Privacy policy - GDPR


The company AQUAVIA Praha Ltd., with its registered office in Prague, Rybalkova 1147/10, 120 00, ID: 250 84 470, registered in the commercial register kept at the Regional Court in Prague under the file record of C 48068, hereinafter referred to as the "Administrator" is authorized to process the personal data provided by you, if you give this consent to the processing of personal data.

Scope of data

Only the personal data that you provide to us will be processed to the extent and for the purpose for which they were transferred and provided.

Data such as:

  • Name and surname,
  • Company name, ID/TIN and registered office at company contacts,
  • Contact information (email address, mailing address, telephone),
  • Transaction data (such as IP address or browser parameters).

The legal basis for data processing is Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and on the repeal of Directive 95/46/EC, Article 6, point 1. a., the so-called GDPR regulation.

Data processing and purpose of data processing

The administrator can process all provided data if the client has given consent or if they are needed to handle the client's requests, for example for the purpose of:

  • securing the sale of services or products,
  • securing solutions to customer requests/questions,
  • for security and technical reasons (fighting SPAM, verifying requirements, ensuring security),
  • sending informational or marketing emails, if approved.

The processing of personal data on the basis of this consent will only be for a period that is absolutely necessary, in this case indefinite, or until the withdrawal of this consent to their processing.

Personal data can be processed both automatically and manually and will not be transferred to any other entities, unless it is necessary to process the client's requests, the order or is not otherwise stated in this consent.

The administrator will make the maximum possible effort to secure the subjects' personal data. If there is a breach of data security, the administrator will immediately inform both the subject and the Office for Personal Data Protection.

Personal data processors

The administrator and third parties, hereinafter referred to as "Processors", carry out data processing and comply with the principles of protection and security of your data and personal data. Processors and administrators only have access to data relevant to the execution of the transaction/request and only for the time necessary to implement the processing.

The main processors are or can be, for example:

  •, a.s., Radlická 3294/10, 150 00, Prague, ID: 26168685,
  • Google Czech Republic, s.r.o., Stroupežnického 3191/17, 150 00, Prague, ID: 27604977,
  • Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland,
  • AQUAVIA Praha s.r.o., Rybalkova 1147/10, 120 00, Prague 2, ID: 250 84 470.

Data rights

Providing this consent is voluntary and there is no legal obligation or penalty for not providing it. Failure to provide, however, means that the controller cannot provide services that require personal data.

The subject has rights to the data that is processed, in particular:

  • be informed about the processing of his data,
  • be forgotten (deletion of personal data, unless otherwise required by law),
  • to be able to request information about what data is stored in a machine-readable format,
  • revoke consent to data processing,
  • have access to personal data,
  • for repair or addition,
  • to restrict processing,
  • on data portability,
  • raise an objection
  • not be the subject of automated individual decision-making with legal or similar effects, including profiling,
  • and other rights established by an EU regulation or regulation or another law of the Czech Republic.

Withdrawal of consent to the processing of personal data, a request to be forgotten or other questions regarding personal data must be delivered in writing to the administrator's address (listed as the contact address on the contacts page) or electronically by email to the address with data that allows verification, that it is a request of the subject.

Revocation or deletion is valid from the date of delivery and will be processed as soon as possible within the technical possibilities of the administrator. Personal data that must be stored due to another legal basis or are necessary to fulfill obligations or contracts cannot be deleted as part of a deletion request.


The subject confirms that he agrees to the processing of personal data in the specified scope according to this consent and according to his own, free and serious will.