Privacy

Controller: GLOBESY, s.r.o.

Contact details of the controller:
Framborská 58, 010 01 Žilina, Slovak Republic
Company ID No.: 36 407 275, VAT ID: SK2020107540,
Company registered in the Commercial Register of the District Court Žilina, Section Sro, Insert No. 13764/L

Contact details of the responsible person:
[email protected]

Data subjects:

• submitting parties in the GLOBESY, s.r.o. contact form on www.globesy.sk,
• submitting parties in the GLOBESY, s.r.o. contact form on www.successfactors.sk.

List of processed personal data:

• name, surname, title, phone contact, e-mail address, IP address,
• possibly other personal data provided by the data subject in the message of the form.

Purpose of processing:
Handling messages and requests from website visitors, i.e., submitting parties in the contact form, such as messages from potential customers, business partners, job candidates, and others.

Legal basis for processing:
The processing of personal data obtained through the GBS Contact Form is based on the legitimate interests of GLOBESY, s.r.o. for its sustainable market presence and development, in the sense of:

• communication with the public – providing information and responses to the submitting parties,
• human capital acquisition – handling received messages and job applications,
• acquisition of business opportunities– receiving and responding to inquiries from potential clients.

Processing is carried out in compliance with the requirements of the GDPR.
According to Article 6 (“Lawfulness of processing”) paragraph 1 letter f) of the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.

Request for providing personal data and possible consequences of non-provision:

Recipients/categories of recipients: Depending on the subject of the message, a competent person employed by GLOBESY, s.r.o. from the Human Resources, Marketing, Project Management, or Sales and Company Management departments is entrusted with handling it.

Retention period for personal data: up to one month after the necessary time for handling the message from the submitting party has elapsed.

Transfer of personal data to a third country or international organization: Not performed.

Automated decision-making, including profiling: Not performed.

Rights of data subjects:
The data subject has the right to access personal data, the right to rectification, erasure, restriction of processing, the right to object, the right to lodge a complaint with the supervisory authority, namely the Office for Personal Data Protection of the Slovak Republic, and the right to initiate the personal data protection proceeding.

For more information on personal data protection and the rights of data subjects, please visit the controller’s website: Personal Data Protection.

Controller: GLOBESY, s.r.o.

Contact details of the controller:
Framborská 58, 010 01 Žilina, Slovak Republic
Company ID No.: 36 407 275, VAT ID: SK2020107540,
Company registered in the Commercial Register of the District Court Žilina, Section Sro, Insert No. 13764/L

Contact details of the responsible person:
[email protected]

Company GLOBESY, s.r.o., with the aim of achieving economic stability and prosperity, carries out marketing activities, which include:

• occasional sending of offers, information, and materials about products, solutions, and services –”Newsletter Services”,
• occasional sending of important announcements and information about significant events – “Newsletter Announcements”,
• occasional sending of marketing items (e.g., New Year’s cards, gifts),
• providing demo versions of products/SW solutions,
• providing online webinars.

Purposes of processing:

These above-mentioned activities are carried out for marketing purposes, specifically for:

a) direct marketing/maintaining and building business relationships,

b) other marketing activities/creating new business opportunities.

Note:

Direct marketing represents the marketing communication of GLOBESY, s.r.o. with its customers and business partners through direct addressing (e.g., e-mail, post, telephone), i.e., performing the above-mentioned marketing activities based on legitimate interest.

Other marketing activities represent the marketing communication of GLOBESY, s.r.o. with other natural person (via e-mail, post, telephone), i.e., performing the above-mentioned marketing activities based on their consent.

Dotknuté osoby k účelom
a)
b):

1. existing and potential customers/business partners (Statutory bodies and employees, possibly former employees – contact persons, project managers, consultants, other authorized persons involved in business and contractual relationships),
2. other affected persons (e.g., contact persons of other legal entities and/or other natural persons whose personal data is publicly available or provided personally, by phone, questionnaire, form, or other forms of communication).

