Terms of Use
of the ColosseoEAS.com Website
and Privacy Policy
1. ColosseoEAS, a.s., registered office: Einsteinova 11/3677, Bratislava 851 01, Company ID No.: 47 089 849 as the controller (hereinafter referred to as the “Controller”) guarantees the security and protection of the personal data entrusted to it in full compliance with Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter referred to as “GDPR”) and with Act No. 18/2018 Coll. on the protection of personal data and on amending certain other acts, as amended.
2. COOKIES
A cookie is a small data file that the website server sends to the search engine and which is then stored on the user’s computer. When the user revisits the same website, the search engine sends this data back to the website server. Cookies are commonly used to recognise users, store user settings, etc., to simplify the use of the website.
Cookies as such pose no threat to computers. However, cookies are important in the context of privacy issues, as the website uses cookies to store all the information it learns about a visitor, and so it can learn about a particular user’s interests over time. However, cookies do not in any way can be used to reveal the identity of the visitor.
The information obtained from cookies may be used for targeted advertising, statistical evaluation of visitor behaviour, etc. However, this information can also be obtained without cookies and should therefore not be considered particularly dangerous.
WHERE DO WE USE COOKIES?
On the ColosseoEAS.com website.
WHY DO WE USE COOKIES?/strong>
In summary, cookies are used to optimise the information provided by all pages, links and other parts of the website. Cookies do not slow down web browsing.
A cookie is a small data file that the website server sends to the search engine and which is then stored on the user’s computer. When the user revisits the same website, the search engine sends this data back to the website server. Cookies are commonly used to recognise users, store user settings, etc., to simplify the use of the website.
Cookies as such pose no threat to computers. However, cookies are important in the context of privacy issues, as the website uses cookies to store all the information it learns about a visitor, and so it can learn about a particular user’s interests over time. However, cookies do not in any way can be used to reveal the identity of the visitor.
The information obtained from cookies may be used for targeted advertising, statistical evaluation of visitor behaviour, etc. However, this information can also be obtained without cookies and should therefore not be considered particularly dangerous.
WHERE DO WE USE COOKIES?
On the ColosseoEAS.com website.
WHY DO WE USE COOKIES?
In summary, cookies are used to optimise the information provided by all pages, links and other parts of the website. Cookies do not slow down web browsing.
TECHNICAL COOKIES
If your browser did not use cookies, the website would not function properly. For example, the website would not remember the data you have entered and you would have to have to re-enter them upon each visit.
THIRD-PARTY COOKIES
We use partners to provide certain services. These partners also use cookies. These cookies are managed by third parties and we do not have access to read or record this data. Such third-party
cookies come usually from systems that provide advertising or analyse traffic. On our website, we use anonymous identifiers and third-party cookies to target advertising content.
ANALYTICAL COOKIES
Analytical cookies help us continually improve our website by tracking statistics such as total website traffic or number of clicks on a specific button, etc. We use Google Analytics, Google AD Sense, Google Tag manager and Hotjar as analytics tools.
MARKETING COOKIES
Cookies cannot send you any emails. Their job is to display the website according to your preferences and ensure that you are not bothered with something that you are not interested in. We use tools from Facebook and Google.
CONSENT TO THE USE OF COOKIES
By using the ColosseoEAS.com website, you confirm that you agree to the use of cookies. You can restrict or block the use of cookies in your web browser settings.
COOKIE MANAGEMENT
Cookies are enabled by your browser and can be managed by you. There are several options:
– You can block (= disable) cookies. If you do so, some websites may not display correctly and some functional parts may not work as you are used to.
– You can manage or delete cookies, but in this case some parts of the website may not work properly.
HOW DO I CHECK MY COOKIE SETTINGS IN DIFFERENT BROWSERS?
Here you can find information about the settings for your specific browser:
Google Chrome
Firefox
Internet Explorer and Edge
Safari
Useful links:
More information about Google and YouTube cookies
More information about LinkedIn cookies
More information about Facebook cookies
CONDITIONS FOR STORING AND PROCESSING COOKIES:
– The user always has the possibility to agree or refuse the storage of cookies by setting their web browser to enable or to disable the storage of cookies.
