Privacy Policy

1. Data controller

Actinet Informační systémy s.r.o. Olšanská 2643/1a, Žižkov, 130 00 Prague 3, Czech Republic

Registered in the Commercial Register kept by the Municipal Court in Prague, section C, entry 67393. Company ID: 25552635 · VAT: CZ25552635

GDPR contact email: gdpr@actinet.cz

2. Purposes and legal bases

  • Contract performance — service delivery, customer communication (Art. 6(1)(b) GDPR)
  • Legal obligations — accounting, payroll, HR (Art. 6(1)(c) GDPR)
  • Legitimate interests — property protection, security, CCTV, IT security, web server logs, direct marketing to existing clients (Art. 6(1)(f) GDPR)
  • Consent — newsletter, commercial communications (Art. 6(1)(a) GDPR)

3. Categories of personal data

  • Identification data (name, surname, company ID, VAT number)
  • Contact data (address, email, phone)
  • Service, contract and communication data
  • HR and payroll data (for employees)
  • CCTV recordings from selected premises
  • Contact form submissions (name, company, email, phone, message content)
  • Technical web server logs (IP address, timestamp, requested URL, user-agent, referring page)

4. CCTV recordings

Purpose: protection of property and personal safety.

Scope: only entrances, building perimeter and operational areas are monitored; not changing rooms, sanitary facilities or rest areas. Recordings contain video only, no audio.

Legal basis: legitimate interest of the controller (Art. 6(1)(f) GDPR). The controller has assessed proportionality (balancing test) and adopted measures to minimise interference with privacy.

Retention: 30 days; in case of an incident, for the period necessary to resolve it.

Access: authorised employees only; disclosure to the Czech Police or insurance companies only in cases provided by law.

Measures: premises marked with pictograms, restricted access roles and access auditing, automatic deletion of recordings.

5. Website and contact forms

Contact forms and email. If you contact us via a contact form or the listed email addresses, we process the data you provide. We use this data solely to handle your enquiry.

Technical server logs. Our web server stores standard access logs. These are used to ensure operation, detect attacks and resolve operational incidents.

No third-party tracking. We do not use Google Analytics, Facebook Pixel or any other third-party marketing or tracking tools. We do not profile your visit and we do not use advertising cookies. The website uses only strictly necessary session cookies (details on the Cookies page).

6. Recipients of personal data

  • Public authorities (tax office, Czech Police)
  • IT and accounting service providers
  • Courier and postal companies
  • Insurance companies (in case of insured events)

Data processing agreements pursuant to Art. 28 GDPR are in place with all processors.

7. Transfers outside the EU/EEA

These do not occur as standard practice. Should they become necessary (e.g. use of a cloud service), they will only take place in compliance with GDPR requirements (adequacy decision, standard contractual clauses).

8. Retention periods

  • Accounting documents: 10 years
  • Contracts: duration of the contract + 4 years
  • HR data: as required by law
  • CCTV recordings: 30 days
  • Contact form submissions and email communication: no longer than 3 years from last contact
  • Web server access logs: 90 days
  • Marketing: until consent is withdrawn or objection is raised

9. Your rights

Under the GDPR you have the right to:

  • access your personal data (Art. 15)
  • rectification of inaccurate data (Art. 16)
  • erasure of data (Art. 17)
  • restriction of processing (Art. 18)
  • data portability (Art. 20)
  • object to processing (Art. 21)
  • lodge a complaint with the Czech Data Protection Authority (www.uoou.cz)

10. Data security

We hold ISO/IEC 27001 certification and apply its requirements to the handling of personal data. Communication between your browser and our server is encrypted (HTTPS/TLS).

Contact for requests

Data subject requests should be sent to: gdpr@actinet.cz

General enquiries: info@actinet.cz

This policy is effective from 12 May 2026 (version 2.0). We reserve the right to update it in the future — the current version published on this page always applies.