Zoznam spracúvaných osobných údajov pri účeloch spracúvania
a)
b):

1. name, surname, title, phone contact, e-mail address, and possibly job position/employment status, employer,
2. e-mail communication with the affected person (e-mails),
3. possibly other personal data provided by the affected person (any data provided during correspondence, phone calls, and personal meetings).

Legal basis for processing:

Processing of personal data is carried out in the Customer Relationship Management (CRM) Database of GLOBESY (further information below):

a) for existing and potential customers/business partners – based on the legitimate interest of the Data controller (Article 6(1)(f) of the GDPR),

Note:

Recital 47 of the GDPR: “The processing of personal data for direct marketing purposes may be regarded as carried out for a legitimate interest if the interests or fundamental rights and freedoms of the data subject are not overriding, taking into consideration the reasonable expectations of data subjects based on their relationship with the controller – for example, when the data subject is a client or in the service of the controller.”

b) for other affected persons – based on the consent given by súhlasu dotknutej osoby (Article 6(1)(a) of the GDPR).

Rights of data subjects (a):
The data subject has the right to access personal data, the right to rectification, erasure, restriction of processing, the right to lodge a complaint with the supervisory authority (Office for Personal Data Protection of the Slovak Republic), the right to file a motion to initiate proceedings regarding the protection of personal data, and the right to object to the processing of personal data.

If the data subject (existing or potential customer/partner) objects to the processing of personal data for marketing purposes, the Controller accepts this objection, and the processing of personal data for marketing activities shall no longer be processed for such purposes with respect to the data subject.

Rights of data subjects (b):

The data subject has the right to access personal data, the right to rectification, erasure, restriction of processing, the right to lodge a complaint with the supervisory authority (Office for Personal Data Protection of the Slovak Republic), the right to file a motion to initiate proceedings regarding the protection of personal data, and the right to withdraw consent to the processing of personal data.

The data subject shall have the right to withdraw his or her consent at any time without providing a reason here, or by sending a written request for withdrawal of consent to the address of the company GLOBESY, s.r.o., or to the email address[email protected].

If the data subject withdraws his or her consent to the processing of personal data for the aforementioned purpose, the Controller accepts this withdrawal, and the processing of personal data for marketing purposes will no longer be carried out.

Retention period for purposes a) b):

(a) up to 5 years after the termination of the business/contractual relationship.

(b) within 1 month after the expiration of the consent or its withdrawal.

Recipients/categories of recipients:

Depending on the subject of the processing operation, the competent person, an employee of the company GLOBESY, s.r.o. from the Sales and Marketing department, or the Economic department and Management of the company, is entrusted with its execution. Alternatively, the control authorities of Slovakia.

Transfer of personal data to a third country or international organization: Yes – MailChimp (further information below).

Automated decision-making, including profiling: Not performed.

Information about other processing operations of the company GLOBESY, s.r.o. can be found on the website: www.globesy.sk.

Further information:

Database CRM / SuiteCRM application:

Company GLOBESY uses the Customer Database/SuiteCRM application as a software tool for effective management and record-keeping of business relationships with existing and potential customers, suppliers, business partners, and other natural persons.

SuiteCRM (Customer Relationship Management) is an open-source software used by the company GLOBESY, s.r.o. for managing relationships with existing and potential customers.

The department responsible for data management and software usage is the Sales and Marketing department.

Security of Suite CRM: SuiteCRM and GDPR.

Mailchimp:

Mailchimp is an online marketing platform operated by the company Rocket Science Group LLC, based in the state of Georgia, United States. According to Article 45 of the EU Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, this constitutes a transfer to countries providing an adequate level of protection, and no special authorization is required for such transfer: Decision of Commission on the adequacy of the protection provided by the Privacy Shield for the United States – Rocket Science Group LLC is listed as a company under the Privacy Shield framework.

Privacy Shield „MailChimpu“: https://www.privacyshield.gov/participant?id=a2zt0000000TO6hAAG&status=Active

Company Rocket Science Group LLC has implemented appropriate technical and organizational measures to protect personal data from loss, misuse and unauthorized access, disclosure, alteration and destruction, taking into due account the risks involved in the processing and the nature of the personal data.

