INFORMATION REGARDING THE PROCESSING OF PERSONAL DATA IN DAN-SLOVAKIA AGRAR GROUP
according to the 13. and 14. articles of regulation 2016/679 by the European Parliament and Council, which concern the protection of personal data of natural persons and the free movement of this data, and which invalidates regulation 95/46/ES (hereinafter referred to as „GDPR”)
The purpose of this information is to describe how the Dan-Slovakia Agrar a.s. (Plc.) corporation, seated in 932 01 Veľký Meder, Nový Dvor, Slovak Republic, business ID 36 240 729, registered in the Commercial Register of Trnava, section: Sa, no. amendment: 10177/T and minor corporations belonging to DAN-SLOVAKIA AGRAR corporation which are presented in part X of this document (hereinafter referred to as „Dan-Slovakia Agrar”/controller) processes the personal data of data subjects and what are their rights based on the GDPR.
This information does not concern the personal data of legal persons, including address, legal form and their contact data.
Based on the fact, that your personal data is being processed officially, You are seen as a data subject, that is, a person whose personal data, which they are subject to, is processed.
We only process your personal data without your consent if valid legal regulations allow this. Those pieces of personal data that you provide us with in contracts, by specific regulations or legitimate interests, you are required to provide; otherwise, we would not be able to fulfil your and our obligations regarding a particular purpose.
We can only process your personal data without your consent on the following legal bases:
| PURPOSE OF PROCESSING PERSONAL DATA | LEGAL BASIS |
|---|---|
| Managing the log of incoming and outgoing
letters. |
GDPR 6. article, 1. section c) – fulfilling legal obligations regulation 395/2002 on storing and logging, and observing regulations elaborated later on. |
| Registering personal data essential for fulfilling purposes defined in the GDPR, especially for handling and registering the rights of data subjects and registering security incidents | GDPR 6. art., 1. s. c) – data is required to fulfil legal obligations along with executing the legitimate interest according to the GDPR 6. art., 1. s. f) the legal interest of the controller for registration and the fulfilling of the rights of data subjects and proceding in accordance with the GDPR and asserting the corresponding expectations of data subjects |
| Ensuring network and other security of the processed data by the controller. | GDPR 6. art., 1. s. f) – data processing is necessary for asserting the controller’s legitimate interests legitimate interest for ensuring network and IT security |
| Fulfilling the rights and obligations stemming from contract relations concerning suppliers and customers. | GDPR 6. art., 1. s. f) – data processing is necessary for asserting the controller’s legitimate interests legitimate interest for processing the personal data of contact persons and for communication in supplier-customer relations |
| Fulfilling obligations stemming from accounting regulations, accounting management, managing accounting documents. | GDPR 6. art., 1. s. c) – data processing is necessary for fulfilling legal obligations GDPR 6. art., 1. s. f) – data processing is necessary for asserting the controller’s legitimate interests legitimate interest for groups of entrepreneurs for transferring personal data for administrative purposes |
| Registering properties and (agricultural) landowners regarding leasing properties (creating and registering lease contracts, paying lease). | GDPR 6. art., 1. s. b) – data processing is necessary for fulfilling contract and pre-contract relations GDPR 6. art., 1. s. f) – data processing is necessary for asserting the controller’s legitimate interests legitimate interest for groups of entrepreneurs for transferring personal data for administrative purposes the controller’s legitimate interest for fulfilling contract relations with landowners and fulfilling the specific expectations of their legal representatives |
| Registering properties and landowners for sealing and fulfilling purchase contracts. | GDPR 6. art., 1. s. b) – data processing is necessary for fulfilling contract and pre-contract relations GDPR 6. art., 1. s. f) – data processing is necessary for asserting the controller’s legitimate interests legitimate interest for groups of entrepreneurs for transferring personal data for administrative purposes the controller’s legitimate interest for fulfilling contract relations with landowners / interested persons and fulfilling the specific expectations of their legal representatives |
| Registering potential employees of the controller. | GDPR 6. art., 1. s. b) – data processing is necessary for fulfilling pre-contract relations GDPR 6. art., 1. s. a) – consent to processing personal data for cases of future contact (for future contact) |
