We are BURZA ŽIVĚ, s. r. o., Company ID 048 01 539, with its registered office at Rybná 716/24, Prague 1, 110 00 Staré Město, registered at the Municipal Court in Prague, file no. C 253559.
For the provision of our services and the operation of our website, we process certain personal data.
The processing of personal data is primarily governed by Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (“GDPR”).
We collect and process personal data necessary to provide our services, including but not limited to:
• Identifying information (e.g., name, address, phone number, email)
• Financial information (e.g., payment details, transaction history)
• Technical data (e.g., IP addresses, browser information, device data)
• Communication records (e.g., customer service interactions)
For customers residing outside the European Union, your personal data may be transferred and stored on servers located within the EU.
Under GDPR, we process personal data based on the following legal grounds:
• Performance of a contract: To fulfill our obligations under service agreements.
• Legitimate interests: To improve services, protect security, and prevent fraud.
• Consent: For specific uses of your data, where necessary (e.g., marketing communications).
• Compliance with legal obligations: To meet regulatory and legal obligations.
Non-EU residents may also be subject to additional local laws. Regardless of your location, we process your data in compliance with GDPR principles.
For customers outside the European Union, we ensure that your personal data receives an adequate level of protection when transferred internationally. We use the following mechanisms:
• Adequacy Decisions: For countries recognized by the European Commission as offering adequate protection.
• Standard Contractual Clauses (SCCs): Legal agreements between entities in the EU and third-party countries that ensure GDPR-level protection.
• Binding Corporate Rules (BCRs): Internal rules within our organization that ensure data protection across different locations.
You have the right to inquire about the safeguards in place when your data is transferred to third countries.
Regardless of your residency, you are entitled to several rights over your personal data, including:
• Right to Access: You may request a copy of the personal data we hold about you.
• Right to Rectification: If your data is incorrect or incomplete, you can ask for it to be updated.
• Right to Erasure (“Right to be Forgotten”): You can request the deletion of your data under specific circumstances.
• Right to Restriction of Processing: You can request that we limit the use of your data under certain conditions.
• Right to Data Portability: You can request that your data be transferred to you or another provider in a structured, machine-readable format.
• Right to Object: You can object to processing based on legitimate interests or direct marketing.
• Right to Withdraw Consent: If data processing is based on consent, you can withdraw your consent at any time.
For non-EU residents, local laws may provide additional rights. However, we aim to align with GDPR standards as much as possible.
We use industry-standard technical and organizational measures to protect your personal data against unauthorized access, accidental loss, destruction, or damage. These measures include encryption, secure data storage, and regular security audits. All employees and third-party partners are subject to strict confidentiality obligations.
We retain personal data for the period necessary to fulfilling contractual obligations or complying with legal requirements. After this period, personal data is either deleted or anonymized.
We do not sell your personal data. We may share your information with trusted third parties under the following conditions:
• Service Providers: To help with operations such as payment processing, analytics, or customer support.
• Legal Requirements: When required by law, regulatory authorities, or legal proceedings.
• Business Transactions: In the event of mergers, acquisitions, or asset sales, personal data may be part of the transferred assets.
All third parties are subject to contracts ensuring compliance with GDPR principles and providing adequate safeguards.
We use cookies and similar technologies to improve user experience and collect data on website usage. You may manage cookie preferences via browser settings. Consent for non-essential cookies will be requested in compliance with applicable laws.
We may update this policy from time to time to reflect changes in legal, technological, or business practices. Significant updates will be communicated directly to customers or through notices on our website.
If you have any questions regarding this policy or wish to exercise your rights, please contact us at:
Data Protection Officer
Email: support@jakubkovarik.com
For EU residents, if you believe we have violated your data protection rights, you may lodge a complaint with your local Data Protection Authority.
This Global Data Processing Policy reflects our commitment to global compliance with GDPR principles and ensuring that all our customers, regardless of residency, can trust how we handle their personal data.