– In the case of consent (enabling cookies), the following can be stored on the user’s electronic device:
1. temporary cookies, which are automatically deleted when the user’s browser is closed;
2. long-term cookies, which remain in the user’s web browser even after the user has switched off the device used to access the ColosseoEAS.com website (these cookies can be deleted by the user at any time and are also deleted automatically after a few weeks or months).
– With his or her consent, the user also authorises the Controller to use the cookies for his own record-keeping or statistical purposes, and for the purposes of targeted advertising of the partners with whom the Controller has entered into specific agreements on the display of advertising on the website. The user’s consent lasts for as long as the user’s internet settings are maintained in his or her browser. Upon changing the user’s browser settings or by disabling the use of cookies, the user’s consent ceases to be valid.
– The Controller is not responsible for the storage of cookies on third-party websites or the use of cookies stored on the user’s device by third parties.
– In case of refusal of consent (disabling cookies in the web browser), the Controller cannot guarantee the full functionality of the website ColosseoEAS.com, and in particular does not guarantee the possibility of logging into the member’s section.
3. WEBSITE SECURITY
ColosseoEAS.com uses an encrypted SSL connection for any user connection and any data transfer, which prevents access by third parties to the transmitted data during its internet transfer and the alteration of such data by third parties. The Controller’s databases containing personal data are protected by encryption and non-public access data in accordance with the latest technical standards.
4. CONTACTING THE USER UPON HIS OR HER REQUEST
When visiting and continuing to use the ColosseoEAS.com website, the user may contact the Controller and provide the Controller with his or her personal data for contact purposes.
– The provision of personal data is voluntary. The legal basis for the processing of the data provided by the user in this case is a legitimate interest of the Controller to contact the user and to provide any answers or advice.
The personal data that the user may provide to the Controller are:
1. first and surname [essential]
2. e-mail address [essential]
3. telephone number [essential]
4. the user’s company (workplace/employer).
– PURPOSE
The purpose of processing the user’s personal data is to contact the user back.
– DURATION OF PROCESSING
The personal data will only be processed for the necessary period of time during the communication with the user.
ACCURACY
By voluntarily providing his or personal data, the user declares that the data provided is accurate, true and up-to-date.
5. PERFORMANCE OF CONTRACT
For the preparation, conclusion and performance of a contract, we use your personal data for the time necessary to process the order. After this period, we will continue to store the data for legitimate interest for the purpose of protecting legal claims and for internal record-keeping and control purposes, for the duration of the limitation period (3 years) and one year thereafter with respect to claims made at the end of the limitation period. In the event of the initiation of legal, administrative or other proceedings, we process your personal data to the extent necessary for the entire duration of such proceedings and for the remaining part of the limitation period after its conclusion. Our legitimate interests in such processing are the protection of legal claims and the control of the proper provision of services. For the purposes of complying with its legal obligations, the Company processes personal data for a period of 10 years. Personal data processed for the purpose of performance of a contract are processed to the extent that they have been provided to the Controller for the purpose of performance of the contract (i.e. in particular name, surname, permanent address, date of birth).
6. SOUND AND AUDIOVISUAL RECORDINGS
For the purpose of publishing audio recordings, audio-visual recordings and video recordings of our training courses, we process personal data about you to the extent of your recorded voice and image only with your consent. Such consent is requested from you separately when you register for the training or before the start of the training, and we retain such personal data for a period of 3 years, or for a shorter period if you withdraw such consent within the three years or modify any of the rights set out below. The purpose of such processing is to present and market our company.
7. JOB APPLICANTS
Through our website, you can send us your resumé (CV), on the basis of which you may be selected and hired by our company. To process your personal data contained in your CV, we need your consent. Unfortunately, without such consent, we will not be able to view the CV and we will not be aware of your application. In connection with the resumé you have sent, we process personal data within the scope of the data you have provided in this CV, in particular: name, surname, telephone number and e-mail address. We store the data for the purpose of evaluating resumés for 1 year.
