Personal Data Protection Policy

These Personal Data Protection Terms explain how personal data is collected, used, and managed through the web portals.
Personal data processing statement under Regulation (EU) 2016/679 (GDPR). Controller:
Name: VigilTech s.r.o.

• Name: VigilTech s.r.o.

• Company ID: 23566353

• Address: Vojtěšská 211/6, Nové Město (Prague 1), 110 00 Prague

• Registered at the Municipal Court in Prague, File No. C 429354/MSPH

Contact details:

• E-mail: support@vigiltech.cz

• Web Portal: https://www.vigiltech.cz, https://www.vigiltech.cz/store

Protecting your personal data is our priority. Please review this Privacy Policy to understand how your data is processed and what rights you have.

I. Processing of Personal Data for Fulfilling the Purchase or Service Agreement

Personal data includes any information relating to an identified or identifiable person.

An identifiable person is someone who can be identified directly or indirectly, especially through name, ID number, location data, or network identifiers.

In connection with the sale of goods and services, we process data provided in the order. For individuals:

• first name, last name, title; date of birth (or birth number when necessary)

• permanent or delivery address

• telephone number, email

• bank account details

• other information necessary to fulfil the agreement

For self-employed individuals and legal entities:

• company name/full name, Company ID, VAT ID

• registered office/place of business, billing information

• contact persons (name, email, phone)

• other information necessary to fulfil the agreement

Legal basis: fulfilment of a contract under Article 6(1)(b) GDPR.

We also retain data for contract records and for asserting or defending legal claims.

Retention period: 10 years from fulfilment of the contract or last service.

If the order is cancelled, we store the data for a maximum of 2 years.

II. Processing of Personal Data for Sending Commercial Communications

Processing personal data for sending commercial communications.

If you do not opt out, we may send updates and commercial messages to your email or phone.

You can unsubscribe anytime by clicking in the email or contacting support@vigiltech.cz.

If you do not unsubscribe, we keep the data for up to 10 years from your last order.

III. Recipients of Personal Data

Recipients (processors) may include entities involved in:

• delivery of services and goods (technology and logistics partners)

• payment processing (e.g., payment service providers)

• operation of e-shop/platform infrastructure

• email and marketing services (bulk mailing providers)

• IT and security services

The list of processors may be updated; current details available upon request.

Processing occurs primarily within the EU. For third-country transfers, we apply GDPR Chapter V safeguards.

The controller does not have a designated Data Protection Officer (DPO).

Contact for questions: support@vigiltech.cz.

IV. Use of Cookies

Cookies are small files stored on your device when using the web portal.

They help remember preferences, enable navigation, measure traffic, and personalise ads.

We use the following cookies:

• necessary cookies (for website operation)

• analytics cookies (traffic, statistics)

• advertising cookies (content personalisation)

You provide or refuse cookie consent via the website banner; you can change settings in your browser anytime.

Help for managing cookies is available in your browser documentation.

Some partners may also use their own cookies according to their policies.

V. Personal Data Security

We implement technical and organisational measures to secure personal data electronically.

We also secure physical and data storage.

Only authorised personnel of the controller and processors have access to the data.

VI. Rights of Data Subjects

You may unsubscribe from marketing communications anytime.

You have rights to access, correct/update, obtain a copy, or restrict processing.

In some cases, you have the right to data portability or deletion.

You may object to processing based on legitimate interest.

If you believe processing violates GDPR, you may file a complaint with the supervisory authority or seek legal protection.

VII. Final Provisions

By submitting an order, you confirm you have read this Privacy Policy and agree with the necessary processing.

The controller may update the Privacy Policy and will notify customers via the provided email.

These Personal Data Protection Terms take effect on September 1, 2025.