is to provide information about what personal data (hereinafter also "data") the ADMINISTRATOR processes as an administrator during visits to websites operated by the ADMINISTRATOR and contacts with potential customers. Furthermore, the Policy states for what purposes and for how long the ADMINISTRATOR processes this personal data in accordance with applicable legal regulations, to whom and for what reason it can pass it on, as well as information on what rights natural persons have in connection with the processing of their personal data . These Principles are effective from 1.1.2022 and are issued in accordance with Regulation (EU) 2016/679, on the protection of natural persons in connection with the processing of personal data ("regulation" or "GDPR") in order to ensure the information obligation of the ADMINISTRATOR as the administrator of personal data data according to Article 13 GDPR. These Principles concern the processing of personal data of ADMINISTRATOR's customers, users of ADMINISTRATOR's services, those interested in ADMINISTRATOR's services and visitors to websites operated by ADMINISTRATOR, always to the extent of personal data protection according to the GDPR corresponding to their position vis-à-vis the ADMINISTRATOR. Below you will find an overview of the main principles of personal data protection and other processed data.

Our company Advanced Beauty Systems s.r.o. is hosted on the Wix.com platform. Wix.com provides us with an online platform that allows us to sell our products and services to you. Your data may be stored through Wix.com data storage, databases and general Wix.com applications. They store your data on secure servers behind a firewall.

All direct payment gateways offered by Wix.com and used by our company adhere to the standards set by PCI-DSS as administered by the PCI Security Standards Council, a joint effort of brands such as Visa, MasterCard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

1. WHO PROCESSES YOUR DATA?
Personal data is processed by Advanced Beauty Systems s.r.o., Karlovo náměstí 288/17, 120 00 Prague 2 – Nové Město
Company ID: 04403363 Tax ID: CZ04403363 as a personal data administrator according to the GDPR. We will process your data according to the conditions below.

2. WHAT IS PERSONAL DATA?
Personal data is any information relating to a specified or determinable natural person to whom the personal data relates. This is considered determined or determinable if a natural person can be directly or indirectly identified, especially on the basis of a number, code or one or more elements specific to his physical, physiological, psychological, economic, cultural or social identity. The handling of such data may be restricted due to the right to privacy, while the protection of personal data is governed by the GDPR.

3. WHAT PERSONAL DATA DO WE PROCESS?
We only process personal data that you provide to us in connection with your interest in our services.
3.1. Basic personal identification data and address data. These data are necessary for the conclusion and performance of the contract.
3.2. Other data processed on the basis of your consent, which we obtain from you by using our services a) IP address b) cookie files (in the case of online services) c) Records of behavior on websites managed by the ADMINISTRATOR obtained from cookies if cookies are enabled in web browser. The records are processed to improve the operation of the website operated by the ADMINISTRATOR and internet advertising d) possibly another online identifier.

4. WHY DO WE PROCESS YOUR PERSONAL DATA?
a) Fulfillment of legal tax obligations (fulfilment of legal obligations) according to Article 6 GDPR.
b) Marketing purposes (customer consents).

5. PROVISION OF PERSONAL DATA
The provision of personal data necessary for the performance of the contract, the fulfillment of the ADMINISTRATOR's legal obligations and the protection of the ADMINISTRATOR's legitimate interests is mandatory. Without the provision of personal data for these purposes, it would not be possible to ensure the fulfillment of the ADMINISTRATOR's obligations towards customers. We do not need consent to process personal data for these purposes. Here we use the legal title flowing from the contract for the processing of personal data. Personal data for these activities are processed to the extent necessary for the fulfillment of these activities and for the time necessary to achieve them or for the time directly stipulated by legal regulations.
5.1. Processing of personal data for marketing purposes for entities that have given their consent to marketing outreach via electronic contact, the ADMINISTRATOR processes with their consent for the period specified in the consent the data that the entity makes available to it for the purposes of marketing outreach and by sending information about products, news and promotions ADMINISTRATOR offers. If this consent is granted via the website operated by the ADMINISTRATOR, data from the ADMINISTRATOR's cookies, which are located on the website on which this consent was granted, are processed together with these contacts, and only if the subject has cookies in the web browser allowed. Unsubscribing from receiving information about news and promotional offers can be done by email: info@advancedbeauty.cz
5.2 Processing of cookies from websites operated by the ADMINISTRATOR, if the subject has cookies enabled in his web browser, we process behavioral records about him from cookies placed on websites operated by the ADMINISTRATOR, for the purpose of ensuring better operation of the ADMINISTRATOR's website, performing analyzes and measurements in order to find out how our services are used and for ADMINISTRATOR internet advertising purposes.

