PERSONAL DATA PROCESSING POLICY AND USE OF COOKIES

General Provisions

1. The controller and processor of personal data is Petr Meca, with registered office at Novodvorská 3053 Frýdek-Místek, reg. No.: 76415104 (hereinafter referred to as the “Data Controller”).
2. The contact details of the Data Controller are the address Novodvorská 3053, 73801 Frýdek-Místek, e-mail: petr.meca@mathgoras.com.
3. Personal data subject shall mean a natural person to whom the personal data relates and who has entered into an agreement with the Data Controller on the basis of which the Data Controller grants the personal data subject the right to use the MATHGORAS^TM application (hereinafter referred to as “Customer and the “Agreement”).
4. All provided data shall be processed in accordance with applicable legislation, in particular Regulation 2016/679 of the European Parliament and of the Council (GDPR) and Act No. 110/2019 Coll., on the processing of personal data.
5. By ticking the appropriate box during registration, the Customer has granted consent to the processing of personal data by the Data Controller, to the extent and for the purpose set out in Art. II(b) hereof, and also consent to the Data Controller and its authorised persons to use the Customer's electronic contact details for this purpose. The Customer further declares that the data it has provided is true, accurate, and complete, provided voluntarily, and that it is aware of its rights set out in Art. VI hereof.
6. The Customer acknowledges that without the personal data processing for the purpose of conclusion and performance of the Agreement pursuant to Art. II(a) hereof and the performance of the Data Controller's legal obligations pursuant to Art. II(c) hereof, it is not possible to conclude the Agreement; however, the consent to processing for marketing and business purposes pursuant to Art. II(b) hereof may be withheld or revoked at any time without affecting the possibility of conclusion or performance of the Agreement.
7. The Customer, who has granted consent to the Data Controller according to the previous paragraph, shall be entitled to withdraw this consent at any time, even partially, in any form that makes it apparent to the Data Controller that it is the Customer or another person who is authorised to do so on behalf of the Customer.

Legal Grounds for Processing and Purpose of Personal Data Processing

The Data Controller processes personal data of Customers for the above purposes on the basis of the following legal grounds:

a) negotiation of the Agreement and the exercise of rights and obligations under the Agreement based on the performance thereof;
b) marketing and other commercial communications, in particular to inform the Customer about other products and services of the Data Controller on the basis of the consent to the processing;
c) performance of the Data Controller's legal obligations based on their obligation to comply;
and for the purposes set out in (a) and (b) above to the following extent:

i. the Customer's name, surname, and e-mail address, or business name;
ii. the Customer's e-mail address;
iii. the Customer's IP address;

for the purpose referred to in (c) above, also to the following extent:

iv.  data stipulated by the relevant legal regulations applicable to the Data Controller, in particular within the scope of the Accounting Act, according to which the Data Controller is obliged to process all accounting documents and accounting records.

Period of Personal Data Processing

Individual personal data are processed by the Data Controller for the purpose referred to in Art. II(a) hereof for the duration of the rights and obligations under the Agreement, generally until the Customer Account is cancelled, for the purpose referred to in Art. II(b) hereof for ten (10) years from the date of providing the personal data, or until the Customer withdraws consent to its processing, for the purpose referred to in Art. II(c) hereof for the period required by the relevant legislation (according to the Accounting Act, the obligation to keep accounting records and accounting documents for 5 years).

Instruments and Cookies Used

What are cookies? These are small data files that are necessary for certain website functions, such as logging in. Cookies also allow the site to remember various settings, such as language and other options you have chosen to view the site. This is why we place cookies in your computer.

What do we use cookies for on mathgoras.com? Cookies can be classified according to their durability and depending on who places them in your computer. Cookies can be divided into two categories according to their durability:

Short-term (session cookies) – they remain in your browser until you close your browser, after which they are deleted. Long-term (persistent cookies) – remain stored in your browser for a long time (depending on your browser and cookie settings) or until you manually delete them.

We use analytical cookies at mathgoras.com. Analytical cookies help to improve our website by evaluating the behaviour of its users. The data collected through them is subsequently anonymised. Once anonymised, it is no longer personal data, as anonymised cookies cannot be assigned to a specific user or a specific person. We only work with cookies in anonymised form. We are therefore unable to determine how a particular user has behaved on our website (which sites they have visited, etc.) The processing of these cookies can be refused, see below.