Further information about security practices can be found on Mailchimp’s website: https://mailchimp.com/legal/

For any questions regarding the security of personal information, you can directly contact Mailchimp at [email protected].

Why MailChimp?

MailChimp is a simple marketing tool that allows you to send and manage email campaigns and other related services, e.g., real-time data analysis, etc. In addition, it provides several advantages over common email service providers. These advantages include:

1. Bulk e-mail
   While many email service providers technically allow sending multiple emails at once, they often impose limitations due to anti-spam measures. With MailChimp, we can send our occasional emails to our recipients efficiently.
2. Excellent Deliverability MailChimp integrates with ISP (Internet Service Providers) and corporate domains, ensuring that all business emails are marked as safe and approved. This significantly increases the success rate of
   email delivery, and MailChimp can resend email in case of problems.
3. Privacy Protection
   Bulk email senders are required by law to include an unsubscribe link in their emails. MailChimp does this automatically and notifies the recipient of the “unsubscribe” option, i.e. unsubscribe from the mailing list.
4. Profesionálny a user friendly styling
   MailChimp ponúka širokú škálu upraviteľných drag-and-drop šablón pre vytváranie e-mailov. Môžeme si však vytvoriť aj vlastnú šablónu a naimportovať ju do MailChimpu. To všetko rýchlo, jednoducho a intuitívne.
5. Compatibility with Various Email Clients
   MailChimp allows recipients to read emails in HTML or plain text. They can also click on a link and read the email in their browser.
6. Effective Feedback
   MailChimp allows us to track all types of statistics, from successful email delivery to email open rates, and provides other useful data in simple and easy-to-read reports.
7. MailChimp is Free
   This service is free as long as we have less than 2,000 unique email addresses in all mailing lists in our account and send less than 12,000 emails per month.
8. Seamless Compatibility
   Thanks to the API, MailChimp integrates with platforms like Facebook, Twitter, and Google Analytics without problems. This allows recipients to share our newsletter on all social media platforms.

High-quality email campaigns enable us to build a long-term and loyal relationship with the customer.

Controller: GLOBESY, s.r.o.

Contact details of the controller:
Framborská 58, 010 01 Žilina, Slovak Republic
Company ID No.: 36 407 275, VAT ID: SK2020107540,
Company registered in the Commercial Register of the District Court Žilina, Section Sro, Insert No. 13764/L

Contact details of the responsible person:
[email protected]

Purpose of processing:

Video surveillance system is used by the data controller for the sole purpose of security and protection of property, i.e.:

• prevention of unauthorized access to the premises of the data controller,
• visual identification of individuals (without the use of facial recognition systems and without processing biometric data of data subjects) entering the premises of the data controller due to employees working with personal data, confidential information, classified information, etc., concerning the data controller and/or its customers, business partners,
• prevention of criminal activities and breaches of security/data protection,
• detection of criminal activities – enforcement of legal liability in the context of administrative or criminal proceedings.

Area monitored by the surveillance camera system at the data controller’s premises:

The area monitored by the video surveillance system at the data controller’s premises is marked with a warning label indicating the surveillance of the area (as described below).

Data subjects:

• employees of the data controller,
• visitors (any individuals entering the premises of the data controller).

List of processed personal data:

• Audio-visual recording – capturing the likeness of the affected person, which may also reveal information relating to, for example, the physical, mental, economic, social, or cultural identity of the affected person. However, the data controller does not process this additional information.

The processing of this personal data is carried out in accordance with the legislation of the Slovak Republic and the EU regulations:

• GDPR – General Data Protection Regulation – Regulation (EU) 2016/679,
• Act No. 18/2018 Coll. on the Protection of Personal Data,
• Act No. 311/2001 Coll. Labour Code,
• Act No. 40/1964 Coll. Civil Code.

Legal basis for processing:

The processing of personal data/audio-visual recordings of data subjects is carried out based on the legitimate interest of the Controller.