6. WHAT ARE COOKIES?
Cookies, which are small amounts of data that our servers send to your computer, which enable better use of our servers and adaptation of their content to your needs.
Almost every website in the world uses cookies. Cookies increase the user-friendliness of repeatedly visited websites and are therefore useful for you. If you use the same computer and the same Internet browser to visit our website, cookies help your computer remember the pages you visited and your page settings. Through our website, cookies from advertising system operators that are operated on our website can also be stored on your computer. As part of remarketing, our company also uses Google systems. We use data from remarketing exclusively to segment visitors in order to deliver a more relevant advertising message. Segments are created based on several general patterns of visitor behavior.
Standard web browsers (Safari, Internet Explorer, Firefox, Google Chrome, etc.) support cookie management. Within the browser settings, you can manually delete individual cookies, block or completely prohibit their use, they can also be blocked or enabled only for individual websites. Please use your browser's help for more detailed information. If your browser has the use of cookies enabled, we will assume that you agree to the use of standard cookies by our servers.
 
We do not use cookies for other than purely technical purposes, we do not connect the data obtained thanks to them with any other data, and we work with cookies in such a way that they do not enable the identification of specific persons.

There are temporary cookies and persistent cookies. Temporary ones are stored on your computer only until you close the browser. Temporary cookies enable the storage of information when moving from one website to another and eliminate the need to repeatedly enter certain data. Persistent cookies help to identify your computer if you visit our website again, but do not allow you to be personally identified in any way. Permanent cookies make it possible to adapt our site to your interests, but we cannot in any way identify you personally and we store the relevant data completely anonymously and do not combine it with any other data.

7. WHO WILL HAVE ACCESS TO YOUR PERSONAL DATA? ADMINISTRATOR
we may use the professional and specialized services of other entities in fulfilling our contractual obligations and duties. If these suppliers process personal data transferred from the ADMINISTRATOR, they have the status of personal data processors and process personal data only within the framework of instructions from the ADMINISTRATOR and may not use it otherwise. We carefully select our partners to whom we entrust your data and who are able to ensure such technical and organizational security of your data that unauthorized or accidental access to your data or their other misuse cannot occur. Protecting your data is our priority. All our partners are bound by confidentiality obligations and may not use the provided data for any purposes other than those for which we made it available to them.

8. HOW LONG DO WE PROCESS YOUR DATA?
We will process your data for the entire period of use of our services (i.e. the duration of the contractual relationship between us) and subsequently based on your consent for a further 24 months, unless your consent to the processing of personal data is revoked by you. Here, however, we would like to point out that the personal data that are necessary for the proper provision of the services ordered by you, or in order to fulfill all our obligations, whether these obligations arise from the contract between us or from generally binding legal regulations, we must process regardless of your consent for the period determined by the relevant legal regulations or in accordance with them and after any withdrawal of your consent.

9. CAN WE PROCESS YOUR PERSONAL DATA WITHOUT YOUR CONSENT?
Yes, we can process your personal data even without your consent, but only for the purpose of: a) Providing a service (fulfillment of the contract concluded between you and the ADMINISTRATOR); b) Fulfillment of legal obligations arising for us from generally binding legal regulations; c) Processing that is necessary for the purposes of our legitimate interests (e.g. for direct marketing, ensuring the security of our websites). The possibility and legality of such processing follows directly from valid legal regulations and your consent to this processing is not required.

10. ON WHAT BASIS CAN WE PROCESS YOUR PERSONAL DATA?
As already mentioned, we can process your personal data on the basis of your consent, but also, for example, on the basis of our legitimate interest or for the fulfillment of the contract concluded between us, to the extent of personal data that is necessary for such fulfillment. Last but not least, the reason that allows us to process your personal data even without your consent is the fulfillment of our obligations arising from the law. The specific purposes for which we carry out the individual processing of your personal data are listed above.

