PERSONAL DATA PROTECTION CONDITIONS

I. BASIC PROVISIONS

1. The Personal Data Controller as per Article 4 point 7 of Regulation (EU) no. 2016/679 of the European Parliament and of the Council, on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter: “GDPR”) is BC LOGISTICS s.r.o., registered office Moravní 1636, 765 02 Otrokovice, Identification Number: 255 19 581, entered in the Commercial Register maintained by the Regional Court in Brno under file ref. C 29936 (hereinafter “Controller”).
2. Controller’s contact information:
   BC LOGISTICS s.r.o,       Ing. Roman Kaňovský, MBA
   Moravní 1636,                    e-mail address: kanovsky@bcl.cz
   765 02 Otrokovice           telephone: 606 640 341
3. These Conditions are used mainly for the provision of information to the Controller’s customers and potential customers, persons interested in being employed by the Controller, and possibly other persons who visit the Controller’s website, regarding the manner in, and conditions under, which the Controller processes their personal data, or third parties’ personal data, which is supplied to the Controller.
4. If you provide any third party’s personal data to the Controller (for example your employees’ or co-workers’ personal data), then please be aware that you are obliged to inform this person of the processing of the personal data by the Controller at least to the extent of these Conditions.
5. Personal data is understood to mean all information regarding an identified or identifiable natural person; an identifiable natural person is a natural person who can be identified directly or indirectly, in particular via a reference to a certain identifier, for example name, identification number, location information or network identifier, or to one or more elements of this natural person’s physical, physiological, genetic, psychological, economic, cultural or social identity.
6. The Controller has not appointed a Data Protection Officer.
   The company’s contact e-mail address for the resolution of matters connected with the GDPR is: gdpr@bcl.cz

II. SOURCES AND CATEGORIES OF PROCESSED PERSONAL DATA

1. The Controller processes personal data which you provided to them:
   • In an enquiry, order for services, related contractual relationship or query:
     name and surname, e-mail address, postal address, telephone number, and possibly other information which you yourself provide during the communication.
   • In a job application or related query:
     name and surname, e-mail address, telephone number, and possibly other information which you yourself provide during the communication (particularly in a professional CV).
2. The Controller processes your identification and contact details, and the information necessary for communication with you, on the basis of your impetus, for the purpose of offering the provided service, a selection procedure, or dealing with queries.

III. COOKIES

1. When you visit our website at www.bclogistics.cz, information may be stored on your computer in the form of cookies. These cookies serve primarily to ensure the website functions and to analyse its functionality.
   • Every user can set the rules for the use or blocking of cookies in their internet browser. Please bear in mind that the specific procedure depends on the browser which you’re using.
     
     a) Internet Explorer:
     http://windows.microsoft.com/en-GB/internet-explorer/delete-manage-cookies
     b) Firefox:
     https://support.mozilla.org/en-US/kb/enable-and-disable-cookies-website-preferences
     https://support.mozilla.org/en-US/kb/delete-cookies-remove-info-websites-stored
     c) Google Chrome:
     https://support.google.com/chrome/answer/95647?hl=en d) Safari:
     https://help.apple.com/safari/mac/8.0/#/sfri11471
     e) Simplified directly on the BC Logistics website in the “Change Your Cookie Settings” tab located under the main bar
   • The user can enable or disable all or only certain cookies. However, disabling cookies can have a negative effect on the website’s usability.
2. Cookies used on the BC Logistics website:
   • Necessary - Necessary cookies help make the website usable by allowing basic functions, such as navigation on the website and access to its secure area. Without these cookies, the website cannot function properly.
   • Preferences - Preference cookies enable the website to remember information which changes the manner in which the website behaves, or the preferred language and area you are in.
   • Statistics - Statistical cookies help website owners understand how visitors use the website by collecting and reporting anonymous information.
   • Marketing - Marketing cookies are used for the monitoring of visitors to various websites. The aim is to display relevant advertisements for individual users.