• In accordance with Article 6(1)(f) of the GDPR,
• And in conjunction with Recital 47 of the GDPR.

Security of processing:

• storage of audio-visual recordings in a secure area and on a storage device that is not connected to the internet network,
• restricted access to audio-visual recordings only by authorized personnel of the Controller,
• surveillance of only the necessary areas that does not restrict the privacy rights of individuals in the workplace and common areas, and which are appropriately marked with warning labels/notices regarding surveillance.

Rights of data subjects:

The data subject has the right to access personal data, the right to object to the processing of their personal data, the right to erasure, the right to restriction of processing, the right to lodge a complaint with the supervisory authority – the Office for Personal Data Protection of the Slovak Republic, and the right to file a motion to initiate the personal data protection proceeding.

Note:

In case a data subject objects to the processing of their personal data by the camera system, the Controller will assess this objection by conducting:

The test of proportionality, which includes:

• The suitability/ability test of the processing to fulfil the intended purpose,
• The necessity test of the processing,
• The adequacy test of processing personal data/the necessity of the extent of processing personal data.

The balancing test:

• to determine whether the interests or fundamental rights and freedoms of the data subject prevail over the legitimate interests of the data controller.

Consequently, the data controller either accepts a justified objection and takes appropriate measures and actions or rejects the objection as unjustified.

Request for provision of personal data and possible consequences of non-provision:

For the protection and security of data and property, as well as for the proper compliance with commercial and processing agreements, the data controller must ensure the protection of property, personal data, confidential information, classified facts, and other data.

Therefore, it is necessary to monitor the access to the company premises (appropriately secured) and retain the records from the video surveillance system (for potential evidence) for a certain period, e.g., for the purpose of proving criminal activity or addressing a security incident.

If the data subject refuses the processing/creation of these audio-visual recordings, it will not be possible to grant him/her access to the premises of the data controller and thus perform work activities within those premises.

However, any objections raised by the data subject will be thoroughly examined in the first place according to the procedure described below and subsequently evaluated as justified or unjustified (see: Note on Data Subject Rights).

Retention period: 4 days – audio-visual recordings are automatically overwritten with new audio-visual recordings after 7 days.

Recipients/categories of recipients:

• audio-visual recordings: authorized persons of the data controller, i.e., administrators or other authorized individuals,
• real-time visual transmission from cameras: the data controller’s secretariat,
• or relevant law enforcement authorities and other supervisory authorities in the Slovak Republic (if necessary).

Transfer of personal data to a third country or international organization: Not performed.

Automated decision-making, including profiling: Not performed.

Information about other processing operations of the company GLOBESY, s.r.o. can be found on the website: www.globesy.sk.

Warning label of the data controller informing about the surveillance of premises:

Controller: GLOBESY, s.r.o.

Contact details of the controller:
Framborská 58, 010 01 Žilina, Slovak Republic
Company ID No.: 36 407 275, VAT ID: SK2020107540,
Company registered in the Commercial Register of the District Court Žilina, Section Sro, Insert No. 13764/L

Contact details of the responsible person:
[email protected]

Purpose of processing:

Ensuring the employer’s recruitment processes and human resources management, which includes handling job applications, searching for potential workforce in the job market and job portals, communicating with candidates, reaching out to potential candidates, conducting job interviews, notifying candidates, storing resumes and other data of prospective candidates in the database of candidates, etc.

Data subjects:

• candidates who have submitted their job applications,
• job seekers (potential job candidates) registered in the databases of portals focused on searching for job opportunities and job offers (e.g., Profesia.sk, ITKariéra.sk, Linkedin.com, etc.).

List of processed personal data:

• name, surname, title, phone contact, email address,
• resume, cover letter, email communication, IP address,
• documents, certifications, and other personal data and information provided by the data subjects themselves.

Legal basis for processing:

Processing personal data of job candidates and potential candidates is based on the legitimate interests of GLOBESY, s.r.o. for a necessary long period (i.e., during the selection process – approximately 3 months), in order to meet the current need for new workforce/ongoing recruitment process (According to Art. 6(1)(f) of the GDPR).

