Privacy policy

(according to Regulation (EU) 2016/679 of the European Parliament and of the Council)

1. Introduction

This document describes how HRONOVSKÝ s.r.o., with its registered office at Osma 481, Krčín, 549 01 Nové Město nad Metují, Company ID No.: 26000458 (hereinafter the “Controller” or the “Company”), processes personal data of users of the website www.hronovsky.cz and related online services.
When processing personal data, we act in accordance with the GDPR (Regulation (EU) 2016/679) and related legislation of the Czech Republic.

2. Controller contact details

Controller: HRONOVSKÝ s.r.o.
Registered office: Osma 481, Krčín, 549 01 Nové Město nad Metují
E‑mail: info@hronovsky.cz
Phone: +420 491 445 111

3. What personal data we process

Depending on how you use the website services, we may process the following categories of data:

a) Data provided by the user

  • First and last name
  • E-mail address
  • Phone number
  • Content of a message or enquiry submitted via contact forms
  • Data from job applicant forms (CVs, cover letters)

b) Data collected when using the website

  • IP address and related network identifiers
  • Technical data about the device and browser
  • Cookies and other online identifiers
  • Operational and analytical traffic records

4. Purposes and legal bases for processing

4.1 Responding to enquiries and requests from the website

  • Legal basis: The Controller’s legitimate interest (communication with customers and the public).

4.2 Recruitment

  • Legal basis: the Controller’s legitimate interest (communication with customers and the public).
  • For applicant databases: based on consent.

4.3 Website operation and security

  • Legal basis: Legal basis: the Controller’s legitimate interest (operation, security, incident prevention).

4.4 Statistics and analytics

  • Legal basis: consent (cookies for analytics and marketing).
  • Essential/strictly necessary technical cookies: legitimate interest.

4.5 Marketing, social media and company presentation

  • Legal basis: consent (e.g., photo/video materials used as PR content).
  • Legitimate interest when informing about the Company’s activities.

5. Who may receive the data (categories of recipients)

  • IT service and web hosting providers
  • Website security and administration providers
  • HR systems and recruitment platforms (e.g., career portal providers)
  • External consultants and advisors to the necessary extent
  • Public authorities, where required by law

We do not transfer personal data to third countries outside the EU unless an adequate level of protection is ensured.

6. Data retention periods

  • Enquiries from contact forms: 12 months
  • Job applicant data: for the duration of the recruitment process, then up to 6 months (or as per granted consent)
  • Technical logs and security records: 30–180 days
  • Cookies: see Section 9 below

7. Data subject rights

Users have the following rights:

  • Right of access to personal data
  • Right to rectification
  • Right to erasure (“right to be forgotten”)
  • Right to restriction of processing
  • Right to data portability
  • Right to object (in particular to analytical and marketing processing)
  • Right to lodge a complaint with the Czech Data Protection Authority (uoou.cz)

Requests can be submitted by e-mail: info@hronovsky.cz.

8. Cookies

Cookies are small text files stored on the website visitor’s device. We use:

8.1 Necessary (technical) cookies

  • They ensure proper functioning of the website (navigation, security, session management).
  • Legal basis: legitimate interest.

8.2 Analytical cookies

  • They help us understand user behaviour and improve the website.
  • Legal basis:

8.3 Marketing cookies

  • They are used to personalise content and advertising.
  • Legal basis:

9. Cookie management

On your first visit to the website, a cookie banner is displayed allowing you to accept or reject individual categories of cookies. You can change your consent at any time via the “Cookie settings” link available on the website.

Cookie retention periods (indicative):

  • Necessary: until the end of the session / max. 1 year
  • Analytical: 12–24 months
  • Marketing: 12–24 months (depending on the provider)

10. Personal data security

We protect personal data using organisational and technical measures:

  • Encrypted communication (HTTPS)
  • Separation of user roles
  • Regular maintenance and system updates
  • Measures against loss, misuse or unauthorised access

11. Policy updates

We may update this Policy due to changes in legal regulations or internal processes. The latest version is always available on our website.

12. Contacts for data protection enquiries

If you have a question about this Policy or your rights, please contact us at:

info@hronovsky.cz

HRONOVSKÝ s.r.o.