PRIVACY POLICY

Dear motobikers,

While processing your personal data we follow the rules and principles set by valid data protection laws and we adopt appropriate security and technical measures to protect your personal data form its misuse. We provide you with basic information regarding processing of your personal data by us below:

1. CONTROLLER OF PERSONAL DATA

A controller is a person, who alone or jointly with others, determines the purposes and means of the processing of personal data.

The controller of personal data is NaviRider s.r.o., address: Listopadová 120, Dolní Počernice, 190 12 Prague 9, the Czech Republic, Identification No. 052 90 112, the company registered in the Commercial Register maintained by the Municipal court of Prague, file No. C 260718 (the Controller or NAVIRIDER). The Controller may be contacted via e-mail address [email protected].

2. PURPOSES OF PROCESSING OF YOUR PERSONAL DATA

The Controller processes personal data for the purposes of provision of marketing information related to NAVIREDER to you. We process your personal data in particular to send you updates, newsletters and additional marketing information and materials related to NAVIRIDER (only if you grant us an explicit consent to do so). At any time you may choose not to receive such materials by clicking on the “Unsubscribe” link in the email messages that we may send to you. In any case, NAVIRIDER will not share your contact details with any advertiser, unless explicitly permitted or required by law.

3. LEGAL GROUNDS FOR PROCESSING OF YOUR PERSO

3.1 Consent

Pursuant to valid personal data protection laws, the processing is lawful if the processing is based on the consent of the data subject to the processing of his or her personal data for one or more specific purposes. If you do not use our app but you grant us consent to process your personal data for marketing purposes, we may send you our marketing materials such as newsletters until you revoke your consent or time for which the consent is granted expires.

4. CATEGORIES OF PERSONAL DATA PROCESSED

We process your personal data only in the extent necessary for our marketing purposes. In this context, we process following categories of your personal data:

  • identification and contact information that you have provided upon registration for NAVIRIDER such as username, e-mail address or identification information from your Facebook account (name, profile picture, e-mail address) if you choose to register yourself via Facebook;
  • information from our personal, telephone and electronic communication with you;
  • information from the internet browser or mobile applications that you use on your device;
  • information on frequency of using the app, your device type, unique identifiers, operating system type & version, battery usage, how and when you have used NAVIRIDER to communicate with other users, the geographic location of the device that you are using to log in and use NAVIRIDER on; and
  • any information which the Controller processes in relation to the contract fulfilment, compliance with a legal obligation and for the purposes of the Controller’s legitimate interest.

5. SOURCES OF THE PERSONAL DATA

The personal data are being obtained directly from you through the NAVIRIDER application/webpage.

6. PROCESSING OF YOUR PERSONAL DATA

The processing of your personal data may be manual but also automated.

Your personal data are being processed mainly by the designated employees of or persons cooperating with NAVIRIDER, but also by third parties being the processors who are bound by contractual obligations to provide all necessary guarantees for the personal data processing.

7. TRANSFER AND SHARING OF YOUR PERSONAL DATA TO THIRD PARTIES

We share your personal data with other entities being controllers who provide the standard of protection of personal data required by applicable data protection laws and are entitled to process your personal data based on the relevant legal grounds.

Moreover, we are obliged to share your personal data with state authorities (for example tax offices, courts, law enforcement and judicial authorities or supervisory authorities) in in order to comply with our legal obligation to do so.

8. TRANSFER of PERSONAL DATA TO THE THIRD COUNTRY OR INTERNATIONAL ORGANISATION

We do not transfer any personal data to the countries outside the European Union nor European Economic Area, neither to any international organisation. If we were supposed to transfer your personal data to any third country or international organisation, we would perform such a transfer only in case it would be in compliance with conditions for transfer set by valid and effective data protection legislation. At the same time, we would inform you about such a transfer individually via e-mail or by the way of publishing an update of this privacy notice.

9. RETENTION PERIODS OF PERSONAL DATA

The personal data processed on the basis of the granted consent by a perspective user of our app are being processed for the period of 12 months from the day when the consent was granted.  Following expiration of period for which the personal data may be processed on the basis of the consent, we will ask you to renew the consent and if you decline to do so, your personal data will be erased safely so that it will not be misused in the future.

