1.1 The controller of personal data pursuant to Article 4(7) of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (hereinafter: "GDPR") is PN Group s.r.o., with registered office at Luční 192, 471 27 Stráž pod Ralskem, ID No.: 08277362 , registered in the Commercial Register maintained by the Regional Court in Ústí nad Labem, file number C 43819, e-mail: info@pngroup.cz (hereafter: „Administrator“).

1.2 Personal data means any information about an identified or identifiable natural person; that is, a natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, a network identifier, or to one or more specific aspects of his or her physical, physiological, genetic, mental, economic, cultural or social identity.

1.3 The Controller has not appointed any Data Protection Officers.

2.1 The controller processes your personal data that you have provided to it or data that it has obtained as a result of your submission of a form or the establishment of cooperation with PN Group.

2.2 The following types of personal data may be collected, stored and used:

• the information you provide when filling in the contact form on our website, such as your name, email and the company you work for;
• information you enter when using the services on our website information contained in any communication you send to us by email or through the website;
• any other personal data you send us.

4.1 Your personal information may be disclosed to any of our employees, officers, insurance companies, professional consultants, agents, contractors or subcontractors to the extent necessary to fulfill the purposes defined in this Privacy Policy.

4.2 We may disclose your personal information:

• to the extent that we are legally obliged to do so;
• in the event of any pending or potential legal or administrative proceedings;
• to secure, exercise or defend our rights under the law (including the provision of data to other parties for fraud prevention and credit risk reduction purposes);
• the purchaser (or potential purchaser) of any business or property that we are selling or considering selling; and
• to any party that we have reasonable grounds to believe may be required by a court or other competent authority to disclose such personal data if we believe that such court or authority could order disclosure.

4.3 Except as specified in this policy, we will not transfer your personal data to third parties.

5.1 For the efficient operation of the Services, the data we collect may be transferred to email or cloud service providers in the United States where GDPR-compliant privacy obligations are included in their terms and conditions.

5.2 You hereby expressly consent to the transfer of personal data as described in this Section 5.

6.1 Personal data that we process for any purpose or purposes will not be retained for longer than is necessary for that purpose or purposes, but for no longer than 15 years.

6.2 Notwithstanding the preceding paragraph, we will retain data containing personal data

• to the extent that we are legally obliged to do so;
• if we believe that the data may be relevant to any pending or future legal proceedings; and
• to secure, exercise or defend our rights under the law (including the provision of data to other parties for fraud prevention and credit risk reduction purposes);