1. On-line Service of the Provider
Provider provides crowdfunding services (hereinafter referred to as "BrikkApp services"), the Provider is in the position of administrator of personal data of its clients - investors, in accordance with EU Regulation No. 679/2016, the European Parliament and the Council (EU) 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC ("GDPR"). Through its own platform www.brikkapp.com (hereinafter referred to as the "BrikkApp platform" or "platform"), the Provider offers services, including the possibility of online registration on the platform and the use of its interactive functions. These interactive features allow the investor to create their own profile on the platform, and invest in the investment opportunities offered by the BrikkApp platform.
2. What personal information do we collect, for what purpose and through which technical means?
3. Who has access to your information and to whom is it disclosed?
Access to the investor's personal data collected within the BrikkApp services is granted only to a defined group of users, who are limited to members of the Provider's operating team. Access to personal data is protected by a login name and password. If external suppliers are involved in the provision of services, then they may have access to the personal data necessary for the purposes described in point 2 above. Each investor has the opportunity to contact the Provider to know if external suppliers are working to provide the services used by the investor. No personal data is passed on to third parties other than the above.
4. How do we protect and safeguard your personal information?
The personal data collected and all information related to the BrikkApp services are stored on the Provider's servers, whose operations are governed by the Provider's security decisions and the Provider's internal regulations for this type of servers and services. The collected personal data and all information related to the BrikkApp services are further stored on the server of an external supplier who acts as a processor with which the Provider has a personal data processing agreement under the relevant provisions of the GDPR and which must guarantee the data protection and confidentiality required by the GDPR. This processor is the business company EasyChange s.r.o., IČ: 29044570, with its registered office at Jungmannova 747/28, Nové Město, 110 00 Prague 1, sp. No. C 162417 kept at the Municipal Court in Prague.
5. How can you verify, edit or request the deletion of your personal data?
Every investor can modify their profile at any time using the online form presented on the BrikkApp platform. If the investor wants to verify which personal data is managed by the Provider or wants to have them deleted, he can contact the Provider as the administrator of this data on the BrikkApp platform (see point 7 of this internal regulation) and explicitly specify their request. Special attention is paid to the consequences of a deletion request. In such a case, any trace through which the investor could be contacted will be deleted.
6. How long do we keep your personal data?
The personal data of the investor will be stored and managed only for the time necessary for the given purpose of personal data processing, in accordance with the Provider's internal regulation on document shredding, which implies that:
a. marketing offers will be sent by the Provider for a period of 1 year from the end of the contractual relationship between the Provider and the investor (this is regulated in the consents to the processing of personal data in connection with the investor's agreement on the Provider's business conditions);
b. contacting investors regarding the services provided to them arising from the contractual relationship will take place only for the duration of the contractual relationship between the Provider and the investor;
c. the original contracts with investors (especially in electronic version) will be kept by the Provider for a period of 3 years, or will be kept for the period required by the legal regulations of the Czech Republic, in particular tax legislation or finance market regulation, after the end of the contractual relationship between the Provider and the investor, corresponding to the general limitation period of potential claims arising from the contract;
d. other personal data concerning, in particular, the settlement of mutual financial claims between the Provider and the investor will be kept for the period required by the legal regulations of the Czech Republic, in particular tax legislation.
If the investor does not agree with the management or processing of their personal data according to letter a., b., may contact the Provider at any time via the BrikkApp platform (see paragraph 8 of this internal regulation) and explicitly specify their request.
7. Contact Information
If you have questions, remarks or complaints regarding this service, or concerning any information processed in the service, or of your rights, feel free to contact the support team, operating under the responsibility of the Controller, using the contact email firstname.lastname@example.org available on the BrikkApp website.
An investor may file a complaint with the supervisory authority if they consider that the management or processing of their personal data violates personal data protection legislation. The investor can file a complaint with the supervisory authority, which is the Office for Personal Data Protection for the territory of the Czech Republic, with its registered office at Pplk. Sochora 27, 170 00 Prague 7 www.uoou.cz or in this connection can contact the Provider through the BrikkApp platform.