1.1. Shipmall fulfills its obligations regarding the processing of personal data that has been provided to Shipmall for the purpose of fulfilling contractual and legal obligations.
1.2. Data protection primarily arises from the EU General Data Protection Regulation No. 2016/679/EU GDPR (General Data Protection Regulation).
1.3. Shipmall acts as a data controller when it determines the purpose and means of processing personal data in accordance with Article 4, Paragraph 7 of the GDPR.
1.4. Shipmall acts as a data processor when it processes personal data on behalf of the data controller in accordance with Article 4, Paragraph 8 of the GDPR.
2.1. When processing personal data, we adhere to the highest standards of data protection and follow these key principles:
a) Personal data is always processed for a clear and understandable purpose, using specified means and methods, and only for the duration necessary to fulfill the purposes of processing. We process only accurate personal data and ensure that the processing aligns with the specified purposes and is necessary to achieve those purposes.
b) Personal data is protected in a manner that corresponds to current technological developments. The highest possible security measures are ensured to prevent any unauthorized or accidental access to personal data, its alteration, destruction or loss, unauthorized transfer, other unauthorized processing, and other misuse.
c) Data subjects are informed about the processing of personal data and have the right to obtain accurate and complete information about the circumstances of this processing, as well as other related rights.
d) Shipmall adheres to appropriate technical and organizational measures to ensure a level of security corresponding to all possible risks. All persons who come into contact with clients' personal data are required to maintain confidentiality about the information obtained in connection with the processing of this data.
3.1. General information about Shipmall:
Shipmall, s.r.o., IČ: 10728899, with its registered office at Gočárova třída 1754/48b, Pražské Předměstí, 500 02 Hradec Králové, registered in the Commercial Register maintained by the Regional Court in Hradec Králové, Section B., Insert 3756.
3.2. Data Protection Officer:
Shipmall has appointed a group-wide Data Protection Officer in accordance with Article 37, Paragraph 2 of the GDPR.
Name: Jan Kieswetter
Email: [email protected]
Phone: +420 228 224 267
3.3. The company processes personal data for the purpose of:
a) Fulfilling legally mandated obligations, acting as a data controller.
b) Fulfilling contractual obligations, where personal data has been provided by data subjects.
c) Fulfilling contractual obligations, where personal data has been provided by Shipmall to the data controller.
d) Protecting the rights and legitimate interests of Shipmall.
3.4. Scope of processed personal data:
Shipmall processes personal data to the extent necessary to achieve the above purposes. The following personal data are primarily processed:
a) Name and surname;
b) Address;
c) Email address;
d) Phone number;
e) Personal identification number;
f) Voice recording of phone calls;
g) Client identification document details.
3.5. Method of processing personal data:
The method by which Shipmall processes personal data includes manual and automated processing in Shipmall's information systems. Personal data is primarily processed by Shipmall employees and, to the necessary extent, also by third parties. Before transferring any personal data to a third party, a contract is concluded with that party, containing the same guarantees for the processing of personal data as those observed by Shipmall in accordance with its legal obligations.
3.6. Recipients of personal data:
Personal data is primarily accessible to Shipmall employees in connection with fulfilling their work duties, where handling personal data is necessary, solely to the extent required, and with adherence to all security measures. Personal data may be accessible to third parties involved in personal data processing, or may be accessible to them for other reasons in accordance with the law. Before transferring any personal data to a third party, a written contract is always concluded with that party, regulating the processing of personal data to include the same guarantees for data processing as those observed by Shipmall in accordance with its legal obligations. In accordance with relevant legal regulations, Shipmall is authorized or even obliged to provide your personal data to:
a) Relevant state authorities, courts, and law enforcement authorities for the purpose of fulfilling their duties and for the purposes of executing decisions.
b) Payment service providers, if necessary to prevent payment fraud, investigate or detect it.
c) Other entities to the extent stipulated by legal regulations, such as third parties for the purpose of debt recovery.
d) Entities within the group of entities financially linked to Shipmall for the purpose of outsourcing services.
3.7. Transfer of personal data abroad:
Personal data is processed within the territory of the Czech Republic and other EU member states where entities belonging to the Shipmall group are located, sharing the same data protection standards as the Czech Republic. Entities involved in processing clients' personal data do not transfer personal data outside the EU.
3.8. Duration of personal data processing:
Shipmall processes personal data only for the period necessary for the purposes of processing. The retention period of personal data is determined by individual legal regulations based on which Shipmall processes personal data. If personal data is processed to fulfill contractual obligations, it is necessary to process personal data for 5 years from the date of contract termination to protect the rights and legitimate interests of Shipmall.
3.9. Data subject rights:
Data subjects have, in accordance with the various articles of the GDPR, the following rights in particular:
a) The right to information about the data controller, data processor, and Data Protection Officer.
b) The right to information on the purpose of processing personal data.
c) The right to access personal data and whether personal data is processed or not.
d) The right to file a complaint.
e) The right to correct personal data.
f) The right to erase personal data (right to be forgotten).
g) The right to withdraw consent for personal data processing.
h) The right to restrict processing.
i) The right to data portability.
j) The right to object.
k) All other rights granted by the Regulation.
4.1. We use cookies and similar technologies on the www.shipmall.cz website, always based on consent.
4.2. Information about the cookies used can be found directly in the cookie banner, which can be re-displayed at any time at the bottom of the page by selecting "Cookie Settings".
4.3. Further detailed information on how and for what purposes we use cookies can be found in the Cookie Usage Policy document.
Shipmall takes responsible care of the personal data it processes in its operations. In case of questions or suggestions from data subjects, it is possible to contact the Data Protection Officer or company management.
Contact us to start streamlining your e-commerce fulfillment process and take your business to new heights