Privacy Policy

The controller of your personal data is Tereza Cablíková, ID: 23274514, with its registered office at Ovsíková 7086, 760 01 Zlín, a natural person doing business under the Trade Licensing Act, not registered in the Commercial Register (hereinafter the "Controller"). Please direct your questions via the e-mail address: pocmarano@gmail.com, or via the correspondence address: Ovsíková 7086, 760 01 Zlín. The Controller is entitled to transfer her business activity or its management to another entity. In such a case, the Controller shall ensure that such an entity (successor) is bound at least to the extent of the obligations under this Policy when managing or processing personal data.

The nature of the personal data I process about you as the Controller depends on the occasion on which the data was obtained, the form in which it was obtained, and the purpose for which it is processed. I process different data about you in case you are my client (e.g., you are ordering a graphic design, interior design, or another creative service), and I process different data about you in case you are my business partner or supplier (e.g., a printer, a supplier of materials, or another collaborating designer). The scope of data thus always depends on the specific assignment and nature of our cooperation in the field of design. Data we process about you: Identification data. In particular, your name, surname, title, possibly date of birth (if necessary for unambiguous identification in the contract) and your handwritten or electronic signature. If you are an entrepreneur, then I also process your business name, ID (IČO), VAT ID (DIČ), and the address of your registered office or place of business. Contact information. Primarily permanent residence address, place of residence, correspondence address, e-mail address, telephone number, and other data that allow us to establish contact with you. Data on contracted products and services. This is data on what services of ours you use. Data from our communication. Primarily records from our possible telephone conversations, e-mail, and other common communications or interactions between you and us, or information about the use of our website and applications, including your IP address. Transactional data. This data refers primarily to your bank account numbers and the balances on these accounts. Other data. For example, age, data obtained from the internet browser you use or based on the storage of so-called cookies or other data.

I obtain personal data about you as the Controller primarily directly from you, especially through the contact or inquiry form on my website, or within the framework of direct communication when negotiating a contract for design services. However, I also use information that you publish about yourself or that I obtain about you from publicly available sources (for example, from public lists and registers such as the Commercial or Trade Register, from internet applications, social networks, websites, and other public information sources). I do not carry out profiling (automated evaluation of your characteristics).

In most cases, I do not need your consent to process your personal data, as their processing in the necessary scope is allowed directly by legal regulations (especially so that we can provide you with the requested service or so that we can fulfill our legal obligations arising for me from special regulations), then the exercise of legitimate interests. In other cases, I process your personal data only on the basis of your prior consent. In case you communicate via e-mail, please note that this is an unsecured communication channel. We process your personal data on the basis of the following legal reasons: - Provision of design services: Processing is necessary for the realization of your orders, preparation of graphic or interior designs, consultations, and ensuring mutual communication between you and me as a designer. - Fulfillment of the contract: Processing is necessary for the conclusion of a work contract or a service contract and for the subsequent fulfillment of all contractual obligations arising from our cooperation. - Compliance with legal obligations: I process your data in accordance with the legal regulations of the Czech Republic, especially in the area of accounting, tax administration (invoicing), and other related regulations. - Protection of legitimate interests: Processing is necessary for the protection of my legitimate interests, for example, for the purposes of possible debt collection, protection of my copyrights to the created designs, or to ensure the security of my web presentation. - Improving services: I can process data on realized projects for the purpose of analyzing and improving my services, or (with your consent) for presenting references of my work. We process personal data on the basis of the following legal grounds: - Fulfillment of the contract: Processing of personal data is necessary for the fulfillment of the contract you have concluded with the Controller. - Legal obligation: Processing of personal data is necessary to fulfill legal obligations that apply to the Controller. - Consent: If consent is required for the processing of personal data, this consent will be obtained from you in advance and can be revoked at any time without affecting the lawfulness of processing before its revocation. Failure to give consent or its revocation has no consequences on the contractual relationship between you and the Controller. - Legitimate interests: Processing of personal data is necessary for the purposes of the Controller's legitimate interests, unless these interests outweigh the rights of the data subject.