Processing personal data of job candidates and potential candidates for a longer period/”archiving” of personal data in the database of candidate is performed be employer only with the consent of the data subjects, in order to meet future needs for new workforce/planned recruitment processes.

Processing is carried out in compliance with GDPR requirements (According to Art. 6(1)(a) of the GDPR).

Rights of data subjects:

The data subjects have the right to access their personal data, right to erasure, right to restrict processing, right to object to processing their personal data (only in cases of legitimate interest), right to withdraw consent (only if provided), right to lodge a complaint with the supervisory authority (Office for Personal Data Protection of the Slovak Republic), and the right to file a motion to initiate proceedings regarding the protection of personal data.

Request for provision of personal data and possible consequences of non-provision:

In case the data subject objects to processing of personal data for the aforementioned purposes, it is not possible to include this data subject in the selection process and the recruitment process of employer.

Processing period of personal data/deletion deadline:

For unsuccessful candidate:

1. within 2 months from notification or last communication with the candidate, or,
2. until the withdrawal of consent, if the candidate provided such consent, or for the period of the granted consent.

For a successful candidate:

1. within 1 month from the termination of the employment relationship.

For a potential candidate:

1. within 3 months from the storage of personal data of the potential candidate in the database of candidates, or
2. until the withdrawal of consent, if such consent for processing personal data was provided by the potential candidate, or for the period of the granted consent.

The period of the granted consent may vary based on the will and decision of the data subject.

Recipients/categories of recipients:

• Human Resources department (personnel), competent superiors related to the job position, company management.

Transfer of personal data to a third country or international organization: Not performed.

Automated decision-making, including profiling: Not performed.

More information on personal data protection and the rights of data subjects can be found on the controller’s website:
Personal Data Protection.

Text of consent for processing personal data in the database of candidates:

Cookies are small text files which contain a small amount of information. These files contains a string of alphanumeric characters that are stored in your web browser when you visit a website. Almost all websites use cookies.

Storing these cookie files has several advantages, primarily allowing the server to recognize:

• whether you have previously visited the website and which sections you were interested in,
• your user settings for the user session.

Furthermore, this storage can be either temporary or persistent, categorizing cookies into:

Session cookies (temporary cookies)

Long-term cookies (persistent cookies)

You can enable, configure, limit, or completely disable the storage of cookie files.

Key information about our cookies:

We use cookies to improve the quality of your browsing experience on websites www.globesy.sk, ensuring user-friendly and convenient browsing of our website. Specifically, this includes:

• Correct display of pages during your visit (session cookies):
  Without these files, certain website functions may not work, or their functionality may be limited.
  Specifically, this involves anonymous collecting of technical information about the device that is used to visit the website, such as the browser type and version, operating system type and version, and type and version of device used to visit the website. This information is used to improve the user experience, as well as enhance the functionality and performance of future website versions.
• Storage of your personal settings (persistent cookies):
  These cookies enhance your comfort while browsing our website and using its services. They simplify their usage and improve the functionality of web pages (see also “Joomla!” below).
• Website optimisation (persistent cookies):
  Website optimisation (persistent cookies):
  In order to optimise the website and improve services, GLOBESY, s.r.o. uses anonymous statistical analysis of website usage (see “Google Analytics” below), which does not identify individuals but only identify access to the website and user behaviour on the websites accessed from specific devices (e.g., notebooks, tablets). So, these are tracking cookies, which recognize repeated visits to our web pages from the same browser on the same device and track visitor activities during page viewing.
  for example, which pages are most frequently visited, how much time visitors spend browsing the page, whether visitors receive error messages from web pages, etc.

These cookie files do not damage your computer, nor can they control it in any way. They do not enable access to your hard drive. They do not allow the examination of your computer or other devices, or read the data stored on them.