11. HOW IS MY PERSONAL DATA SECURED?
All personal data you provide to us is secured by standard procedures and technologies. However, it is not objectively possible to completely guarantee the security of your personal data. Therefore, it is not even possible to 100% ensure that the personal data provided cannot be accessed by a third party, cannot be copied, published, altered or destroyed by breaking all security measures, even on the part of the WIX.com service provider. In this context, however, we assure you that we regularly check whether our ADMINISTRATOR's security does not contain weak points and has not been exposed to attack, and we use such security measures so that, if possible, there is no unauthorized access to your personal data, and which, taking into account the current state of technology provide sufficient security. The security measures taken are then regularly updated. In order to better secure your personal data, access to this data is password protected and sensitive data is encrypted during transmission between your browser and our website. However, without your help and responsible behavior, we are unable to fully ensure the security of your data. So help us keep your data safe by keeping your unique passwords and access information secret and following basic security principles. Please always keep in mind that emails do not need to be encrypted. Therefore, we strongly recommend that you do not use these forms of communication when providing confidential information.

12. HOW AND WHEN CAN YOU WITHDRAW YOUR CONSENT TO PERSONAL DATA PROCESSING?
You can revoke your voluntarily granted consent to the processing of personal data at any time free of charge by sending an email message to the address: info@advancedbeauty.cz. Withdrawal of consent does not affect the possibility to continue processing your personal data based on your consent, which was given before its withdrawal. The withdrawal of consent also does not affect the processing of personal data that we process on a different legal basis than consent (i.e. especially if the processing is not necessary to fulfill a contract, legal obligation or for other reasons specified in applicable legal regulations).

13. AM I OBLIGED TO PROVIDE MY PERSONAL DATA? WHAT IF I DON'T PROVIDE PERSONAL DATA?
You provide us with your personal data voluntarily (for some services, however, the transfer of some personal data is required to make the service available, i.e. if you do not transfer it to us, you will not be allowed to use this service). The processing of your personal data, often only in anonymized form, without us being able to identify you as a specific user at all, enables us to provide you with our products and to constantly improve them and develop new ones. If you do not give us your consent, or if you subsequently revoke it, it may happen that we will no longer be able to provide you with some of our products or services in full. However, it is of course not your obligation to use our free services.

14. WHAT ARE ALL YOUR RIGHTS REGARDING THE PROTECTION OF PERSONAL DATA?
In relation to your personal data, you have the following rights in particular: a) Right to information b) Right to access personal data c) Right to correct or supplement inaccurate personal data; d) The right to erasure of personal data (the right to be "forgotten") in certain cases; e) Right to restriction of processing f) Right to notification of correction, erasure or restriction of processing g) Right to request transfer of data; h) The right to raise an objection or complaint against processing in certain cases; i) To revoke your consent to the processing of personal data at any time; j) The right to be informed of a breach of personal data security in certain cases; k) Other rights set forth in the Personal Data Protection Act and in the GDPR after its entry into force.

15. WHAT DOES IT MEAN THAT YOU HAVE THE RIGHT TO OBJECT?
If you would no longer like the fact that you will receive commercial communications or other information about new products in our product portfolio from time to time, you have the option to object to the further processing of your personal data for the purpose of direct marketing. If you do so, we will no longer process your data for this purpose and we will no longer send you further business communications and newsletters. More detailed information about this right is contained in particular in Article 21 of the GDPR.

16. HOW CAN YOU CONTACT US?
In case of any question about the protection of personal data or withdrawal of consent to the further processing of your personal data, please use the e-mail: info@advancedbeauty.cz. In this context, we would like to inform you that we may ask you to prove your identity to us in a suitable way so that we can verify your identity. This is a preventive security measure to prevent unauthorized persons from accessing your personal data. In order to improve the quality of services and keep records of the fulfillment of our obligations arising from the law, all communication with you is monitored.

Updated on 1.1.2024
Advanced Beauty Systems s.r.o., Karlovo náměstí 288/17, 120 00 Prague 2 – Nové Město, Czech republic, Europa
ID number: 04403363 VAT number: CZ04403363