| Protecting public order, security and public health, exposing criminal activities, protecting the possessions, life and health of the employees of the controller and/or third parties and security procedures connected to these – biosecurity on the farm. | GDPR 6. art., 1. s. f) – data processing is necessary for asserting the controller’s legitimate interests the legitimate interest of the controller and third parties for the protection of their possessions and for ensuring the protection of the security, life and health of the employees and other persons entering the object, observing the consequent measures against AMO |
| Creating and managing communication channels for potential enquiries and communication with the data subjects within the context of fan pages and social networks | GDPR 6. art., 1. s. b) – data processing is necessary for fulfilling pre-contract relations GDPR 6. art., 1. s. f) – data processing is necessary for asserting the controller’s legitimate interests the controller’s legitimate interest for communication with the client, reaching them and taking care of them |
| Using essential cookies for ensuring the functionality of the website. | GDPR 6. art., 1. s. f) – data processing is necessary for asserting the controller’s legitimate interests the controller’s legitimate interest for ensuring the functionality of the website and improving the its performance which is also the interest of the visitor when they want to access the website |
We can process your personal data based on your consent, which we may request at each operation of this kind. It is not obligatory to give your consent, that is, it depends on you, whether you provide us with your data or not. If you give your consent, you can revoke it anytime.
In the following cases, we can process your personal data only with your consent:
| PURPOSE OF PROCESSING PERSONAL DATALEGAL BASIS | LEGAL BASIS |
|---|---|
| Registering potential employees of the controller for future contact. | GDPR 6. art., 1. s. a) – consent of the data subject |
| Photographs, video recordings – creating, storing, sharing for the controller’s purpose for propagation. | GDPR 6. art., 1. s. a) – consent of the data subject |
We only process general personal data of you, especially:
- identification data and contact details (e.g., first name, surname, address, signature, e-mail address, phone number);
- billing and invoicing details;
- data necessary for regular accounting management and successful invoicing;
- logs, IP address, other data gathered from your network activity, in case you are a visitor of our website;
- a photograph, in case you participate in an event organised by the controller;
- data included in the deed;
- data included in your CV and motivational letter;
- ID number, in case you enter on the properties owned by the controller;
- your nickname on social networks.
At most, we preserve your data as long as they are needed for the purposes for which they were processed. Personal data are preserved in accordance with specific regulations defining the preservation deadline and/or in accordance with the principles of the GDPR regarding preserving and removing personal data.
If you give your consent to providing us with your data, we process them as long as your consent is valid or not revoked.
Those personal data that are being processed of you originate from you or are provided by you, for example, in connection with contracts or our co-operation.
We have gathered the personal data of your employees and representatives from you for defined purposes. If you give us these data, you are obliged to notify the subjects of data of the fact that their data is being processed by the controller.
In justified and necessary cases, we can provide the following receiving categories with your personal data:
- our contract parties who we need for general business functionality and for realizing our contract relations, for example, IT suppliers, law firm, database providers, external law firm, companies managing documents, camera system providers, register provider, social networks;
- within the Dan – Agrar Slovakia group for administrative purposes;
- to other parties when our rights and obligations regarding your personal data are set in legal regulations, or when the protection of our legitimate interests requires it (e.g., for court of justice, police, etc.).
To the group of Dan – Slovakia Agrar, in which the main corporation is Dan – Slovakia Agrar a.s. (Plc.), such minor corporations belong as:
a) Agricultural cooperatives in Kútniky;
b) AGROKORN, s.r.o. (ltd.);
c) AGROECO, s.r.o. (ltd.);
d) AGRICOLA spol. s.r.o (ltd.).
What are cookies?
- Cookies are small text files sent to the browser and stored on your device when accessing a website.
- These files identify specific information that originate from previously visiting websites.
- Cookies do not have access to your computer or other device, and they do not read the date stored on these devices.
What cookies do we use?
The list of cookies below is only relevant for the dsa.sk website.
| TYPE | PURPOSE | EXPIRATION |
|---|---|---|
| Essential, necessary for
the general functionality of the website. |
Registering the resolution of the device from which the website is accessed. | 12 months |
Only the controller and the visitor of the website have access to the cookies.