10. HOW YOU MAY REVOKE YOUR CONSENT

The consent is freely given and you may decide not to grant it or to revoke it at any time by the way of via unsubscribe link in e-mail communication. Once the revocation of your consent is obtained by the Controller, we will assume that you no longer wish to have your personal data processed for the marketing purposes, and we will consider all other marketing consents consider as revoked. We will inform all other cooperating persons of the revocation.

11. YOUR RIGHTS REGARDING THE PROCESSING OF THE PERSONAL DATA

The Controller ensures that your personal data are processed in secure and accurate manner. You may exercise all the rights described in this clause with the Controller.

You may exercise each right via sending an email to [email protected] or by sending a written request to the address of the Controller.  

A statement on how we are dealing with your request will be provided to you as soon as possible, but not later than within 1 month from receipt of the request. We are entitled to extend this period by 2 months taking into account complexity of the issue and number of requests submitted. The Controller will inform you on such an extension.

11.1 RIGHT TO BE INFORMED ABOUT:

  • the identity and the contact details of the Controller;
  • the purposes of the processing of the personal data as well as the legal grounds for the processing;
  • the legitimate interests pursued by the Controller or by a third party, if applicable;
  • the recipients or categories of recipients of the personal data;
  • if applicable, the fact that the Controller intends to transfer personal data to a third country or international organisation and the existence or absence of an adequacy decision by the European Commission, or reference to the appropriate or suitable safeguards and the means by which to obtain a copy of them or where they have been made available.

11.2 RIGHT OF ACCESS

You may request access to your personal data and obtain information what personal data concerning your person are being processed, and access the following information:

  • the purposes of the processing;
  • the categories of personal data concerned;
  • the recipients or categories of recipient to whom the personal data have been or will be disclosed, in particular recipients in third countries or international organisations;
  • the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine such period;
  • the existence of the right to request from the Controller rectification or erasure of the personal data or restriction of processing of the personal data concerning you or to object to such processing;
  • the right to lodge a complaint with a supervisory authority;
  • where the personal data are not collected from you, any available information as to their source; and
  • the existence of automated decision-making, including profiling, and meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing for you.

The Controller shall provide a copy of the personal data undergoing processing. For any further requested copies, the Controller may charge a reasonable fee based on administrative costs. Where the request is made by the electronic means, and unless otherwise requested by you, the information shall be provided in a commonly used electronic form.

11.3 RIGHT TO RECTIFICATION

  • You have the right to request the Controller to rectify your inaccurate personal data.
  • You have also right to have your incomplete personal data completed, including by means of providing a supplementary statement.

11.4 RIGHT TO ERASURE

You have the right to ask the Controller to erase your personal data. The Controller shall have the obligation to erase your personal data, without undue delay where one of the following grounds applies:

  • the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;
  • you object to the processing and there are no overriding legitimate grounds for the processing;
  • you revoke the consent and there is no other reason for the processing;
  • the personal data have been unlawfully processed;
  • the personal data have to be erased for compliance with a legal obligation in an European Union or Member State law to which the Controller is subject.

Right to erasure shall not apply to the extent that processing is necessary for the establishment, exercise or defence of legal claims.

11.5 RIGHT TO RESTRICTION OF PROCESSING

You have the right to restrict the processing where one of the following applies:

  • you contest the accuracy of the personal data, for a period enabling the Controller to verify the accuracy of the personal data;
  • the processing is unlawful and you oppose the erasure of the personal data and request the restriction of its processing instead;
  • the Controller no longer needs the personal data for the purposes of the processing, but you require it for establishment, exercise or defence of legal claims;
  • you have objected to processing pending the verification whether the legitimate grounds of the Controller override those of yours.

11.6 RIGHT TO OBJECT

You have the right to object, on grounds relating to the particular situation, at any time to processing of your personal data, including profiling.

The Controller shall no longer process the personal data unless the Controller demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.

11.7 RIGHT TO LODGE A COMPLAINT WITH A SUPERVISORY AUTHORITY

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority (Czech Data Protection Authority), of the alleged infringement if you consider that the processing of the personal data infringes your rights.

12. GENERAL INFORMATION

Controller may change, amend, repeal or replace this privacy any time if necessary. This privacy notice was updated on 8th of October 2018.