Privacy Policy

 

1.    Introductory information:

1.    The company Laxpedia s.r.o., company registration number: 19424612, registered office: Varšavská 715/36, Vinohrady, 120 00 Praha 2, Czech Republic, registered in the Commercial Register kept at the Regional Court in Brno, Section C, Insert 105884 ("Company"), hereby provides information on the manner and scope of processing of personal data of its clients (hereinafter referred to as "Client"), including the rights Clients related to the processing of personal data (hereinafter referred to as "Principles"), in accordance with Act No. 110/2019 Law on the processing of personal data and Regulation (EU) 2016/679.

 

2.    Personal data controller and data processing method:

1.    The Company, as the controller of personal data, collects, stores, and uses personal data in connection with its business activities, and in order to manage it properly, this Policy has been created.
2.    The processing and storage of personal data takes place at the Company's registered office and is carried out exclusively by employees of the Company unless these policies apply the processing of personal data is carried out manually and automated in electronic information systems, in electronic or paper form, always at a high technical level, organizational and personnel security in accordance with the requirements of the relevant legislation.
3.    If the Client uses the Company's services and the settlement of the order to exchange cryptocurrency, The Company may use the Client's contact details to send commercial communications to the Client, i.e. to contact the Client about the services it provides which would the Client may be interested in. The Client may opt out of receiving commercial communications at any time by following the link in the emails or by sending a message to [email protected]

 

3.    Purpose of processing personal data:

1.    The company acts as a controller in the processing of personal data and determines for what purpose and by what means the processing of personal data. Personal data is processed either: (i) without the Client's consent on the basis of the performance of a contract, the legitimate interest of the Company or for the performance of a legal obligation, or (ii) on the basis of the Client's consent. . The Company is entitled to process personal data in particular for the following purposes:
a.    Processing without the Client's consent
    Completion of the contractual relationship- negotiation of entering into, amending, or performing a contract with an existing or potential Client, whereby the services consist in particular of facilitating the purchase and sale (exchange) of cryptocurrencies for lawful currency.
    Compliance with legal obligations- obligations in terms of accounting and tax legislation, archiving obligation. Compliance with legal obligations also means the provision of data and information to law enforcement authorities and other public authorities in accordance with the relevant legislation. Compliance with legal obligations shall also mean regulatory obligations of the Company, in particular, according to the following regulations:
    Act No. 634/1992 Coll., on Consumer Protection (this law regulates consumer rights);
    Act No. 136/2011 Coll., on the circulation of banknotes and coins;
    Act No 253/2008 Coll., on certain measures against legalization of the proceeds of crime (this Act imposes an obligation to carry out identification and control Clients).
    Legal interest of the Company - protection of the Company's rights and legally protected interests, such as assessing the Client's trustworthiness and related solicitation information from public and private sources.
b.    Processing with the Client's consent
    Sending and communicating commercial communications and marketing activities - offering the Company's services and promoting the Company to existing and potential Clients, transferring data to third parties to third parties to display offers on other websites.

 

4.    Scope of processed data:

1.    The Company is entitled to process the following personal data, which it receives from Clients in connection with negotiations for the conclusion of the contract and in connection with the performance of the contract, as set out below for purposes of processing.
Client's personal data and purposes of processing:-
Name, surname, address, and date of birth:
      Fulfillment of contractual relationship, Fulfillment of legal obligations, Authorized interest of the Company, and sending commercial communications (if the Client consents).
Email and phone number, account number, and crypto-wallet address:
      Performance of a contractual relationship, Performance of legal obligations, and sending and communicating commercial communications (if the Client has granted consent).
IP address:
      Performance of a contractual relationship, Performance of legal obligations, and sending and communicating commercial communications (if the Client has granted consent), Cookies.
Company service usage data, transaction data, and data from mutual communications:
      Fulfillment of contractual relationship, Fulfillment of legal obligations, Authorized interest of the Company, Sending commercial communications (if the Client consent).
Data on Client behavior on the website:
      Fulfillment of contractual relationship, Fulfillment of legal obligations, Authorized interest of the Company, Sending and communicating commercial communications (if Client has given consent), Cookies.
Details of the contract and its performance:
      Fulfillment of contractual relationship, Fulfillment of legal obligations, Authorized interest of the Company.
AML Client identification:
      Fulfillment of legal obligations and legitimate interest of the Company (in particular, identity card, birth number, nationality, sex, place and country of birth, politically exposed person).