8. NEWSLETTER
When visiting and using the ColosseoEAS.com website, the user – data subject may provide the Controller with his or her personal data for the purpose of receiving communications containing direct marketing content – newsletter. The provision of the user’s personal data may occur when the user voluntarily subscribes for a newsletter using an identifiable e-mail address, or by voluntarily completing the contact form associated with the selected website content. The Controller may also send newsletters to the user on the basis of his legitimate interest, provided that the conditions set out below are met.
– The provision of personal data on the basis of consent is voluntary. A necessary condition for the processing of personal data for the purpose of sending the newsletter to a user who is not a customer of the Controller is the user’s consent to the processing of personal data to the extent necessary and to the sending of marketing message. This consent is the only legal basis for the processing of the data provided by such user (email address).
– If the data subject is a customer of the Controller, we send direct marketing messages to the data subject concerning services that are similar to the services that the data subject has already subscribed to, where the legal basis for such processing of personal data of existing customers is our legitimate interest, as we reasonably believe that our offers are interesting and relevant to these customers. Of course, the customer has the option to opt-out from receiving such messages free of charge at any time, either via the link provided in the message or by contacting the Controller via e- mail at info@ColosseoEAS.com.
– DURATION OF CONSENT
The user’s consent under the above shall take effect at the moment of voluntary consent by ticking the relevant box in the online form and shall last for a period of two years or until the user withdraws his or her consent. The Controller has the right to process the data provided for the duration of the consent.
-DURATION OF LEGITIMATE INTEREST The processing of personal data for marketing purposes, the legal basis of which is the legitimate interest of the Controller, shall last for a period of two years from the date of the last order placed by the customer or until the user unsubscribes to such messages or until an objection is placed to the processing of personal data for this purpose.
– PURPOSE
The purpose of the processing of the user’s personal data is to enable the user to subscribe to the newsletter (information leaflet) requested by the user or to send a newsletter with offers of similar goods and services to those already ordered by the user, by sending such a newsletter by the Controller to the contact addresses provided by the user, in particular in electronic form.
– SCOPE OF PERSONAL DATA
In the event that we process your personal data for the purpose of sending newsletters, we process this data in the following scope: first name, last name and e-mail address.
– ACCURACY
The user is obliged to notify the Controller of any changes to the personal data provided. The Controller may ask the user to check or update the personal data provided by the user in order to ensure its accuracy.
– DATA TRANSFER AND AUTOMATED DECISION-MAKING
The user’s personal data will not be disclosed or made available to third parties, will not be transferred to countries outside the European Union, nor will the Controller make decisions relevant to the user in an automated manner. In connection with the sending of newsletters, your personal data may be transferred to countries outside the EU, namely to the United States of America (USA). In the event that personal data is disclosed to persons outside the EU, the Controller shall ensure that the recipients are certified with a so-called "PrivacyShield" certificate.
9. INFORMATION ON THE RIGHTS OF THE DATA SUBJECT
If you have provided us with your personal data, you are in the position of a so-called data subject. As a data subject, you can exercise in particular the following rights with our company:
– the right to access your data. At the request of the data subject, the Company will issue a confirmation as to whether the data subject’s personal data is being processed. If the Company
processes such data, it will issue a copy of the personal data to the data subject upon request. In addition, the data subject will also be provided with information on, in particular, the purpose of the processing, the category of personal data processed, the identification of the recipient or category of recipients to whom the personal data have been provided, the period of retention of the personal data, information on the source from which the personal data were obtained and information on the existence of automated individual decision-making, including profiling.
The issue of the first copy referred to in the previous sentence shall be free of charge. For any further copies requested by the data subject, the Company will charge a fee corresponding to the
administrative costs incurred in connection with the issue of the copy. Where a person requests information by electronic means, it will be provided in a commonly used electronic form, by email,
unless the person requests otherwise. – the right to rectification of personal data where the Company has recorded incorrect personal data related to the data subject. At the same time, the data subject shall have the right to have incomplete personal data completed. The Company shall carry out the rectification or completion of the personal data without undue delay after the data subject requests it.
