or place of the alleged infringement, if you believe that the processing of your personal data violates the GDPR. The supervisory authority for the area of personal data protection in the Czech Republic is the Office for Personal Data Protection (Úřad pro ochranu osobních údajů), Pplk. Sochora 27, 170 00 Prague 7; http://www.uoou.cz/.

Whenever processing is based on your consent, as stipulated in Article 7 of the GDPR, you may withdraw this consent at any time.

If you need further information about the processing of your personal data, please refer to the Contact Details of the Data Protection Officer section below.

Contact Details of the Data Protection Officer

If you have any questions or comments regarding this information on the processing of personal data, or if you would like to exercise your rights, you can use the following contacts:

COVENERGO s.r.o.

  • Mailing address: Voctářova 2497/18, Libeň, 180 00 Prague 8

  • Email: contact@covenergo.com