Privacy Policy
ENERGODATA spol. s r.o. (“we”, “us”, or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how personal data is collected, used, and protected when you use EDIS24, including our website and iOS application (collectively, the “Services”).
By using the Services, you acknowledge that you have read and understood this Privacy Policy.
1. Personal Data We Collect
We collect only the minimum personal data necessary to provide the Services. The only personal data we collect is your email address, which is required for user authentication and account access.
We collect your email address when you create an account, sign in, or otherwise submit it within the Services in order to access your user account.
We do not collect any additional personal data such as names, phone numbers, physical addresses, location data, device identifiers, usage analytics, advertising data, or payment information.
2. Purpose and Legal Basis of Processing
Your email address is processed solely for the purpose of creating and managing your user account, enabling secure login, and communicating essential service-related or security information.
We may also use your email address to respond to account support requests, including requests relating to access, account security, or account deletion.
The processing of your personal data is based on the performance of a contract between you and us, as the email address is necessary to provide access to the Services. Where applicable, processing may also be based on compliance with legal obligations under applicable law.
We do not process your personal data for marketing, advertising, tracking, profiling, or automated decision-making purposes.
3. Data Sharing and Disclosure
We do not sell, rent, or otherwise disclose your personal data to third parties.
Where necessary to operate, secure, host, or technically support the Services, we may use carefully selected service providers acting on our behalf and under our instructions. Any such service providers may process your email address only to the extent necessary to provide those services to us and are not authorized to use it for their own purposes.
Your personal data may be disclosed only if required to do so by law, regulation, or a valid request from a public authority.
4. Account Deletion and Data Retention
We retain your email address for as long as your user account remains active.
You may initiate deletion of your account directly from within the iOS application. Following a valid deletion request, we will delete your account and permanently remove your email address from our systems without undue delay, unless retention is required to comply with legal obligations or is necessary for the establishment, exercise, or defence of legal claims.
If you experience any issue with the in-app deletion function, you may also contact us at
info@energodata.sk for assistance.
5. Data Security
We implement appropriate technical and organizational measures designed to protect your personal data against unauthorized access, loss, misuse, alteration, or disclosure. While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet or electronic storage can be guaranteed to be completely secure.
6. Your Rights Under the GDPR
If you are located in the European Union or European Economic Area, you have rights under the General Data Protection Regulation (GDPR), including the right to access your personal data, request correction of inaccurate data, request erasure of your personal data, restrict or object to processing, and request data portability.
RIGHTS OF THE DATA SUBJECT:
6.1 Right of access to personal data and the right to obtain a copy of personal data
The data subject has the right to obtain confirmation as to whether or not his or her personal data are being processed and, where that is the case, to obtain a copy of such personal data together with additional information pursuant to Article 15 of the Regulation.
6.2 Right to rectification of personal data
The controller seeks to ensure that the information it holds about the data subject is accurate, complete and up to date. If the data held by the controller are inaccurate, incomplete or out of date, the data subject has the right to request that the controller rectify, update or complete such information.
6.3 Right to erasure of personal data
Where the conditions set out in Article 17 of the Regulation are met, the data subject may request the erasure of his or her personal data. The data subject may request erasure, for example, where he or she has withdrawn consent to the processing of personal data and there is no other legal basis for the processing, where the personal data are being processed unlawfully, or where the purpose for which the personal data were processed no longer exists and the data are not being processed for another compatible purpose. Personal data will not be erased where they are necessary for the establishment, exercise or defence of legal claims.
6.4 Right to restriction of processing of personal data
Where the conditions set out in Article 18 of the Regulation are met, the data subject may request that the controller restrict the processing of his or her personal data.
6.5 Right to data portability
Where the processing is based on the data subject’s consent or is carried out for the performance of a contract, and at the same time is carried out by automated means, the data subject has the right to receive the personal data concerning him or her that we have obtained, in a commonly used and machine-readable format. If the data subject so requests and if it is technically feasible, the controller shall transfer such personal data directly to another controller. This right does not apply to processing carried out for the performance of a task carried out in the public interest or in the exercise of official authority.
6.6 Right to object to the processing of personal data
Where the controller processes personal data for the performance of a task carried out in the public interest or in the exercise of official authority vested in it, or where the processing is carried out on the basis of the controller’s legitimate interests or the legitimate interests of a third party, the data subject has the right to object to such processing. The controller may no longer process the personal data unless it demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or grounds for the establishment, exercise or defence of legal claims. Where personal data are processed for direct marketing purposes, the data subject has the right to object at any time to the processing of personal data concerning him or her for such marketing purposes, including profiling to the extent that it is related to such direct marketing. If the data subject objects to processing for direct marketing purposes, the personal data may no longer be processed for such purposes.
6.7 Right to lodge a complaint
If the data subject believes that the processing of his or her personal data is contrary to the Regulation or the applicable law, he or she has the right to lodge a complaint with one of the competent supervisory authorities, in particular in the Member State of his or her habitual residence, place of work or the place of the alleged infringement. In the territory of the Slovak Republic, the supervisory authority is the Office for Personal Data Protection, with its registered office at Hraničná 4826/12, 820 07 Bratislava, Slovak Republic, website:
www.dataprotection.gov.sk, tel.: +421 /2/ 3231 3220.
6.8 Right to withdraw consent to the processing of personal data
Where the processing of personal data is based on consent, the data subject has the right to withdraw such consent at any time. However, the withdrawal of consent shall not affect the lawfulness of processing carried out prior to such withdrawal. If, at any later time, the data subject decides that he or she wishes to be contacted again, he or she may provide such consent again (or withdraw the objection previously raised) at any time using any of the contact methods set out above.
To exercise any of your rights, you may contact us at
info@energodata.sk. We will respond to your request without undue delay and in accordance with applicable law.
7. Children’s Privacy
The Services are not intended for children under the age of 13, and we do not knowingly collect personal data from children. If you believe that a child has provided us with personal data, please contact us so that we can take appropriate action.
8. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page, and the “Last Updated” date will be revised accordingly. Your continued use of the Services after the effective date of an updated Privacy Policy constitutes acceptance of the changes.
9. Contact Information
If you have any questions or concerns about this Privacy Policy or our data protection practices, you may contact us at:
ENERGODATA spol. s r.o.
Kálov 1, 010 01 Žilina
Slovakia
Email:
info@energodata.sk
Website:
www.energodata.sk/