We use the following analytics cookies:

How to modify the use of cookies? All cookies that are already on your computer can be deleted. Most browsers also offer the option to block cookies from being placed on your computer, in which case the website may not function properly. You can find detailed information on how to set your browser to store cookies on the website of your browser provider.

To refuse the processing of cookies, please contact us at petr.meca@mathgoras.com. Refusal to process functional and analytical cookies does not mean that you cannot access the website. However, refusing to process functional and analytical cookies may result in them not working properly and some functions may be unavailable.

Information on the Rights of the Personal Data Subject

1. You shall be entitled to request access to personal data relating to your person under the conditions set out in Art. 15 of the GDPR from the Data Controller, i.e. to obtain information (confirmation) from the Data Controller as to whether or not your personal data are processed, to what extent, and to provide access to them.
2. You shall be entitled to withdraw your consent to the processing of personal data processed by the Data Controller on the basis of your consent under the conditions set out in Art. 7 of the GDPR at any time, without prejudice to the lawfulness of the processing based on the consent granted before its withdrawal, by contacting us at petr.meca@mathgoras.com or by sending a letter to the address of the Data Controller at Novodvorská 3053, 73801 Frýdek-Místek.
3. You shall be entitled to request correction of personal data under the conditions set out in Art. 16 of the GDPR, restriction of processing of personal data under the conditions set out in Art. 18 of the GDPR, or deletion of data under the conditions set out in Art. 17 of the GDPR.
4. You shall be entitled to object to the processing of personal data concerning you on the basis of Art. 21 of the GDPR.
5. You shall be entitled to data portability to another data controller under the conditions set out in Art. 20 of the GDPR.
6. You shall be entitled to refrain from being the subject of any decision based solely on automated processing, including profiling under the conditions set out in Art. 22 of the GDPR.
7. You shall be entitled to obtain information about a breach of security of your personal data under the conditions set out in Art. 34 of the GDPR.
8. If you believe that your personal data processing is in breach of the obligations set out in the GDPR, you shall be entitled to submit a complaint at the supervisory authority under the terms of Art. 77 of the GDPR, which is the Office for Personal Data Protection located at Pplk. Sochora 27, 170 00 Prague 7, www.uoou.cz.
9. Further information about your rights can also be found on the website of the Office: https://www.uoou.cz/6-prava-subjektu-udaj/d-27276.

Request user data deletion

When you install and use Mathgoras mobile application, we can collect and process some of your data for different legitimate purposes. You will find below explanations regarding the reasons why we may collect data.

Why is data collected?

Mathgoras and its third-party partners collect data:

1. To provide you with the services you asked for
2. To run analytics and understand how users interact with our product and services to improve them continuously

The third-party partners that Mathgoras will share the data with are:

1. GameAnalytics
2. Facebook Analytics
3. Adjust
4. Voodoo

Data deletion requests

To delete user data collected by Mathgoras, please reach out to petr.meca@mathgoras.com.

If you also want to request the deletion of the data that may have been collected about you or your device by our third-party partners that are acting as independent data controllers, you will find below the contact for each partner and the link to the relevant section of their privacy policies:

• GameAnalytics
  • email: privacy@gameanalytics.com
  • privacy policy: https://gameanalytics.com/privacy/#6-changing-or-deleting-your-information
• Facebook Analytics
  • email: none, please refer to the privacy policy
  • privacy policy: https://www.facebook.com/policy.php
• Adjust
  • email: privacy@adjust.com
  • privacy policy: https://www.adjust.com/terms/privacy-policy/
• Voodoo
  • Voodoo does not collect any of your personal data and only provides an SDK package to retrieve the data collected by the above-mentioned partners. You can still contact them to request the deletion of their access to the partners’ interfaces.
  • email: dpo@voodoo.io

Personal Data Security

The Data Controller processes personal data both by automated means within the Data Controller's information systems and manually, all in a manner that ensures appropriate security of personal data, including its protection.

The Data Controller declares that it has taken all appropriate technical and organisational measures to secure the personal data.

The Data Controller has taken technical measures to secure data storage and storage of personal data in paper form.

The Data Controller declares that only persons authorised by the Data Controller have access to the personal data.

This Privacy Policy is effective from 1 May 2021.