Security of our cookies:

Mostly, we use our own cookie filles, but also services and cookies from third parties that guarantee security and protection of personal data:

Cookies Google Analytics

• • Google Analytics tools provide website analysis, and their purpose is to collect, organise, and present data about the performance of the website and perform technical analysis of the website,
  • the services are operated by Google LLC, headquartered at 1600 Amphitheatre Parkway, Mountain View, California 94043, USA, Google is certified under the Privacy Shield agreement, which means that by complying with the GDPR it ensures the transfer to countries that guarantee an adequate level of protection.
  • Google’s privacy statement: Privacy Policy.
  • you can prevent the storage of these cookies by installing the Google Analytics Opt-out module.

WordPress Cookies (only on websites www.successfactors.sk)

• • WordPress is an open-source software emphasising security, accessibility, ease of use, and performance, with an appropriate GPLv2 license from the Free Software Foundation.
  • The services are operated by Automattic Inc., headquartered at Legal Department 60, 29th Street #343, San Francisco, California 94110, which is certified under the Privacy Shield agreement, which means that by complying with the GDPR it ensures the transfer to countries that guarantee an adequate level of protection.

CMS Joomla! (only on websites www.globesy.sk):

• • Joomla! is open-source software – a CMS (Content Management System) for managing and publishing web content. Over the years, Joomla! has won several awards. It is built on a model–view–controller web application framework that can be used independently of the CMS and allows you to build powerful online applications.
  • It has an appropriate GPLv2 license from the Free Software Foundation, and there is no transfer of personal data of the controller to third-party operators when using this open-source software.

Social Networks and Our Profile Pages:

GLOBESY, s.r.o. has on its website links to its profile pages which are found on other service providers’ websites.

By clicking on these links, the website visitor is redirected to social networks, where the processing of personal data is carried out under the competence of their controllers. However, these controllers guarantee an adequate level of personal data protection:

Facebook

• • The service is operated by
    Facebook, Inc.
    , headquartered at 1601 Willow Road, Menlo Park, California 94025, USA, which is certified under the Privacy Shield agreement, which means that by complying with the GDPR it ensures the transfer to countries that guarantee an adequate level of protection.
  • Further information about the processing of personal data by Facebook, Inc. can be found at: https://www.facebook.com/privacy/explanation.

LinkedIn

• • The controller of services of this social network is LinkedIn Corporation, headquartered at 1000 West Maude Avenue, Sunnyvale, California 94085, USA, which is certified under the Privacy Shield agreement, which means that by complying with the GDPR it ensures the transfer to countries that guarantee an adequate level of protection.
  • Further information about the processing of personal data by LinkedIn Corporation can be found at: https://www.linkedin.com/legal/privacy-policy.

Legal basis for the use of cookies:

The processing of personal data through the use of cookies occurs when it is possible to precisely identify the individual visitor or user of the website based on recorded personal data (such as IP address, email, etc.).

GLOBESY, s.r.o. uses these cookies based on its legitimate interest in accordance with the GDPR, aiming to provide visitors of www.globesy with the best setting of services – convenient page display and support.

Tracking user activities and evaluating them is, according to the GDPR, the legitimate interest of the website controller. However, data subjects have the right to object to such tracking and evaluation, and they can easily restrict or disable this tracking and evaluation by adjusting the cookie settings in their web browser.

Cookie settings in your web browser:

Web browsers support cookie management and are set to accept cookies by default. Within the web browser settings, user/website visitors can manually delete, block, or completely disable the use of individual cookies, or choose to block or allow them only for specific websites.

Limiting cookies does not impact the overall technical functionality of the website, but it may restrict or partially disable certain selected services (such as settings, form data, login status, etc.).

You can set/restrict cookies in individual browsers according to the following procedures:

• Mozilla Firefox: support.mozilla.org,
• Google Chrome: support.google.com,
• Internet Explorer: support.microsoft.com,
• Microsoft Edge: privacy.microsoft.com,
• Safari: support.apple.com.

If you are using a different web browser, you can find instructions on how to change these settings in the browser’s help section by searching for the keyword “cookies.”

If you have any questions, please feel free to ask. We are happy to assist you. You can contact us here or via email at [email protected].