– the right to erasure of personal data concerning the data subject, provided that:
1. the personal data are no longer necessary for the purposes for which they were collected or otherwise processed;
2. the data subject withdraws the consent on the basis of which the processing is carried out;
3. the data subject objects to the processing of personal data pursuant to par. 6;
4. the personal data have been unlawfully processed;
5. the reason for erasure is the fulfilment of an obligation under the Act, a special regulation or an international treaty by which the Slovak Republic is bound; or
6. the personal data were collected in connection with the offer of information society services to a person under the age of 16.
The data subject will not have the right to erasure of the personal data provided that their processing is necessary:
1. to exercise the right to freedom of expression and information;
2. for the performance of an obligation under the Act, a special regulation or an international treaty by which the Slovak Republic is bound, or for the performance of a task carried out in public interest or in the performance of official authority vested in the Company;
3. for reasons of public interest in the area of public health;
4. for archiving purposes in the public interest, for scientific or historical research purposes or for statistical purposes, where the right to erasure is likely to prevent or seriously impede the
achievement of the purposes of such processing; or
5. for the establishment, exercise or defence of legal claims. The Company shall carry out the erasure of the personal data of data subjects upon request, without undue delay, after it has assessed that the data subject’s request is justified.
– The data subject has the right to have the processing of their personal data restricted if:
1. the data subject challenges the correctness of the personal data by objecting pursuant to par. 6, during a period allowing the Company to verify the accuracy of the personal data;
2. the processing is unlawful and the data subject requests a restriction on the use of the personal data instead of erasure;
3. the Company no longer needs the personal data for the purposes of the processing, but the data subject needs them to establish, exercise or defend legal claims;
4. the data subject has objected to the processing of the personal data on the basis of a legitimate claim by the Company, until it is verified that the legitimate grounds on the part of the Company
outweigh the legitimate grounds of the data subject. If the data subject requests the restriction of the processing of his or her personal data, the Company shall not carry out any processing operations of the personal data without the data subject’s consent, other than to store them or to use them to assert legal claims. In the event that the restriction of the processing of personal data is to be revoked, the Company shall inform the data subject in advance of this fact.
– The data subject shall have the right to data portability, which means obtaining the personal data that he or she has provided to the Company, while having the right to transfer these data to another Controller in a commonly usable and machine-readable format, provided that the personal data have been obtained on the basis of the data subject’s consent or on the basis of a contract and the processing is carried out by automated means.
– The data subject shall have the right to object at any time to processing of his or her personal data
on grounds relating to his or her particular situation. The data subject may object the processing of
his or her personal data on the basis of:
5. the performance of a task carried out in the public interest or in the exercise of official authority or n the basis of legal grounds of legitimate interest of the Company;
6. the processing of personal data for direct marketing purposes;
7. processing for scientific or historical research purposes or for statistical purposes. If the data subject objects to the processing of personal data for direct marketing purposes pursuant to point (b) of this paragraph, his or her personal data may no longer be processed by the Company. The Company shall consider the objection received within a reasonable time. The Company may not
further process the personal data unless it demonstrates the necessary legitimate interests to process the personal data which override the rights or interests of the data subject or grounds for
exercising a legal claim. The data subject shall have the right at any time to object to a decision of the Company which has legal effects affecting the data subject or which significantly affects the data subject, if such a decision is made solely on the basis of automated processing of his or her personal data. The data subject shall have the right to ask the Company to review the decision by a method other than automated processing, and the Company shall comply with the data subject’s request by non-automated means, i.e. the decision shall be verified personally by an authorised person. The buyer does not have this right only if the automated decision is necessary for the conclusion of a contract or the performance of a contract between the Company and the data subject, if the decision is made on the basis of a special regulation or an international treaty by which the Slovak Republic is bound and which also provides for appropriate measures guaranteeing the protection of the rights and legitimate interests of the person concerned, or if the data subject gives his or her explicit consent to the automated decision.