How do we work with cookies?
- We use cookies for enhancing our services. With subsequent browsing, you agree to the use of cookies. You can reject their use in the settings of your browser. More information
Setting up and controlling cookies:
- You can set up the use of cookies using your browser. You can either disable using cookies completely, or you can allow using only certain cookies.
- The Help tab in each browser contains instructions for changing cookie settings. However, disabling some cookies may affect the functionality of our website.
- Should you have any objections regarding storing cookies that we gather based on our legitimate interest, you have the right to express this to the controller in an e-mail
Currently, we do not transfer your personal data to third countries outside of the EU.
In case we transfer your personal data in the future to third countries outside of the EU where the levels of protecting personal data are inadequate, we will guarantee further protection of your personal data, such as:
(i) standard contract amendment constituting a part of the contract with the other business party from a third country,
(ii) in case of a single transfer or when the standard contract amendment is objectively unfeasible on the side of the receiver, the transfer takes place according to GDPR 49. art., 1. s., b), that is, the transfer is necessary for fulfilling the contract between the data subject and the controller,
(iii) the transfer is necessary for justifying, asserting or protecting the legitimate interest.
You can find those countries that ensure an adequate level of personal data protection on the website of the Slovak Data Protection Agency: https://dataprotection.gov.sk/uoou/sk/content/prenos-do-krajin-zarucujucich-primeranu-uroven-ochrany. Every other third cou
- access rights – you can request to access to your personal data that are being processed by us. In this case, the controller also issues a copy of the personal data that are being processed.
- right of rectification– you can request the rectification of those processed personal data that are inaccurate or incomplete.
- right of erasure – you can request the erasure of your personal data in the following situations:
(i) the personal data are not needed for the purpose for which they were gathered or processed in any other way;
(ii) your personal data were processed in an unlawful manner;
(iii) we are required to erase your personal data in order to fulfil our legal obligations concerning the controller that are defined in the laws of the EU or the Member State.
- right to restriction of processing – you can request from the controller to restrict the processing of your personal data in the following situations:
(i) you deny the accuracy of your personal data, precisely in the period when the controller can check their accuracy;
(ii) the processing of your personal data is unlawful, but instead of requesting erasure, you request the restriction of the data;
(iii) the controller no longer needs the personal data for processing; however, you request this for the purpose of determining, fulfilling and protecting the legitimate interest;
(iv) you have asserted your objection regarding processing your personal data based on the GDPR 21. art., 1. s., until it is confirmed that the controller’s legitimate interests take precedence over your legitimate interests.
- right to transfer data – in case your personal data are being processed based on your consent, or if it is necessary to fulfil the contract in which you are a contract party, and in which the processing is done by automated devices, you have the right to receive the personal data to which you are subject, and which you have provided the controller with in a structured, general and machine-readable form with the condition that with exercising your right, you do not violate the freedom of other data subjects.
- right of revoking consent – in case the processing of your personal data is based on a consent, you have the right to revoke your consent to processing your data for a particular purpose anytime.
- right of objection – you can file an objection for the controller anytime regarding the processing of your personal data for the purpose of direct marketing that is based on the controller’s legitimate interest, and in every case, where we process your data based on public interest, including profiling.
- right to complain – you have the right to file a complaint at a supervisory body, that is at the Slovak Data Protection Agency, address: Hraničná 12, 820 07 Bratislava 27, www.uoou.sk.
The data subject can assert their rights verbally, in writing or electronically through the above mentioned contact details. If the data subject requests the exercising of their rights, the controller is obliged to identify themselves.
The controller of your personal data is a corporation from the Dan – Slovakia Agrar group.
In case you would like to exercise your rights as a data subject, or should you have any queries concerning the protection of your personal data, contact the person responsible for the protection of personal data through the following contact details:
a) At the following e-mail address: mail@dsa.sk
b) In writing to the corporation’s address: Nový Dvor, Veľký Meder 932 01
In case that data subject asserts any of the above mentioned rights in accordance with the GDPR, and it is not possible to identify the applicant from the application, or in case the controller is uncertain in identifying the applicant, the controller preserves the right to request any supplementary information from the data subject in order to identify them.
