Conditions of personal data protection

The Provider is CARDOT s.r.o., Stará prešovská 10, Košice – mestská časť Staré Mesto 040 01, ID : 50020269, VAT ID: SK2120150934 company. This appendix contains information on the protection of personal data, the purpose of handling personal data, way how it is processed, as well as the protection and rights of customers.

1) Personal information

is all information about a particular person through which the person can be uniquely identified (hereinafter referred to as “the person concerned”). This person can be identified by a direct identifier, such as a name, ID or passport number, a birth number. Alternatively, it is possible to identify the person by an indirect identifier such as localization data, an online identifier, or a specific combination.

To conclude a contract with CARDOT company, some of the following data are necessary: name and surname, address of permanent residence, birth number, respectively date of birth, ID card number or passport or driving license number.

These personal data are necessary for dealing with insurance events, traffic delicts, embezzlement and other unpredictable situations that may occur during the duration of the rent. Our company may request a copy of the driving license to deal with damage events.

2) Personal data protection

The Provider has taken all appropriate software, technical and organizational actions for the protection of personal data. All personal information is protected against misuse. The Provider does not specify the responsible person. Personal data are not transferred to a third country or an international organization. Written/printed documents, e.g., invoices and rental agreements are deposited in the locked room of the company. Only the employee can access them. Electronic documents such as invoices and rent agreements are stored in an internal computer that is protected by multiple passwords and encrypted disk.

3) Processing of personal data

The personal data of the persons concerned are processed for:

– pre-contractual and contractual relationships, preparation and conclusion of car lease agreements, invoicing, creation and sending of price estimations, identification of the person, recovery of claims and debts, protection of rights and property of the Provider.

The legal basis for the processing of personal data:

– processing of data is necessary for the preparation of a contract or the execution of a pre-contractual action at the request of the client (bookkeeping, mail or electronic mail, communication by phone with the customer)
–processing of data is necessary for the legitimate interests of the Provider, such as the protection of rights and property

Without consent to the processing of personal data, it is not possible to rent a motor vehicle in our company because it is necessary to fulfill a business contract, to deliver goods or to provide a service.

Provision of personal data:

The personal data of the person concerned may be provided to – the executor, the law firm, the accountant, the insurance companies where the Provider has concluded the contracts, the law enforcement authorities, and the court, upon request

4) Processing/retention period Personal data

processing takes place throughout the whole vehicle rental period. The data are used for bookkeeping for billing purposes; it is accessed by employees and the person responsible for the company’s accounting. Client data remains in the billing system for at least the time of the tax form submit for the preceding accounting year or for as long as the client does not request data to be erased if permitted by the law on account management.

5) Access to personal data

Access to client personal data is provided solely to employees or to a person responsible for keeping the company’s accounting.

6) Checking of personal data

The client has the right to review his or her data, which is maintained by the company or business of the Provider. On his/her request, it is available to him/her.

7) Updating and deleting of personal data

Upon request of the client, his data will be updated. If all of the client’s obligations towards our company are met, and the tax return has been made for the last financial year, the client may request that the data be deleted.

8) Submitting a complaint

The Client may file a complaint if he/she believes that his or her data have not been processed correctly or the handling of such data was contrary to general law regulations. The Client is entitled to file a complaint with the Office for Personal Data Protection at Hraničná 12, 820 07 Bratislava.

9) Legislation

Legislation Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals about the processing of personal data and the free movement of such data, repealing Directive 95/46 / EC (General Data Protection Regulation). Law No.18/2018 Coll. on the Protection of Personal Data and Amendments to specific Laws, published in the Collection of Laws of the Slovak Republic.