Who we are
The address of our website is: https://www.torelec.sk.
pursuant toact No. 18/2018 Of the Protection of Personal Data and on amendments to certain acts (hereinafter referred to as the Act) and pursuant to Article 30 of Regulation No. 30 of the Regulation of the European Parliament and of the Councilof the EU 2016/679 (hereinafter GDPR)
When visitors to the site leave comments on the page, we collect the data that is displayed in the comment form, as well as the IP address of users and the browser user-agent for spam protection.
when uploading images to a website, you should avoid uploading images with EXIF GPS location data. Visitors to the site can download and view any location data from the images.
If you add a comment on our site, you can agree to save your name, email address and website to cookies. This is for your convenience so you don't have to refile your data when you add another comment. These cookies are valid for one year.
If you visit our login page, we will store temporary cookies to determine whether your browser accepts cookies. These cookies do not contain any personal data and are deleted when you close your browser.
When you log in, we set several cookies to store your login details and display settings. Login cookies are valid for two days and display settings for one year. If you choose "remember", your sign-in will be valid for two weeks. When you log out of your account, cookies are deleted.
When you edit or publish an article, additional cookies will be stored in your browser. These cookies do not contain any personal data and refer only to the ID of the article you edited. Files are valid for 1 day.
Embedded content from other web pages
Articles on this website may contain embedded content (e.g. videos, images, articles, etc.). Embedded content from other sites behaves in the same way as if a visitor visited another website.
Who we share your data with
If you require password reset, your IP address will be listed in your password reset email.
How long we keep your data
When you add a comment, the comment, and its metadata are kept separately. Thanks to this, we can automatically recognize and approve any related comments without having to be held for moderation.
For users who register on our website (if any), we also store the personal data they provide in their user profile. All users can view, edit, or delete their personal information at any time (except for changing the username). Web page administrators can also view and edit this information.
What rights do you have over your data
If you have an account on this website or have added a comment here, you can request the export of your personal data that we store about you, including the data you have provided to us. You can also request the erasure of personal data. However, this does not apply to data that we must retain about you for administrative, legal or security reasons.
Where we send your data
Visitor comments can be checked through an automated spam detection service.
Rights of data subjects
1. Data subject's right of access to data
The data subject has the right to obtain confirmation from the controller whether he/she processes his/her personal data. In particular, it has the right to know what personal data it processes and for what purpose, to whom it provides it, how long it holds it, from what source it obtained it and whether it transfers it to 3rd countries. The Controller is obliged to provide the personal data to the data subject in the manner required by him/her.
2. Right to rectification
The data subject has the right to have his or her inaccurate personal data corrected by the controller without undue delay or incomplete personal data.
3. Right to erasure (right to be forgotten)
The data subject has the right to erasure of personal data concerning him or her and the controller is obliged to erase personal data without undue delay if:
personal data are no longer necessary for the purposes for which they were collected or otherwise processed,
the data subject withdraws the consent on the basis of which the processing is carried out and if there is no other legal basis for the processing,
the data subject objects to the processing, which takes place on the basis of the legitimate interest of the controller and does not predominate any legitimate grounds for processing,
personal data have been processed unlawfully,
personal data must be erased in order to comply with a legal obligation under Union law or the law of the Member State to which the controller is subject.
4. Right to restriction of processing – in cases where:
the processing of personal data is unlawful and the data subject requests restriction of processing instead of erasure of data,
the controller no longer needs the personal data, but the data subject needs them to make a legal claim,
the data subject objects to the processing of personal data, until it is verified that the legitimate reasons on the part of the controller outweigh his or her legitimate reasons.
If the processing of personal data has been restricted, the controller may process such data only with the consent of the data subject or for the purpose of claiming a legal claim, for the protection of persons or for reasons of public interest (it does not concern the storage of personal data).
5. Right to data portability
The data subject has the right to obtain personal data concerning him or her which he/she has provided to the controller in a structured, commonly used and machine-readable format and has the right to transfer these personal data to another controller, if the data are processed on the basis of consent or contract, are processed by automated means and the transfer is technically possible.
6. Right to bring proceedings before the Office for Personal Data Protection
The data subject shall have the right to make an application in the case of:
where the operator does not act on his request for the exercise of rights,
if it suspects a personal data breach with the controller, etc.
Notification of a personal data breach to the data subject
In the event of a personal data breach likely to result in a high risk to the rights and freedoms of natural persons, the controller shall notify the personal data breach to the data subject without undue delay.
Notification shall not be required if:
the controller has taken appropriate technical and organisational protection measures and applied those measures to the personal data concerned by the breach,
the operator has taken follow-up measures to ensure that a high risk to the rights and freedoms of natural persons is unlikely to have consequences anymore,
this would require a disproportionate effort.