PERSONAL DATA PROCESSING

Personal data protection rule

The personal data protection rules govern the processing and storage of personal data by the company Corvinus Travel, s.r.o., Agatova 5/D, 841 01 Bratislava, Slovak Republic

The processing and storage of personal data (hereinafter to as the “data subject”) is governed by REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) and Act No. 18/2018 Coll. of the Slovak Republic on the protection of personal data and on the amendment of certain law acts

 

  1. Purpose of personal data processing

Purpose of personal data processing:
Organization and implementation of tours
Legal base
Article 6, clause 1, a, b, c, of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL and Act No. 18/2018 Coll. of the Slovak Republic on the protection of personal data and on the amendment of certain law acts
Data required for processing:
name, surname, postal address, e-mail address, date of birth, nationality, telephone number, passport number, information from your electronic communication
Data storage period
The Data is stored during the entire business relationship and furthermore according to the legal documentation obligation resulting from the Act No. 395/2002 of the Slovak Republic on Archives and Registers

 

Purpose of personal data processing:
Insurance mediation between the customer and the insurance company
Legal base
Article 6, clause 1, a, b, c, of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL and Act No. 18/2018 Coll. of the Slovak Republic on the protection of personal data and on the amendment of certain law acts
Data required for processing:
name, surname, postal address, e-mail address, date of birth, nationality, passport number,
Data storage period
The Data is stored during the entire business relationship and furthermore according to the legal documentation obligation resulting from the Act No. 395/2002 of the Slovak Republic on Archives and Registers

 

 

Purpose of personal data processing:
Book-keeping
Legal base
Article 6, clause 1, a, b, c, of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL and Act No. 431/2002 Coll. of the Slovak Republic on book-keeping
Data required for processing:
name, surname, address, nationality
Data storage period
10 years

 

Purpose of personal data processing:
Marketing
Legal base
Article 6, clause 1, a, b, c, f, of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL
Data required for processing:
name, surname, address, e-mail address
Data storage period
3 years

 

Purpose of personal data processing:
Claims
Legal base
Article 6, clause 1, a, b, c, of REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL
Data required for processing:
name, surname, address, e-mail address
Data storage period
5 years

 

 

  1. Rights of data subjects

 

According to Regulation (EU) 2016/679, data subjects have several rights regarding their

personal data. These rights include:

1. Right to be informed: Data subjects have the right to be informed about the collection and use of their personal data.

2. Right of access: Data subjects have the right to access their personal data and obtain information about how it is being processed.

3. Right to rectification: Data subjects have the right to request the correction or updating of inaccurate or incomplete personal data.

4. Right to erasure: Data subjects have the right to request the deletion or removal of their personal data under certain circumstances, such as when the data is no longer necessary for the purpose it was collected or if the data subject withdraws their consent.

5. Right to restrict processing: Data subjects have the right to request the restriction of processing their personal data in certain situations, such as when the accuracy of the data is contested or when the processing is unlawful.

6. Right to data portability: Data subjects have the right to receive their personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.

7. Right to object: Data subjects have the right to object to the processing of their personal data, including for direct marketing purposes or when the processing is based on legitimate interests.

8. Rights related to automated decision-making: Data subjects have the right not to be subject to a decision based solely on automated processing, including profiling, if it produces legal effects or significantly affects them.

 

If you want to file an objection to the way how we process your personal data, contact us: info@centraleuropetour.com . Our representative will review your complaint and will work with you to resolve the matter.

If you are still convinced that your personal data has not been properly processed, you can contact The Personal Data Protection Office of the Slovak Republic, Hranicna 12, 820 07 Bratislava 27, mail: statny.dozor@pdp.gov.sk,

 

Payment information

We use a third-party payment gateway STRIPE where your sensitive credit card information is stored. We are not able to see the card holder information. The card information is not stored by our company.

Payment security is a priority for Stripe. This is evident through the various measures it uses to protect card information.

  • PCI Service Provide Level 1 Certification – The highest level of certification in the payment industry
  • Encrypted Data and Communication – The service uses PGP keys for safe communication
  • Money Transmitter Licenses – Stripe complies with legal regulations for payment platforms

 

 

 

  1. Transfer of personal data

We do not transfer your data to third parties unless legally obliged. We may transfer your data to another country or recipient if it is necessary to carry out the tour you booked (e.g. hotels, tourist institutions, insurance company).

 

 

  1. Cookies

 

When you visit and use the website www.centraleuropetour.com, cookies or other technologies such as pixels (hereinafter collectively “cookies”) are activated on your device. Cookies are small content files that are used to store and receive identifiers and other information about computers, phones and other devices from which you access the Website, and thus help us provide, protect and improve the services offered. The use of cookies will allow us to offer you content and services that best match your needs and interests. Cookies make it possible to record information about your visit to the Website, and thanks to their use, your next visit will be easier and faster.

 

Corvinus Travel, s.r.o. currently uses only the following necessary and basic analytical cookies on the Website:

 

Necessary cookies
When visiting and using the Website for informational purposes only, we only collect personal data that your browser transmits to our server, which is necessary to be able to display the Website to you and to guarantee stability and security their use.

 

Basic analytical cookies
These cookies serve to improve the functioning of the Website. They allow us to recognize and track the number of visitors and track how visitors use the web site. They help us improve the way the wesite works, for example by making it easier for users to find what they are looking for. These cookies do not collect information that could identify you personally. We use these tools to analyse and regularly improve the functionality of our web site. We can use the obtained statistics to improve user comfort and to make your visit to the Website more interesting for you as a user.

 

You can also refuse cookies in general or set the activation of only some (depending on the type of browser) via your internet browser.