 

5.    Access to personal data:

1.    Personal data is only accessible to authorized Company employees or to individual processors of personal data, namely only to the extent strictly necessary for the fulfillment of the individual purposes processing or on the basis of the Clients' consent to processing personal data.

 

6.    Personal data processors:

1.    The company also entrusts the processing of personal data as the controller of other entities, as so-called processors. The processor of personal data is the entity that processes personal data for the Company, for the purposes specified by the Company, whereby the protection of personal data The Company ensures by contract that the technical and organizational security of the Clients' data so that the misuse; All processors are bound by contractual confidentiality and may not use the Clients' data for purposes other than purposes for which we make them available to the Company.
2.    When requested in legal cases, we are obliged to use some of your personal data for the Police of the Czech Republic on the basis of applicable law, Czech National Bank, the Financial Analysis Office, or others. Law enforcement authorities and other public administration authorities.
3.    The processors of personal data are: (i) an external accounting firm, (ii) an external law firm, (iii) processors who provide server, web, cloud or IT services to the Company, or who are business partners of the Company.
4.    During the provision of services, we may also use software and other means or tools of third parties (independent Service Providers), which also collect Personal Data of our Users. The procedure for collecting, processing, storing, and using Personal Data is determined by the Privacy Policy of the relevant Service Provider, which are available for review at the following links: https://sumsub.com/privacy-notice-service/

 

7.    Rights of the Client:

1.    The client, as a data subject, has the following rights in connection with the processing of personal data: the rights that arise from legal regulations and which can be exercised at any time. These rights are as follows:
a.    Right to information and access to personal data: if the Client wants to know whether the Company processes personal data, he has the right to obtain information about whether his personal data is being processed and, if so, has the right to access that personal data.
b.    Right to repair: in case the Client runs out or concludes that the Company is processing inaccurate or incomplete personal data, the Client has the right to request their correction and completion. The Company shall carry out the correction or completion of the data without undue delay.
c.    Right to erasure: in the event that the Client requests erasure, the Company will erase his/her personal data if (i) he/she has already they are no longer necessary for the purposes for which they were collected; or otherwise processed, (ii) the processing is unlawful, (iii) the Client objects to the processing and there are no overriding legitimate grounds for processing his/her personal data.
d.    Right to withdraw consent: in the event that the Client has provided consent to the processing of personal data for purposes that require consent, the Client has the right to withdraw that consent at any time.

 

8.    Data processing period:

1.    The company processes personal data for the purpose of fulfilling legal obligations for the duration of the contract and for a period of 1 year after termination of the contract. Commercial communications are sent to Clients until cancellation of their subscription or withdrawal of their consent. More processing of personal data beyond these time limits is carried out by the Company only if necessary for the purposes of the Company's legitimate interests or for the performance of its obligations arising from legal regulations and for as long as is strictly necessary.
2.    Personal data processed by the Company on the basis of the consent Client will be processed until the Client withdraws consent. To withdraw consent, you must send an email with the appropriate request to [email protected]

 

9.    Data security:
1.    The company places emphasis on the technical and organizational security of the processed data and, to this end, has taken appropriate measures and established a system of internal rules. All personal data in electronic form are stored in databases and information systems to which only eligible employees have access; those persons who have an immediate need to handle the personal data for the purposes set out in this Policy, and only to the extent necessary.

 

10.    Changes to the Privacy Policy:
1.    We reserve the right to amend the Privacy Policy at our discretion and at any time. Any changes to this Policy will take effect from the moment this Policy is published on https://laxotc.com/privacy-policy. You shall regularly review the Privacy Policy and pay attention to its revisions. Your continued use of our Website and Services following the posting of changes constitutes your acceptance of the amended Privacy Policy.