In the following overview, you’ll find additional information regarding individual cookies we use, and the purposes we use them for:

IV. LEGAL REASON FOR AND PURPOSE OF THE PERSONAL DATA PROCESSING

1. The legal reason for the personal data processing is:
   • Fulfilment of the contract
   • Fulfilment of the Controller’s legal obligation
   • The company’s legitimate interest
   • Consent to the personal data processing
2. The purpose of the personal data processing is:
   • Fulfilment of the Controller’s legal obligations
   • Dealing with your order / query / request / job application
   • Ensuring the website’s proper functionality (cookies)
3. The Controller does not engage in automated individual decision-making within the meaning of Article 22 of the GDPR.

V. DATA STORAGE PERIOD

1. The Controller stores personal data
   • for the period necessary to deal with your service inquiry or request, or the fulfilment of the contract, and subsequently for the period absolutely necessary for the exercise of the rights and obligations arising from any contractual relationship between you and the Controller, and the exercise of claims arising from these contractual relationships (at least for the statute of limitations period), unless a longer period is required by generally binding legal regulations;
   • according to the company’s shredding rules, in the case of legitimate interest, for the purposes of future collaboration;
   • for the selection procedure period, and if consent was granted subsequently for 1 year for the offer of a similar job;
   • until the revocation of the consent to personal data processing, where personal data is processed on the basis of a consent.
2. At the end of the personal data storage period, the Controller shall delete the personal data.

VI. PERSONAL DATA RECIPIENTS (CONTROLLER’S SUBCONTRACTORS)

1. The personal data recipients are the following persons:
   • Persons authorised by the Controller to deal with your request, and possibly persons within the scope of the company’s holding, if it is necessary for the realisation of the offer and the service
   • Persons who provide technical IT administration (IT service supplier)
   • Persons within the scope of the company’s holding, if you granted such consent for the purposes of a selection procedure
2. In limited cases, particularly when using certain software solutions, the Controller may send personal data outside the EU (mainly to the USA), but always on the basis of appropriate guarantees: either the EU-US Privacy Shield or standard contractual clauses.

VII. CONTROLLER’S SOCIAL NETWORKS

1. If you visit the Controller’s social network profiles (particularly Facebook etc.), please be aware that you provide your personal data in the relevant extent not only to us but also to third parties, under the conditions set by the relevant social network operator. More detailed information regarding personal data processing on the social network in question is provided directly by the operator of the given social network.

VIII. PERSONAL DATA PROCESSORS

1. If, during their activity, the Controller uses external service providers who are in the position of processors, then this always takes place on the basis of a properly concluded personal data processing agreement.

IX. YOUR RIGHTS

1. Under the conditions stipulated in the GDPR, you have:
   • the right to access your personal data as per Article 15 of the GDPR
   • the right to the correction of the personal data as per Article 16 of the GDPR, or a restriction of processing as per Article 18 of the GDPR
   • the right to the deletion of the personal data as per Article 17 of the GDPR
   • the right to raise an objection against the processing as per Article 21 of the GDPR
   • the right data portability as per Article 20 of the GDPR
   • the right to revoke your consent to the processing. The consent must be revoked in writing, using the Controller’s postal address set forth in Article I of these Conditions, or via the e-mail address gdpr@bcl.cz.
2. You also have the right to file a complaint with the Office for Personal Data Protection if you believe that your right to the protection of the personal data has been breached.

X. PERSONAL DATA SECURITY CONDITIONS

1. The Controller declares that they have implemented all appropriate technical and organisational measures to secure the personal data.
2. The Controller has implemented technical measures to secure the data repositories and repositories of personal data in documentary form, particularly by using standard tested software, antivirus programmes and IT systems, whose security is regularly tested, by placing the data repositories and documents in lockable rooms to which only authorised persons have access, and by the division of roles among authorised persons bound by internal directives and confidentiality obligations.
3. The Controller declares that only persons authorised by them have access to the personal data.

XI. FINAL PROVISIONS

1. By sending a service inquiry from the bclogistics.cz website, you confirm that you have been familiarised with these Conditions.
2. The Controller has the right to change these Conditions. They shall publish the new version of the personal data protection conditions on their website.

These Conditions come into effect on 20/ 05/ 2020.