Company POUBA a.s. , IČO: 65138074 , nám. Republiky 17, 746 01 Opava (“Administrator”) processes personal data in accordance with Regulation 2016/679 of the European Parliament and Council of 27 April 2016, the General Regulation on Personal Data Protection (“GDPR”) and other legislation .
Personal Data will be handled manually and automated by the Administrator directly through his or her own the authorized personnel and also through the processors authorized by the Administrator on the basis of contracts for the processing of personal data.
| Purpose processing | Subject data | Personal data | Legal title | Recipients data | Time preservation |
| Reservation accommodation – reception information from the internet reservation portals | Customers | Identification and contact data ,time stay | Closing or fulfillment contracts | Reception , businessdepartment , accountant department | 180 days |
| Reservation accommodation – at reception personally and byphone | Customers | Identification and contact data ,time stay | Closing or fulfilment contracts | Reception , businessdepartment , accountant department | 180 days |
| Reservation accommodation – at of ours Internet site overHores engine | Customers | Identification and contact data ,time stay | Closing or fulfilment contracts | Reception , businessdepartment , accountant department | 180 days |
| Handover data Foreign police | Customers | Identifying data and time stay | Legal obligation (par 102 of the Accommodation Act of Foreign 326/1999 Coll.) | Reception , Foreign Police | 6 years after termination stay |
| House books | Customers | Name , surname , address permanent stay , start and end accommodations | Legal obligation (Actno. 326/1999 Coll., onresidence of foreigners) | Foreign Police , Police of the Czech Republic, reception | 6 years |
| Guest evidence | Customers | Name , surname , date of birth, number document , email, number payment card , date of arrival and departure | Performance that contract , justified interest | Reception , businessdepartment , IT department | 180 days |
| Guest records in the database clients | Customers | Identification and contact data | Agreement | Reception , business department , IT department | 3 years |
| Newsletter and business communication | Customers | Identification and contact data | Agreement | Reception , business department , IT department | 3 years |
| Receipts and invoices – documents for VAT – Issuance sales documents, concluded contracts | Customers | Data mandatory for exposure of VAT documents | Legal obligation (No. 235/2004 Coll., on VAT par 35 and 35a) | Reception , Accountant department | 10 years |
| 10 years | Name and address , number document | Authorized interest | Reception | 2 years | |
| Visitor records accommodated guests – over night | Visits accommodated customers | Name and address , number document , date of birth | Authorized interest | Reception | 2 years |
| Long-term accommodations | Customers | Name and address , number document , date of birth ,native number | Authorized interest | Reception , Accountant department | 3 years |
| Evidence of receipts – receipts and invoices for DZP – fornon- VAT payers – archiving documents for DzP according toof the Act | Customers | Data mandatory for exposure documents VAT payer | Legal obligation (no. 563/1991 Coll., on Accounting – par 31 and 32) | Reception , Accountannt department | 5 years |
| Protection of property by a camera system | People in the field of view | Digital video recording. The face and figure of people are captured | Legitimate interest | Reception, IT department | 7 days |
The data subject has the right to access his / her personal data processed by the Administrator, their correction or deletion, or limitation of processing, and the right to object to processing.
The Data Entity also has the right to obtain from the Administrator personal data relating to the data subject and which the data subject has provided to the Administrator. At the request of the data subject, the controller shall provide the data subject without undue delay in a structured, commonly used and machine readable format or, at the request of the data subject, provide it to another unambiguously appointed administrator. This right does not apply to personal data that is not processed automatically.
The administrator does not intend to provide personal data to third countries.
If the data subject considers that unauthorized processing of his or her personal data is involved, he or she may address a complaint to the supervisory authority, which is the Office for Personal Data Protection ( www.uoou.cz ) for the territory of the Czech Republic .
Contact data Administrator
e-mail: skolkova@pouba.cz
tel .: 777 747 040