The data for which I need your consent is provided to us voluntarily – you can thus refuse its provision without any impact on the contractual relationship between the Controller and you. In cases where I do not require your consent to the processing of personal data, the provision of personal data is mandatory. This is because I need your personal data to be able to fulfill the obligations and duties that arise for me from legal regulations, or to be able to protect legitimate interests. These are primarily identification and contact data.

I keep your data only for the period strictly necessary to achieve the purposes for which it was collected (e.g., for the duration of our cooperation on a design project) or for the period stipulated by the relevant legal regulations. After this period, your personal data will be safely deleted or anonymized.

As the Controller, I do not transfer your personal data to third parties, except in cases where it is necessary for the provision of my design services, compliance with legal obligations, or protection of my rights and property. Your personal data may be made available in these necessary cases especially to: - External service providers: For example, persons providing accounting and tax consultancy for me, printers, and implementers of designs (if this is part of the order). - Technical infrastructure providers: Especially the operator of the web hosting and e-mail services on which my web presentation and communication runs. - Banks and financial institutions: In connection with receiving payments for my services. - IT and analytics service providers: Web administrators or tools for analyzing the traffic to my site. - Public authorities: If such an obligation is imposed on me by a legal regulation (e.g., tax office). If it were necessary to transfer personal data outside the European Union or the European Economic Area (e.g., when using a specific cloud storage), I will ensure that this transfer takes place in accordance with applicable legal regulations and that an adequate level of protection of personal data is ensured (for example, through standard contractual clauses).

The Controller uses appropriate technical and organizational measures to ensure the protection of personal data against loss, misuse, unauthorized access, alteration, and destruction. These measures include appropriate methods to protect data, access management, and regular training in the field of personal data protection.

- Right of access: You have the right to request information about what personal data the Controller processes about you and to receive a copy of this data. - Right to rectification: If you find that the personal data the Controller processes about you is inaccurate or incomplete, you have the right to request its rectification. - Right to erasure: You have the right to request the erasure of personal data the Controller processes about you if it is no longer needed for the purposes for which it was collected or if it was processed unlawfully. - Right to restriction of processing: You have the right to request restriction of processing of personal data in a situation where: - you have questioned the accuracy of the personal data (processing will then be restricted for the time needed for our verification of accuracy), - the processing is unlawful and you are not interested in erasure, - we no longer need the personal data for processing purposes, but you require it for determining, exercising, or defending your legal claims, - you have raised an objection to the processing and verification is underway whether our legitimate reasons for processing outweigh yours. Even if processing is restricted, I will continue to be able to process your personal data in cases where it is needed for determining, exercising, or defending our legal claims or for protecting the rights of other natural or legal persons or in the event that I have your consent for the relevant processing. - Right to data portability: You have the right to obtain the personal data you have provided to me in a structured, commonly used, and machine-readable format, and to transmit it to another controller. - Right to object: You have the right to object at any time to the processing of personal data which is based on the Controller's legitimate interests. - Right to withdraw consent: If the processing of personal data is based on your consent, you have the right to withdraw this consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

As the Controller, I do not carry out any automated decision-making or profiling that would have legal effects for you or significantly affect you in any other way. All steps within our contractual relationships and the provision of my design services are made on the basis of my individual assessment and personal communication with you. If the processing method changes in the future and I start using automated decision-making, you will be informed about it in advance and you will be provided with the possibility to object or request human intervention on my part.

The Controller reserves the right to change this Policy at any time, especially in connection with changes in legislation or modification of my provided services. In case of substantial changes, I will inform you by e-mail so that you do not miss any important information. In your own interest, however, I recommend checking this Policy (available on my website) regularly so that you are always informed about how I protect your personal data.

You can contact me regarding any questions, comments, or complaints regarding the processing of your personal data via the e-mail address: pocmarano@gmail.com As data subjects, you also have the right to file a complaint with the supervisory authority, which is the Office for Personal Data Protection (ÚOOÚ), with its registered office at Pplk. Sochora 27, 170 00 Prague 7, ID 70837627, if you believe that I am acting in violation of the law when processing your personal data.

This Policy enters into force and takes effect on March 23, 2026, and remains in effect until replaced by a new personal data processing policy. All changes and updates will be published through my website.