Privacy policy.

1. Identity of the Data Controller

Konstante s.r.o.

Na Hrebienku 2A, 811 02

Bratislava, Slovak Republic

VAT: SK2120239176

E-mail: konstanteinfo@gmail.com

Konstante s.r.o. acts as the data controller for all processing activities described in this Privacy Policy.

2. Scope of this Privacy Policy

This Privacy Policy applies to all personal data processed through our website, communication channels, and services.

Our services are primarily intended for business clients (B2B).

However, we may also process personal data of individual customers (B2C) or natural persons acting as contact persons within a company.

This Privacy Policy is therefore applicable to both B2B and B2C processing activities.

This Privacy Policy is compliant with the General Data Protection Regulation (GDPR / AVG).

3. Personal Data We Process

We may process the following categories of personal data:

  • First and last name

  • Business or personal e‑mail address

  • Telephone number

  • Company information

  • Communication data

  • Information voluntarily provided through contact forms

  • Usage data related to our services

  • Technical data (IP address, browser type, device information, cookies)

  • Personal data of individual customers (where applicable)

4. Purposes of Processing

We process personal data for the following purposes:

  • Contact and communication

  • Providing and improving our services

  • Customer and account management

  • Lead generation and marketing support

  • Security and fraud prevention

  • Website analytics and performance monitoring

  • Compliance with legal obligations

5. Legal Basis for Processing

We process personal data based on the following legal grounds:

  • Performance of a contract (B2B and B2C clients)

  • Legitimate interest, including:

    • business operations

    • customer communication

    • marketing to existing clients

    • IT security

  • Consent, where required (e.g., certain marketing cookies)

  • Compliance with legal obligations

These legal bases apply to both business contact persons and individual customers.

6. Processing on Behalf of Clients (Data Processor Role)

In certain cases, we may process personal data on behalf of our clients.

In such situations:

  • the client acts as the data controller

  • Konstante s.r.o. acts as the data processor

When acting as a processor, we enter into a Data Processing Agreement (DPA) with the client.

The client is responsible for the lawfulness of the processing.

7. Automated Communication and AI

We may use:

  • automated e‑mail or SMS communication

  • AI‑assisted interactions

These tools are used in accordance with applicable laws.

We do not make decisions based solely on automated processing that produce legal or significant effects for individuals.

8. Sharing of Personal Data

We only share personal data with:

  • IT and hosting providers

  • communication and marketing tools

  • payment processors (if applicable)

  • service providers contractually bound to confidentiality and security obligations

We do not sell personal data to third parties.

9. International Data Transfers

Personal data may be processed outside the European Economic Area (EEA).

Where this occurs, we ensure appropriate safeguards, such as:

  • Standard Contractual Clauses (SCCs)

  • other mechanisms approved by the European Commission

If data is transferred to the United States, we apply SCCs or equivalent safeguards.

10. Data Retention

We retain personal data only for as long as necessary for:

  • the purposes for which it was collected

  • compliance with legal obligations

Typical retention periods include:

  • Contact and communication data: up to 3 years

  • Contract and invoicing data: 10 years (legal requirement)

11. Security Measures

We implement appropriate technical and organizational measures to protect personal data, including:

  • SSL encryption

  • restricted access to authorized personnel

  • secure data storage

  • monitoring and prevention of unauthorized access

12. Rights of Data Subjects

Individuals have the right to:

  • access their personal data

  • correct inaccurate data

  • request deletion of data

  • restrict processing

  • object to processing

  • receive their data in a portable format (data portability)

These rights apply to both business contact persons and individual customers.

Requests can be submitted via: konstanteinfo@gmail.com

Individuals also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens).

13. Cookies

Our website uses cookies and similar technologies.

For more information, please refer to our Cookie Policy.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

The most recent version will always be published on this page.