Privacy Policy

Download Icon Privacy Policy in local languages


Privacy Policy
of Everyday Bar s.r.o.
Registered office: Soukenická 1529/26, Nové Město, 110 00 Praha 1, Czech Republic
IČO: 21646635, DIČ: CZ21646635
Email: hello@everydaybar.com
For the sale of goods through the e-shop available at the website everydaybar.com:

1. INTRODUCTORY PROVISIONS
1.1. These Privacy Policy principles (hereinafter "Policy") form an integral part of the Terms and Conditions of Everyday Bar s.r.o. (hereinafter "Terms"). Terms defined in the Terms with initial capital letters have the same meaning in this Policy.
1.2. The Seller fulfills its information obligations towards the Buyer under Article 13 of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter "GDPR"), related to the processing of the Buyer’s personal data for the purposes of fulfilling the Purchase Contract, negotiating the Purchase Contract, and complying with the Seller’s public law obligations, through the information provided in this Policy.
1.3. Unless explicitly stated otherwise in this Policy, the Seller acts as the data controller, and the Buyer acts as the data subject, as defined in the GDPR.

2. SCOPE, PURPOSES, AND DURATION OF PROCESSING
2.1. The Seller processes the Buyer’s personal data solely for the following purposes:
Fulfillment of the Purchase Contract under Article 6(1)(b) GDPR,
Negotiation of the Purchase Contract under Article 6(1)(b) GDPR,
Compliance with the Seller’s legal obligations under Article 6(1)(c) GDPR, and
Legitimate interests of the Seller under Article 6(1)(f) GDPR.
2.2. The scope of personal data processed by the Seller includes:
First name and surname,
Username,
Residential address and delivery address,
Bank account number and other payment details, if applicable,
Email address and phone number,
System data, session logs, and protocols, including the user’s IP address
(hereinafter collectively referred to as "personal data").
2.3. The Seller will process the above personal data until all obligations arising from the Purchase Contract are fulfilled. The email address will be processed for five (5) years from the date of the Order, and all the above data will be processed for a maximum period corresponding to the limitation period for damage claims, i.e., no longer than fifteen (15) years from the date of concluding the Purchase Contract.
2.4. The Seller may process the Buyer’s personal data defined above, particularly email, first name, surname, and phone number, based on the Buyer’s voluntary and informed consent under Article 6(1)(a) GDPR. Using the Website or placing an Order is not conditional on providing such consent. Personal data processed based on consent may be processed for five (5) years, unless the Buyer withdraws consent earlier. Consent can be withdrawn at any time by sending a request to hello@everydaybar.com or by actively unsubscribing directly via email.
2.5. Once the purpose for processing personal data no longer exists, the Seller will dispose of the personal data.

3. GENERAL PROVISIONS ON PROCESSING
3.1. The Seller may, within the scope of the activities described above, engage processors to process personal data. Processing by third parties may be governed by their own terms. The Buyer agrees that the Seller may transfer personal data to processors if necessary to fulfill the purposes of data processing outlined above. Processors engaged by the Seller must meet high data protection standards and handle data in compliance with GDPR and this Policy.
3.2. The Seller will make every effort to prevent unauthorized processing of personal data by third parties but is not liable to the Buyer or other data subjects for damages caused by unauthorized processing by a third party.
3.3. Emails sent to the Buyer in connection with the sale of goods are not considered unsolicited commercial communications under Act No. 40/1995 Coll., on Advertising, and Act No. 480/2004 Coll., on Certain Information Society Services. However, the Buyer expressly consents, under Section 7(2) of Act No. 480/2004 Coll., to the Seller sending commercial communications to the Buyer’s email address or phone number.
3.4. If the Seller becomes aware of a security risk related to personal data that affects the Buyer, the Seller will notify the Buyer without undue delay.
3.5. The Seller will provide the Buyer with cooperation and legal assistance in seeking compensation from responsible processors in the event of a personal data breach or other incident leading to data loss. However, the Seller is not liable for improper actions by processors.
3.6. The Buyer confirms that the provided personal data are true, accurate, and pertain solely to the Buyer, or that the use of such data does not violate the rights of third parties. The Buyer is obliged to inform the Seller of any changes to their personal data to ensure only current and complete data are processed.
3.7. Personal data will be processed electronically in a non-automated manner.
3.8. Anonymized personal data (which are no longer considered personal data under GDPR) may be processed in an automated manner. However, neither the Buyer nor other data subjects will be subject to individual automated decision-making under Article 22 GDPR.

4. BUYER’S RIGHTS REGARDING PERSONAL DATA
4.1. The Buyer may exercise their rights under GDPR at any time by sending an email to hello@everydaybar.com. The Seller will strive to address requests concerning the Buyer’s personal data as soon as possible, no later than thirty (30) days. The Buyer’s rights include:
Obtaining an explanation of whether and which personal data are processed and, if applicable, requesting their disclosure,
Correcting personal data if there is a concern that some data are inaccurate or incomplete,
Restricting processing if there is a concern that the Seller processes more data than necessary,
Erasure of personal data, provided no other legal basis for further processing exists,
Obtaining a copy of personal data processed by automated means based on the Buyer’s consent or for contractual obligations, in a machine-readable format,
Temporarily suspending data processing operations for the Seller’s legitimate interests,
Lodging a complaint directly with the Office for Personal Data Protection (www.uoou.cz) (www.uoou.cz) or another relevant national data protection authority if the Buyer believes the Seller processes personal data in violation of this Policy or legal regulations.

5. DELIVERY
5.1. The delivery provisions in the Terms apply in full to communications related to this Policy.

6. FINAL PROVISIONS
6.1. If the relationship established by the Purchase Contract contains an international element, the parties agree that it is governed by Czech law. This choice of law does not deprive a consumer Buyer of protections under legal provisions that cannot be contractually deviated from and would otherwise apply under Article 6(1) of Regulation (EC) No. 593/2008 of 17 June 2008 on the law applicable to contractual obligations (Rome I).
6.2. If any provision of this Policy is invalid or ineffective, it will be replaced by a provision closest in meaning to the invalid one. The invalidity of one provision does not affect the validity of others.
6.3. The Purchase Contract, including this Policy and the Terms, is archived by the Seller in electronic form and is not accessible.
6.4. The Seller’s contact details are provided in the header of this Policy.