– the right of access to data. At the request of the data subject, the Data Controller shall issue a confirmation as to whether the personal data of the data subject related to them are being
processed. If the Controller processes such data, he shall, upon request, issue a copy of such personal data to the Data Subject. Together with the abovementioned, the data subject shall also be provided with information, in particular on the purpose of the processing, the category of personal data processed, the identification of the recipient or category of recipients, to whom the personal data have been disclosed, the period of retention of the personal data, information on the source from which the personal data were obtained and information on the existence of automated individual decision-making, including profiling. The issue of the first copy referred to in the previous sentence shall be free of charge. For any further copies requested by the data subject, the Controller shall charge a fee corresponding to the administrative costs incurred in connection with the issue of the copy. If the person requests information by electronic means, it will be provided to him or her in a commonly used electronic form, in the form of an e-mail, unless he or she requests otherwise.
– the right to rectification of personal data if the Controller records incorrect personal data about the data subject. At the same time, the data subject shall have the right to complete incomplete personal data. The Controller shall rectify or complete the personal data without undue delay after the data subject has requested to do so.
– the right to erasure of personal data concerning the data subject, provided that:
6. the personal data are no longer necessary for the purposes for which they were collected or otherwise processed;
7. the data subject withdraws the consent on the basis of which the processing is carried out;
8. the data subject objects to the processing of personal data;
9. the personal data have been unlawfully processed;
10. the reason for erasure is the fulfilment of an obligation under the Act, a special regulation or an international treaty by which the Slovak Republic is bound; or
11. the personal data were collected in connection with the offer of information society services to a person under the age of 16.
The data subject will not have the right to erasure of the personal data provided that their processing is necessary:
1. to exercise the right to freedom of expression and information;
2. for the performance of an obligation under the Act, a special regulation or an international treaty by which the Slovak Republic is bound, or for the performance of a task carried out in public interest or in the performance of official authority vested in the Controller;
3. for reasons of public interest in the area of public health;
4. for archiving purposes in the public interest, for scientific or historical research purposes or for statistical purposes, where the right to erasure is likely to prevent or seriously impede the
achievement of the purposes of such processing; or
5. for the establishment, exercising or defending legal claims. The Controller shall erase the personal data of the data subjects upon request, without undue delay after it has assessed that the data
subject’s request is justified.
– The data subject has the right to have the processing of their personal data restricted if:
6. the data subject challenges the correctness of the personal data by objecting during a period allowing the Controller to verify the accuracy of the personal data;
7. the processing is unlawful and the data subject requests a restriction on the use of the personal data instead of erasure;
8. the Controller no longer needs the personal data for the purposes of the processing, but the data subject needs them to establish, exercise or defend legal claims;
9. the data subject has objected to the processing of the personal data on the basis of a legitimate
claim by the Controller, until it is verified that the legitimate grounds on the part of the Controller outweigh the legitimate grounds of the data subject. If the data subject requests the restriction of
the processing of his or her personal data, the Controller shall not carry out any processing operations of the personal data without the data subject’s consent, other than to store them or to
use them to assert legal claims.
In the event that the restriction of the processing of personal data is to be revoked, the Controller shall inform the data subject in advance of this fact.
– The data subject shall have the right to data portability, which means obtaining the personal data that he or she has provided to the Controller, while having the right to transfer these data to another controller in a commonly usable and machine-readable format, provided that the personal data have been obtained on the basis of the data subject’s consent or on the basis of a contract and the processing is carried out by automated means.
– The right to withdraw your consent to the processing of personal data at any time. If the data subject is under 16 years of age, such processing of personal data is lawful only on the condition and
to the extent that such consent has been given or authorised by his or her legal representative.
– The data subject shall have the right to bring an action before the Office for Personal Data Protection of the Slovak Republic if he or she considers that his or her rights have been violated in
the area of protection of personal data. In addition to the Controller, third parties may have access to the personal data provided by you. Third parties may be accounting service providers, IT service providers, providers of newsletter services, cookie service companies, as well as persons authorized by the Controller to process personal data for the purpose of providing marketing-related services.