Privacy Policy

Data Protection

In accordance with the Regulation of the European Parliament and of the Council (EU) 2016/679 of April 27, 2016, on the protection of individuals with regard to the processing of personal data and on the free movement of such data, which repeals Directive 95/46/EC (General Data Protection Regulation, GDPR), we provide information on the processing of personal data of data subjects (i.e., individuals whose personal data are being processed: employees, professionals, suppliers, job applicants, etc.).

Who is responsible for processing personal data?

Company: infino.IT s.r.o.
Address: Rozmarínová 15a, 900 41 Rovinka
ID: 555 661 20
Registration: Commercial Register of the Municipal Court Bratislava III, section: Sro, insert no. 170738/B
Contact Details:
Phone: +421 (0) 949 550 240
Email: [email protected]
For questions or to exercise your rights related to data protection, please contact us via email at: [email protected].

How do we obtain personal data?

We primarily obtain personal data directly from you. If we collect data from other sources, we always inform you, including the category of data obtained.

Legal basis for processing personal data

• Fulfillment of a contract or pre-contractual relationships (Art. 6(1)(b) GDPR)
• Legitimate interests of the controller (Art. 6(1)(f) GDPR)
• Compliance with legal obligations (Art. 6(1)(c) GDPR)
• Consent of the data subject (Art. 6(1)(a) GDPR)
  Providing personal data is mandatory if its processing is necessary to fulfill legal obligations of the controller or to execute a contract. Consent to process data is voluntary and can be withdrawn at any time.

Duration of data storage

We retain personal data for the period necessary to achieve the purpose for which it was collected. In the case of legal obligations, data is retained for the period required by applicable legal regulations. More detailed information on retention periods is provided below.

Purposes of processing personal data

• Contact form on the website: Data obtained via the contact form are processed based on your consent. You can withdraw consent at any time by emailing [email protected]. Data is retained until your request is processed, but no longer than 1 year.
• “Recommend an IT Specialist” form: Personal data collected for this purpose are processed based on your consent, which can be withdrawn at any time by emailing [email protected]. Data is retained until the request is processed, but no longer than 1 year.
• Pre-contractual and contractual relationships: Your personal data are processed for the purpose of concluding and fulfilling contracts. Data is retained until the contract is concluded, but no longer than 1 year.
• Recording of internal activities aimed at acquiring customers: These activities include records of communications, meetings, and negotiations before concluding a business deal. Processing is necessary to take measures before concluding a contract. Retention period: until the conclusion of the contract, but no longer than 1 year.
• Selection process for job applicants: Personal data are processed for the purposes of the selection process. Processing is necessary to take measures before concluding a contract. Retention period: until the end of the selection process.
• Selection process for candidates for cooperation based on a commercial legal relationship: Personal data are processed for the purpose of selecting a business partner. Processing is necessary to take measures before concluding a contract. Retention period: until the end of the selection process.
• Implementation of contractual relationships with suppliers including supplier records: Processing of personal data is necessary to fulfill contractual obligations. Retention period: until the settlement of rights and obligations, at least 10 years after the end of the contractual relationship.
• Implementation of contractual relationships with customers including customer records: Processing of personal data is necessary to fulfill contractual obligations. Retention period: until the settlement of rights and obligations, at least 10 years after the end of the contractual relationship.
• Business communication within supplier-customer relationships: Processing of personal data is based on the legitimate interest of the operator to communicate with business partners. Retention period: for the duration of the contractual relationship.
• Valid conclusion and security of contractual relationships: Personal data are processed based on the legitimate interest to ensure valid conclusion of contracts and their efficient fulfillment. Retention period: until the settlement of rights and obligations, at least 10 years after the end of the contractual relationship.
• Accounting, processing of accounting and tax documents: Processing is necessary to fulfill legal obligations of the operator according to the accounting law and other relevant regulations. Retention period: 10 years.
• Inclusion in the register of experts for projects: Personal data are processed based on your consent for the registration of experts for our customers’ projects. Consent can be withdrawn at any time by emailing [email protected]. Data is retained until consent is withdrawn.

Legal grounds for processing personal data

We process your personal data based on several legal reasons:

• Contract fulfillment: when processing is necessary for the performance of a contract to which you are a party.
• Consent: when you have given us your consent to process your personal data for one or more specific purposes.
• Legal obligation: when processing is necessary to comply with a legal obligation.
• Legitimate interest: when processing is necessary for the purposes of legitimate interests pursued by us or a third party.

Who has access to your data?

Your personal data may be provided to third parties if necessary for the performance of a contract or based on legal requirements. Third parties may include:

• Suppliers and service providers: who provide services essential to our activities.
• Legal and tax advisory: lawyers, auditors, and other experts who provide us with legal and financial advice.
• Public authorities: such as courts, regulatory bodies, or other public agencies.

How do we protect your personal data?

Your personal data are protected through technical and organizational measures that ensure their security and confidentiality. These measures include:

• Encryption and anonymization of data: to secure data during transmission and storage.
• Access controls: to ensure that only authorized persons have access to the data.
• Regular audits and reviews: to ensure compliance with data protection principles.

Your rights as a data subject

You have the right to:

• Access your data: you can request information about the data we process about you.
• Correction of data: if you find that the data we hold about you is inaccurate or incomplete.
• Erasure of data: in certain cases, you can request the deletion of your personal data.
• Restriction of processing: you can request the restriction of processing of your data under certain conditions.
• Data portability: you can request the transfer of your personal data to another operator.
• Objection to processing: you have the right to object to the processing of your personal data based on legitimate interest or direct marketing.

If you have any questions or requests regarding the processing of your personal data, please contact us at [email protected].