Privacy policy

1. Processing of customer's personal data for the purpose of realizing future offers and implementation of customer service reviews by the Administrator

Agree to process contact e-mail addresses

In accordance with General Data Protection Regulation 2016/679 of April 27, 2016, I hereby grant BAFF s.r.o., Nad Tratí 1178, 258 01 Vlašim, ICO 26486709 (Administrator privacy policy), consent to the processing of my personal data within the scope of the above mentioned contact e-mail address for processing purposes: a) Sending lunch menu and special offers. The contact e-mail address will be processed for an indefinite period of time. I agree with the use of my e-mail for sending action bids. b) Customer Service Quality Score by Administrator. The contact e-mail address will be processed for this purpose for an indefinite period of time. I agree to use my e-mail address that I entered when submitting my Administrator's rating. Using my e-mail address will be subject to the following privacy policy:

- The Provider uses the services of subcontractors, especially mail service providers (personal data are stored in third countries) and web host providers - company INTERNET CZ, a.s. se sídlem v obci Ktiš, okres Prachatice, to perform the license agreement. Subcontractors are screened for the safe processing of personal data. Provider and subcontractor of the web host have entered into a personal data processing agreement under which the subcontractor is responsible for the proper provision of the physical, hardware and software perimeter and hence bears direct responsibility for the user for any leakage or violation of personal data.

- The Provider shall store the user’s personal data for the period necessary to exercise the rights and obligations arising from the contractual relationship between the Provider and the User and the enforcement of the claims under these contractual relationships. After it expires, data will be erased. - The User has the right to request from the Provider access to his / her personal data pursuant to Article 15 of GDPR, the repair of personal data pursuant to Article 16 of the GDPR or, where applicable, the restriction of processing under Article 18 GDPR. The user has the right to delete personal data pursuant to Article 17 (1) (a) and (c) to (f) of the GDPR. Furthermore, the user has the right to object to processing under Article 21 of the GDPR and the right to data portability under Article 20 GDPR.
- Consent may be revoked at meetburger@seznam.cz at any time in writing. - The provided e-mail address will be processed in an automated manner in electronic form or manually in written form.

2. Processing of customer's personal data for the purpose of catering services in the restaurant (Administrator)

Administrator customers are natural persons (business or non-business) and legal entities (or natural persons who act in the role of persons authorized to act as legal entities) using the services of the Administrator in the field of reservation at the Administrator's premises. - When reservation, the personal data required for successful reservation execution (Customer identification and contact details, including in particular their name, address, number of persons, telephone number, e-mail, date and time of reservation ) are required. The purpose of processing personal data is to execute the user’s order and to exercise the rights and obligations arising from the contractual relationship between the Provider and the User. The purpose of processing personal information is to send business messages and do other marketing activities. The legal reason for the processing of personal data is the fulfillment of the contract pursuant to Article 6 (1) b) GDPR, fulfillment of the statutory obligation of the administrator pursuant to Article 6 (1) c) the GDPR and the legitimate interest of the Provider pursuant to Article 6 (1) f) GDPR. The Provider’s legitimate interest is the processing of personal data for direct marketing purposes. - The Provider uses the services of subcontractors, especially mail service providers (personal data are stored in third countries) and web host providers - company INTERNET CZ, a.s. se sídlem v obci Ktiš, okres Prachatice, to perform the license agreement. Subcontractors are screened for the safe processing of personal data. Provider and subcontractor of the web host have entered into a personal data processing agreement under which the subcontractor is responsible for the proper provision of the physical, hardware and software perimeter and hence bears direct responsibility for the user for any leakage or violation of personal data.

Legal basis for the processing of personal data: Performance of the contract and statutory obligation.